$ rpki-client -vvf rpki.apnic.net/member_repository/A912F6E3/F2FB8250B5DD11EF97D9FA34C4F9AE02/K_CuZ5DS8B3R22c4MTLcQDtnRSI.mft File: K_CuZ5DS8B3R22c4MTLcQDtnRSI.mft (raw, json) Hash identifier: tCM6zsSajN92zXZnVQ/2mGATxOnqNAnSmeGG7leNEbA= Subject key identifier: 03:FE:A5:30:F0:86:72:BD:E3:E2:C3:63:F7:C8:ED:B2:CF:02:7C:7C Authority key identifier: 2B:F0:AE:67:90:D2:F0:1D:D1:DB:67:38:31:32:DC:40:3B:67:45:22 Certificate issuer: /CN=A912F6E3/serialNumber=2BF0AE6790D2F01DD1DB67383132DC403B674522 Certificate serial: 5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K_CuZ5DS8B3R22c4MTLcQDtnRSI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F6E3/F2FB8250B5DD11EF97D9FA34C4F9AE02/K_CuZ5DS8B3R22c4MTLcQDtnRSI.mft Manifest number: 5B Signing time: Sat 31 May 2025 06:44:16 +0000 Manifest this update: Sat 31 May 2025 06:44:15 +0000 Manifest next update: Sat 07 Jun 2025 06:44:15 +0000 Files and hashes: 1: K_CuZ5DS8B3R22c4MTLcQDtnRSI.crl (hash: X6+hkLm/FLsaXtDuAGLe3YndraDn7fwWuN/fUAE9OXA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F6E3/F2FB8250B5DD11EF97D9FA34C4F9AE02/K_CuZ5DS8B3R22c4MTLcQDtnRSI.crl rsync://rpki.apnic.net/member_repository/A912F6E3/F2FB8250B5DD11EF97D9FA34C4F9AE02/K_CuZ5DS8B3R22c4MTLcQDtnRSI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K_CuZ5DS8B3R22c4MTLcQDtnRSI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:44:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 91 (0x5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F6E3, serialNumber=2BF0AE6790D2F01DD1DB67383132DC403B674522 Validity Not Before: May 31 06:44:15 2025 GMT Not After : Jun 7 06:44:15 2025 GMT Subject: CN=683aa540-e1cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:df:fb:3a:d4:82:18:f4:41:3c:5b:09:41:d5: 9e:36:4b:54:7d:b2:1c:9d:13:86:f1:7e:b4:19:00: f8:24:58:c0:2d:b2:b8:91:c3:f6:67:dd:fe:8c:22: 82:19:16:b5:86:97:0f:ab:26:f7:48:b8:f8:24:cf: 57:f7:0d:39:91:56:36:ff:6e:19:7f:32:87:d6:63: 4a:2e:d4:47:60:2d:f0:95:54:38:2e:83:aa:e8:94: e6:6f:ef:a6:1a:e4:4b:bc:a4:7e:de:3c:3d:7a:78: 9a:85:db:92:00:9e:54:d9:f2:e0:0c:9a:f8:3c:7a: 26:db:a8:53:f6:b6:bb:bb:8e:ce:01:c1:69:33:9f: 65:27:0d:51:1c:47:8f:ec:df:45:43:aa:af:d9:39: d4:3b:54:34:6b:ab:4f:21:06:94:ed:56:d9:94:de: 3e:ab:37:6a:5e:46:df:94:ac:02:ff:42:ef:cc:25: ae:dc:27:b6:f4:8a:88:7a:da:a8:dc:b7:06:b6:98: e5:6e:84:aa:13:a3:60:10:bb:47:43:f2:9b:06:50: 4b:c1:64:b1:69:24:33:0e:20:e4:5f:93:42:3f:a4: 8f:85:a5:e0:16:7e:27:2c:58:cb:6a:03:ea:53:c3: 08:e8:e5:d6:c7:4e:eb:07:25:d7:9c:88:a7:43:d9: c4:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:FE:A5:30:F0:86:72:BD:E3:E2:C3:63:F7:C8:ED:B2:CF:02:7C:7C X509v3 Authority Key Identifier: keyid:2B:F0:AE:67:90:D2:F0:1D:D1:DB:67:38:31:32:DC:40:3B:67:45:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F6E3/F2FB8250B5DD11EF97D9FA34C4F9AE02/K_CuZ5DS8B3R22c4MTLcQDtnRSI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K_CuZ5DS8B3R22c4MTLcQDtnRSI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F6E3/F2FB8250B5DD11EF97D9FA34C4F9AE02/K_CuZ5DS8B3R22c4MTLcQDtnRSI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:b4:1a:7b:cf:68:76:14:6d:ee:63:3e:53:b3:c3:1f:e4:b8: be:56:b0:2b:d4:7f:27:e4:35:1a:98:83:bc:8f:2c:07:11:60: 9b:8f:d6:bb:f2:52:33:f0:38:9a:ac:36:29:af:88:e9:1f:f7: 6b:1f:49:2b:f7:80:55:a4:c2:43:89:ee:a5:33:ec:ea:2b:24: e8:6e:7a:ea:b7:47:29:85:ee:33:6b:76:fe:ef:47:de:ee:91: a9:5d:4b:8c:b9:1d:2f:c4:2a:5b:45:22:6d:0b:bc:76:b9:f6: 8b:f4:fa:1d:43:c5:db:4b:dd:24:65:95:98:8f:cd:31:bd:8e: ef:98:57:a7:59:3c:ba:35:1b:fa:2d:bc:20:cc:ab:da:c9:21: 42:1d:65:ed:5e:b7:16:d8:bd:77:9f:a4:2c:3a:fb:62:69:1b: 80:15:0c:d9:2b:b3:46:d8:f5:64:47:2f:03:23:44:0d:36:5c: 4c:4b:6f:7a:78:0d:e1:96:83:6d:0f:c1:ed:38:40:a0:db:6b: 39:94:e3:66:db:39:a3:f7:d6:80:12:91:97:93:4e:12:1b:95: cb:39:28:5c:46:28:2f:26:c7:41:92:32:3e:1c:38:d4:0e:33: 8d:aa:32:48:d3:51:4d:94:8d:c5:0b:45:f1:d7:78:f6:0f:e8: 5a:13:2f:ae -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy RjZFMzExMC8GA1UEBRMoMkJGMEFFNjc5MEQyRjAxREQxREI2NzM4MzEzMkRDNDAz QjY3NDUyMjAeFw0yNTA1MzEwNjQ0MTVaFw0yNTA2MDcwNjQ0MTVaMBgxFjAUBgNV BAMTDTY4M2FhNTQwLWUxY2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDX3/s61IIY9EE8WwlB1Z42S1R9shydE4bxfrQZAPgkWMAtsriRw/Zn3f6MIoIZ FrWGlw+rJvdIuPgkz1f3DTmRVjb/bhl/MofWY0ou1EdgLfCVVDgug6rolOZv76Ya 5Eu8pH7ePD16eJqF25IAnlTZ8uAMmvg8eibbqFP2tru7js4BwWkzn2UnDVEcR4/s 30VDqq/ZOdQ7VDRrq08hBpTtVtmU3j6rN2peRt+UrAL/Qu/MJa7cJ7b0ioh62qjc twa2mOVuhKoTo2AQu0dD8psGUEvBZLFpJDMOIORfk0I/pI+FpeAWficsWMtqA+pT wwjo5dbHTusHJdeciKdD2cSjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUA/6lMPCG cr3j4sNj98jtss8CfHwwHwYDVR0jBBgwFoAUK/CuZ5DS8B3R22c4MTLcQDtnRSIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJGNkUzL0YyRkI4MjUwQjVE RDExRUY5N0Q5RkEzNEM0RjlBRTAyL0tfQ3VaNURTOEIzUjIyYzRNVExjUUR0blJT SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS19DdVo1RFM4QjNSMjJjNE1UTGNRRHRuUlNJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJG NkUzL0YyRkI4MjUwQjVERDExRUY5N0Q5RkEzNEM0RjlBRTAyL0tfQ3VaNURTOEIz UjIyYzRNVExjUUR0blJTSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADW0GnvPaHYUbe5jPlOzwx/kuL5WsCvUfyfkNRqYg7yPLAcRYJuP1rvy UjPwOJqsNimviOkf92sfSSv3gFWkwkOJ7qUz7OorJOhueuq3RymF7jNrdv7vR97u kaldS4y5HS/EKltFIm0LvHa59ov0+h1DxdtL3SRllZiPzTG9ju+YV6dZPLo1G/ot vCDMq9rJIUIdZe1etxbYvXefpCw6+2JpG4AVDNkrs0bY9WRHLwMjRA02XExLb3p4 DeGWg20Pwe04QKDbazmU42bbOaP31oASkZeTThIblcs5KFxGKC8mx0GSMj4cONQO M42qMkjTUU2UjcULRfHXePYP6FoTL64= -----END CERTIFICATE-----Generated at Sat May 31 17:17:38 2025 by rpki-client