$ rpki-client -vvf rpki.apnic.net/member_repository/A912B6D9/7743D51E1E5F11F0BA389A4EC4F9AE02/q2LZY5CMwOOoAZmkPTEqNKBIgfA.mft File: q2LZY5CMwOOoAZmkPTEqNKBIgfA.mft (raw, json) Hash identifier: Sfn/0voCnroIP8MxdHl1r5/SoYJKhVelLJcae2/VWIE= Subject key identifier: 9D:E3:B1:35:B7:69:AE:94:E3:C8:48:6F:0C:A6:91:E0:6B:B2:C4:77 Authority key identifier: AB:62:D9:63:90:8C:C0:E3:A8:01:99:A4:3D:31:2A:34:A0:48:81:F0 Certificate issuer: /CN=A912B6D9/serialNumber=AB62D963908CC0E3A80199A43D312A34A04881F0 Certificate serial: 14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2LZY5CMwOOoAZmkPTEqNKBIgfA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B6D9/7743D51E1E5F11F0BA389A4EC4F9AE02/q2LZY5CMwOOoAZmkPTEqNKBIgfA.mft Manifest number: 14 Signing time: Sat 31 May 2025 07:33:22 +0000 Manifest this update: Sat 31 May 2025 07:33:21 +0000 Manifest next update: Sat 07 Jun 2025 07:33:21 +0000 Files and hashes: 1: q2LZY5CMwOOoAZmkPTEqNKBIgfA.crl (hash: gmOArlfbUOxmEU9t01BsNBkhv1kpU9chkYJtJOyDczE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B6D9/7743D51E1E5F11F0BA389A4EC4F9AE02/q2LZY5CMwOOoAZmkPTEqNKBIgfA.crl rsync://rpki.apnic.net/member_repository/A912B6D9/7743D51E1E5F11F0BA389A4EC4F9AE02/q2LZY5CMwOOoAZmkPTEqNKBIgfA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2LZY5CMwOOoAZmkPTEqNKBIgfA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 07:33:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20 (0x14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B6D9, serialNumber=AB62D963908CC0E3A80199A43D312A34A04881F0 Validity Not Before: May 31 07:33:21 2025 GMT Not After : Jun 7 07:33:21 2025 GMT Subject: CN=683ab0c2-1655 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:cc:27:46:4d:8c:5b:e0:cd:1c:b0:92:09:cb: e1:33:c4:50:43:46:ce:3b:cb:d6:7e:d8:12:60:91: 9a:02:42:ce:e8:b1:5b:4a:ae:38:54:bb:d0:f7:08: b1:a4:6b:ad:57:e7:13:19:6b:86:47:ed:7e:dc:e7: fd:49:3e:e7:2a:1c:22:2d:f8:c6:0c:c0:bb:58:22: c6:b0:67:ef:73:08:7f:b8:b6:6b:1d:b8:54:03:06: 9e:68:71:06:4b:14:5c:44:f4:59:b3:1b:fa:9d:cf: 7e:5d:a9:74:f4:80:7e:57:4d:4a:c5:63:5c:03:16: 38:0b:12:33:c7:02:6b:7d:08:98:11:99:78:2e:b5: 17:48:49:41:8b:e1:de:c5:42:ea:11:6b:43:e5:27: 58:c4:ba:36:07:2a:8d:42:8d:d8:72:fe:7e:ae:27: 34:04:6d:29:af:da:db:9f:e7:50:9f:6e:13:24:b6: a0:73:89:f1:19:b2:88:a8:25:12:27:a2:a8:d5:03: 5f:e3:54:fa:fb:71:97:0d:5b:f4:b2:d1:dd:07:69: d0:72:31:c7:8b:aa:9e:e8:61:8b:b4:c8:3c:3b:ae: 9a:84:6f:12:54:36:29:d6:b7:2e:6f:36:3c:8c:33: 1c:c6:b9:18:38:d6:a4:1a:80:9a:38:72:78:5c:16: cf:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:E3:B1:35:B7:69:AE:94:E3:C8:48:6F:0C:A6:91:E0:6B:B2:C4:77 X509v3 Authority Key Identifier: keyid:AB:62:D9:63:90:8C:C0:E3:A8:01:99:A4:3D:31:2A:34:A0:48:81:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B6D9/7743D51E1E5F11F0BA389A4EC4F9AE02/q2LZY5CMwOOoAZmkPTEqNKBIgfA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2LZY5CMwOOoAZmkPTEqNKBIgfA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B6D9/7743D51E1E5F11F0BA389A4EC4F9AE02/q2LZY5CMwOOoAZmkPTEqNKBIgfA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:88:fa:a8:60:57:05:cd:d3:d1:ef:b1:5d:5c:b6:1d:07:00: 8a:06:50:7c:0b:34:ad:6c:1c:57:66:59:6a:05:a8:b8:da:68: f1:79:e0:ae:ad:e0:29:33:9f:7c:54:bc:5f:ef:9d:30:ef:07: ca:f1:15:f8:86:59:8b:14:92:da:c8:be:c7:42:a2:3f:9b:c2: e6:41:5b:a4:59:48:67:85:5e:0a:a2:6b:e0:83:74:e3:b0:d9: 56:94:1d:29:46:4e:45:c1:f0:fa:64:f4:2d:60:26:9e:74:29: 13:f0:87:24:17:03:46:fa:47:3f:d6:e9:f6:8e:79:95:7b:58: 37:85:98:cb:a5:14:f4:99:ac:d3:41:42:a3:e9:66:d0:17:8b: 69:2a:ce:f7:ff:5a:ef:06:5d:e6:7b:91:4f:79:40:3a:9b:57: 15:af:d7:89:4e:4b:89:00:f5:7e:0b:5e:59:76:ea:d6:9c:95: fc:50:cd:e0:03:00:c8:ee:14:72:c3:9d:51:d1:28:f3:2c:98: a8:a0:55:6c:f7:c9:21:91:ae:d7:86:14:9f:19:d4:e8:24:79: 7a:0f:1a:76:ba:2e:5d:7a:51:7e:4d:c7:90:c0:6f:e8:00:b2: ce:82:a7:98:c9:3c:da:99:d2:3f:06:e6:ae:ca:5b:80:a1:53: c5:63:24:5a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy QjZEOTExMC8GA1UEBRMoQUI2MkQ5NjM5MDhDQzBFM0E4MDE5OUE0M0QzMTJBMzRB MDQ4ODFGMDAeFw0yNTA1MzEwNzMzMjFaFw0yNTA2MDcwNzMzMjFaMBgxFjAUBgNV BAMTDTY4M2FiMGMyLTE2NTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCyzCdGTYxb4M0csJIJy+EzxFBDRs47y9Z+2BJgkZoCQs7osVtKrjhUu9D3CLGk a61X5xMZa4ZH7X7c5/1JPucqHCIt+MYMwLtYIsawZ+9zCH+4tmsduFQDBp5ocQZL FFxE9FmzG/qdz35dqXT0gH5XTUrFY1wDFjgLEjPHAmt9CJgRmXgutRdISUGL4d7F QuoRa0PlJ1jEujYHKo1Cjdhy/n6uJzQEbSmv2tuf51CfbhMktqBzifEZsoioJRIn oqjVA1/jVPr7cZcNW/Sy0d0HadByMceLqp7oYYu0yDw7rpqEbxJUNinWty5vNjyM MxzGuRg41qQagJo4cnhcFs+rAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUneOxNbdp rpTjyEhvDKaR4GuyxHcwHwYDVR0jBBgwFoAUq2LZY5CMwOOoAZmkPTEqNKBIgfAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJCNkQ5Lzc3NDNENTFFMUU1 RjExRjBCQTM4OUE0RUM0RjlBRTAyL3EyTFpZNUNNd09Pb0FabWtQVEVxTktCSWdm QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcTJMWlk1Q013T09vQVpta1BURXFOS0JJZ2ZBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJC NkQ5Lzc3NDNENTFFMUU1RjExRjBCQTM4OUE0RUM0RjlBRTAyL3EyTFpZNUNNd09P b0FabWtQVEVxTktCSWdmQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADiI+qhgVwXN09HvsV1cth0HAIoGUHwLNK1sHFdmWWoFqLjaaPF54K6t 4Ckzn3xUvF/vnTDvB8rxFfiGWYsUktrIvsdCoj+bwuZBW6RZSGeFXgqia+CDdOOw 2VaUHSlGTkXB8Ppk9C1gJp50KRPwhyQXA0b6Rz/W6faOeZV7WDeFmMulFPSZrNNB QqPpZtAXi2kqzvf/Wu8GXeZ7kU95QDqbVxWv14lOS4kA9X4LXll26taclfxQzeAD AMjuFHLDnVHRKPMsmKigVWz3ySGRrteGFJ8Z1OgkeXoPGna6Ll16UX5Nx5DAb+gA ss6Cp5jJPNqZ0j8G5q7KW4ChU8VjJFo= -----END CERTIFICATE-----Generated at Sat May 31 17:51:37 2025 by rpki-client