$ rpki-client -vvf rpki.apnic.net/member_repository/A9111EE2/420F630A1D9F11E2A72FBB8F08B02CD2/L-xEr8Mx34paY6L1hB6AnZey99A.mft File: L-xEr8Mx34paY6L1hB6AnZey99A.mft (raw, json) Hash identifier: zAM6/uIAOFEbkDbfhNbFx3wvq7d+80GSfZYn9hr27k0= Subject key identifier: 8A:D3:E4:E3:C6:8C:7C:4B:C8:8E:19:9C:0F:59:C8:05:46:9F:7B:53 Authority key identifier: 2F:EC:44:AF:C3:31:DF:8A:5A:63:A2:F5:84:1E:80:9D:97:B2:F7:D0 Certificate issuer: /CN=A9111EE2/serialNumber=2FEC44AFC331DF8A5A63A2F5841E809D97B2F7D0 Certificate serial: 3484 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L-xEr8Mx34paY6L1hB6AnZey99A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111EE2/420F630A1D9F11E2A72FBB8F08B02CD2/L-xEr8Mx34paY6L1hB6AnZey99A.mft Manifest number: 3484 Signing time: Fri 30 May 2025 15:07:07 +0000 Manifest this update: Fri 30 May 2025 15:07:07 +0000 Manifest next update: Fri 06 Jun 2025 15:07:07 +0000 Files and hashes: 1: L-xEr8Mx34paY6L1hB6AnZey99A.crl (hash: 3ixDpTtIZjGg14jCeeXH3xLN3HCeEch0tygWLACXfOs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111EE2/420F630A1D9F11E2A72FBB8F08B02CD2/L-xEr8Mx34paY6L1hB6AnZey99A.crl rsync://rpki.apnic.net/member_repository/A9111EE2/420F630A1D9F11E2A72FBB8F08B02CD2/L-xEr8Mx34paY6L1hB6AnZey99A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L-xEr8Mx34paY6L1hB6AnZey99A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 15:07:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13444 (0x3484) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111EE2, serialNumber=2FEC44AFC331DF8A5A63A2F5841E809D97B2F7D0 Validity Not Before: May 30 15:07:07 2025 GMT Not After : Jun 6 15:07:07 2025 GMT Subject: CN=6839c99b-f428 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:1d:f8:0a:fb:cb:38:1c:40:97:a5:80:95:82: 08:1a:e2:f0:70:72:c3:11:e5:4d:b8:16:07:b3:d2: f3:dc:cf:4f:6b:49:f3:81:ac:29:ba:5c:4b:29:82: b9:c6:5b:45:a3:61:59:85:d1:1d:07:32:8c:24:d3: b0:fd:4b:29:cc:dc:4a:e2:33:5a:39:64:eb:8c:46: 0d:40:39:7d:01:63:5c:3f:5a:c1:4b:3a:0c:ad:23: 05:97:2a:39:70:75:ff:25:58:ca:5f:7f:57:02:5b: 4a:6f:72:d6:ab:84:53:a6:8d:bd:57:23:db:62:37: 64:47:f4:f3:36:e2:6e:fc:d6:67:00:dd:27:b1:0d: ad:1f:b2:9d:d2:11:e4:50:0c:e1:63:e9:58:90:2f: 93:08:18:b6:02:9c:1b:5f:f5:97:ee:00:9e:9c:be: 9f:ec:0d:69:52:2a:26:9c:cf:58:a6:95:73:61:c8: 8b:e5:ef:80:a5:b6:52:55:71:e9:51:7b:8b:3c:26: 60:16:f6:cd:c3:31:f1:d4:71:f8:8d:3b:d8:d6:c2: 00:e9:d1:e3:ec:00:44:3c:f3:46:17:53:e8:e6:68: 6d:19:f0:19:44:32:64:44:a9:39:c6:3e:03:68:04: d7:90:32:d0:63:8f:f0:53:0e:0e:48:d8:c2:19:c8: 7d:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:D3:E4:E3:C6:8C:7C:4B:C8:8E:19:9C:0F:59:C8:05:46:9F:7B:53 X509v3 Authority Key Identifier: keyid:2F:EC:44:AF:C3:31:DF:8A:5A:63:A2:F5:84:1E:80:9D:97:B2:F7:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111EE2/420F630A1D9F11E2A72FBB8F08B02CD2/L-xEr8Mx34paY6L1hB6AnZey99A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L-xEr8Mx34paY6L1hB6AnZey99A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111EE2/420F630A1D9F11E2A72FBB8F08B02CD2/L-xEr8Mx34paY6L1hB6AnZey99A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:07:ad:47:cc:b3:4d:b6:59:84:77:7a:14:00:9d:1c:f2:7b: 68:de:58:92:aa:ab:31:6b:d7:c8:6b:33:e1:77:18:17:ff:fa: 19:da:21:12:58:62:cd:64:c4:8b:f1:bc:99:dd:ae:95:84:25: af:04:5d:50:9b:40:c4:ff:94:55:56:af:a5:1d:2a:e7:af:84: 08:13:86:fc:1e:79:af:3e:0f:9c:ba:4e:68:26:fb:c2:87:db: b1:00:07:c1:d2:d1:08:bd:eb:57:f3:c6:52:ab:d5:9a:43:6d: 6f:d5:0e:ff:c2:0e:d0:6e:af:0b:b6:79:1a:6f:bd:ba:13:fe: f1:db:ae:5b:e2:09:e8:68:57:a2:53:21:ed:10:10:8e:16:45: eb:fc:c9:15:37:79:b1:62:18:0c:bf:23:5c:80:a0:15:e6:15: 43:07:19:88:66:18:bf:8d:df:cd:82:24:b8:8d:91:56:c5:4e: 40:3e:a9:e1:b6:d4:ea:c8:8f:2c:af:7a:f4:27:4b:07:f5:aa: eb:c6:6b:d8:59:51:33:6f:9f:a9:cd:a6:8e:62:0f:a8:c6:10: 79:e7:46:e4:14:8e:8c:97:59:b8:80:13:7b:86:8c:06:35:68: cb:e7:3f:bd:68:0f:da:a1:cd:90:ea:4f:60:d7:c7:18:5f:c3: 78:1a:6d:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNIQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTFFRTIxMTAvBgNVBAUTKDJGRUM0NEFGQzMzMURGOEE1QTYzQTJGNTg0MUU4MDlE OTdCMkY3RDAwHhcNMjUwNTMwMTUwNzA3WhcNMjUwNjA2MTUwNzA3WjAYMRYwFAYD VQQDEw02ODM5Yzk5Yi1mNDI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2R34CvvLOBxAl6WAlYIIGuLwcHLDEeVNuBYHs9Lz3M9Pa0nzgawpulxLKYK5 xltFo2FZhdEdBzKMJNOw/UspzNxK4jNaOWTrjEYNQDl9AWNcP1rBSzoMrSMFlyo5 cHX/JVjKX39XAltKb3LWq4RTpo29VyPbYjdkR/TzNuJu/NZnAN0nsQ2tH7Kd0hHk UAzhY+lYkC+TCBi2ApwbX/WX7gCenL6f7A1pUiomnM9YppVzYciL5e+ApbZSVXHp UXuLPCZgFvbNwzHx1HH4jTvY1sIA6dHj7ABEPPNGF1Po5mhtGfAZRDJkRKk5xj4D aATXkDLQY4/wUw4OSNjCGch9MQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIrT5OPG jHxLyI4ZnA9ZyAVGn3tTMB8GA1UdIwQYMBaAFC/sRK/DMd+KWmOi9YQegJ2XsvfQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMUVFMi80MjBGNjMwQTFE OUYxMUUyQTcyRkJCOEYwOEIwMkNEMi9MLXhFcjhNeDM0cGFZNkwxaEI2QW5aZXk5 OUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0wteEVyOE14MzRwYVk2TDFoQjZBblpleTk5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MUVFMi80MjBGNjMwQTFEOUYxMUUyQTcyRkJCOEYwOEIwMkNEMi9MLXhFcjhNeDM0 cGFZNkwxaEI2QW5aZXk5OUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkB61HzLNNtlmEd3oUAJ0c8nto3liSqqsxa9fIazPhdxgX//oZ2iES WGLNZMSL8byZ3a6VhCWvBF1Qm0DE/5RVVq+lHSrnr4QIE4b8HnmvPg+cuk5oJvvC h9uxAAfB0tEIvetX88ZSq9WaQ21v1Q7/wg7Qbq8Ltnkab726E/7x265b4gnoaFei UyHtEBCOFkXr/MkVN3mxYhgMvyNcgKAV5hVDBxmIZhi/jd/NgiS4jZFWxU5APqnh ttTqyI8sr3r0J0sH9arrxmvYWVEzb5+pzaaOYg+oxhB550bkFI6Ml1m4gBN7howG NWjL5z+9aA/aoc2Q6k9g18cYX8N4Gm3h -----END CERTIFICATE-----Generated at Sat May 31 16:30:35 2025 by rpki-client