$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBBAF/191A638636DD11F096862166C4F9AE02/ep7epfyIL4Z-ujeIm807O7SsYjE.mft File: ep7epfyIL4Z-ujeIm807O7SsYjE.mft (raw, json) Hash identifier: n0v0/fK+wdXocEHZLdw1FL7CltjKEl0CeK4hyO29iTY= Subject key identifier: 71:98:AA:50:E3:AD:E3:89:BA:D2:B8:02:B1:0A:AB:A7:61:CA:82:E0 Authority key identifier: 7A:9E:DE:A5:FC:88:2F:86:7E:BA:37:88:9B:CD:3B:3B:B4:AC:62:31 Certificate issuer: /CN=A91EBBAF/serialNumber=7A9EDEA5FC882F867EBA37889BCD3B3BB4AC6231 Certificate serial: 15 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ep7epfyIL4Z-ujeIm807O7SsYjE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBBAF/191A638636DD11F096862166C4F9AE02/ep7epfyIL4Z-ujeIm807O7SsYjE.mft Manifest number: 15 Signing time: Tue 01 Jul 2025 08:47:52 +0000 Manifest this update: Tue 01 Jul 2025 08:47:52 +0000 Manifest next update: Tue 08 Jul 2025 08:47:52 +0000 Files and hashes: 1: ep7epfyIL4Z-ujeIm807O7SsYjE.crl (hash: mgrX9ITNYlsspjnIPCCHVXO81bv9U5by7X+QY6JLl7Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBBAF/191A638636DD11F096862166C4F9AE02/ep7epfyIL4Z-ujeIm807O7SsYjE.crl rsync://rpki.apnic.net/member_repository/A91EBBAF/191A638636DD11F096862166C4F9AE02/ep7epfyIL4Z-ujeIm807O7SsYjE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ep7epfyIL4Z-ujeIm807O7SsYjE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 08:47:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21 (0x15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBBAF, serialNumber=7A9EDEA5FC882F867EBA37889BCD3B3BB4AC6231 Validity Not Before: Jul 1 08:47:52 2025 GMT Not After : Jul 8 08:47:52 2025 GMT Subject: CN=6863a0b8-0f0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:3a:6d:82:ae:d2:65:47:a2:58:18:d8:4c:7c: 54:c4:3b:7a:66:60:94:ac:cf:ea:11:c4:fb:5b:6f: 53:9a:0a:de:96:17:6e:5e:da:e5:10:cc:e4:29:cb: 8e:38:99:ee:f9:62:4c:d4:fa:a4:74:73:58:c8:92: 15:ee:f6:35:4b:c3:dd:63:c5:25:f8:c0:66:96:b6: bf:ed:79:eb:5f:64:36:ea:69:5f:85:68:29:ec:13: 36:eb:31:c9:d5:d8:49:08:44:11:ec:6c:d9:28:fb: 82:64:54:34:14:b9:6d:0f:b9:78:63:17:25:8e:ca: 56:a0:91:ed:f2:98:1a:f3:ba:d7:5a:a4:4c:f3:d9: ad:9c:f6:1a:8d:15:31:31:7e:bc:5c:b1:dd:a1:8b: 51:40:95:8f:1c:91:8a:80:48:84:e0:3b:2b:b7:be: db:d6:2b:47:3b:2d:80:eb:45:ba:24:e0:ea:c4:24: fc:06:e8:c5:c5:8b:5d:84:e0:3b:4a:cb:9d:79:24: 24:09:02:87:8f:c8:86:74:b6:64:ce:9c:e3:c1:54: 50:15:75:5c:4c:ae:3b:37:0f:51:7c:22:e4:66:0c: 3b:15:00:51:37:1c:8c:ae:6c:c1:52:24:4a:50:a9: 09:28:7c:34:39:7f:12:30:fb:c2:b3:75:00:a5:50: 23:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:98:AA:50:E3:AD:E3:89:BA:D2:B8:02:B1:0A:AB:A7:61:CA:82:E0 X509v3 Authority Key Identifier: keyid:7A:9E:DE:A5:FC:88:2F:86:7E:BA:37:88:9B:CD:3B:3B:B4:AC:62:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBBAF/191A638636DD11F096862166C4F9AE02/ep7epfyIL4Z-ujeIm807O7SsYjE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ep7epfyIL4Z-ujeIm807O7SsYjE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBBAF/191A638636DD11F096862166C4F9AE02/ep7epfyIL4Z-ujeIm807O7SsYjE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:41:28:8e:dc:b4:52:3a:4d:36:d9:57:a7:58:18:a6:5c:09: 06:5d:81:77:94:86:95:40:df:ae:a9:66:09:10:fd:eb:50:b2: 2e:b0:01:05:91:dc:af:98:1a:02:58:50:4f:70:84:e0:28:7f: fd:6a:3a:e0:b4:64:52:31:b0:66:11:0e:fe:78:8d:5d:89:47: e5:7e:a7:ef:49:2f:12:44:56:f1:8c:69:aa:cb:d1:36:65:d6: 4b:99:fe:1b:52:83:92:4f:4d:61:1c:cd:e0:13:11:ff:82:55: 13:2e:4f:87:90:48:8d:e9:c7:9e:31:ba:4f:63:ec:ed:82:03: 1a:78:e2:9f:dc:2a:26:80:28:cf:68:98:76:8b:aa:ba:1c:61: 6b:ab:ca:cb:2a:f9:cc:08:61:94:7e:44:cd:a7:be:e2:21:72: 48:bf:42:68:27:dc:01:89:af:27:89:e9:83:64:c5:d8:97:e0: 11:55:0f:db:a2:cf:b7:2c:c5:fb:95:0a:09:bd:94:a1:28:77: 21:74:e5:76:1e:6f:a2:d4:87:c6:4e:4c:90:c3:08:9a:c2:f6: 5f:0c:89:0c:d2:2b:bb:11:6d:65:87:dc:d5:c7:52:ce:e4:1d: 86:3e:2e:ce:88:96:0b:5b:12:4e:37:36:1d:59:12:6f:11:a1: 07:e4:23:d2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QkJBRjExMC8GA1UEBRMoN0E5RURFQTVGQzg4MkY4NjdFQkEzNzg4OUJDRDNCM0JC NEFDNjIzMTAeFw0yNTA3MDEwODQ3NTJaFw0yNTA3MDgwODQ3NTJaMBgxFjAUBgNV BAMTDTY4NjNhMGI4LTBmMGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDWOm2CrtJlR6JYGNhMfFTEO3pmYJSsz+oRxPtbb1OaCt6WF25e2uUQzOQpy444 me75YkzU+qR0c1jIkhXu9jVLw91jxSX4wGaWtr/teetfZDbqaV+FaCnsEzbrMcnV 2EkIRBHsbNko+4JkVDQUuW0PuXhjFyWOylagke3ymBrzutdapEzz2a2c9hqNFTEx frxcsd2hi1FAlY8ckYqASITgOyu3vtvWK0c7LYDrRbok4OrEJPwG6MXFi12E4DtK y515JCQJAoePyIZ0tmTOnOPBVFAVdVxMrjs3D1F8IuRmDDsVAFE3HIyubMFSJEpQ qQkofDQ5fxIw+8KzdQClUCNJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUcZiqUOOt 44m60rgCsQqrp2HKguAwHwYDVR0jBBgwFoAUep7epfyIL4Z+ujeIm807O7SsYjEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVCQkFGLzE5MUE2Mzg2MzZE RDExRjA5Njg2MjE2NkM0RjlBRTAyL2VwN2VwZnlJTDRaLXVqZUltODA3TzdTc1lq RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZXA3ZXBmeUlMNFotdWplSW04MDdPN1NzWWpFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVC QkFGLzE5MUE2Mzg2MzZERDExRjA5Njg2MjE2NkM0RjlBRTAyL2VwN2VwZnlJTDRa LXVqZUltODA3TzdTc1lqRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAFBKI7ctFI6TTbZV6dYGKZcCQZdgXeUhpVA366pZgkQ/etQsi6wAQWR 3K+YGgJYUE9whOAof/1qOuC0ZFIxsGYRDv54jV2JR+V+p+9JLxJEVvGMaarL0TZl 1kuZ/htSg5JPTWEczeATEf+CVRMuT4eQSI3px54xuk9j7O2CAxp44p/cKiaAKM9o mHaLqrocYWuryssq+cwIYZR+RM2nvuIhcki/Qmgn3AGJryeJ6YNkxdiX4BFVD9ui z7csxfuVCgm9lKEodyF05XYeb6LUh8ZOTJDDCJrC9l8MiQzSK7sRbWWH3NXHUs7k HYY+Ls6IlgtbEk43Nh1ZEm8RoQfkI9I= -----END CERTIFICATE-----Generated at Tue Jul 1 22:40:51 2025 by rpki-client