$ rpki-client -vvf rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft File: 5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft (raw, json) Hash identifier: buoB1YntkuPRTXfckW4fH21CaXYEJE9BisU5BKzpBhg= Subject key identifier: 9A:46:5D:7E:11:5B:D2:BB:FE:63:0D:45:B4:69:AC:5E:FC:F6:AC:AC Authority key identifier: E7:3F:B8:86:8D:D3:B4:61:EA:1A:67:3C:7A:36:94:52:35:E9:CA:AE Certificate issuer: /CN=A91FCEB1/serialNumber=E73FB8868DD3B461EA1A673C7A36945235E9CAAE Certificate serial: 0725 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5z-4ho3TtGHqGmc8ejaUUjXpyq4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft Manifest number: 21BB Signing time: Fri 08 Aug 2025 16:02:48 +0000 Manifest this update: Fri 08 Aug 2025 16:02:48 +0000 Manifest next update: Fri 15 Aug 2025 16:02:48 +0000 Files and hashes: 1: 5z-4ho3TtGHqGmc8ejaUUjXpyq4.crl (hash: QGhkZBBQ8E7gzPJtFx5YEnn6x3BvkTWDEI+DrRl/5PY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.crl rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5z-4ho3TtGHqGmc8ejaUUjXpyq4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1829 (0x725) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FCEB1, serialNumber=E73FB8868DD3B461EA1A673C7A36945235E9CAAE Validity Not Before: Aug 8 16:02:48 2025 GMT Not After : Aug 15 16:02:48 2025 GMT Subject: CN=68961fa8-a27a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:42:77:96:e8:b8:dc:da:1f:a2:cb:99:85:5d: d2:c2:2b:95:29:0d:6b:47:4a:3c:48:b7:d3:b6:5c: 84:51:14:74:f5:93:a4:44:bd:d0:39:0a:f6:13:9f: 51:e2:71:e0:31:eb:d0:79:3a:2d:9f:81:7b:9f:8c: 34:1d:fe:a1:f3:d6:10:bc:37:aa:4a:78:8a:e7:95: 59:0d:22:98:b2:a9:98:ef:8e:90:e8:83:b8:42:7a: 82:77:f1:5f:3e:2a:d5:f6:31:5d:37:5a:c9:e3:59: f5:73:eb:01:68:fa:f7:39:ed:06:f1:1e:a5:b7:14: 43:24:7f:93:e6:4b:da:52:30:f4:6c:9d:db:37:1f: 9c:5d:7d:3f:6e:95:ea:6d:7d:ea:9b:37:27:3a:3a: d1:97:bb:65:8d:d0:c9:5e:ec:de:b3:86:43:fc:5a: 7c:8a:19:93:e9:68:45:a1:0b:63:68:24:48:a2:d8: f5:29:2a:f8:41:33:8b:51:dd:42:b3:cb:6d:25:7a: a2:58:11:b6:1e:38:ea:3a:40:47:18:67:7e:21:f8: 1c:ec:2a:ad:e1:b3:04:c4:66:4f:0a:64:92:80:c5: 66:6b:d2:ea:cc:a1:da:ef:39:42:ec:47:d1:b8:53: 72:a7:07:60:80:e0:48:cc:33:fb:d7:a8:2c:17:14: d9:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:46:5D:7E:11:5B:D2:BB:FE:63:0D:45:B4:69:AC:5E:FC:F6:AC:AC X509v3 Authority Key Identifier: keyid:E7:3F:B8:86:8D:D3:B4:61:EA:1A:67:3C:7A:36:94:52:35:E9:CA:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5z-4ho3TtGHqGmc8ejaUUjXpyq4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:c3:b5:64:dc:45:3c:4a:ff:4c:46:43:8b:dc:75:7e:87:e0: ae:be:ba:cd:3b:74:db:42:c2:4a:20:b1:2f:6f:6e:aa:29:44: 5c:0f:55:d6:39:a9:35:03:73:66:b2:f0:3a:7e:b3:39:ff:ca: 36:93:3e:7b:99:c7:8f:b8:d2:aa:7b:23:24:1c:7c:67:16:60: 0f:7a:c9:fe:25:ea:0f:a4:0b:98:b0:ad:19:a9:53:6e:53:c7: 98:5e:0f:8d:00:08:b9:85:68:f9:e5:46:07:bd:35:b8:90:68: 8f:48:09:24:5a:50:68:ee:7c:5b:a3:ba:9b:e3:c0:4b:ba:0c: 11:d7:4e:45:71:11:4d:d9:aa:7b:a3:a2:a7:47:51:99:00:f5: f5:85:92:cd:02:8c:aa:63:2b:3c:cd:7a:b2:b9:40:8b:df:8f: fc:df:a9:e7:c3:01:ff:a5:fb:49:0f:e4:83:88:0f:a2:63:2b: 14:1f:6e:8b:50:37:11:3c:47:52:11:c3:20:a4:0c:8b:f1:fb: 87:55:9e:38:e3:f0:e7:8e:23:fa:f2:c4:94:2b:12:04:56:9d: da:91:8f:e2:31:c5:ed:3e:e8:19:6e:60:73:1c:31:10:71:23: 3a:45:58:76:d9:f5:f6:9e:33:ba:21:f8:a1:68:cb:b3:92:cc: c0:37:de:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICByUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkNFQjExMTAvBgNVBAUTKEU3M0ZCODg2OEREM0I0NjFFQTFBNjczQzdBMzY5NDUy MzVFOUNBQUUwHhcNMjUwODA4MTYwMjQ4WhcNMjUwODE1MTYwMjQ4WjAYMRYwFAYD VQQDEw02ODk2MWZhOC1hMjdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7kJ3lui43NofosuZhV3SwiuVKQ1rR0o8SLfTtlyEURR09ZOkRL3QOQr2E59R 4nHgMevQeTotn4F7n4w0Hf6h89YQvDeqSniK55VZDSKYsqmY746Q6IO4QnqCd/Ff PirV9jFdN1rJ41n1c+sBaPr3Oe0G8R6ltxRDJH+T5kvaUjD0bJ3bNx+cXX0/bpXq bX3qmzcnOjrRl7tljdDJXuzes4ZD/Fp8ihmT6WhFoQtjaCRIotj1KSr4QTOLUd1C s8ttJXqiWBG2HjjqOkBHGGd+Ifgc7Cqt4bMExGZPCmSSgMVma9LqzKHa7zlC7EfR uFNypwdggOBIzDP716gsFxTZBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJpGXX4R W9K7/mMNRbRprF789qysMB8GA1UdIwQYMBaAFOc/uIaN07Rh6hpnPHo2lFI16cqu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQ0VCMS85QzE0QjQwNjNB MjExMUU3OUFBMEQ1MUNDNEY5QUUwMi81ei00aG8zVHRHSHFHbWM4ZWphVVVqWHB5 cTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzV6LTRobzNUdEdIcUdtYzhlamFVVWpYcHlxNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Q0VCMS85QzE0QjQwNjNBMjExMUU3OUFBMEQ1MUNDNEY5QUUwMi81ei00aG8zVHRH SHFHbWM4ZWphVVVqWHB5cTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAww7Vk3EU8Sv9MRkOL3HV+h+CuvrrNO3TbQsJKILEvb26qKURcD1XW Oak1A3NmsvA6frM5/8o2kz57mcePuNKqeyMkHHxnFmAPesn+JeoPpAuYsK0ZqVNu U8eYXg+NAAi5hWj55UYHvTW4kGiPSAkkWlBo7nxbo7qb48BLugwR105FcRFN2ap7 o6KnR1GZAPX1hZLNAoyqYys8zXqyuUCL34/836nnwwH/pftJD+SDiA+iYysUH26L UDcRPEdSEcMgpAyL8fuHVZ444/DnjiP68sSUKxIEVp3akY/iMcXtPugZbmBzHDEQ cSM6RVh22fX2njO6IfihaMuzkszAN96/ -----END CERTIFICATE-----Generated at Sun Aug 10 03:53:41 2025 by rpki-client