$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.mft File: hXeQTEPCqb4Rj93Vunu4tgRDgP4.mft (raw, json) Hash identifier: 8dGvSO8wgwAC0Xspr1PsepkZxkRA/HwVqE68vFT0wSU= Subject key identifier: E4:DD:C8:F1:89:58:BB:AA:F2:DF:84:32:FC:53:64:D6:D4:D4:A1:D5 Authority key identifier: 85:77:90:4C:43:C2:A9:BE:11:8F:DD:D5:BA:7B:B8:B6:04:43:80:FE Certificate issuer: /CN=A91E5EEA/serialNumber=8577904C43C2A9BE118FDDD5BA7BB8B6044380FE Certificate serial: 70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXeQTEPCqb4Rj93Vunu4tgRDgP4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.mft Manifest number: 70 Signing time: Sat 23 Aug 2025 07:07:31 +0000 Manifest this update: Sat 23 Aug 2025 07:07:30 +0000 Manifest next update: Sat 30 Aug 2025 07:07:30 +0000 Files and hashes: 1: hXeQTEPCqb4Rj93Vunu4tgRDgP4.crl (hash: SX289jRGeTngwn2SObENee5hxyI0y4UkdxMIKRmQkTc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.crl rsync://rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXeQTEPCqb4Rj93Vunu4tgRDgP4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:07:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 112 (0x70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5EEA, serialNumber=8577904C43C2A9BE118FDDD5BA7BB8B6044380FE Validity Not Before: Aug 23 07:07:30 2025 GMT Not After : Aug 30 07:07:30 2025 GMT Subject: CN=68a968b2-c1f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:1e:f2:93:c2:b0:75:72:c7:4d:33:0c:76:c8: 83:94:a3:e3:ef:aa:7c:cc:78:61:b6:8a:15:f0:af: 59:88:22:14:5f:e6:98:d1:96:f4:ea:3f:24:3b:e5: fb:e8:e4:0a:b2:f2:76:ca:9e:d6:34:ee:3c:47:b0: 9d:f7:7e:b7:37:26:03:83:6b:c8:87:7e:b6:8b:c8: d8:8f:89:68:da:2e:f9:92:0e:42:35:3b:5f:b5:ac: 57:dc:13:25:37:62:f5:8d:46:8d:70:75:77:62:fb: 21:94:59:14:de:6d:58:28:cc:3e:d4:0b:d7:19:43: 75:fd:37:bf:26:51:0c:a1:6c:12:16:1e:92:39:dc: 83:27:37:f9:3d:37:5b:11:02:35:97:9f:a0:17:a1: 63:8a:1f:7b:2a:37:0e:79:0a:1c:4b:f8:a8:22:75: 58:6a:de:45:7c:04:9f:f5:76:3c:1f:3b:93:3e:6a: 4b:75:e8:d1:63:bf:9c:85:74:c7:fb:49:a5:69:de: f5:31:b3:fc:bf:81:05:29:3c:d2:1c:ba:96:88:f3: 1c:9c:b3:a6:4c:50:f1:1b:ae:2f:70:b2:ec:39:0c: 3e:52:fa:6f:e9:68:94:7f:05:ae:82:9d:9b:54:58: 6f:7a:c8:46:58:6a:eb:16:54:31:45:61:be:ad:81: 3e:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:DD:C8:F1:89:58:BB:AA:F2:DF:84:32:FC:53:64:D6:D4:D4:A1:D5 X509v3 Authority Key Identifier: keyid:85:77:90:4C:43:C2:A9:BE:11:8F:DD:D5:BA:7B:B8:B6:04:43:80:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXeQTEPCqb4Rj93Vunu4tgRDgP4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:26:fc:3f:67:8d:91:da:4b:5a:9a:2b:f0:14:b8:19:07:f7: b1:2e:a4:51:3e:7a:d0:74:01:29:1a:4f:02:96:c6:18:09:cb: 2b:3d:1e:0f:42:d4:9e:eb:56:65:62:9a:51:c3:98:d0:9b:99: ef:7c:5d:f2:82:a8:2b:14:75:7b:74:20:c9:e5:89:71:5b:66: 05:df:95:95:7e:45:92:f2:72:80:0f:5a:41:4f:91:d9:6d:7f: 2b:91:d3:23:aa:e5:49:04:86:7b:6d:e2:7b:8f:b6:0d:ea:da: 41:60:21:5a:87:c0:08:4d:1d:95:26:c6:fb:1f:93:6a:0a:b3: 9c:e0:dc:dd:6f:df:9f:6b:67:6b:24:0c:40:db:c5:dd:d2:bd: 84:33:a4:89:d0:88:61:55:46:95:ec:b2:3a:27:b0:0d:6d:82: 62:62:6c:55:ba:b2:cf:08:9d:31:e5:73:1b:19:20:5a:4b:b1: 15:8c:2f:58:2a:b9:22:2a:7e:4d:d2:42:9a:85:3d:b4:9f:40: c6:c1:0f:89:1c:60:ca:7f:10:6a:64:05:20:c4:68:54:e6:f4: fb:a9:3c:86:52:be:b7:64:49:59:46:12:83:25:26:74:97:81: 48:7a:5c:c8:54:ed:d8:37:0f:97:96:f2:f0:a3:e6:30:59:1e: fb:5b:04:4e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NUVFQTExMC8GA1UEBRMoODU3NzkwNEM0M0MyQTlCRTExOEZEREQ1QkE3QkI4QjYw NDQzODBGRTAeFw0yNTA4MjMwNzA3MzBaFw0yNTA4MzAwNzA3MzBaMBgxFjAUBgNV BAMTDTY4YTk2OGIyLWMxZjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDrHvKTwrB1csdNMwx2yIOUo+PvqnzMeGG2ihXwr1mIIhRf5pjRlvTqPyQ75fvo 5Aqy8nbKntY07jxHsJ33frc3JgODa8iHfraLyNiPiWjaLvmSDkI1O1+1rFfcEyU3 YvWNRo1wdXdi+yGUWRTebVgozD7UC9cZQ3X9N78mUQyhbBIWHpI53IMnN/k9N1sR AjWXn6AXoWOKH3sqNw55ChxL+KgidVhq3kV8BJ/1djwfO5M+akt16NFjv5yFdMf7 SaVp3vUxs/y/gQUpPNIcupaI8xycs6ZMUPEbri9wsuw5DD5S+m/paJR/Ba6CnZtU WG96yEZYausWVDFFYb6tgT7LAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU5N3I8YlY u6ry34Qy/FNk1tTUodUwHwYDVR0jBBgwFoAUhXeQTEPCqb4Rj93Vunu4tgRDgP4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1RUVBL0VDQTJDN0Q2RDRD RjExRUY5OERGOTgyQkM0RjlBRTAyL2hYZVFURVBDcWI0Umo5M1Z1bnU0dGdSRGdQ NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaFhlUVRFUENxYjRSajkzVnVudTR0Z1JEZ1A0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1 RUVBL0VDQTJDN0Q2RDRDRjExRUY5OERGOTgyQkM0RjlBRTAyL2hYZVFURVBDcWI0 Umo5M1Z1bnU0dGdSRGdQNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFUm/D9njZHaS1qaK/AUuBkH97EupFE+etB0ASkaTwKWxhgJyys9Hg9C 1J7rVmVimlHDmNCbme98XfKCqCsUdXt0IMnliXFbZgXflZV+RZLycoAPWkFPkdlt fyuR0yOq5UkEhntt4nuPtg3q2kFgIVqHwAhNHZUmxvsfk2oKs5zg3N1v359rZ2sk DEDbxd3SvYQzpInQiGFVRpXssjonsA1tgmJibFW6ss8InTHlcxsZIFpLsRWML1gq uSIqfk3SQpqFPbSfQMbBD4kcYMp/EGpkBSDEaFTm9PupPIZSvrdkSVlGEoMlJnSX gUh6XMhU7dg3D5eW8vCj5jBZHvtbBE4= -----END CERTIFICATE-----Generated at Sun Aug 24 00:02:32 2025 by rpki-client