$ rpki-client -vvf rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.mft File: rU1lO4NcTh3pjsZjdoiamoN2SwI.mft (raw, json) Hash identifier: 5R+9tTgfPl4PJ3TpR1RgfpZfU57is+FI2ArA5z0CufU= Subject key identifier: 3C:D2:0A:7A:4F:74:43:19:F8:BB:63:06:16:26:61:EC:E9:4C:73:B0 Authority key identifier: AD:4D:65:3B:83:5C:4E:1D:E9:8E:C6:63:76:88:9A:9A:83:76:4B:02 Certificate issuer: /CN=A914B669/serialNumber=AD4D653B835C4E1DE98EC66376889A9A83764B02 Certificate serial: 3484 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rU1lO4NcTh3pjsZjdoiamoN2SwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.mft Manifest number: 3484 Signing time: Wed 04 Jun 2025 14:45:48 +0000 Manifest this update: Wed 04 Jun 2025 14:45:47 +0000 Manifest next update: Wed 11 Jun 2025 14:45:47 +0000 Files and hashes: 1: rU1lO4NcTh3pjsZjdoiamoN2SwI.crl (hash: 8IOCTsI1+LJEADEPzVqAJppluRhA1vZiQzM6359ejUE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.crl rsync://rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rU1lO4NcTh3pjsZjdoiamoN2SwI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 14:45:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13444 (0x3484) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B669, serialNumber=AD4D653B835C4E1DE98EC66376889A9A83764B02 Validity Not Before: Jun 4 14:45:47 2025 GMT Not After : Jun 11 14:45:47 2025 GMT Subject: CN=68405c1b-e332 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:9d:7d:b7:c6:f7:58:45:a4:a5:f6:92:34:58: f5:b2:b3:eb:69:65:bc:af:c2:8d:aa:c5:b7:6b:fd: d2:98:c8:38:39:37:0f:a9:fc:92:7a:09:4e:88:47: e0:6b:fb:85:3b:82:93:11:cf:7e:76:0a:bd:f5:bb: 08:3b:85:c3:4d:7d:b9:0a:16:1f:23:21:60:0c:17: a1:b3:93:9d:84:cd:b5:6e:97:cf:44:94:63:41:da: 23:b7:89:8e:c9:ea:84:2d:d8:68:2e:43:fd:ba:67: dd:a2:66:34:b0:0a:87:ad:a8:08:1d:e2:ee:06:b6: 77:10:3e:90:24:d8:9f:2e:94:c9:5a:c8:25:13:be: ea:a6:46:c7:70:83:5f:f1:c1:bb:b3:5c:20:72:7f: 54:4d:e7:85:a6:66:ac:70:e8:64:79:95:6d:d6:cb: 0e:72:cc:31:eb:aa:82:e0:f4:fe:85:ed:65:5a:ca: 36:76:43:a1:2c:00:a1:93:09:7d:5f:3a:11:1e:08: b0:70:44:42:dd:67:5a:02:72:6f:80:22:5d:84:13: 14:ac:eb:35:2b:f9:d0:3d:27:fb:3d:28:85:80:b8: eb:f2:1b:b9:df:4f:76:00:5c:4f:d1:1b:c8:39:a4: a7:c8:b7:c4:17:18:c3:3e:c9:60:92:d1:d5:62:da: 95:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:D2:0A:7A:4F:74:43:19:F8:BB:63:06:16:26:61:EC:E9:4C:73:B0 X509v3 Authority Key Identifier: keyid:AD:4D:65:3B:83:5C:4E:1D:E9:8E:C6:63:76:88:9A:9A:83:76:4B:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rU1lO4NcTh3pjsZjdoiamoN2SwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:e4:9d:d5:84:e2:f3:bc:9b:c5:e3:4e:54:a4:f3:00:a5:27: 54:c7:9a:c8:00:03:9a:6f:e8:78:33:55:e0:7a:7b:8a:32:78: 2c:58:f0:ef:32:7a:1f:e1:f9:9c:ae:9e:93:60:33:65:35:00: f1:e6:39:a9:67:e0:e4:bc:64:31:6c:f4:b9:be:3a:90:22:ec: e5:ca:d7:20:9e:62:61:a6:ee:e7:ec:06:20:28:3b:c0:87:68: b9:1c:4e:7f:35:3b:f2:0f:98:12:77:15:a7:b1:04:85:e1:05: b2:d4:da:4f:af:50:e4:01:ee:1c:3b:7e:f7:53:f1:9f:66:ee: 5d:06:8a:ae:90:ec:97:30:9c:55:5c:50:13:28:84:48:83:28: 31:59:ac:b7:46:81:5a:f0:1e:c1:57:03:30:34:f4:eb:94:2d: 9f:ba:df:e0:5d:08:47:ad:8b:74:55:bc:f9:67:9c:d3:23:47: 67:62:4d:1f:db:2c:a7:34:47:21:37:2e:33:04:c3:3c:80:7d: 19:5f:84:5b:cb:bd:4a:7f:ee:3f:74:0b:09:a0:48:2e:9d:38: c9:ae:80:bc:60:12:95:b0:74:35:30:a7:2d:69:12:79:7f:6d: 2e:ae:0a:df:93:c7:ef:1a:3a:63:ba:12:fe:3b:f4:c7:1a:07: 9a:e1:57:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNIQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEI2NjkxMTAvBgNVBAUTKEFENEQ2NTNCODM1QzRFMURFOThFQzY2Mzc2ODg5QTlB ODM3NjRCMDIwHhcNMjUwNjA0MTQ0NTQ3WhcNMjUwNjExMTQ0NTQ3WjAYMRYwFAYD VQQDEw02ODQwNWMxYi1lMzMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1J19t8b3WEWkpfaSNFj1srPraWW8r8KNqsW3a/3SmMg4OTcPqfySeglOiEfg a/uFO4KTEc9+dgq99bsIO4XDTX25ChYfIyFgDBehs5OdhM21bpfPRJRjQdojt4mO yeqELdhoLkP9umfdomY0sAqHragIHeLuBrZ3ED6QJNifLpTJWsglE77qpkbHcINf 8cG7s1wgcn9UTeeFpmascOhkeZVt1ssOcswx66qC4PT+he1lWso2dkOhLAChkwl9 XzoRHgiwcERC3WdaAnJvgCJdhBMUrOs1K/nQPSf7PSiFgLjr8hu53092AFxP0RvI OaSnyLfEFxjDPslgktHVYtqVFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDzSCnpP dEMZ+LtjBhYmYezpTHOwMB8GA1UdIwQYMBaAFK1NZTuDXE4d6Y7GY3aImpqDdksC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjY2OS85RDVCRjZGRTFE OTIxMUUyODg2RUFBRjUwOEIwMkNEMi9yVTFsTzROY1RoM3Bqc1pqZG9pYW1vTjJT d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JVMWxPNE5jVGgzcGpzWmpkb2lhbW9OMlN3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjY2OS85RDVCRjZGRTFEOTIxMUUyODg2RUFBRjUwOEIwMkNEMi9yVTFsTzROY1Ro M3Bqc1pqZG9pYW1vTjJTd0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCS5J3VhOLzvJvF405UpPMApSdUx5rIAAOab+h4M1XgenuKMngsWPDv Mnof4fmcrp6TYDNlNQDx5jmpZ+DkvGQxbPS5vjqQIuzlytcgnmJhpu7n7AYgKDvA h2i5HE5/NTvyD5gSdxWnsQSF4QWy1NpPr1DkAe4cO373U/GfZu5dBoqukOyXMJxV XFATKIRIgygxWay3RoFa8B7BVwMwNPTrlC2fut/gXQhHrYt0Vbz5Z5zTI0dnYk0f 2yynNEchNy4zBMM8gH0ZX4Rby71Kf+4/dAsJoEgunTjJroC8YBKVsHQ1MKctaRJ5 f20urgrfk8fvGjpjuhL+O/THGgea4VdZ -----END CERTIFICATE-----Generated at Thu Jun 5 20:06:48 2025 by rpki-client