$ rpki-client -vvf rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft File: CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft (raw, json) Hash identifier: Ps6BLv24HeSiCFOntn1Rh05NdMumXHaE2t9cNmYXvZY= Subject key identifier: A4:EB:E4:62:3A:44:B6:36:1A:D1:43:CE:D8:63:71:27:CA:71:0E:D1 Authority key identifier: 09:11:E9:9A:AD:F6:64:F0:39:92:9C:AB:BB:48:74:A3:A1:61:CA:AD Certificate issuer: /CN=A91937EA/serialNumber=0911E99AADF664F039929CABBB4874A3A161CAAD Certificate serial: 06C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CRHpmq32ZPA5kpyru0h0o6Fhyq0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft Manifest number: 06C7 Signing time: Fri 22 Aug 2025 22:13:06 +0000 Manifest this update: Fri 22 Aug 2025 22:13:06 +0000 Manifest next update: Fri 29 Aug 2025 22:13:06 +0000 Files and hashes: 1: CRHpmq32ZPA5kpyru0h0o6Fhyq0.crl (hash: IhUKJN4DOKbGpjpVFB/EGG+s3aCTv2OBWdCDBsleJ80=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.crl rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CRHpmq32ZPA5kpyru0h0o6Fhyq0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:13:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1737 (0x6c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91937EA, serialNumber=0911E99AADF664F039929CABBB4874A3A161CAAD Validity Not Before: Aug 22 22:13:06 2025 GMT Not After : Aug 29 22:13:06 2025 GMT Subject: CN=68a8eb72-7727 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:31:7f:a5:62:32:e8:a3:5e:28:11:c6:45:c2: e9:73:cd:c5:03:f4:d5:41:08:0d:94:f6:e0:b0:1f: b0:6f:88:6d:13:ec:83:8d:d7:1f:aa:00:7b:e6:ea: 5a:55:6f:f4:db:cc:e1:a6:db:ff:5f:a1:d4:09:02: 15:a8:9c:64:f9:31:e8:44:55:d1:3e:39:b8:3f:7a: 9e:65:a0:3d:74:f7:7f:00:7f:fe:5f:e5:1b:54:f8: 64:0f:68:be:3f:70:c0:b3:1b:a1:40:bd:4c:51:ea: aa:38:46:56:35:b6:25:23:c4:9b:e4:e8:bb:c9:65: 11:7b:8a:60:fa:61:8a:59:b4:3a:77:46:fb:d8:c7: aa:fc:4e:4f:c3:66:e1:e7:a2:27:43:bb:f3:0c:be: 00:97:17:79:d7:ff:fa:0f:76:bc:b7:e4:3b:25:aa: 0e:91:9d:64:90:d0:8e:d2:22:be:11:54:d5:d5:f1: 5c:e5:86:3a:70:aa:bc:6b:a7:92:73:f1:2b:d1:42: d0:cb:71:33:b2:93:00:5a:35:06:54:57:9b:43:22: 7f:77:2d:02:c3:50:74:5c:4e:56:f6:91:e6:22:c8: 34:04:c4:8e:64:ec:eb:3a:64:5b:7f:c4:0c:36:b6: 2b:b9:cc:73:1f:c9:c4:37:71:78:32:4a:26:b8:d7: 25:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:EB:E4:62:3A:44:B6:36:1A:D1:43:CE:D8:63:71:27:CA:71:0E:D1 X509v3 Authority Key Identifier: keyid:09:11:E9:9A:AD:F6:64:F0:39:92:9C:AB:BB:48:74:A3:A1:61:CA:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CRHpmq32ZPA5kpyru0h0o6Fhyq0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:1d:61:05:6f:d9:c0:d3:8f:6a:86:33:83:d5:68:8e:a8:d4: 00:2f:8d:d0:d1:a9:69:fd:a3:aa:c4:54:3c:6d:4f:cb:93:87: 6c:98:36:8c:cc:2b:9d:be:12:21:67:47:af:40:d9:6e:45:f5: 46:f1:c1:b2:e5:56:a0:c0:ab:0c:64:bb:8e:c7:a9:a2:3d:bf: 8d:3c:67:b8:64:d3:dd:e9:6d:75:2c:1b:cf:bd:b3:a2:80:aa: c0:20:cb:32:ff:93:45:bd:b5:22:9c:07:35:2a:58:bc:78:42: 16:a3:2f:56:87:9b:f3:45:4b:80:93:06:62:9f:97:20:2f:2c: 3c:8b:70:18:f8:c6:2a:fd:b0:49:42:7d:55:da:8c:eb:22:30: 9a:17:3a:60:a5:04:62:c9:89:13:dd:2d:5d:d7:1e:01:8f:b1: d9:08:fb:c7:0e:d1:ab:a5:94:10:29:e4:94:98:0f:64:d1:b3: 0c:05:ad:c8:29:35:cf:14:8f:67:f5:45:3f:81:d2:be:ed:b5: 1a:d2:45:c0:68:88:94:c5:78:35:29:e7:8a:01:53:70:22:f5: 9d:59:d4:50:b6:d8:f6:47:e5:cd:56:f1:c3:4e:fb:42:d8:90: c5:a7:77:ae:3b:d6:8a:ab:57:54:70:9c:f8:51:b8:d8:4b:ab: e8:27:4b:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBskwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTM3RUExMTAvBgNVBAUTKDA5MTFFOTlBQURGNjY0RjAzOTkyOUNBQkJCNDg3NEEz QTE2MUNBQUQwHhcNMjUwODIyMjIxMzA2WhcNMjUwODI5MjIxMzA2WjAYMRYwFAYD VQQDEw02OGE4ZWI3Mi03NzI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzjF/pWIy6KNeKBHGRcLpc83FA/TVQQgNlPbgsB+wb4htE+yDjdcfqgB75upa VW/028zhptv/X6HUCQIVqJxk+THoRFXRPjm4P3qeZaA9dPd/AH/+X+UbVPhkD2i+ P3DAsxuhQL1MUeqqOEZWNbYlI8Sb5Oi7yWURe4pg+mGKWbQ6d0b72Meq/E5Pw2bh 56InQ7vzDL4Alxd51//6D3a8t+Q7JaoOkZ1kkNCO0iK+EVTV1fFc5YY6cKq8a6eS c/Er0ULQy3EzspMAWjUGVFebQyJ/dy0Cw1B0XE5W9pHmIsg0BMSOZOzrOmRbf8QM NrYrucxzH8nEN3F4MkomuNcl4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKTr5GI6 RLY2GtFDzthjcSfKcQ7RMB8GA1UdIwQYMBaAFAkR6Zqt9mTwOZKcq7tIdKOhYcqt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzdFQS8xRTk2NTYzMDZB NTkxMUVCQTM2NDFDM0RDNEY5QUUwMi9DUkhwbXEzMlpQQTVrcHlydTBoMG82Rmh5 cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NSSHBtcTMyWlBBNWtweXJ1MGgwbzZGaHlxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MzdFQS8xRTk2NTYzMDZBNTkxMUVCQTM2NDFDM0RDNEY5QUUwMi9DUkhwbXEzMlpQ QTVrcHlydTBoMG82Rmh5cTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKHWEFb9nA049qhjOD1WiOqNQAL43Q0alp/aOqxFQ8bU/Lk4dsmDaM zCudvhIhZ0evQNluRfVG8cGy5VagwKsMZLuOx6miPb+NPGe4ZNPd6W11LBvPvbOi gKrAIMsy/5NFvbUinAc1Kli8eEIWoy9Wh5vzRUuAkwZin5cgLyw8i3AY+MYq/bBJ Qn1V2ozrIjCaFzpgpQRiyYkT3S1d1x4Bj7HZCPvHDtGrpZQQKeSUmA9k0bMMBa3I KTXPFI9n9UU/gdK+7bUa0kXAaIiUxXg1KeeKAVNwIvWdWdRQttj2R+XNVvHDTvtC 2JDFp3euO9aKq1dUcJz4UbjYS6voJ0t6 -----END CERTIFICATE-----Generated at Sat Aug 23 22:19:27 2025 by rpki-client