$ rpki-client -vvf rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.mft File: 28byJW3eXCxGqA6yQy8lcu3FN9Y.mft (raw, json) Hash identifier: jXqYJbyZEELG2ZV0QglZ9LCzJUKfX2zrthS6kDCt/PE= Subject key identifier: 00:19:79:FB:F0:D9:3D:09:F6:A9:3D:9A:C4:E0:FD:99:53:E4:25:5A Authority key identifier: DB:C6:F2:25:6D:DE:5C:2C:46:A8:0E:B2:43:2F:25:72:ED:C5:37:D6 Certificate issuer: /CN=A914D0E3/serialNumber=DBC6F2256DDE5C2C46A80EB2432F2572EDC537D6 Certificate serial: 74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28byJW3eXCxGqA6yQy8lcu3FN9Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.mft Manifest number: 74 Signing time: Sat 31 May 2025 06:22:50 +0000 Manifest this update: Sat 31 May 2025 06:22:49 +0000 Manifest next update: Sat 07 Jun 2025 06:22:49 +0000 Files and hashes: 1: 28byJW3eXCxGqA6yQy8lcu3FN9Y.crl (hash: UrHJ/M4zDVrYqJ8ecFUQKkO1QTrdthZ413DPqkhoTxY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.crl rsync://rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28byJW3eXCxGqA6yQy8lcu3FN9Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:22:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 116 (0x74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D0E3, serialNumber=DBC6F2256DDE5C2C46A80EB2432F2572EDC537D6 Validity Not Before: May 31 06:22:49 2025 GMT Not After : Jun 7 06:22:49 2025 GMT Subject: CN=683aa039-f1ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:e2:c7:67:4d:b4:35:66:f8:d4:55:8e:d3:55: 40:83:9b:ae:39:0b:2c:d5:3c:6e:d3:c2:09:a5:f9: 26:01:8e:db:39:5a:5c:83:97:b3:de:77:57:42:33: c9:f7:80:5a:f1:dd:22:15:98:7f:17:a7:bc:b7:6b: d9:96:c5:97:f3:e6:bb:45:8c:d1:62:f9:c7:cc:c6: 0e:2d:f8:d9:0e:74:ce:a8:f5:48:83:0e:1c:e0:dc: 7a:fa:3c:69:cf:07:4e:e5:f5:f8:e6:6c:94:a4:99: 3a:fc:9c:87:28:e4:31:67:88:ad:f4:7a:09:5e:bb: fd:68:43:86:b5:4e:57:ff:ee:ad:f0:bc:7f:d2:3f: fe:ca:f5:4b:6f:a6:25:61:f0:23:88:c2:5d:78:35: 37:e6:66:40:4d:78:67:6c:11:56:8f:01:f7:ef:20: 5a:c9:d8:30:43:d1:f6:7a:8e:46:64:20:17:43:d0: 5a:b2:01:4a:63:d1:1d:29:a8:c0:ee:00:d6:d2:c1: da:37:9a:f0:24:58:43:c7:03:7d:83:90:03:d0:04: 92:bb:8e:64:c2:74:9c:47:5c:37:b5:24:f6:44:4b: ae:ed:6b:96:6b:bb:fc:62:4a:1e:cf:bd:18:ca:62: 12:96:37:30:af:ae:de:4f:14:b2:3f:55:b9:6c:76: 1b:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:19:79:FB:F0:D9:3D:09:F6:A9:3D:9A:C4:E0:FD:99:53:E4:25:5A X509v3 Authority Key Identifier: keyid:DB:C6:F2:25:6D:DE:5C:2C:46:A8:0E:B2:43:2F:25:72:ED:C5:37:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28byJW3eXCxGqA6yQy8lcu3FN9Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:e4:41:5d:6d:0a:7d:f0:ef:91:8c:dd:ec:05:08:99:80:e9: 2c:23:96:ff:18:92:d3:ab:69:0f:e9:08:0e:73:c0:e0:28:9c: 49:73:60:de:da:16:3f:cb:fa:82:69:8d:b3:ad:ea:8b:2d:e1: 6c:5f:4e:37:fd:a8:22:9c:e7:74:76:2b:dd:27:be:16:99:e9: ce:86:9c:36:70:4c:26:e4:67:34:d4:8e:4d:41:0c:ff:51:92: ce:4b:a9:bf:dd:f6:dd:e9:a9:d6:00:ea:8d:72:dc:c1:7d:e2: b4:8d:07:0d:8c:28:77:bc:00:9a:8a:0c:92:d9:fc:e7:63:33: 57:2d:f8:c0:75:bb:ef:b5:53:6d:c6:05:73:31:d0:29:82:a3: bc:bd:0f:06:64:cc:56:9b:98:2a:c6:cc:3d:c1:0d:d4:23:ed: 41:58:cd:e1:01:10:0b:df:0a:66:55:81:71:09:f8:34:a8:7f: ae:f4:ce:59:ab:90:af:92:af:ac:95:1b:9d:b7:11:c4:05:70: 5b:0d:2d:1f:be:f8:2f:4e:fd:d5:a0:87:4e:d3:f6:6d:67:e4: a0:c4:8b:8a:11:59:d7:d5:d7:56:f5:a3:ca:12:fb:5d:b9:04: be:f4:4a:0e:6e:bf:1a:e3:c2:ba:d2:e5:8f:29:6f:24:78:1f: 89:26:04:e0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 RDBFMzExMC8GA1UEBRMoREJDNkYyMjU2RERFNUMyQzQ2QTgwRUIyNDMyRjI1NzJF REM1MzdENjAeFw0yNTA1MzEwNjIyNDlaFw0yNTA2MDcwNjIyNDlaMBgxFjAUBgNV BAMTDTY4M2FhMDM5LWYxYWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDh4sdnTbQ1ZvjUVY7TVUCDm645CyzVPG7Twgml+SYBjts5WlyDl7Ped1dCM8n3 gFrx3SIVmH8Xp7y3a9mWxZfz5rtFjNFi+cfMxg4t+NkOdM6o9UiDDhzg3Hr6PGnP B07l9fjmbJSkmTr8nIco5DFniK30egleu/1oQ4a1Tlf/7q3wvH/SP/7K9UtvpiVh 8COIwl14NTfmZkBNeGdsEVaPAffvIFrJ2DBD0fZ6jkZkIBdD0FqyAUpj0R0pqMDu ANbSwdo3mvAkWEPHA32DkAPQBJK7jmTCdJxHXDe1JPZES67ta5Zru/xiSh7PvRjK YhKWNzCvrt5PFLI/VblsdhulAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUABl5+/DZ PQn2qT2axOD9mVPkJVowHwYDVR0jBBgwFoAU28byJW3eXCxGqA6yQy8lcu3FN9Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTREMEUzL0IzNUFCOUZBOEM3 RTExRUY4RTkyRTcxQkM0RjlBRTAyLzI4YnlKVzNlWEN4R3FBNnlReThsY3UzRk45 WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMjhieUpXM2VYQ3hHcUE2eVF5OGxjdTNGTjlZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRE MEUzL0IzNUFCOUZBOEM3RTExRUY4RTkyRTcxQkM0RjlBRTAyLzI4YnlKVzNlWEN4 R3FBNnlReThsY3UzRk45WS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHPkQV1tCn3w75GM3ewFCJmA6Swjlv8YktOraQ/pCA5zwOAonElzYN7a Fj/L+oJpjbOt6ost4WxfTjf9qCKc53R2K90nvhaZ6c6GnDZwTCbkZzTUjk1BDP9R ks5Lqb/d9t3pqdYA6o1y3MF94rSNBw2MKHe8AJqKDJLZ/OdjM1ct+MB1u++1U23G BXMx0CmCo7y9DwZkzFabmCrGzD3BDdQj7UFYzeEBEAvfCmZVgXEJ+DSof670zlmr kK+Sr6yVG523EcQFcFsNLR+++C9O/dWgh07T9m1n5KDEi4oRWdfV11b1o8oS+125 BL70Sg5uvxrjwrrS5Y8pbyR4H4kmBOA= -----END CERTIFICATE-----Generated at Sat May 31 17:04:53 2025 by rpki-client