$ rpki-client -vvf rpki.apnic.net/member_repository/A916EF5E/2CE494C08F9611EA9ACB7E7FC4F9AE02/1mk-41xy689CY8aYRW2C9o5xT1w.mft File: 1mk-41xy689CY8aYRW2C9o5xT1w.mft (raw, json) Hash identifier: 9f7ogDaXmDk/eFBiiJ5CTR0qpT5PlzeaGlk2GjHAp8M= Subject key identifier: 17:66:33:9E:B8:E0:7A:EE:B2:8B:CA:68:A5:6C:C6:2B:28:6C:69:17 Authority key identifier: D6:69:3E:E3:5C:72:EB:CF:42:63:C6:98:45:6D:82:F6:8E:71:4F:5C Certificate issuer: /CN=A916EF5E/serialNumber=D6693EE35C72EBCF4263C698456D82F68E714F5C Certificate serial: 0964 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1mk-41xy689CY8aYRW2C9o5xT1w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916EF5E/2CE494C08F9611EA9ACB7E7FC4F9AE02/1mk-41xy689CY8aYRW2C9o5xT1w.mft Manifest number: 0964 Signing time: Tue 08 Apr 2025 16:46:55 +0000 Manifest this update: Tue 08 Apr 2025 16:46:54 +0000 Manifest next update: Tue 15 Apr 2025 16:46:54 +0000 Files and hashes: 1: 1mk-41xy689CY8aYRW2C9o5xT1w.crl (hash: r47zW1qevq7zs9u6k/h78713yymoxocD0RbnBFCxv0o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916EF5E/2CE494C08F9611EA9ACB7E7FC4F9AE02/1mk-41xy689CY8aYRW2C9o5xT1w.crl rsync://rpki.apnic.net/member_repository/A916EF5E/2CE494C08F9611EA9ACB7E7FC4F9AE02/1mk-41xy689CY8aYRW2C9o5xT1w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1mk-41xy689CY8aYRW2C9o5xT1w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 16:46:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2404 (0x964) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916EF5E Validity Not Before: Apr 8 16:46:54 2025 GMT Not After : Apr 15 16:46:54 2025 GMT Subject: CN=67f552ff-63d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:64:21:d3:d9:4d:ac:d3:71:ae:f8:ad:4a:66: 82:eb:c1:d0:97:98:7c:0f:66:16:ae:a5:ef:d9:b3: 7b:70:30:cf:41:95:48:57:1c:31:42:02:97:40:9f: c3:d8:3a:b9:df:16:cd:82:71:99:32:f8:ef:7d:80: 5c:32:88:f9:4a:bd:3f:04:16:1a:fe:fb:a0:97:0c: 70:24:73:e2:52:01:2e:25:d0:24:c2:a8:ae:41:66: 9a:fd:4a:a3:b4:cc:28:b5:6b:c5:23:64:2e:69:d9: 2b:a7:88:d3:bc:c4:51:52:cd:01:d2:95:49:ad:f0: 68:0c:44:5e:80:14:bd:b1:60:cf:1b:3a:7c:c0:cf: cd:e5:da:0a:a3:76:81:29:e3:47:14:f7:09:7c:4c: 80:d7:45:48:6f:5e:87:e7:ab:e8:84:f5:ee:c2:94: 17:36:3a:79:7f:46:69:e8:ef:fb:55:00:4b:98:12: 10:ae:3c:fa:16:1e:12:d6:e6:c1:ff:77:cd:e5:89: 69:11:ed:c3:ce:1b:67:45:ab:87:3f:cb:bc:0d:da: de:58:f9:70:a0:8f:86:e8:c0:8d:f6:a5:2c:74:d5: fd:74:22:9b:d7:86:85:f8:16:d4:de:2e:82:1d:9c: 3e:19:48:5c:97:fc:7b:ad:e0:a8:f9:82:55:30:82: e2:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:66:33:9E:B8:E0:7A:EE:B2:8B:CA:68:A5:6C:C6:2B:28:6C:69:17 X509v3 Authority Key Identifier: keyid:D6:69:3E:E3:5C:72:EB:CF:42:63:C6:98:45:6D:82:F6:8E:71:4F:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916EF5E/2CE494C08F9611EA9ACB7E7FC4F9AE02/1mk-41xy689CY8aYRW2C9o5xT1w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1mk-41xy689CY8aYRW2C9o5xT1w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916EF5E/2CE494C08F9611EA9ACB7E7FC4F9AE02/1mk-41xy689CY8aYRW2C9o5xT1w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:da:28:e9:75:05:f6:c6:78:25:a1:01:63:05:fe:9e:67:46: 84:b9:15:17:4a:44:4d:c8:8e:29:41:bc:12:39:e2:df:f4:50: 9d:1b:2a:8d:57:2f:5f:36:4a:2c:79:ce:18:28:47:9b:16:48: 01:52:b0:75:9d:90:d9:d9:8f:f0:a8:9c:46:0b:db:43:2b:25: ab:4f:37:a3:35:bb:22:81:ee:ac:dc:68:46:7f:91:82:51:48: 3e:10:34:1c:7d:d8:24:a3:92:84:fa:5d:ce:0e:62:06:42:80: bd:03:64:b0:7e:6e:31:19:98:ad:e8:30:19:88:1b:f9:c1:05: 68:36:53:93:98:35:eb:7d:04:e5:80:0f:27:41:2f:cb:dc:1a: 9c:81:d3:51:ef:07:8b:ea:37:8e:5e:51:43:84:5d:22:16:12: 7c:10:bf:b0:4b:13:2a:a8:27:d5:b9:01:68:6c:b3:1f:91:5d: de:18:3f:77:2e:82:b1:76:28:d4:01:54:0c:4f:50:53:01:cf: 23:2e:fe:e9:fd:f3:62:de:df:5f:b1:60:28:42:bd:4b:b6:de: db:2b:d8:30:55:18:a4:b0:0b:f9:88:6a:7f:c4:8c:dd:e3:9b: bc:b9:8f:2f:ea:76:11:0d:04:1d:41:cb:58:d7:21:f4:b8:4b: fb:0b:43:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCWQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkVGNUUxMTAvBgNVBAUTKEQ2NjkzRUUzNUM3MkVCQ0Y0MjYzQzY5ODQ1NkQ4MkY2 OEU3MTRGNUMwHhcNMjUwNDA4MTY0NjU0WhcNMjUwNDE1MTY0NjU0WjAYMRYwFAYD VQQDEw02N2Y1NTJmZi02M2Q0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5mQh09lNrNNxrvitSmaC68HQl5h8D2YWrqXv2bN7cDDPQZVIVxwxQgKXQJ/D 2Dq53xbNgnGZMvjvfYBcMoj5Sr0/BBYa/vuglwxwJHPiUgEuJdAkwqiuQWaa/Uqj tMwotWvFI2Quadkrp4jTvMRRUs0B0pVJrfBoDERegBS9sWDPGzp8wM/N5doKo3aB KeNHFPcJfEyA10VIb16H56vohPXuwpQXNjp5f0Zp6O/7VQBLmBIQrjz6Fh4S1ubB /3fN5YlpEe3DzhtnRauHP8u8DdreWPlwoI+G6MCN9qUsdNX9dCKb14aF+BbU3i6C HZw+GUhcl/x7reCo+YJVMILiKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBdmM564 4HrusovKaKVsxisobGkXMB8GA1UdIwQYMBaAFNZpPuNccuvPQmPGmEVtgvaOcU9c MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RUY1RS8yQ0U0OTRDMDhG OTYxMUVBOUFDQjdFN0ZDNEY5QUUwMi8xbWstNDF4eTY4OUNZOGFZUlcyQzlvNXhU MXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzFtay00MXh5Njg5Q1k4YVlSVzJDOW81eFQxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RUY1RS8yQ0U0OTRDMDhGOTYxMUVBOUFDQjdFN0ZDNEY5QUUwMi8xbWstNDF4eTY4 OUNZOGFZUlcyQzlvNXhUMXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB12ijpdQX2xngloQFjBf6eZ0aEuRUXSkRNyI4pQbwSOeLf9FCdGyqN Vy9fNkosec4YKEebFkgBUrB1nZDZ2Y/wqJxGC9tDKyWrTzejNbsige6s3GhGf5GC UUg+EDQcfdgko5KE+l3ODmIGQoC9A2Swfm4xGZit6DAZiBv5wQVoNlOTmDXrfQTl gA8nQS/L3BqcgdNR7weL6jeOXlFDhF0iFhJ8EL+wSxMqqCfVuQFobLMfkV3eGD93 LoKxdijUAVQMT1BTAc8jLv7p/fNi3t9fsWAoQr1Ltt7bK9gwVRiksAv5iGp/xIzd 45u8uY8v6nYRDQQdQctY1yH0uEv7C0Pv -----END CERTIFICATE-----Generated at Thu Apr 10 23:47:33 2025 by rpki-client