$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1C73/C491BA4EAC0D11EF9879926EC4F9AE02/64mHxSCv7Nwk9ByG_Gut08Fvpio.mft File: 64mHxSCv7Nwk9ByG_Gut08Fvpio.mft (raw, json) Hash identifier: SsIHbvLvArg+1MGOtYRhEDstyiO+7lCGM/50jSyhFY8= Subject key identifier: 3F:47:83:4E:73:1A:C4:D2:E4:1C:7F:96:08:96:FD:CF:74:2F:68:EE Authority key identifier: EB:89:87:C5:20:AF:EC:DC:24:F4:1C:86:FC:6B:AD:D3:C1:6F:A6:2A Certificate issuer: /CN=A91B1C73/serialNumber=EB8987C520AFECDC24F41C86FC6BADD3C16FA62A Certificate serial: 72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/64mHxSCv7Nwk9ByG_Gut08Fvpio.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1C73/C491BA4EAC0D11EF9879926EC4F9AE02/64mHxSCv7Nwk9ByG_Gut08Fvpio.mft Manifest number: 72 Signing time: Sat 05 Jul 2025 07:10:28 +0000 Manifest this update: Sat 05 Jul 2025 07:10:28 +0000 Manifest next update: Sat 12 Jul 2025 07:10:28 +0000 Files and hashes: 1: 64mHxSCv7Nwk9ByG_Gut08Fvpio.crl (hash: KelJFjYM7aAWG2IqA0h92dxyEpBQoK1Be4XDVkr1BdU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1C73/C491BA4EAC0D11EF9879926EC4F9AE02/64mHxSCv7Nwk9ByG_Gut08Fvpio.crl rsync://rpki.apnic.net/member_repository/A91B1C73/C491BA4EAC0D11EF9879926EC4F9AE02/64mHxSCv7Nwk9ByG_Gut08Fvpio.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/64mHxSCv7Nwk9ByG_Gut08Fvpio.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 114 (0x72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1C73, serialNumber=EB8987C520AFECDC24F41C86FC6BADD3C16FA62A Validity Not Before: Jul 5 07:10:28 2025 GMT Not After : Jul 12 07:10:28 2025 GMT Subject: CN=6868cfe4-68ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:de:58:ca:4e:da:45:1d:1c:0c:8a:5a:45:c9: 5f:db:b0:23:9a:40:8b:94:8a:32:77:a6:03:7a:36: b7:4f:48:d0:c6:34:ec:0b:3e:a8:7a:f5:a3:03:ee: 5b:28:7f:f8:a5:9a:01:d5:92:b9:f4:62:14:05:d3: 82:86:05:eb:b0:3a:6b:fc:0e:b5:da:e3:71:8f:91: 4b:e5:cc:a0:77:e4:2f:93:4c:16:e7:e3:1b:79:75: b5:56:b2:ec:34:e4:ca:4c:63:73:5d:e6:8a:28:59: b3:66:32:ae:f2:06:cf:b5:a0:e4:ba:58:37:11:f0: 8d:79:a1:bc:7d:54:ad:74:c4:fb:65:a6:93:2e:2a: b3:83:d4:92:c2:5d:5a:8d:10:c5:fb:de:6e:e6:07: c6:c2:bb:a4:d1:8f:0f:f5:00:ef:8c:1c:b4:80:e7: a0:d6:f4:a1:3e:b1:77:59:09:36:ba:66:42:86:1b: 54:f3:d3:5a:8a:53:43:04:ba:ac:65:1f:cc:b7:72: 53:5b:db:e1:34:33:dc:53:d8:c7:c7:e1:ef:57:3d: aa:0b:f7:93:06:f0:b4:70:11:2d:fe:a5:be:dd:e8: a7:e9:aa:6a:68:51:08:48:16:a0:9e:ad:f3:0b:91: 15:39:f2:67:9a:22:90:40:79:56:0e:ac:4a:eb:59: b3:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:47:83:4E:73:1A:C4:D2:E4:1C:7F:96:08:96:FD:CF:74:2F:68:EE X509v3 Authority Key Identifier: keyid:EB:89:87:C5:20:AF:EC:DC:24:F4:1C:86:FC:6B:AD:D3:C1:6F:A6:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1C73/C491BA4EAC0D11EF9879926EC4F9AE02/64mHxSCv7Nwk9ByG_Gut08Fvpio.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/64mHxSCv7Nwk9ByG_Gut08Fvpio.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1C73/C491BA4EAC0D11EF9879926EC4F9AE02/64mHxSCv7Nwk9ByG_Gut08Fvpio.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:4f:e5:20:fc:08:d7:2c:25:ea:e5:71:e4:26:de:72:1f:ec: 67:55:3a:7f:cb:3d:3a:2b:4b:ed:54:8e:a4:b4:1c:4e:0a:39: cb:9c:ff:c2:95:80:55:63:cf:02:56:c2:66:bb:6b:1f:22:38: 50:55:d6:9b:22:1a:56:3e:fb:7a:69:6f:a4:01:bf:ea:cf:26: 1e:4c:e8:e2:9e:b9:03:85:f4:23:a6:a9:ba:43:b1:32:4b:2d: e8:53:3e:7a:1a:fb:d0:b1:cd:4f:c0:8c:48:9a:df:24:78:02: 12:0b:7e:0c:d5:5b:45:85:4b:7b:ed:8e:9e:be:42:f4:43:82: f0:a2:2e:a5:34:b0:be:4e:47:c4:ec:41:ce:92:b3:9a:ad:85: 0e:5a:ef:3a:06:0f:e5:4b:2b:bf:12:1d:fa:2d:13:58:98:98: be:11:34:e1:9c:7a:f4:bb:4c:82:89:c8:de:7b:5b:21:b3:79: 13:0c:61:fd:9f:ef:18:c7:29:95:66:b6:08:1e:dd:ea:9a:45: 08:88:3a:cd:c4:8c:7b:6e:5e:62:25:b2:48:4a:71:30:4a:8f: e5:68:8e:0e:fc:74:47:48:d0:d3:12:d7:3f:9d:66:0b:51:b8: d9:38:0f:87:a3:2a:81:3f:5d:13:8d:e9:2b:16:e6:41:9d:82: 0c:3c:f0:f6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MUM3MzExMC8GA1UEBRMoRUI4OTg3QzUyMEFGRUNEQzI0RjQxQzg2RkM2QkFERDND MTZGQTYyQTAeFw0yNTA3MDUwNzEwMjhaFw0yNTA3MTIwNzEwMjhaMBgxFjAUBgNV BAMTDTY4NjhjZmU0LTY4Y2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDQ3ljKTtpFHRwMilpFyV/bsCOaQIuUijJ3pgN6NrdPSNDGNOwLPqh69aMD7lso f/ilmgHVkrn0YhQF04KGBeuwOmv8DrXa43GPkUvlzKB35C+TTBbn4xt5dbVWsuw0 5MpMY3Nd5oooWbNmMq7yBs+1oOS6WDcR8I15obx9VK10xPtlppMuKrOD1JLCXVqN EMX73m7mB8bCu6TRjw/1AO+MHLSA56DW9KE+sXdZCTa6ZkKGG1Tz01qKU0MEuqxl H8y3clNb2+E0M9xT2MfH4e9XPaoL95MG8LRwES3+pb7d6KfpqmpoUQhIFqCerfML kRU58meaIpBAeVYOrErrWbPvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUP0eDTnMa xNLkHH+WCJb9z3QvaO4wHwYDVR0jBBgwFoAU64mHxSCv7Nwk9ByG/Gut08Fvpiow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIxQzczL0M0OTFCQTRFQUMw RDExRUY5ODc5OTI2RUM0RjlBRTAyLzY0bUh4U0N2N053azlCeUdfR3V0MDhGdnBp by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNjRtSHhTQ3Y3TndrOUJ5R19HdXQwOEZ2cGlvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIx QzczL0M0OTFCQTRFQUMwRDExRUY5ODc5OTI2RUM0RjlBRTAyLzY0bUh4U0N2N053 azlCeUdfR3V0MDhGdnBpby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAABP5SD8CNcsJerlceQm3nIf7GdVOn/LPTorS+1UjqS0HE4KOcuc/8KV gFVjzwJWwma7ax8iOFBV1psiGlY++3ppb6QBv+rPJh5M6OKeuQOF9COmqbpDsTJL LehTPnoa+9CxzU/AjEia3yR4AhILfgzVW0WFS3vtjp6+QvRDgvCiLqU0sL5OR8Ts Qc6Ss5qthQ5a7zoGD+VLK78SHfotE1iYmL4RNOGcevS7TIKJyN57WyGzeRMMYf2f 7xjHKZVmtgge3eqaRQiIOs3EjHtuXmIlskhKcTBKj+Vojg78dEdI0NMS1z+dZgtR uNk4D4ejKoE/XRON6SsW5kGdggw88PY= -----END CERTIFICATE-----Generated at Sat Jul 5 18:56:55 2025 by rpki-client