$ rpki-client -vvf rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.mft File: 5vEsD995brDfK2AuWsQsy4OyLhg.mft (raw, json) Hash identifier: G2rCMGIXhPW36rDwTU0tcat//iEf4D/UK7Nu41yCF40= Subject key identifier: 7C:97:AE:18:C7:3B:E3:55:0D:C0:E3:BC:31:A5:2F:68:2A:15:5A:42 Authority key identifier: E6:F1:2C:0F:DF:79:6E:B0:DF:2B:60:2E:5A:C4:2C:CB:83:B2:2E:18 Certificate issuer: /CN=A914E3B7/serialNumber=E6F12C0FDF796EB0DF2B602E5AC42CCB83B22E18 Certificate serial: 3484 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vEsD995brDfK2AuWsQsy4OyLhg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.mft Manifest number: 3481 Signing time: Sat 31 May 2025 15:09:22 +0000 Manifest this update: Sat 31 May 2025 15:09:21 +0000 Manifest next update: Sat 07 Jun 2025 15:09:21 +0000 Files and hashes: 1: 5vEsD995brDfK2AuWsQsy4OyLhg.crl (hash: uV7r7caEoQgf+N6nWMtqdaUtUyzX1/BWDoXwVtJ2Bo8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.crl rsync://rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vEsD995brDfK2AuWsQsy4OyLhg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 15:09:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13444 (0x3484) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E3B7, serialNumber=E6F12C0FDF796EB0DF2B602E5AC42CCB83B22E18 Validity Not Before: May 31 15:09:21 2025 GMT Not After : Jun 7 15:09:21 2025 GMT Subject: CN=683b1ba2-3ee9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:1b:53:1d:ce:19:ba:99:68:e0:d9:21:4e:b5: 3a:d0:a1:00:27:09:6e:c5:42:e1:70:97:1a:dd:2d: 87:ac:ee:3d:ea:c6:39:38:a8:cc:cf:95:06:09:9e: b8:d3:13:2b:ae:24:cc:19:8c:e8:f4:34:f9:fb:0f: d7:df:ce:17:00:6f:d2:ed:8a:61:7c:4d:5e:68:29: 35:25:1e:fa:62:1a:bd:0c:ac:45:bd:d8:52:46:d0: 80:a6:fc:a9:3f:8f:30:47:f3:09:47:e2:b7:df:05: 13:0c:c0:0a:0f:5a:4f:7a:d9:a9:07:ce:c1:2a:03: 08:5a:ca:96:03:72:9d:71:51:6a:60:9f:55:5d:e8: 6b:b8:19:b3:26:72:b2:a8:9b:c8:f8:b3:53:a2:b4: 07:55:7d:8f:e4:f2:bc:bd:e9:30:99:ba:70:4c:31: c4:53:e2:00:60:0c:6b:8b:c9:d1:18:c5:e7:0d:f7: 45:f3:3a:12:7f:3d:9b:0e:02:9c:d7:2d:11:48:ca: ef:fd:9e:07:55:65:36:4c:b3:21:50:4c:d8:dd:d4: b1:cb:95:82:a7:87:4c:92:94:7c:c2:04:a1:6d:e7: f9:b7:42:57:d9:dd:a1:10:9e:51:09:9f:4f:ed:82: ef:c1:34:40:00:d5:eb:ef:91:67:c8:8f:b6:d6:c3: fb:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:97:AE:18:C7:3B:E3:55:0D:C0:E3:BC:31:A5:2F:68:2A:15:5A:42 X509v3 Authority Key Identifier: keyid:E6:F1:2C:0F:DF:79:6E:B0:DF:2B:60:2E:5A:C4:2C:CB:83:B2:2E:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vEsD995brDfK2AuWsQsy4OyLhg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:dc:07:c6:fe:75:20:94:8b:73:83:1e:e9:cf:e3:ad:ba:d1: 34:ab:4c:c1:53:80:4e:8b:47:0b:25:1b:ca:09:d2:fb:36:2f: ce:39:9c:2b:58:4e:09:9e:e7:38:b3:f9:8f:fc:5a:ac:f0:85: 93:1d:58:66:2c:2a:2d:d6:a9:a5:c8:68:c2:6d:5d:37:05:ea: 9a:7b:5e:d6:61:32:1a:70:b1:b2:df:b6:3c:7b:7c:4d:c8:4b: af:29:12:7e:60:2d:9c:8f:85:b8:d1:36:2b:23:2f:60:9d:20: 11:f6:90:fc:8a:2d:4f:e9:fc:70:3b:a7:44:b1:09:c8:28:be: 83:15:ba:9b:a8:4f:74:6c:f9:15:e2:e6:e0:e5:c0:7d:71:7e: 5a:72:29:68:90:83:f7:59:fa:ed:94:b0:be:fb:d0:8a:45:2e: 55:0f:c3:fb:92:74:fa:49:3b:c3:1b:b1:c1:4a:6c:b0:c7:c3: ad:62:7e:5c:6c:e9:89:9b:df:0c:68:6f:4d:e0:ed:cd:f1:e2: ed:8b:a4:d2:82:35:34:31:33:ba:12:5b:78:7b:8c:d1:7d:bb: eb:3b:4f:d8:8f:4c:96:75:ba:6d:54:84:96:b1:47:ce:7c:d9: 9e:bf:4c:fd:28:b6:6a:c2:8e:13:6a:b4:c3:95:74:64:07:9d: 37:8c:3b:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNIQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUzQjcxMTAvBgNVBAUTKEU2RjEyQzBGREY3OTZFQjBERjJCNjAyRTVBQzQyQ0NC ODNCMjJFMTgwHhcNMjUwNTMxMTUwOTIxWhcNMjUwNjA3MTUwOTIxWjAYMRYwFAYD VQQDEw02ODNiMWJhMi0zZWU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApxtTHc4Zuplo4NkhTrU60KEAJwluxULhcJca3S2HrO496sY5OKjMz5UGCZ64 0xMrriTMGYzo9DT5+w/X384XAG/S7YphfE1eaCk1JR76Yhq9DKxFvdhSRtCApvyp P48wR/MJR+K33wUTDMAKD1pPetmpB87BKgMIWsqWA3KdcVFqYJ9VXehruBmzJnKy qJvI+LNTorQHVX2P5PK8vekwmbpwTDHEU+IAYAxri8nRGMXnDfdF8zoSfz2bDgKc 1y0RSMrv/Z4HVWU2TLMhUEzY3dSxy5WCp4dMkpR8wgShbef5t0JX2d2hEJ5RCZ9P 7YLvwTRAANXr75FnyI+21sP7swIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHyXrhjH O+NVDcDjvDGlL2gqFVpCMB8GA1UdIwQYMBaAFObxLA/feW6w3ytgLlrELMuDsi4Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTNCNy85RkFFODRGQTFE QTQxMUUyQUMyQkFGOUEwOEIwMkNEMi81dkVzRDk5NWJyRGZLMkF1V3NRc3k0T3lM aGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzV2RXNEOTk1YnJEZksyQXVXc1FzeTRPeUxoZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTNCNy85RkFFODRGQTFEQTQxMUUyQUMyQkFGOUEwOEIwMkNEMi81dkVzRDk5NWJy RGZLMkF1V3NRc3k0T3lMaGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAu3AfG/nUglItzgx7pz+OtutE0q0zBU4BOi0cLJRvKCdL7Ni/OOZwr WE4Jnuc4s/mP/Fqs8IWTHVhmLCot1qmlyGjCbV03Beqae17WYTIacLGy37Y8e3xN yEuvKRJ+YC2cj4W40TYrIy9gnSAR9pD8ii1P6fxwO6dEsQnIKL6DFbqbqE90bPkV 4ubg5cB9cX5acilokIP3WfrtlLC++9CKRS5VD8P7knT6STvDG7HBSmywx8OtYn5c bOmJm98MaG9N4O3N8eLti6TSgjU0MTO6Elt4e4zRfbvrO0/Yj0yWdbptVISWsUfO fNmev0z9KLZqwo4TarTDlXRkB503jDvQ -----END CERTIFICATE-----Generated at Sat May 31 17:20:39 2025 by rpki-client