$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.mft File: hXeQTEPCqb4Rj93Vunu4tgRDgP4.mft (raw, json) Hash identifier: r22/UgH0zWpn80VUynSBBSr1udw5XLbrZ/+w1LLBEhU= Subject key identifier: BC:F9:FF:63:EA:FB:9B:02:81:D1:E2:B9:A2:9E:2C:7E:13:CB:AE:A3 Authority key identifier: 85:77:90:4C:43:C2:A9:BE:11:8F:DD:D5:BA:7B:B8:B6:04:43:80:FE Certificate issuer: /CN=A91E5EEA/serialNumber=8577904C43C2A9BE118FDDD5BA7BB8B6044380FE Certificate serial: 56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXeQTEPCqb4Rj93Vunu4tgRDgP4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.mft Manifest number: 56 Signing time: Thu 03 Jul 2025 07:26:32 +0000 Manifest this update: Thu 03 Jul 2025 07:26:31 +0000 Manifest next update: Thu 10 Jul 2025 07:26:31 +0000 Files and hashes: 1: hXeQTEPCqb4Rj93Vunu4tgRDgP4.crl (hash: wbqPfkHn3CqbWO3SCJKhyrDWjb618WCAIYyjF8FgRL4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.crl rsync://rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXeQTEPCqb4Rj93Vunu4tgRDgP4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 86 (0x56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5EEA, serialNumber=8577904C43C2A9BE118FDDD5BA7BB8B6044380FE Validity Not Before: Jul 3 07:26:31 2025 GMT Not After : Jul 10 07:26:31 2025 GMT Subject: CN=686630a7-f06c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:7b:dd:c4:2f:9b:32:04:a5:7e:78:ce:c6:b7: 5f:3a:0a:6a:c0:e7:39:64:c8:23:b4:fd:95:aa:f7: 98:79:17:24:46:31:d4:54:89:cf:6f:81:3f:a9:14: b5:19:5c:d2:28:07:aa:d7:3c:0b:8d:43:1d:d3:eb: 7d:3c:b3:3e:ab:79:93:ef:be:44:21:3c:8f:7a:88: 64:6c:5f:5f:2f:c0:9c:c4:25:fd:b6:04:b1:5e:80: 51:cc:4a:d5:fd:94:3a:2c:3c:f7:c1:f8:fc:2d:6f: 97:8b:76:f1:fe:26:01:d0:cf:65:86:59:54:77:c2: aa:8f:14:d0:75:47:21:3a:ed:86:3f:b7:12:6e:7d: af:e5:f2:08:9f:f2:43:92:c1:dd:b8:6c:65:e6:38: d5:e3:91:b2:e3:f2:c4:cd:9a:4f:45:51:e3:94:ea: f9:f6:e0:53:bb:33:4a:28:35:b6:1b:7b:b2:4b:e6: 26:b5:97:1e:5d:e2:1a:45:7a:b8:f9:9d:38:47:a0: 85:63:fc:60:19:4a:9e:c7:e7:95:5f:39:50:e0:27: 9a:d6:38:5b:c3:84:05:5c:ce:4d:19:e5:ff:3b:28: 1e:48:77:b2:ad:3a:fb:fd:31:6b:12:42:35:21:39: d6:df:f5:7a:81:c0:93:a2:b2:50:e3:ec:f2:0a:ba: 2e:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:F9:FF:63:EA:FB:9B:02:81:D1:E2:B9:A2:9E:2C:7E:13:CB:AE:A3 X509v3 Authority Key Identifier: keyid:85:77:90:4C:43:C2:A9:BE:11:8F:DD:D5:BA:7B:B8:B6:04:43:80:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXeQTEPCqb4Rj93Vunu4tgRDgP4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:1f:f4:53:e4:15:b3:14:68:68:80:66:39:4e:9d:92:83:d2: 79:f8:fa:19:d9:89:19:60:3a:eb:3b:62:1f:80:5e:e3:c8:8f: ef:6b:13:1d:7f:8f:9f:3a:d5:d7:93:0a:29:f9:dc:16:e0:80: c1:bd:00:af:d0:6b:f5:92:27:d0:ed:21:1c:cb:f2:6e:a3:9e: 13:38:ef:d1:bb:09:61:bb:a4:98:b2:99:79:88:6c:c9:29:04: 6c:b3:50:87:da:e8:18:8f:2f:9b:f3:a3:97:36:c5:71:52:4f: 1d:fb:3f:8c:a8:f7:d3:b2:29:84:25:6d:f5:bb:ba:3d:63:0c: 17:c5:38:6a:13:1b:51:26:07:63:68:bb:c5:c0:42:69:d2:e3: e4:29:89:e9:46:52:5e:e6:df:63:de:18:72:a2:9a:cf:0c:f7: b1:cb:f1:89:9e:1c:df:af:7e:e3:47:85:6b:7b:8f:b0:9f:54: c3:ef:77:43:de:bd:41:03:9d:c5:80:f1:4c:88:75:ea:96:19: 59:ac:84:f8:12:92:61:2b:5e:08:42:9a:86:3c:38:ef:e7:55: 54:31:19:71:1b:9b:f9:ed:61:b8:de:2c:77:82:87:be:11:dc: f3:d0:ea:67:e5:8e:d8:33:81:87:a4:2f:83:9d:81:78:74:93: 98:09:7f:f8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NUVFQTExMC8GA1UEBRMoODU3NzkwNEM0M0MyQTlCRTExOEZEREQ1QkE3QkI4QjYw NDQzODBGRTAeFw0yNTA3MDMwNzI2MzFaFw0yNTA3MTAwNzI2MzFaMBgxFjAUBgNV BAMTDTY4NjYzMGE3LWYwNmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCe93EL5syBKV+eM7Gt186CmrA5zlkyCO0/ZWq95h5FyRGMdRUic9vgT+pFLUZ XNIoB6rXPAuNQx3T6308sz6reZPvvkQhPI96iGRsX18vwJzEJf22BLFegFHMStX9 lDosPPfB+Pwtb5eLdvH+JgHQz2WGWVR3wqqPFNB1RyE67YY/txJufa/l8gif8kOS wd24bGXmONXjkbLj8sTNmk9FUeOU6vn24FO7M0ooNbYbe7JL5ia1lx5d4hpFerj5 nThHoIVj/GAZSp7H55VfOVDgJ5rWOFvDhAVczk0Z5f87KB5Id7KtOvv9MWsSQjUh Odbf9XqBwJOislDj7PIKui6/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUvPn/Y+r7 mwKB0eK5op4sfhPLrqMwHwYDVR0jBBgwFoAUhXeQTEPCqb4Rj93Vunu4tgRDgP4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1RUVBL0VDQTJDN0Q2RDRD RjExRUY5OERGOTgyQkM0RjlBRTAyL2hYZVFURVBDcWI0Umo5M1Z1bnU0dGdSRGdQ NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaFhlUVRFUENxYjRSajkzVnVudTR0Z1JEZ1A0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1 RUVBL0VDQTJDN0Q2RDRDRjExRUY5OERGOTgyQkM0RjlBRTAyL2hYZVFURVBDcWI0 Umo5M1Z1bnU0dGdSRGdQNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACQf9FPkFbMUaGiAZjlOnZKD0nn4+hnZiRlgOus7Yh+AXuPIj+9rEx1/ j5861deTCin53BbggMG9AK/Qa/WSJ9DtIRzL8m6jnhM479G7CWG7pJiymXmIbMkp BGyzUIfa6BiPL5vzo5c2xXFSTx37P4yo99OyKYQlbfW7uj1jDBfFOGoTG1EmB2No u8XAQmnS4+QpielGUl7m32PeGHKims8M97HL8YmeHN+vfuNHhWt7j7CfVMPvd0Pe vUEDncWA8UyIdeqWGVmshPgSkmErXghCmoY8OO/nVVQxGXEbm/ntYbjeLHeCh74R 3PPQ6mfljtgzgYekL4OdgXh0k5gJf/g= -----END CERTIFICATE-----Generated at Fri Jul 4 13:53:46 2025 by rpki-client