$ rpki-client -vvf rpki.apnic.net/member_repository/A915EAAF/F3F18B2C1D8E11E2A314A2ED08B02CD2/5MpluNDHsWXZwip6vfgapm-q1NE.mft File: 5MpluNDHsWXZwip6vfgapm-q1NE.mft (raw, json) Hash identifier: 5XsSHU6F9UYHzFsskibbvnKjAlhvyeQmtcTfJmJlz/s= Subject key identifier: 2E:46:12:B4:ED:F9:7E:31:C2:82:81:DA:A6:5A:7A:F1:67:07:9E:55 Authority key identifier: E4:CA:65:B8:D0:C7:B1:65:D9:C2:2A:7A:BD:F8:1A:A6:6F:AA:D4:D1 Certificate issuer: /CN=A915EAAF/serialNumber=E4CA65B8D0C7B165D9C22A7ABDF81AA66FAAD4D1 Certificate serial: 349E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5MpluNDHsWXZwip6vfgapm-q1NE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915EAAF/F3F18B2C1D8E11E2A314A2ED08B02CD2/5MpluNDHsWXZwip6vfgapm-q1NE.mft Manifest number: 349E Signing time: Sun 20 Jul 2025 14:41:21 +0000 Manifest this update: Sun 20 Jul 2025 14:41:21 +0000 Manifest next update: Sun 27 Jul 2025 14:41:21 +0000 Files and hashes: 1: 5MpluNDHsWXZwip6vfgapm-q1NE.crl (hash: RjkphSMsemo6zC7PKH6Un4PMUvJkkvdZ4NryaP/pZA8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915EAAF/F3F18B2C1D8E11E2A314A2ED08B02CD2/5MpluNDHsWXZwip6vfgapm-q1NE.crl rsync://rpki.apnic.net/member_repository/A915EAAF/F3F18B2C1D8E11E2A314A2ED08B02CD2/5MpluNDHsWXZwip6vfgapm-q1NE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5MpluNDHsWXZwip6vfgapm-q1NE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:41:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13470 (0x349e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915EAAF, serialNumber=E4CA65B8D0C7B165D9C22A7ABDF81AA66FAAD4D1 Validity Not Before: Jul 20 14:41:21 2025 GMT Not After : Jul 27 14:41:21 2025 GMT Subject: CN=687d0011-f4f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:2b:8d:ec:b7:5e:ac:a9:9d:37:fb:95:61:2d: 79:34:01:32:fa:73:2a:99:5c:e1:91:49:9c:c7:de: 02:51:07:87:91:4a:b3:0b:82:96:ee:f7:bf:34:32: ca:d6:28:57:84:78:8b:7a:26:3a:46:0e:76:92:47: 94:eb:5d:49:cd:e3:40:3d:c4:a4:bf:60:49:8f:41: dc:40:82:de:74:96:06:c3:8b:8c:58:48:61:63:b3: 2a:5d:f5:fa:e7:74:12:9c:bf:4d:2c:0a:7a:c4:0b: 5e:a9:8c:1f:c2:4d:66:8d:db:2a:02:ad:ab:b6:7f: 82:16:a1:ca:17:05:f4:1a:e1:72:53:1b:0c:c1:68: 77:ea:0a:0d:93:5c:48:9d:47:f9:06:ac:7c:bf:3d: 93:5f:ae:03:b7:64:17:fa:8f:11:7c:84:49:60:b9: 50:52:16:20:d2:5a:fd:8e:40:cb:6f:c2:4a:5a:57: 91:06:a1:c7:e5:67:15:b7:ab:4a:2d:f6:77:12:9b: 01:31:78:67:2a:a6:01:b5:9a:38:72:8a:71:bf:8c: 7a:4f:0b:b7:4f:73:fb:80:7b:07:4f:b0:ef:92:a7: 88:39:ca:df:ed:99:e1:c0:8c:b9:37:e2:d1:91:8e: 6e:64:c1:6f:54:e5:e2:68:25:e8:f0:01:da:5a:9e: c9:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:46:12:B4:ED:F9:7E:31:C2:82:81:DA:A6:5A:7A:F1:67:07:9E:55 X509v3 Authority Key Identifier: keyid:E4:CA:65:B8:D0:C7:B1:65:D9:C2:2A:7A:BD:F8:1A:A6:6F:AA:D4:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915EAAF/F3F18B2C1D8E11E2A314A2ED08B02CD2/5MpluNDHsWXZwip6vfgapm-q1NE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5MpluNDHsWXZwip6vfgapm-q1NE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915EAAF/F3F18B2C1D8E11E2A314A2ED08B02CD2/5MpluNDHsWXZwip6vfgapm-q1NE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:b5:b0:91:51:70:ef:b6:c9:30:29:22:bd:2f:43:be:f7:60: 1f:77:d1:2e:b5:89:c3:b0:bf:8a:df:d8:e5:f1:1c:a8:7e:0b: ac:73:8d:6a:08:45:63:5d:f9:2c:ba:3a:63:3e:ad:5a:c5:a6: 6f:b5:c0:dc:70:c9:33:55:ed:b6:ee:f5:90:7c:3c:c1:06:b3: 50:e5:81:6f:56:14:1f:e2:9c:b2:93:38:58:7a:19:05:c9:8e: 13:07:0b:c1:61:7d:ef:44:56:80:59:25:82:10:2b:eb:c2:f7: dd:a5:ca:47:ab:86:0c:c7:23:ae:bc:ae:b0:30:7f:de:ea:1b: e9:02:6a:86:f7:1f:21:75:ce:d6:e8:7a:12:d1:e5:c5:a2:cd: a0:b7:b1:98:b7:23:f2:09:5a:0d:04:bc:b0:c7:b1:7f:63:22: a2:c3:1a:31:91:5d:1f:5b:7d:12:dc:c0:5b:31:46:cd:ad:7d: ad:a7:94:07:12:a6:1c:90:60:93:ab:ae:f5:94:26:36:e9:e7: 00:08:ca:a9:80:95:a9:9e:d5:34:45:18:30:36:61:f9:e5:16: 04:b9:04:bf:45:a2:a1:7d:f8:f0:72:5f:14:87:c6:b4:2d:ae: 75:fb:86:24:78:54:c1:94:88:df:5b:23:91:4a:31:f0:51:34: 5c:d6:3d:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUVBQUYxMTAvBgNVBAUTKEU0Q0E2NUI4RDBDN0IxNjVEOUMyMkE3QUJERjgxQUE2 NkZBQUQ0RDEwHhcNMjUwNzIwMTQ0MTIxWhcNMjUwNzI3MTQ0MTIxWjAYMRYwFAYD VQQDEw02ODdkMDAxMS1mNGYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2iuN7LderKmdN/uVYS15NAEy+nMqmVzhkUmcx94CUQeHkUqzC4KW7ve/NDLK 1ihXhHiLeiY6Rg52kkeU611JzeNAPcSkv2BJj0HcQILedJYGw4uMWEhhY7MqXfX6 53QSnL9NLAp6xAteqYwfwk1mjdsqAq2rtn+CFqHKFwX0GuFyUxsMwWh36goNk1xI nUf5Bqx8vz2TX64Dt2QX+o8RfIRJYLlQUhYg0lr9jkDLb8JKWleRBqHH5WcVt6tK LfZ3EpsBMXhnKqYBtZo4copxv4x6Twu3T3P7gHsHT7DvkqeIOcrf7ZnhwIy5N+LR kY5uZMFvVOXiaCXo8AHaWp7JDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC5GErTt +X4xwoKB2qZaevFnB55VMB8GA1UdIwQYMBaAFOTKZbjQx7Fl2cIqer34GqZvqtTR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RUFBRi9GM0YxOEIyQzFE OEUxMUUyQTMxNEEyRUQwOEIwMkNEMi81TXBsdU5ESHNXWFp3aXA2dmZnYXBtLXEx TkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVNcGx1TkRIc1dYWndpcDZ2ZmdhcG0tcTFORS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RUFBRi9GM0YxOEIyQzFEOEUxMUUyQTMxNEEyRUQwOEIwMkNEMi81TXBsdU5ESHNX WFp3aXA2dmZnYXBtLXExTkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhtbCRUXDvtskwKSK9L0O+92Afd9EutYnDsL+K39jl8Ryofgusc41q CEVjXfksujpjPq1axaZvtcDccMkzVe227vWQfDzBBrNQ5YFvVhQf4pyykzhYehkF yY4TBwvBYX3vRFaAWSWCECvrwvfdpcpHq4YMxyOuvK6wMH/e6hvpAmqG9x8hdc7W 6HoS0eXFos2gt7GYtyPyCVoNBLywx7F/YyKiwxoxkV0fW30S3MBbMUbNrX2tp5QH EqYckGCTq671lCY26ecACMqpgJWpntU0RRgwNmH55RYEuQS/RaKhffjwcl8Uh8a0 La51+4YkeFTBlIjfWyORSjHwUTRc1j38 -----END CERTIFICATE-----Generated at Mon Jul 21 13:24:29 2025 by rpki-client