$ rpki-client -vvf rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/4hlMc0IL1P2sKL9jO7OvjNcg0LE.mft File: 4hlMc0IL1P2sKL9jO7OvjNcg0LE.mft (raw, json) Hash identifier: YQYHeUphdlueiCc/fq4PjFPY4DLBdPpFxtz9ZFqRI7c= Subject key identifier: 9E:10:F5:7D:CE:04:E3:47:BF:0C:54:D9:D7:AB:64:BC:99:7D:EE:12 Authority key identifier: E2:19:4C:73:42:0B:D4:FD:AC:28:BF:63:3B:B3:AF:8C:D7:20:D0:B1 Certificate issuer: /CN=A91536B7/serialNumber=E2194C73420BD4FDAC28BF633BB3AF8CD720D0B1 Certificate serial: 71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hlMc0IL1P2sKL9jO7OvjNcg0LE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/4hlMc0IL1P2sKL9jO7OvjNcg0LE.mft Manifest number: 5072 Signing time: Mon 04 Aug 2025 16:33:16 +0000 Manifest this update: Mon 04 Aug 2025 16:33:16 +0000 Manifest next update: Mon 11 Aug 2025 16:33:15 +0000 Files and hashes: 1: 4hlMc0IL1P2sKL9jO7OvjNcg0LE.crl (hash: dk/rkmOgiVfgZMPWJLSATOf+ktXNKMPjnuNYZ6RSYx8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/4hlMc0IL1P2sKL9jO7OvjNcg0LE.crl rsync://rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/4hlMc0IL1P2sKL9jO7OvjNcg0LE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hlMc0IL1P2sKL9jO7OvjNcg0LE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 16:33:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 113 (0x71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91536B7, serialNumber=E2194C73420BD4FDAC28BF633BB3AF8CD720D0B1 Validity Not Before: Aug 4 16:33:16 2025 GMT Not After : Aug 11 16:33:15 2025 GMT Subject: CN=6890e0cc-ead6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:c6:d4:7e:41:28:45:67:40:47:60:5a:0c:05: 0c:bb:16:7e:35:4f:fa:2a:10:00:40:3b:f4:91:58: dc:5e:81:37:27:1a:f4:0d:46:38:57:96:67:dc:ac: 50:07:6d:47:9c:0e:aa:47:3c:0f:42:a9:7c:57:36: d7:2d:23:bf:a9:3a:54:7b:ad:fc:86:7e:dd:fe:09: 3e:b3:11:76:0f:95:66:08:8d:18:14:53:e7:66:b0: 2f:ea:47:85:96:37:08:62:84:fc:62:4f:c4:08:90: 56:2a:4a:2b:4a:92:e2:e1:8d:0c:fb:23:70:a0:16: e4:1f:5c:99:ea:94:a2:84:a6:37:98:f9:d5:70:a9: 91:21:5d:4a:3b:e6:a1:fa:6b:69:72:a0:80:84:76: 61:97:31:78:9d:2c:e1:5d:49:ef:b0:45:44:73:9a: 35:79:d3:90:bb:89:b4:7c:94:bc:e4:a6:ff:41:4f: 85:f0:ef:b1:75:10:0f:a4:85:9e:b4:ad:4a:02:2e: 38:dc:8d:96:99:46:f1:0d:3b:5c:69:84:48:c7:01: ca:ca:c5:49:5d:05:be:78:77:1b:4c:e8:f7:48:0b: c3:9f:18:ba:e2:8c:ff:96:b6:42:8f:f1:c4:4b:9d: 16:91:3a:30:3f:b1:45:fc:70:1c:36:62:ee:fe:1e: 62:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:10:F5:7D:CE:04:E3:47:BF:0C:54:D9:D7:AB:64:BC:99:7D:EE:12 X509v3 Authority Key Identifier: keyid:E2:19:4C:73:42:0B:D4:FD:AC:28:BF:63:3B:B3:AF:8C:D7:20:D0:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/4hlMc0IL1P2sKL9jO7OvjNcg0LE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hlMc0IL1P2sKL9jO7OvjNcg0LE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/4hlMc0IL1P2sKL9jO7OvjNcg0LE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:97:4a:db:cd:a9:fc:7d:1d:56:02:c3:c7:77:26:29:ad:d6: dd:20:40:82:61:d3:17:f5:e2:ec:d5:9e:69:0d:e8:7a:c7:f9: c8:8c:59:a6:ed:4f:5e:57:05:e1:68:30:d1:12:17:0c:4e:d0: 32:63:c9:c2:d4:47:f9:6c:9e:65:81:52:b5:e0:cf:cf:b5:1a: b6:60:23:d3:cb:32:99:0c:d6:6d:2c:85:11:76:b7:96:01:6f: a7:33:9f:48:d4:c2:90:00:b7:75:f6:06:c2:e8:25:22:e0:3b: e0:ac:0d:e3:16:19:58:49:65:34:b6:5b:91:20:b0:4c:c8:0d: 4c:70:80:65:c0:a6:6f:4a:13:76:30:21:79:b9:cf:65:75:4c: b0:d1:90:e7:81:84:7d:30:6d:42:42:25:20:fa:71:3e:c1:74: 55:7a:15:05:2f:96:b0:1b:17:0b:5f:b3:35:a5:59:aa:58:13: 1c:ec:64:00:a6:7b:ea:5c:a8:31:ab:17:c4:c2:a5:6c:43:12: 69:de:75:8c:9a:97:c8:d9:2a:bd:0e:05:df:02:56:f4:8e:73: dd:57:81:fb:1f:0c:1e:66:65:ae:19:c2:49:a1:7b:87:ad:b4: 4b:ab:80:2d:4e:52:a8:30:86:8e:02:d4:11:9b:f6:d2:6a:4f: 8a:d9:47:4c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 MzZCNzExMC8GA1UEBRMoRTIxOTRDNzM0MjBCRDRGREFDMjhCRjYzM0JCM0FGOENE NzIwRDBCMTAeFw0yNTA4MDQxNjMzMTZaFw0yNTA4MTExNjMzMTVaMBgxFjAUBgNV BAMTDTY4OTBlMGNjLWVhZDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGxtR+QShFZ0BHYFoMBQy7Fn41T/oqEABAO/SRWNxegTcnGvQNRjhXlmfcrFAH bUecDqpHPA9CqXxXNtctI7+pOlR7rfyGft3+CT6zEXYPlWYIjRgUU+dmsC/qR4WW NwhihPxiT8QIkFYqSitKkuLhjQz7I3CgFuQfXJnqlKKEpjeY+dVwqZEhXUo75qH6 a2lyoICEdmGXMXidLOFdSe+wRURzmjV505C7ibR8lLzkpv9BT4Xw77F1EA+khZ60 rUoCLjjcjZaZRvENO1xphEjHAcrKxUldBb54dxtM6PdIC8OfGLrijP+WtkKP8cRL nRaROjA/sUX8cBw2Yu7+HmLnAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUnhD1fc4E 40e/DFTZ16tkvJl97hIwHwYDVR0jBBgwFoAU4hlMc0IL1P2sKL9jO7OvjNcg0LEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUzNkI3L0YxQ0QyN0I0NzNB RDExRTdBQ0JEMDI1RUM0RjlBRTAyLzRobE1jMElMMVAyc0tMOWpPN092ak5jZzBM RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNGhsTWMwSUwxUDJzS0w5ak83T3ZqTmNnMExFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUz NkI3L0YxQ0QyN0I0NzNBRDExRTdBQ0JEMDI1RUM0RjlBRTAyLzRobE1jMElMMVAy c0tMOWpPN092ak5jZzBMRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHKXStvNqfx9HVYCw8d3Jimt1t0gQIJh0xf14uzVnmkN6HrH+ciMWabt T15XBeFoMNESFwxO0DJjycLUR/lsnmWBUrXgz8+1GrZgI9PLMpkM1m0shRF2t5YB b6czn0jUwpAAt3X2BsLoJSLgO+CsDeMWGVhJZTS2W5EgsEzIDUxwgGXApm9KE3Yw IXm5z2V1TLDRkOeBhH0wbUJCJSD6cT7BdFV6FQUvlrAbFwtfszWlWapYExzsZACm e+pcqDGrF8TCpWxDEmnedYyal8jZKr0OBd8CVvSOc91XgfsfDB5mZa4Zwkmhe4et tEurgC1OUqgwho4C1BGb9tJqT4rZR0w= -----END CERTIFICATE-----Generated at Wed Aug 6 10:09:49 2025 by rpki-client