$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9916/239DC426618B11ED88ABBC22C4F9AE02/8uRlf7CxUUJzxQ7r-Q9EFv2lSwc.mft File: 8uRlf7CxUUJzxQ7r-Q9EFv2lSwc.mft (raw, json) Hash identifier: qNsvZvGORl/JTjRNqXiN1exxDaH2Na+7pBazDpMQcM4= Subject key identifier: 5B:84:67:F7:58:1F:31:BB:E3:F2:EF:6A:5B:6B:A0:2E:08:56:56:7B Authority key identifier: F2:E4:65:7F:B0:B1:51:42:73:C5:0E:EB:F9:0F:44:16:FD:A5:4B:07 Certificate issuer: /CN=A91C9916/serialNumber=F2E4657FB0B1514273C50EEBF90F4416FDA54B07 Certificate serial: 01EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8uRlf7CxUUJzxQ7r-Q9EFv2lSwc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9916/239DC426618B11ED88ABBC22C4F9AE02/8uRlf7CxUUJzxQ7r-Q9EFv2lSwc.mft Manifest number: 01EA Signing time: Thu 03 Jul 2025 02:35:35 +0000 Manifest this update: Thu 03 Jul 2025 02:35:34 +0000 Manifest next update: Thu 10 Jul 2025 02:35:34 +0000 Files and hashes: 1: 8uRlf7CxUUJzxQ7r-Q9EFv2lSwc.crl (hash: SAfIiJxbgfkKQDmePijHHGpSAvxwD9UWA3I9QQx4tkU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9916/239DC426618B11ED88ABBC22C4F9AE02/8uRlf7CxUUJzxQ7r-Q9EFv2lSwc.crl rsync://rpki.apnic.net/member_repository/A91C9916/239DC426618B11ED88ABBC22C4F9AE02/8uRlf7CxUUJzxQ7r-Q9EFv2lSwc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8uRlf7CxUUJzxQ7r-Q9EFv2lSwc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 02:35:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 490 (0x1ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9916, serialNumber=F2E4657FB0B1514273C50EEBF90F4416FDA54B07 Validity Not Before: Jul 3 02:35:34 2025 GMT Not After : Jul 10 02:35:34 2025 GMT Subject: CN=6865ec76-0654 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:be:c8:89:c9:5a:60:ca:bb:7a:7e:9d:9e:41: bb:04:16:a4:c6:9d:fe:40:3a:4b:f2:c1:3c:86:1c: 21:11:15:a0:bd:2a:83:bd:42:94:2d:2d:d2:aa:bd: ae:b6:26:9b:79:e6:cc:76:e0:1a:d9:bc:77:95:c7: 45:14:a7:29:af:2e:1e:69:da:97:77:86:0c:69:7c: d8:26:ce:cc:02:16:f0:99:79:6d:f6:79:62:3c:06: 24:88:7c:da:6e:17:01:0a:ef:d0:f1:17:ef:b7:69: 7e:e9:51:bb:39:30:ae:03:04:68:c9:ed:a9:7e:1f: 2a:a7:03:fb:b8:14:0b:ec:27:e8:40:c7:28:f0:2e: e5:6e:91:eb:dd:ae:01:a1:ea:39:0b:f2:28:0f:3e: f0:87:ba:50:bf:66:53:2a:c4:f0:35:f7:9e:96:fc: 49:8d:f6:a2:33:ff:42:b2:75:29:e1:98:a7:1d:3e: c1:91:29:f5:f6:32:3a:df:ca:3a:52:07:4f:39:c4: a3:6e:a8:3a:17:89:d7:08:f7:fc:9b:87:de:41:69: 49:83:9a:92:3b:ca:1b:88:c5:75:10:7e:d0:5f:82: c9:bd:8b:27:19:8f:24:d7:44:38:bd:84:2c:08:f3: e0:c5:97:ed:a3:e8:52:b7:6d:4a:16:65:85:e9:a7: f5:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:84:67:F7:58:1F:31:BB:E3:F2:EF:6A:5B:6B:A0:2E:08:56:56:7B X509v3 Authority Key Identifier: keyid:F2:E4:65:7F:B0:B1:51:42:73:C5:0E:EB:F9:0F:44:16:FD:A5:4B:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9916/239DC426618B11ED88ABBC22C4F9AE02/8uRlf7CxUUJzxQ7r-Q9EFv2lSwc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8uRlf7CxUUJzxQ7r-Q9EFv2lSwc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9916/239DC426618B11ED88ABBC22C4F9AE02/8uRlf7CxUUJzxQ7r-Q9EFv2lSwc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:80:bf:a9:07:5d:2c:18:ab:4a:d8:dd:18:10:97:ac:81:ed: 30:25:5c:24:07:04:7d:05:2e:db:85:06:db:be:59:47:d3:83: 99:3f:8c:35:c2:8e:17:87:c6:6e:80:55:19:88:8c:d7:ea:f4: 9e:bf:b8:de:15:24:9c:98:92:12:9c:63:b0:79:d6:1d:81:75: 3a:48:d1:d3:77:48:9f:f5:e5:83:38:93:9d:6c:48:9a:d3:81: 2d:85:d2:2e:04:1a:34:e8:5b:e2:ec:45:25:03:58:36:bb:68: 71:b8:04:07:37:4a:34:50:e8:d8:ba:69:96:48:1f:ec:24:c2: 23:01:d6:00:ce:c8:08:fe:e5:7a:dc:00:eb:79:51:04:e4:8a: 23:88:ff:5d:c1:80:7e:00:7f:fb:55:6c:bb:22:66:fb:99:fd: ef:6c:31:82:25:47:62:8a:7b:d6:06:cb:65:ed:6d:45:be:fd: f1:b2:09:52:f3:a9:0b:c8:9c:88:72:1c:cf:be:da:b8:5f:55: 17:f2:14:5d:a3:c5:d8:84:1a:a9:ae:50:1f:6e:d1:3f:fc:3c: 55:9b:66:58:85:7c:d8:52:7c:43:b4:7a:75:f2:19:c1:0c:73: 90:19:84:89:70:22:bd:1e:db:98:9c:77:59:1c:49:33:30:b0: c6:d0:ca:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk5MTYxMTAvBgNVBAUTKEYyRTQ2NTdGQjBCMTUxNDI3M0M1MEVFQkY5MEY0NDE2 RkRBNTRCMDcwHhcNMjUwNzAzMDIzNTM0WhcNMjUwNzEwMDIzNTM0WjAYMRYwFAYD VQQDEw02ODY1ZWM3Ni0wNjU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxr7IiclaYMq7en6dnkG7BBakxp3+QDpL8sE8hhwhERWgvSqDvUKULS3Sqr2u tiabeebMduAa2bx3lcdFFKcpry4eadqXd4YMaXzYJs7MAhbwmXlt9nliPAYkiHza bhcBCu/Q8Rfvt2l+6VG7OTCuAwRoye2pfh8qpwP7uBQL7CfoQMco8C7lbpHr3a4B oeo5C/IoDz7wh7pQv2ZTKsTwNfeelvxJjfaiM/9CsnUp4ZinHT7BkSn19jI638o6 UgdPOcSjbqg6F4nXCPf8m4feQWlJg5qSO8obiMV1EH7QX4LJvYsnGY8k10Q4vYQs CPPgxZfto+hSt21KFmWF6af1wwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFuEZ/dY HzG74/LvaltroC4IVlZ7MB8GA1UdIwQYMBaAFPLkZX+wsVFCc8UO6/kPRBb9pUsH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTkxNi8yMzlEQzQyNjYx OEIxMUVEODhBQkJDMjJDNEY5QUUwMi84dVJsZjdDeFVVSnp4UTdyLVE5RUZ2MmxT d2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzh1UmxmN0N4VVVKenhRN3ItUTlFRnYybFN3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTkxNi8yMzlEQzQyNjYxOEIxMUVEODhBQkJDMjJDNEY5QUUwMi84dVJsZjdDeFVV Snp4UTdyLVE5RUZ2MmxTd2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCugL+pB10sGKtK2N0YEJesge0wJVwkBwR9BS7bhQbbvllH04OZP4w1 wo4Xh8ZugFUZiIzX6vSev7jeFSScmJISnGOwedYdgXU6SNHTd0if9eWDOJOdbEia 04EthdIuBBo06Fvi7EUlA1g2u2hxuAQHN0o0UOjYummWSB/sJMIjAdYAzsgI/uV6 3ADreVEE5IojiP9dwYB+AH/7VWy7Imb7mf3vbDGCJUdiinvWBstl7W1Fvv3xsglS 86kLyJyIchzPvtq4X1UX8hRdo8XYhBqprlAfbtE//DxVm2ZYhXzYUnxDtHp18hnB DHOQGYSJcCK9HtuYnHdZHEkzMLDG0MoN -----END CERTIFICATE-----Generated at Thu Jul 3 21:09:52 2025 by rpki-client