$ rpki-client -vvf rpki.apnic.net/member_repository/A91487B2/746DB6F25D6511ECBB40D135C4F9AE02/2Wv1arY_rvAWnA0p1kpUeBwGsuQ.mft File: 2Wv1arY_rvAWnA0p1kpUeBwGsuQ.mft (raw, json) Hash identifier: 0b29SDZPKK/CwyS8zUGTE208iOdRx0Jf8p88XEnBqeU= Subject key identifier: 08:34:8C:6F:F6:84:77:58:F8:7C:DB:85:BF:75:42:F3:B2:00:35:56 Authority key identifier: D9:6B:F5:6A:B6:3F:AE:F0:16:9C:0D:29:D6:4A:54:78:1C:06:B2:E4 Certificate issuer: /CN=A91487B2/serialNumber=D96BF56AB63FAEF0169C0D29D64A54781C06B2E4 Certificate serial: 0435 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Wv1arY_rvAWnA0p1kpUeBwGsuQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91487B2/746DB6F25D6511ECBB40D135C4F9AE02/2Wv1arY_rvAWnA0p1kpUeBwGsuQ.mft Manifest number: 0434 Signing time: Sat 31 May 2025 00:30:03 +0000 Manifest this update: Sat 31 May 2025 00:30:03 +0000 Manifest next update: Sat 07 Jun 2025 00:30:03 +0000 Files and hashes: 1: 2Wv1arY_rvAWnA0p1kpUeBwGsuQ.crl (hash: TxFA5hiFKahL0d5I5ahmbLm8gN2N6O90w7nKaQlToEc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91487B2/746DB6F25D6511ECBB40D135C4F9AE02/2Wv1arY_rvAWnA0p1kpUeBwGsuQ.crl rsync://rpki.apnic.net/member_repository/A91487B2/746DB6F25D6511ECBB40D135C4F9AE02/2Wv1arY_rvAWnA0p1kpUeBwGsuQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Wv1arY_rvAWnA0p1kpUeBwGsuQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:30:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1077 (0x435) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91487B2, serialNumber=D96BF56AB63FAEF0169C0D29D64A54781C06B2E4 Validity Not Before: May 31 00:30:03 2025 GMT Not After : Jun 7 00:30:03 2025 GMT Subject: CN=683a4d8b-2bbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:49:f1:cd:70:b1:c7:50:c0:56:8a:e6:fd:6b: ad:c0:fb:99:b0:a6:3c:df:f2:40:65:e8:e4:73:13: 1c:85:81:b6:b6:9a:bb:64:f4:d6:1f:be:02:6d:d3: 10:b8:6f:8a:ea:bd:49:3d:37:5d:7c:fa:2f:bb:d4: c8:a2:1d:4a:8f:ac:99:eb:e8:0a:0b:5c:19:d4:86: dd:76:9a:44:89:da:18:98:5d:c6:9e:8d:f2:33:64: da:b8:34:4d:fa:92:50:72:40:04:a6:dc:0a:83:39: a5:92:cb:d1:7d:69:c2:d6:a9:58:bc:08:84:6d:b4: 1a:28:3d:62:66:5c:2f:b4:e9:09:25:8c:36:40:85: a7:4a:9b:35:bf:3b:25:3f:4b:fd:be:55:7d:48:4e: cd:71:ba:18:ec:67:f4:ac:48:66:89:56:9f:24:25: a7:09:d1:90:0c:88:72:fe:52:73:b4:a2:b9:d9:37: 1d:ae:36:c9:b6:6a:4b:0a:3b:64:e8:e9:e3:cb:03: bd:ad:e9:a4:ca:86:e1:bf:be:7f:39:17:25:7c:b4: cc:39:51:4f:68:d7:2b:54:8f:7f:88:cf:6d:12:ce: 80:38:54:09:f5:ab:1b:a3:9a:dd:b1:9d:bb:77:79: a6:3a:c9:4d:b4:fa:5b:aa:3b:99:4a:f9:52:38:f9: e6:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:34:8C:6F:F6:84:77:58:F8:7C:DB:85:BF:75:42:F3:B2:00:35:56 X509v3 Authority Key Identifier: keyid:D9:6B:F5:6A:B6:3F:AE:F0:16:9C:0D:29:D6:4A:54:78:1C:06:B2:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91487B2/746DB6F25D6511ECBB40D135C4F9AE02/2Wv1arY_rvAWnA0p1kpUeBwGsuQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Wv1arY_rvAWnA0p1kpUeBwGsuQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91487B2/746DB6F25D6511ECBB40D135C4F9AE02/2Wv1arY_rvAWnA0p1kpUeBwGsuQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:cf:ee:ec:9f:52:81:b5:78:9a:b0:0c:b4:98:7a:02:a3:59: 82:85:38:bd:38:48:3a:f5:8f:a2:3c:fc:37:a1:72:e2:15:63: 9d:52:ac:89:b4:01:0f:98:42:79:d7:de:a6:62:95:d5:d6:99: 17:e8:bd:e3:75:fd:d8:f6:f5:c8:fa:f1:7a:a8:52:7e:8f:52: 1f:62:84:07:02:da:2d:ff:50:4f:65:b9:8b:c5:3d:11:af:e5: bf:af:93:ad:27:99:91:80:9b:c7:0f:81:27:cd:8f:59:b4:3c: 68:d8:6a:eb:c7:4b:a8:a3:34:94:b6:52:44:fb:93:e4:b2:12: ed:85:ae:51:f1:9a:17:57:a6:e4:81:06:ba:3d:65:8f:27:ea: 12:33:32:b6:73:6d:bb:83:27:57:0e:9d:ad:53:18:7b:5d:36: 36:35:57:08:ef:5f:45:07:e9:7a:d0:ef:97:69:04:30:65:06: 9a:8f:09:f9:cf:55:ff:a4:e2:1b:b7:5d:a0:fb:90:12:5e:0e: 1b:c7:98:3e:89:c3:b5:f4:e1:8f:10:05:c4:9e:4e:8d:f6:f8: b7:1e:e7:db:f6:a8:c6:49:30:fa:c4:95:61:15:67:03:0e:1e: 09:73:60:18:9a:61:67:db:1d:ad:21:4c:58:6c:21:79:94:a5: 16:08:07:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDg3QjIxMTAvBgNVBAUTKEQ5NkJGNTZBQjYzRkFFRjAxNjlDMEQyOUQ2NEE1NDc4 MUMwNkIyRTQwHhcNMjUwNTMxMDAzMDAzWhcNMjUwNjA3MDAzMDAzWjAYMRYwFAYD VQQDEw02ODNhNGQ4Yi0yYmJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA70nxzXCxx1DAVorm/WutwPuZsKY83/JAZejkcxMchYG2tpq7ZPTWH74CbdMQ uG+K6r1JPTddfPovu9TIoh1Kj6yZ6+gKC1wZ1IbddppEidoYmF3Gno3yM2TauDRN +pJQckAEptwKgzmlksvRfWnC1qlYvAiEbbQaKD1iZlwvtOkJJYw2QIWnSps1vzsl P0v9vlV9SE7NcboY7Gf0rEhmiVafJCWnCdGQDIhy/lJztKK52TcdrjbJtmpLCjtk 6OnjywO9remkyobhv75/ORclfLTMOVFPaNcrVI9/iM9tEs6AOFQJ9asbo5rdsZ27 d3mmOslNtPpbqjuZSvlSOPnmVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAg0jG/2 hHdY+Hzbhb91QvOyADVWMB8GA1UdIwQYMBaAFNlr9Wq2P67wFpwNKdZKVHgcBrLk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0ODdCMi83NDZEQjZGMjVE NjUxMUVDQkI0MEQxMzVDNEY5QUUwMi8yV3YxYXJZX3J2QVduQTBwMWtwVWVCd0dz dVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJXdjFhcllfcnZBV25BMHAxa3BVZUJ3R3N1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 ODdCMi83NDZEQjZGMjVENjUxMUVDQkI0MEQxMzVDNEY5QUUwMi8yV3YxYXJZX3J2 QVduQTBwMWtwVWVCd0dzdVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpz+7sn1KBtXiasAy0mHoCo1mChTi9OEg69Y+iPPw3oXLiFWOdUqyJ tAEPmEJ5196mYpXV1pkX6L3jdf3Y9vXI+vF6qFJ+j1IfYoQHAtot/1BPZbmLxT0R r+W/r5OtJ5mRgJvHD4EnzY9ZtDxo2Grrx0uoozSUtlJE+5PkshLtha5R8ZoXV6bk gQa6PWWPJ+oSMzK2c227gydXDp2tUxh7XTY2NVcI719FB+l60O+XaQQwZQaajwn5 z1X/pOIbt12g+5ASXg4bx5g+icO19OGPEAXEnk6N9vi3Hufb9qjGSTD6xJVhFWcD Dh4Jc2AYmmFn2x2tIUxYbCF5lKUWCAcB -----END CERTIFICATE-----Generated at Sat May 31 17:07:34 2025 by rpki-client