$ rpki-client -vvf rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.mft File: mHokA1wVORcCC2UduY8JHwqqMic.mft (raw, json) Hash identifier: TBzld6SHBOtTjukSC5c43Qn3E7HzlgscrNz2AUnWJWc= Subject key identifier: CC:1A:A9:A5:F2:39:63:7C:9C:94:C5:72:3D:10:BB:45:3C:1E:61:97 Authority key identifier: 98:7A:24:03:5C:15:39:17:02:0B:65:1D:B9:8F:09:1F:0A:AA:32:27 Certificate issuer: /CN=A91A31F5/serialNumber=987A24035C153917020B651DB98F091F0AAA3227 Certificate serial: 54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mHokA1wVORcCC2UduY8JHwqqMic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.mft Manifest number: 54 Signing time: Tue 01 Jul 2025 07:59:41 +0000 Manifest this update: Tue 01 Jul 2025 07:59:41 +0000 Manifest next update: Tue 08 Jul 2025 07:59:41 +0000 Files and hashes: 1: mHokA1wVORcCC2UduY8JHwqqMic.crl (hash: +HqpXjm+3faSkpqId9Vm6BUUlHyjZh2W64j7nd7BS/E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.crl rsync://rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mHokA1wVORcCC2UduY8JHwqqMic.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 07:59:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 84 (0x54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A31F5, serialNumber=987A24035C153917020B651DB98F091F0AAA3227 Validity Not Before: Jul 1 07:59:41 2025 GMT Not After : Jul 8 07:59:41 2025 GMT Subject: CN=6863956d-80ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:20:d8:37:1a:ab:7e:7b:03:76:31:ba:16:26: d6:dc:f3:6e:99:0e:1c:b0:98:38:0d:50:97:9b:f0: b2:b1:d0:a3:00:88:51:69:b0:f9:65:38:cd:21:65: 7c:5f:2e:18:15:7c:9b:f5:15:c9:ef:b1:59:0b:b3: 0d:c7:46:b4:f0:a8:dc:f3:55:ab:8a:81:21:63:f5: d9:b4:bb:98:e4:c7:e6:ab:36:14:0d:2b:8b:99:11: 22:8a:7b:63:4b:78:44:e0:44:8c:6c:26:e3:e6:9a: 25:f3:56:a3:c4:c3:dc:bd:f1:e9:6c:a0:08:fe:e5: 38:da:58:93:b4:39:73:89:ae:42:78:b6:df:7e:ff: 5c:50:4a:d1:e1:ee:12:7d:a5:17:fe:9e:6f:25:c0: c9:1b:b4:01:7f:4b:aa:5c:30:09:ae:37:b8:7e:ef: b0:4e:b0:d4:ae:bc:69:79:07:76:5f:c3:26:6f:3b: 95:c7:ce:78:80:81:2d:05:b2:ae:b3:43:13:cb:f9: ac:1c:43:d0:11:da:53:2c:c8:3d:62:d6:17:28:aa: 08:a2:9d:34:a9:28:89:84:68:94:06:37:b5:ac:ad: 84:c7:d5:c0:e4:cb:be:d8:73:10:18:08:56:c5:4f: f4:6a:5f:15:04:fa:87:c0:c6:78:de:ce:fb:7e:a1: 8c:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:1A:A9:A5:F2:39:63:7C:9C:94:C5:72:3D:10:BB:45:3C:1E:61:97 X509v3 Authority Key Identifier: keyid:98:7A:24:03:5C:15:39:17:02:0B:65:1D:B9:8F:09:1F:0A:AA:32:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mHokA1wVORcCC2UduY8JHwqqMic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A31F5/AFDEFE54D6EC11EFA2799C69C4F9AE02/mHokA1wVORcCC2UduY8JHwqqMic.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:fe:93:e5:73:bb:45:73:6e:bf:89:6a:85:45:a1:5d:cc:da: 6c:97:9d:77:87:d5:f3:e0:51:43:d0:d7:a7:a9:30:dd:cd:b5: ff:32:f1:04:12:91:52:40:90:9c:4a:c7:78:a9:61:14:59:f2: 4e:77:b9:a4:ab:51:9f:73:55:9c:92:9a:f8:dc:a1:3d:5e:e3: ad:ef:72:25:83:87:eb:d1:75:97:e9:e5:a0:fc:57:bc:b2:77: 62:45:23:a0:b7:74:c1:9b:49:d4:8d:1b:46:47:fc:46:d9:3f: 6e:7b:ab:7a:c1:75:20:5d:6b:7f:bb:f2:ce:b4:dd:bc:20:28: 67:cb:83:cc:78:9e:d0:71:7d:ff:ad:eb:97:c1:a5:65:16:b4: 25:d6:d7:27:e9:29:c2:75:17:2d:1c:e6:c4:db:d1:a3:47:3a: 18:da:ec:3a:f6:50:7c:c5:97:b9:15:a6:d2:3b:ae:19:92:b3: 95:5e:6a:90:0c:34:85:5e:0f:9f:b8:f1:07:5f:b4:44:64:e8: 78:7b:63:67:aa:8b:c9:d8:cc:fb:cb:b1:06:f1:a6:65:ea:c0: 81:6b:ff:61:8e:47:bc:ad:2e:6b:3b:96:c4:cb:79:27:ab:8a: 9b:92:57:5f:70:22:48:33:97:72:62:30:d6:63:ec:8c:d2:5d: cb:02:25:25 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MzFGNTExMC8GA1UEBRMoOTg3QTI0MDM1QzE1MzkxNzAyMEI2NTFEQjk4RjA5MUYw QUFBMzIyNzAeFw0yNTA3MDEwNzU5NDFaFw0yNTA3MDgwNzU5NDFaMBgxFjAUBgNV BAMTDTY4NjM5NTZkLTgwYWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDSINg3Gqt+ewN2MboWJtbc826ZDhywmDgNUJeb8LKx0KMAiFFpsPllOM0hZXxf LhgVfJv1FcnvsVkLsw3HRrTwqNzzVauKgSFj9dm0u5jkx+arNhQNK4uZESKKe2NL eETgRIxsJuPmmiXzVqPEw9y98elsoAj+5TjaWJO0OXOJrkJ4tt9+/1xQStHh7hJ9 pRf+nm8lwMkbtAF/S6pcMAmuN7h+77BOsNSuvGl5B3ZfwyZvO5XHzniAgS0Fsq6z QxPL+awcQ9AR2lMsyD1i1hcoqgiinTSpKImEaJQGN7WsrYTH1cDky77YcxAYCFbF T/RqXxUE+ofAxnjezvt+oYwTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUzBqppfI5 Y3yclMVyPRC7RTweYZcwHwYDVR0jBBgwFoAUmHokA1wVORcCC2UduY8JHwqqMicw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEzMUY1L0FGREVGRTU0RDZF QzExRUZBMjc5OUM2OUM0RjlBRTAyL21Ib2tBMXdWT1JjQ0MyVWR1WThKSHdxcU1p Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbUhva0Exd1ZPUmNDQzJVZHVZOEpId3FxTWljLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEz MUY1L0FGREVGRTU0RDZFQzExRUZBMjc5OUM2OUM0RjlBRTAyL21Ib2tBMXdWT1Jj Q0MyVWR1WThKSHdxcU1pYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAE7+k+Vzu0Vzbr+JaoVFoV3M2myXnXeH1fPgUUPQ16epMN3Ntf8y8QQS kVJAkJxKx3ipYRRZ8k53uaSrUZ9zVZySmvjcoT1e463vciWDh+vRdZfp5aD8V7yy d2JFI6C3dMGbSdSNG0ZH/EbZP257q3rBdSBda3+78s603bwgKGfLg8x4ntBxff+t 65fBpWUWtCXW1yfpKcJ1Fy0c5sTb0aNHOhja7Dr2UHzFl7kVptI7rhmSs5VeapAM NIVeD5+48QdftERk6Hh7Y2eqi8nYzPvLsQbxpmXqwIFr/2GOR7ytLms7lsTLeSer ipuSV19wIkgzl3JiMNZj7IzSXcsCJSU= -----END CERTIFICATE-----Generated at Tue Jul 1 13:08:26 2025 by rpki-client