$ rpki-client -vvf rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/9US5wrG96hw7N0NIuNFeNn5qD0I.mft File: 9US5wrG96hw7N0NIuNFeNn5qD0I.mft (raw, json) Hash identifier: TEtrYFPm//EBzRzil6clsQXPQoWoX9JKO7syBCzjiAc= Subject key identifier: B8:11:E3:11:6D:33:6E:AE:1F:0C:CC:6B:D3:88:78:3A:7B:CA:54:41 Authority key identifier: F5:44:B9:C2:B1:BD:EA:1C:3B:37:43:48:B8:D1:5E:36:7E:6A:0F:42 Certificate issuer: /CN=A91139AB/serialNumber=F544B9C2B1BDEA1C3B374348B8D15E367E6A0F42 Certificate serial: 0750 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9US5wrG96hw7N0NIuNFeNn5qD0I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/9US5wrG96hw7N0NIuNFeNn5qD0I.mft Manifest number: 0875 Signing time: Fri 30 May 2025 21:52:22 +0000 Manifest this update: Fri 30 May 2025 21:52:21 +0000 Manifest next update: Fri 06 Jun 2025 21:52:21 +0000 Files and hashes: 1: 9US5wrG96hw7N0NIuNFeNn5qD0I.crl (hash: r62g2unLGF+6qWP1sUSjwS1zZPseYuzYRD7hmOWcMcE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/9US5wrG96hw7N0NIuNFeNn5qD0I.crl rsync://rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/9US5wrG96hw7N0NIuNFeNn5qD0I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9US5wrG96hw7N0NIuNFeNn5qD0I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:52:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1872 (0x750) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91139AB, serialNumber=F544B9C2B1BDEA1C3B374348B8D15E367E6A0F42 Validity Not Before: May 30 21:52:21 2025 GMT Not After : Jun 6 21:52:21 2025 GMT Subject: CN=683a2896-a673 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:81:d3:9c:a6:c5:08:23:56:a7:de:6f:8f:0a: cc:35:ea:06:ee:9c:8e:f9:df:5f:9c:5d:ee:4b:3a: 19:55:dc:ad:8f:ee:c8:8d:2e:aa:60:02:d8:5d:1a: 51:11:e4:d2:ef:45:9e:a4:24:87:14:65:c4:a9:f0: 89:2e:26:72:9e:8c:e6:29:75:02:19:7b:5b:c5:08: 65:f5:b6:85:d5:20:a5:6d:2e:0a:2d:22:82:5c:d1: 45:bc:e2:f9:5a:7b:15:be:f1:86:57:fa:04:0c:5f: c3:8e:f2:64:aa:bf:59:da:0c:e7:c5:f7:54:89:93: 3e:79:05:60:7c:04:64:ae:02:03:e1:82:ee:87:e3: 73:54:98:6c:26:c3:8e:dd:11:9a:14:56:c8:9c:d1: 07:d4:e8:c7:fa:8b:66:31:f5:7b:d9:f7:61:4f:09: 17:ce:7e:df:11:53:ab:cd:b9:22:b9:55:6c:77:a9: 3f:67:cd:73:4d:89:31:53:e5:3b:bf:b9:4f:67:9f: ea:99:0e:c9:1b:1d:93:cc:82:bf:f6:c5:91:59:97: bb:d2:bc:4f:2b:52:76:22:e2:53:a1:f9:d1:dd:7f: 8b:39:49:1c:7e:99:38:0b:ff:3c:60:59:26:02:22: 5b:57:d4:49:89:17:aa:4b:20:72:53:22:5b:3b:e2: 3b:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:11:E3:11:6D:33:6E:AE:1F:0C:CC:6B:D3:88:78:3A:7B:CA:54:41 X509v3 Authority Key Identifier: keyid:F5:44:B9:C2:B1:BD:EA:1C:3B:37:43:48:B8:D1:5E:36:7E:6A:0F:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/9US5wrG96hw7N0NIuNFeNn5qD0I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9US5wrG96hw7N0NIuNFeNn5qD0I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/9US5wrG96hw7N0NIuNFeNn5qD0I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:60:18:b1:97:94:a7:fe:fc:fc:58:16:c2:67:76:4d:1d:6e: e1:5e:1c:14:c3:44:7c:77:be:7b:e6:15:fc:b6:a3:df:ff:64: 72:0b:2b:9b:2a:39:d5:cb:38:89:c2:a0:af:22:b1:ed:d2:12: af:22:69:82:2b:c9:0f:8e:a1:a8:86:17:f8:26:b8:e2:d8:e5: 3d:27:31:18:26:9f:b1:04:0e:e9:13:ed:20:d6:9e:cf:e2:ac: 3c:ed:b5:4f:b3:2c:4c:68:1b:9d:62:62:0b:f2:d8:bc:74:98: f5:47:0c:a4:51:77:42:9b:5c:74:52:4a:4a:35:ac:9d:04:65: 0b:01:97:c5:8e:a2:ac:59:f2:39:d5:4d:99:fe:83:2c:00:e4: a8:9c:a9:70:45:f3:fa:00:88:ca:62:3e:20:9f:9f:7c:8a:05: 71:22:d7:f9:f3:3f:24:dc:16:49:44:d7:8c:3f:29:99:5e:f3: cd:2b:2f:63:ed:c1:e4:7f:7f:eb:d9:1f:d3:a7:2b:54:09:a3: 6e:be:15:81:e7:65:dc:13:aa:b0:ab:12:40:dc:91:32:e3:24: 2c:0a:bf:d5:b2:49:bd:19:78:9e:1b:bf:87:03:00:45:eb:e6: 94:36:86:2b:82:ed:e1:41:07:f3:d0:3c:e3:88:fa:ee:d2:88: 6b:61:9b:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB1AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTM5QUIxMTAvBgNVBAUTKEY1NDRCOUMyQjFCREVBMUMzQjM3NDM0OEI4RDE1RTM2 N0U2QTBGNDIwHhcNMjUwNTMwMjE1MjIxWhcNMjUwNjA2MjE1MjIxWjAYMRYwFAYD VQQDEw02ODNhMjg5Ni1hNjczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy4HTnKbFCCNWp95vjwrMNeoG7pyO+d9fnF3uSzoZVdytj+7IjS6qYALYXRpR EeTS70WepCSHFGXEqfCJLiZynozmKXUCGXtbxQhl9baF1SClbS4KLSKCXNFFvOL5 WnsVvvGGV/oEDF/DjvJkqr9Z2gznxfdUiZM+eQVgfARkrgID4YLuh+NzVJhsJsOO 3RGaFFbInNEH1OjH+otmMfV72fdhTwkXzn7fEVOrzbkiuVVsd6k/Z81zTYkxU+U7 v7lPZ5/qmQ7JGx2TzIK/9sWRWZe70rxPK1J2IuJTofnR3X+LOUkcfpk4C/88YFkm AiJbV9RJiReqSyByUyJbO+I7TQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLgR4xFt M26uHwzMa9OIeDp7ylRBMB8GA1UdIwQYMBaAFPVEucKxveocOzdDSLjRXjZ+ag9C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMzlBQi8xNThENDkwNjI1 NUIxMUVCQTlGNTYwMUFDNEY5QUUwMi85VVM1d3JHOTZodzdOME5JdU5GZU5uNXFE MEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlVUzV3ckc5Nmh3N04wTkl1TkZlTm41cUQwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MzlBQi8xNThENDkwNjI1NUIxMUVCQTlGNTYwMUFDNEY5QUUwMi85VVM1d3JHOTZo dzdOME5JdU5GZU5uNXFEMEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFYBixl5Sn/vz8WBbCZ3ZNHW7hXhwUw0R8d7575hX8tqPf/2RyCyub KjnVyziJwqCvIrHt0hKvImmCK8kPjqGohhf4Jrji2OU9JzEYJp+xBA7pE+0g1p7P 4qw87bVPsyxMaBudYmIL8ti8dJj1RwykUXdCm1x0UkpKNaydBGULAZfFjqKsWfI5 1U2Z/oMsAOSonKlwRfP6AIjKYj4gn598igVxItf58z8k3BZJRNeMPymZXvPNKy9j 7cHkf3/r2R/TpytUCaNuvhWB52XcE6qwqxJA3JEy4yQsCr/Vskm9GXieG7+HAwBF 6+aUNoYrgu3hQQfz0DzjiPru0ohrYZss -----END CERTIFICATE-----Generated at Sat May 31 17:24:51 2025 by rpki-client