$ rpki-client -vvf rpki.apnic.net/member_repository/A9117CE3/2FD45F78B45B11EF94E6745DC4F9AE02/9bGvaeQg85sCMjAnVBm6VPjOGos.mft File: 9bGvaeQg85sCMjAnVBm6VPjOGos.mft (raw, json) Hash identifier: Y2Cq9/pEebZBqO8E9e0ijyaOaC6rcPNh2VubN3D0wj8= Subject key identifier: 62:B1:4D:39:36:3B:B0:10:8F:05:B8:15:36:3B:D8:61:13:F0:07:66 Authority key identifier: F5:B1:AF:69:E4:20:F3:9B:02:32:30:27:54:19:BA:54:F8:CE:1A:8B Certificate issuer: /CN=A9117CE3/serialNumber=F5B1AF69E420F39B023230275419BA54F8CE1A8B Certificate serial: 59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9bGvaeQg85sCMjAnVBm6VPjOGos.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117CE3/2FD45F78B45B11EF94E6745DC4F9AE02/9bGvaeQg85sCMjAnVBm6VPjOGos.mft Manifest number: 59 Signing time: Sat 31 May 2025 05:38:32 +0000 Manifest this update: Sat 31 May 2025 05:38:31 +0000 Manifest next update: Sat 07 Jun 2025 05:38:31 +0000 Files and hashes: 1: 9bGvaeQg85sCMjAnVBm6VPjOGos.crl (hash: bJ5Z4SXggVPzAQG1NbGZJM33ax31X0KbD7IhSPP6+n0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117CE3/2FD45F78B45B11EF94E6745DC4F9AE02/9bGvaeQg85sCMjAnVBm6VPjOGos.crl rsync://rpki.apnic.net/member_repository/A9117CE3/2FD45F78B45B11EF94E6745DC4F9AE02/9bGvaeQg85sCMjAnVBm6VPjOGos.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9bGvaeQg85sCMjAnVBm6VPjOGos.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:38:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 89 (0x59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117CE3, serialNumber=F5B1AF69E420F39B023230275419BA54F8CE1A8B Validity Not Before: May 31 05:38:31 2025 GMT Not After : Jun 7 05:38:31 2025 GMT Subject: CN=683a95d7-0eea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:3b:6f:f0:39:d9:eb:cb:b5:35:18:c5:0e:42: ee:3b:e4:1d:9b:7c:db:2c:df:c2:a8:ca:c2:ee:39: 77:36:55:8c:4f:e9:ba:77:1d:fa:f0:f6:27:5d:4a: 25:1e:73:99:08:c2:15:8c:f1:2b:3b:b7:07:3b:8d: c7:8a:a9:ba:ce:50:ab:e4:b8:b8:63:c2:5b:b9:40: a6:ed:0b:02:e5:f3:d0:af:45:87:da:ee:db:f7:0b: ac:4c:bd:e4:ab:4a:4f:65:75:59:64:64:57:a1:75: 98:21:04:c1:f4:7d:60:e1:cf:2f:aa:59:ee:8e:62: f6:4e:d9:53:77:b9:2f:00:89:c4:ee:f3:9b:1b:3c: 43:24:ca:2e:66:9a:cb:66:ba:b6:72:d1:12:8b:69: 05:98:52:7d:9b:f2:3b:34:bd:9b:00:70:a1:cc:04: 98:a3:ae:f6:c1:2d:b1:e1:73:90:8c:a3:ff:86:af: df:0c:9f:90:c0:9c:24:5e:5f:28:0b:bd:6a:e9:f0: 1e:bf:82:06:7e:17:8a:03:4d:ba:10:9d:96:de:2e: ea:af:75:87:72:29:ba:8d:48:66:98:75:09:fe:9c: d6:2c:00:33:86:3d:71:48:28:e8:26:b0:0a:68:66: 35:0e:71:2b:9a:c4:89:f2:a9:79:c4:54:ee:b6:7d: 73:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:B1:4D:39:36:3B:B0:10:8F:05:B8:15:36:3B:D8:61:13:F0:07:66 X509v3 Authority Key Identifier: keyid:F5:B1:AF:69:E4:20:F3:9B:02:32:30:27:54:19:BA:54:F8:CE:1A:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117CE3/2FD45F78B45B11EF94E6745DC4F9AE02/9bGvaeQg85sCMjAnVBm6VPjOGos.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9bGvaeQg85sCMjAnVBm6VPjOGos.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117CE3/2FD45F78B45B11EF94E6745DC4F9AE02/9bGvaeQg85sCMjAnVBm6VPjOGos.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:f2:81:db:43:60:48:82:65:c0:b0:7b:25:3f:e2:1f:ec:44: f9:b8:8e:58:69:69:b3:46:2e:98:bf:7d:11:17:e2:37:d6:9c: c8:5a:57:f4:71:db:fa:20:be:16:e1:e5:ab:af:f1:9b:bb:d3: 22:10:90:aa:6c:20:c7:c9:84:eb:18:1b:39:36:a8:71:98:f1: cc:d0:2f:68:c7:74:ec:8c:e7:ae:17:b4:20:c7:12:4e:bf:3f: 40:c8:70:db:fe:b8:9f:cf:34:77:b4:5c:83:ec:32:06:e0:16: 09:73:ba:78:9b:64:0c:1f:95:35:f4:3a:5d:20:dd:df:21:24: 6d:39:4b:fb:dc:ee:f3:a9:72:fe:cf:d3:ae:e9:db:64:ec:1e: fa:08:b7:8e:c5:00:3f:f6:71:f9:7d:a0:0e:23:2a:df:22:74: 9b:5f:18:51:b3:f5:d7:30:ae:c0:6b:b9:c5:bd:d1:a1:29:d5: 9e:5a:27:a5:5e:d4:45:aa:9f:5c:ec:40:42:cb:8c:75:be:9f: e4:fe:39:1c:da:97:29:f9:29:3c:2f:54:c4:b8:7c:0e:b8:1d: 2d:32:95:4b:92:e8:cd:16:16:f9:6e:ac:a9:34:7c:59:81:3a: 8e:27:f4:33:18:7e:f7:51:4f:62:dc:83:14:a4:c1:aa:18:d3: 1b:21:5c:e4 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx N0NFMzExMC8GA1UEBRMoRjVCMUFGNjlFNDIwRjM5QjAyMzIzMDI3NTQxOUJBNTRG OENFMUE4QjAeFw0yNTA1MzEwNTM4MzFaFw0yNTA2MDcwNTM4MzFaMBgxFjAUBgNV BAMTDTY4M2E5NWQ3LTBlZWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCqO2/wOdnry7U1GMUOQu475B2bfNss38KoysLuOXc2VYxP6bp3Hfrw9iddSiUe c5kIwhWM8Ss7twc7jceKqbrOUKvkuLhjwlu5QKbtCwLl89CvRYfa7tv3C6xMveSr Sk9ldVlkZFehdZghBMH0fWDhzy+qWe6OYvZO2VN3uS8AicTu85sbPEMkyi5mmstm urZy0RKLaQWYUn2b8js0vZsAcKHMBJijrvbBLbHhc5CMo/+Gr98Mn5DAnCReXygL vWrp8B6/ggZ+F4oDTboQnZbeLuqvdYdyKbqNSGaYdQn+nNYsADOGPXFIKOgmsApo ZjUOcSuaxInyqXnEVO62fXPHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUYrFNOTY7 sBCPBbgVNjvYYRPwB2YwHwYDVR0jBBgwFoAU9bGvaeQg85sCMjAnVBm6VPjOGosw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE3Q0UzLzJGRDQ1Rjc4QjQ1 QjExRUY5NEU2NzQ1REM0RjlBRTAyLzliR3ZhZVFnODVzQ01qQW5WQm02VlBqT0dv cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvOWJHdmFlUWc4NXNDTWpBblZCbTZWUGpPR29zLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE3 Q0UzLzJGRDQ1Rjc4QjQ1QjExRUY5NEU2NzQ1REM0RjlBRTAyLzliR3ZhZVFnODVz Q01qQW5WQm02VlBqT0dvcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAI7ygdtDYEiCZcCweyU/4h/sRPm4jlhpabNGLpi/fREX4jfWnMhaV/Rx 2/ogvhbh5auv8Zu70yIQkKpsIMfJhOsYGzk2qHGY8czQL2jHdOyM564XtCDHEk6/ P0DIcNv+uJ/PNHe0XIPsMgbgFglzunibZAwflTX0Ol0g3d8hJG05S/vc7vOpcv7P 067p22TsHvoIt47FAD/2cfl9oA4jKt8idJtfGFGz9dcwrsBrucW90aEp1Z5aJ6Ve 1EWqn1zsQELLjHW+n+T+ORzalyn5KTwvVMS4fA64HS0ylUuS6M0WFvlurKk0fFmB Oo4n9DMYfvdRT2LcgxSkwaoY0xshXOQ= -----END CERTIFICATE-----Generated at Sat May 31 16:26:54 2025 by rpki-client