$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft File: lQfxHRNjrFs5Lzb17zgixc_NaPk.mft (raw, json) Hash identifier: cyeK1C8fW9hr8p6r0xhlIjgd2Wxz1OkO8jH2SGLxT+4= Subject key identifier: 4F:8A:E7:A6:F1:BA:1F:9F:14:C0:A3:71:5B:7E:45:3B:82:FB:54:65 Authority key identifier: 95:07:F1:1D:13:63:AC:5B:39:2F:36:F5:EF:38:22:C5:CF:CD:68:F9 Certificate issuer: /CN=A91EE8AC/serialNumber=9507F11D1363AC5B392F36F5EF3822C5CFCD68F9 Certificate serial: 01E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQfxHRNjrFs5Lzb17zgixc_NaPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft Manifest number: 02CC Signing time: Tue 01 Jul 2025 03:08:40 +0000 Manifest this update: Tue 01 Jul 2025 03:08:39 +0000 Manifest next update: Tue 08 Jul 2025 03:08:39 +0000 Files and hashes: 1: lQfxHRNjrFs5Lzb17zgixc_NaPk.crl (hash: VTHo1hTykxEeVQO7i//HREVsFjJD46YQEGRej2F8Ayo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.crl rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQfxHRNjrFs5Lzb17zgixc_NaPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 03:08:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 482 (0x1e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE8AC, serialNumber=9507F11D1363AC5B392F36F5EF3822C5CFCD68F9 Validity Not Before: Jul 1 03:08:39 2025 GMT Not After : Jul 8 03:08:39 2025 GMT Subject: CN=68635137-3d7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:97:8f:8c:3a:52:d2:d2:9b:7f:c4:65:7a:fc: c8:38:9f:22:c1:c7:73:e1:c2:0e:6a:79:e4:9b:4d: e2:f6:3e:dd:e3:af:a6:d8:0d:99:1a:29:5d:4a:13: fb:92:09:67:72:2c:4e:29:8c:a3:1e:ca:5c:98:06: 00:c3:52:fe:e5:a6:bb:6b:82:74:b5:6d:55:18:5d: d6:0e:91:d9:8a:41:59:4a:26:64:88:6c:e1:82:ae: 41:85:f9:f9:46:91:10:1b:fa:3e:ba:e2:16:f1:81: ed:e1:4c:de:48:47:31:60:5c:1c:64:0f:e7:d1:6d: 0c:43:d0:ad:3f:d3:00:42:41:a2:40:59:61:08:c5: 74:29:ee:79:1e:58:89:d2:d2:86:f0:41:0d:7e:40: b4:e5:b8:4c:3f:66:45:3d:2a:c5:2e:e9:ac:bf:34: b0:be:23:27:9b:83:3b:8d:30:32:02:b1:09:4a:92: 45:5c:f3:01:e1:d8:5b:f4:b9:d3:cd:3f:96:e5:6a: c0:cf:fc:91:29:18:b2:0c:8c:8d:9d:67:95:2c:ad: b7:70:0c:f3:8e:6d:17:b6:cb:f7:e0:90:93:4e:91: 7e:b5:79:4f:d1:30:10:a5:23:2d:36:bb:dc:f7:45: 77:23:88:9b:01:a8:92:3b:f9:b9:f8:fa:47:9d:b4: ed:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:8A:E7:A6:F1:BA:1F:9F:14:C0:A3:71:5B:7E:45:3B:82:FB:54:65 X509v3 Authority Key Identifier: keyid:95:07:F1:1D:13:63:AC:5B:39:2F:36:F5:EF:38:22:C5:CF:CD:68:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQfxHRNjrFs5Lzb17zgixc_NaPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:ae:35:2d:7f:e0:55:0a:ee:be:f0:fb:d0:95:56:24:ab:9d: 11:4c:c4:5e:33:b3:47:d4:d3:2c:fe:f6:21:e5:c9:f1:8f:62: 40:4a:86:f0:53:69:c4:d8:86:1a:c2:df:e3:80:7e:8f:5f:90: a5:de:94:04:98:02:b9:03:65:1b:b9:b0:d9:44:61:76:59:22: 88:b8:41:d3:c2:2d:43:1b:a8:1e:0c:a8:9c:1f:79:5c:10:c3: 7b:df:c1:34:5e:f6:38:e2:38:a0:89:82:c2:67:fe:58:06:d5: ec:d8:52:11:bf:78:01:60:30:63:b9:10:b4:1c:25:8f:31:ab: 4d:c3:8e:d4:d1:d9:da:ec:ed:52:a5:f6:8c:86:31:69:aa:46: 73:b6:b3:0f:2e:29:00:c2:7a:7e:1f:2e:db:5a:3f:22:3e:cf: 4d:bf:b1:94:a1:d9:e2:51:0a:f6:fe:3e:a4:30:c0:fa:47:e3: 5b:af:06:f2:68:f6:94:b0:00:67:25:7b:46:c4:1f:14:4a:64: b2:d0:40:f4:65:67:c6:00:b1:7d:59:65:34:9e:7c:f6:4d:53: 17:40:23:50:c2:35:8d:06:c4:4b:b1:49:28:78:f2:2a:f4:88: 85:7e:94:02:72:47:a2:ce:34:e4:4f:e5:3d:81:e3:dc:27:a1: 14:49:da:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUU4QUMxMTAvBgNVBAUTKDk1MDdGMTFEMTM2M0FDNUIzOTJGMzZGNUVGMzgyMkM1 Q0ZDRDY4RjkwHhcNMjUwNzAxMDMwODM5WhcNMjUwNzA4MDMwODM5WjAYMRYwFAYD VQQDEw02ODYzNTEzNy0zZDdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArJePjDpS0tKbf8RlevzIOJ8iwcdz4cIOannkm03i9j7d46+m2A2ZGildShP7 kglncixOKYyjHspcmAYAw1L+5aa7a4J0tW1VGF3WDpHZikFZSiZkiGzhgq5Bhfn5 RpEQG/o+uuIW8YHt4UzeSEcxYFwcZA/n0W0MQ9CtP9MAQkGiQFlhCMV0Ke55HliJ 0tKG8EENfkC05bhMP2ZFPSrFLumsvzSwviMnm4M7jTAyArEJSpJFXPMB4dhb9LnT zT+W5WrAz/yRKRiyDIyNnWeVLK23cAzzjm0Xtsv34JCTTpF+tXlP0TAQpSMtNrvc 90V3I4ibAaiSO/m5+PpHnbTtuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE+K56bx uh+fFMCjcVt+RTuC+1RlMB8GA1UdIwQYMBaAFJUH8R0TY6xbOS829e84IsXPzWj5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRThBQy81MDM4RUM4QzdE RUIxMUVEQTdDQTRBN0VDNEY5QUUwMi9sUWZ4SFJOanJGczVMemIxN3pnaXhjX05h UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xRZnhIUk5qckZzNUx6YjE3emdpeGNfTmFQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RThBQy81MDM4RUM4QzdERUIxMUVEQTdDQTRBN0VDNEY5QUUwMi9sUWZ4SFJOanJG czVMemIxN3pnaXhjX05hUGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgrjUtf+BVCu6+8PvQlVYkq50RTMReM7NH1NMs/vYh5cnxj2JASobw U2nE2IYawt/jgH6PX5Cl3pQEmAK5A2UbubDZRGF2WSKIuEHTwi1DG6geDKicH3lc EMN738E0XvY44jigiYLCZ/5YBtXs2FIRv3gBYDBjuRC0HCWPMatNw47U0dna7O1S pfaMhjFpqkZztrMPLikAwnp+Hy7bWj8iPs9Nv7GUodniUQr2/j6kMMD6R+Nbrwby aPaUsABnJXtGxB8USmSy0ED0ZWfGALF9WWU0nnz2TVMXQCNQwjWNBsRLsUkoePIq 9IiFfpQCckeizjTkT+U9gePcJ6EUSdqH -----END CERTIFICATE-----Generated at Wed Jul 2 14:58:31 2025 by rpki-client