$ rpki-client -vvf rpki.apnic.net/member_repository/A9145E09/8F625C4E08C811F0A0D34E56C4F9AE02/Fz6pPabl71KPpzMJc4hIg92lJ-4.mft File: Fz6pPabl71KPpzMJc4hIg92lJ-4.mft (raw, json) Hash identifier: Iio0uCeOrOr1WsOYqo3I1WZLRxnfKnPU9NyghRh/xaE= Subject key identifier: 0D:A7:6A:68:28:2C:4B:E2:64:3B:1E:C8:6B:FC:78:D7:74:BC:D9:CB Authority key identifier: 17:3E:A9:3D:A6:E5:EF:52:8F:A7:33:09:73:88:48:83:DD:A5:27:EE Certificate issuer: /CN=A9145E09/serialNumber=173EA93DA6E5EF528FA7330973884883DDA527EE Certificate serial: 23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fz6pPabl71KPpzMJc4hIg92lJ-4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145E09/8F625C4E08C811F0A0D34E56C4F9AE02/Fz6pPabl71KPpzMJc4hIg92lJ-4.mft Manifest number: 23 Signing time: Sat 31 May 2025 07:24:40 +0000 Manifest this update: Sat 31 May 2025 07:24:39 +0000 Manifest next update: Sat 07 Jun 2025 07:24:39 +0000 Files and hashes: 1: Fz6pPabl71KPpzMJc4hIg92lJ-4.crl (hash: 1t1MEpeNgfoBylhopecKG3EKL+RnK+iJrj2pphTJZE8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145E09/8F625C4E08C811F0A0D34E56C4F9AE02/Fz6pPabl71KPpzMJc4hIg92lJ-4.crl rsync://rpki.apnic.net/member_repository/A9145E09/8F625C4E08C811F0A0D34E56C4F9AE02/Fz6pPabl71KPpzMJc4hIg92lJ-4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fz6pPabl71KPpzMJc4hIg92lJ-4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 07:24:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35 (0x23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145E09, serialNumber=173EA93DA6E5EF528FA7330973884883DDA527EE Validity Not Before: May 31 07:24:39 2025 GMT Not After : Jun 7 07:24:39 2025 GMT Subject: CN=683aaeb7-c101 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:3b:8f:3d:e2:0f:c0:ea:c3:51:c5:5f:eb:54: 17:e5:cc:72:f2:a6:8b:10:a3:22:3c:c9:14:98:e5: 0d:c9:7c:9c:32:10:7c:86:1b:49:7c:94:7c:f7:df: ce:8d:64:8f:c8:05:74:22:b3:62:c7:ac:8e:2c:b4: 72:b3:e4:e6:95:40:e6:f6:48:64:10:1c:61:af:e5: b0:46:1e:aa:ca:dd:58:64:6a:3c:65:73:d9:4a:6e: 91:cc:2d:2b:cd:4e:b3:39:02:74:f0:22:7d:2b:94: 16:6b:f4:d2:b1:16:c9:4f:1c:b1:87:e8:bd:bc:66: 30:94:eb:66:7a:35:1a:83:3b:50:8d:cf:84:1a:df: ac:26:e8:06:b6:fd:79:6c:43:fa:47:00:0d:3b:19: a2:9a:6f:df:7f:2f:fc:c8:53:aa:7a:f8:de:87:9a: 3f:2c:76:a4:43:96:a8:32:b8:a4:11:67:b2:8f:da: 0b:6a:bd:af:1d:44:35:6c:2e:1f:0d:c7:be:9e:4d: 11:42:2e:04:33:a9:cc:34:9d:8d:ce:ac:20:f5:c6: f1:5d:c5:56:b4:bb:26:24:45:b4:3d:77:74:15:a2: ab:de:98:1a:48:79:46:d4:4c:c3:f9:03:91:d0:ca: f8:80:e1:a7:9c:d8:38:dc:92:e5:81:8c:c0:33:72: 44:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:A7:6A:68:28:2C:4B:E2:64:3B:1E:C8:6B:FC:78:D7:74:BC:D9:CB X509v3 Authority Key Identifier: keyid:17:3E:A9:3D:A6:E5:EF:52:8F:A7:33:09:73:88:48:83:DD:A5:27:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145E09/8F625C4E08C811F0A0D34E56C4F9AE02/Fz6pPabl71KPpzMJc4hIg92lJ-4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fz6pPabl71KPpzMJc4hIg92lJ-4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145E09/8F625C4E08C811F0A0D34E56C4F9AE02/Fz6pPabl71KPpzMJc4hIg92lJ-4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:2d:86:cb:20:d8:b3:52:52:87:e3:26:5a:f8:73:3f:24:55: 57:d0:47:ae:6f:31:96:3b:21:66:d0:39:08:e9:f6:48:db:cc: 7a:6a:ed:cb:77:75:02:12:72:06:9d:6a:c5:19:6d:8d:ec:eb: 97:83:58:f8:1e:33:5c:d7:7e:04:82:5c:b7:01:34:cd:73:3b: ab:41:f1:20:a1:29:a1:ea:41:5e:dd:ff:6f:8e:47:c0:be:eb: a7:05:70:68:6b:04:8e:e8:39:a1:83:2c:1a:37:83:84:71:55: b6:5c:94:aa:09:a2:f4:50:48:36:53:4d:1b:69:d8:b6:ef:3c: 24:26:d7:38:2d:21:da:46:64:4c:d4:cb:15:89:8c:fc:85:0f: 71:c3:a8:fe:49:7c:b0:a9:6a:35:32:ed:5d:f0:2a:73:e9:bf: c7:65:08:9c:f7:26:da:cf:69:67:4d:e1:7e:1f:8b:3f:e2:45: 8e:57:4a:54:23:59:6f:e8:80:7d:c3:9b:34:c8:ef:ad:bf:3b: b6:32:f6:0d:0f:ec:b1:a3:8f:a1:f9:10:9c:ef:68:e3:1b:5c: 23:0d:b5:2e:17:8d:21:02:4f:6c:80:77:bd:26:5c:52:94:89: 5e:78:24:5c:db:e1:2a:7a:77:37:43:40:8f:36:1c:54:25:d0: e6:95:52:67 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NUUwOTExMC8GA1UEBRMoMTczRUE5M0RBNkU1RUY1MjhGQTczMzA5NzM4ODQ4ODNE REE1MjdFRTAeFw0yNTA1MzEwNzI0MzlaFw0yNTA2MDcwNzI0MzlaMBgxFjAUBgNV BAMTDTY4M2FhZWI3LWMxMDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6O4894g/A6sNRxV/rVBflzHLyposQoyI8yRSY5Q3JfJwyEHyGG0l8lHz3386N ZI/IBXQis2LHrI4stHKz5OaVQOb2SGQQHGGv5bBGHqrK3Vhkajxlc9lKbpHMLSvN TrM5AnTwIn0rlBZr9NKxFslPHLGH6L28ZjCU62Z6NRqDO1CNz4Qa36wm6Aa2/Xls Q/pHAA07GaKab99/L/zIU6p6+N6Hmj8sdqRDlqgyuKQRZ7KP2gtqva8dRDVsLh8N x76eTRFCLgQzqcw0nY3OrCD1xvFdxVa0uyYkRbQ9d3QVoqvemBpIeUbUTMP5A5HQ yviA4aec2DjckuWBjMAzckQ9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUDadqaCgs S+JkOx7Ia/x413S82cswHwYDVR0jBBgwFoAUFz6pPabl71KPpzMJc4hIg92lJ+4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1RTA5LzhGNjI1QzRFMDhD ODExRjBBMEQzNEU1NkM0RjlBRTAyL0Z6NnBQYWJsNzFLUHB6TUpjNGhJZzkybEot NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRno2cFBhYmw3MUtQcHpNSmM0aElnOTJsSi00LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1 RTA5LzhGNjI1QzRFMDhDODExRjBBMEQzNEU1NkM0RjlBRTAyL0Z6NnBQYWJsNzFL UHB6TUpjNGhJZzkybEotNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABMthssg2LNSUofjJlr4cz8kVVfQR65vMZY7IWbQOQjp9kjbzHpq7ct3 dQIScgadasUZbY3s65eDWPgeM1zXfgSCXLcBNM1zO6tB8SChKaHqQV7d/2+OR8C+ 66cFcGhrBI7oOaGDLBo3g4RxVbZclKoJovRQSDZTTRtp2LbvPCQm1zgtIdpGZEzU yxWJjPyFD3HDqP5JfLCpajUy7V3wKnPpv8dlCJz3JtrPaWdN4X4fiz/iRY5XSlQj WW/ogH3DmzTI762/O7Yy9g0P7LGjj6H5EJzvaOMbXCMNtS4XjSECT2yAd70mXFKU iV54JFzb4Sp6dzdDQI82HFQl0OaVUmc= -----END CERTIFICATE-----Generated at Sat May 31 17:14:34 2025 by rpki-client