$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4F3C/8A55A6A41DA611E2B91CD29D08B02CD2/MHrUXgG4R5-iKKEj3nr6pdGXwX0.mft File: MHrUXgG4R5-iKKEj3nr6pdGXwX0.mft (raw, json) Hash identifier: TRKOK15GPRn1hIWKUAuyOmSXwHRRBezQD+z8LKPHigQ= Subject key identifier: 8F:FF:E8:B4:85:F0:80:B1:DA:EA:D6:B5:F6:0E:0E:D3:21:BB:B2:B3 Authority key identifier: 30:7A:D4:5E:01:B8:47:9F:A2:28:A1:23:DE:7A:FA:A5:D1:97:C1:7D Certificate issuer: /CN=A91B4F3C/serialNumber=307AD45E01B8479FA228A123DE7AFAA5D197C17D Certificate serial: 3470 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MHrUXgG4R5-iKKEj3nr6pdGXwX0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4F3C/8A55A6A41DA611E2B91CD29D08B02CD2/MHrUXgG4R5-iKKEj3nr6pdGXwX0.mft Manifest number: 3470 Signing time: Wed 16 Apr 2025 15:12:20 +0000 Manifest this update: Wed 16 Apr 2025 15:12:19 +0000 Manifest next update: Wed 23 Apr 2025 15:12:19 +0000 Files and hashes: 1: MHrUXgG4R5-iKKEj3nr6pdGXwX0.crl (hash: iiErQ5Dat7ypW7uBvVn+UWuZMgbG0ia2W8PDb4e9qY4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4F3C/8A55A6A41DA611E2B91CD29D08B02CD2/MHrUXgG4R5-iKKEj3nr6pdGXwX0.crl rsync://rpki.apnic.net/member_repository/A91B4F3C/8A55A6A41DA611E2B91CD29D08B02CD2/MHrUXgG4R5-iKKEj3nr6pdGXwX0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MHrUXgG4R5-iKKEj3nr6pdGXwX0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Apr 2025 15:12:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13424 (0x3470) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4F3C, serialNumber=307AD45E01B8479FA228A123DE7AFAA5D197C17D Validity Not Before: Apr 16 15:12:19 2025 GMT Not After : Apr 23 15:12:19 2025 GMT Subject: CN=67ffc8d4-201f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:39:7f:ea:25:ec:65:26:66:d1:4f:f9:ed:83: 56:67:2f:80:21:b9:d6:06:f5:c7:de:4d:6b:58:79: 44:a0:c9:1f:da:29:b0:9f:f5:2f:03:06:89:9c:fe: f0:50:b9:e8:7b:d3:29:ce:63:61:6b:35:92:1a:51: 21:4d:c3:3c:a3:86:ab:ec:d4:d7:e5:81:f1:d5:64: cd:f7:16:09:98:a9:55:a3:43:f4:02:18:7a:d8:b4: 54:d0:03:ce:03:8f:3d:a9:53:09:72:df:66:49:ec: b5:86:14:3e:e1:93:ed:9a:00:ec:b6:bd:e2:e8:50: 4b:b2:23:cc:e6:06:85:08:ea:28:54:0f:c4:77:78: 31:d5:a0:78:e7:f4:b5:68:6d:e8:01:22:c3:94:94: 9f:9a:07:cb:cc:4c:d7:39:ac:e7:bd:eb:66:71:7c: 48:01:0a:d0:a3:11:5e:40:96:59:2c:a7:5d:a8:79: 53:8d:ea:2b:b0:5d:c1:f7:e9:9f:78:9e:29:f6:ab: e7:b0:85:d8:70:8d:36:85:63:c7:63:e1:57:30:0c: 8d:4f:62:f4:c2:b7:6a:df:4e:5f:95:e2:31:f3:70: 79:e2:0e:03:fe:ce:bd:32:b1:50:60:e6:4c:47:cc: 96:60:e4:e2:a3:81:bf:f6:81:a6:a5:e1:d3:6c:a8: 59:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:FF:E8:B4:85:F0:80:B1:DA:EA:D6:B5:F6:0E:0E:D3:21:BB:B2:B3 X509v3 Authority Key Identifier: keyid:30:7A:D4:5E:01:B8:47:9F:A2:28:A1:23:DE:7A:FA:A5:D1:97:C1:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4F3C/8A55A6A41DA611E2B91CD29D08B02CD2/MHrUXgG4R5-iKKEj3nr6pdGXwX0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MHrUXgG4R5-iKKEj3nr6pdGXwX0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4F3C/8A55A6A41DA611E2B91CD29D08B02CD2/MHrUXgG4R5-iKKEj3nr6pdGXwX0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e0:f7:f0:5e:f9:58:0f:8a:7d:a3:12:76:f3:1f:da:b0:05:a8: d8:6a:8c:93:ff:c9:24:74:e4:25:54:f9:0e:e1:f0:e1:26:00: b7:42:15:50:58:bb:d5:f0:09:ba:ec:34:3a:91:93:6b:4b:e9: 73:4a:5e:2f:2d:1c:eb:67:f6:a5:0e:c4:b3:3b:81:b7:42:21: 1c:02:4b:6f:90:95:72:6d:13:ea:ad:48:07:05:fb:07:73:8c: f3:76:66:a5:9b:c2:fd:49:9d:45:1a:97:b2:45:5f:ce:e2:44: a0:5e:7c:32:ac:1c:74:0c:b0:ce:41:c3:66:ec:d2:26:2a:59: 88:69:7c:26:3b:30:43:70:45:b3:b6:9a:c5:fc:f3:dd:dd:6f: 29:bb:24:e9:aa:9e:dc:78:51:75:8b:1f:7c:23:9d:26:00:4e: 12:7a:fa:f5:7d:92:06:af:b1:42:7b:12:cc:9a:cb:7c:fd:e3: cb:a4:dc:a8:87:d5:c7:1c:94:55:9f:36:d8:15:f9:4e:b8:78: ca:94:45:c6:68:39:c0:1d:ea:1c:34:6b:3c:f6:63:07:ef:31: ad:44:a3:17:7f:f3:c6:57:a3:9f:25:2f:d4:4b:e4:f6:11:67: db:3d:37:95:e0:ca:4a:33:1c:7a:26:dd:39:0b:6a:c7:f1:a1: 38:e6:d1:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNHAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjRGM0MxMTAvBgNVBAUTKDMwN0FENDVFMDFCODQ3OUZBMjI4QTEyM0RFN0FGQUE1 RDE5N0MxN0QwHhcNMjUwNDE2MTUxMjE5WhcNMjUwNDIzMTUxMjE5WjAYMRYwFAYD VQQDEw02N2ZmYzhkNC0yMDFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyzl/6iXsZSZm0U/57YNWZy+AIbnWBvXH3k1rWHlEoMkf2imwn/UvAwaJnP7w ULnoe9MpzmNhazWSGlEhTcM8o4ar7NTX5YHx1WTN9xYJmKlVo0P0Ahh62LRU0APO A489qVMJct9mSey1hhQ+4ZPtmgDstr3i6FBLsiPM5gaFCOooVA/Ed3gx1aB45/S1 aG3oASLDlJSfmgfLzEzXOaznvetmcXxIAQrQoxFeQJZZLKddqHlTjeorsF3B9+mf eJ4p9qvnsIXYcI02hWPHY+FXMAyNT2L0wrdq305fleIx83B54g4D/s69MrFQYOZM R8yWYOTio4G/9oGmpeHTbKhZtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI//6LSF 8ICx2urWtfYODtMhu7KzMB8GA1UdIwQYMBaAFDB61F4BuEefoiihI956+qXRl8F9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNEYzQy84QTU1QTZBNDFE QTYxMUUyQjkxQ0QyOUQwOEIwMkNEMi9NSHJVWGdHNFI1LWlLS0VqM25yNnBkR1h3 WDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01IclVYZ0c0UjUtaUtLRWozbnI2cGRHWHdYMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NEYzQy84QTU1QTZBNDFEQTYxMUUyQjkxQ0QyOUQwOEIwMkNEMi9NSHJVWGdHNFI1 LWlLS0VqM25yNnBkR1h3WDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDg9/Be+VgPin2jEnbzH9qwBajYaoyT/8kkdOQlVPkO4fDhJgC3QhVQ WLvV8Am67DQ6kZNrS+lzSl4vLRzrZ/alDsSzO4G3QiEcAktvkJVybRPqrUgHBfsH c4zzdmalm8L9SZ1FGpeyRV/O4kSgXnwyrBx0DLDOQcNm7NImKlmIaXwmOzBDcEWz tprF/PPd3W8puyTpqp7ceFF1ix98I50mAE4Sevr1fZIGr7FCexLMmst8/ePLpNyo h9XHHJRVnzbYFflOuHjKlEXGaDnAHeocNGs89mMH7zGtRKMXf/PGV6OfJS/US+T2 EWfbPTeV4MpKMxx6Jt05C2rH8aE45tGX -----END CERTIFICATE-----Generated at Fri Apr 18 00:31:05 2025 by rpki-client