$ rpki-client -vvf rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/4hlMc0IL1P2sKL9jO7OvjNcg0LE.mft File: 4hlMc0IL1P2sKL9jO7OvjNcg0LE.mft (raw, json) Hash identifier: Fugbl/rD+9rc4htSKYL2ufQfMCQ5TlP/GwygjYQsUic= Subject key identifier: C6:34:8C:CE:DB:13:0A:37:F1:C0:8C:9E:E4:09:6E:B9:AE:B5:D8:32 Authority key identifier: E2:19:4C:73:42:0B:D4:FD:AC:28:BF:63:3B:B3:AF:8C:D7:20:D0:B1 Certificate issuer: /CN=A91536B7/serialNumber=E2194C73420BD4FDAC28BF633BB3AF8CD720D0B1 Certificate serial: 4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hlMc0IL1P2sKL9jO7OvjNcg0LE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/4hlMc0IL1P2sKL9jO7OvjNcg0LE.mft Manifest number: 502A Signing time: Fri 30 May 2025 16:35:33 +0000 Manifest this update: Fri 30 May 2025 16:35:32 +0000 Manifest next update: Fri 06 Jun 2025 16:35:32 +0000 Files and hashes: 1: 4hlMc0IL1P2sKL9jO7OvjNcg0LE.crl (hash: 0sZhrMMa1Pe7k918yI0nLUYfR40T6KMIzuDcwlro290=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/4hlMc0IL1P2sKL9jO7OvjNcg0LE.crl rsync://rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/4hlMc0IL1P2sKL9jO7OvjNcg0LE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hlMc0IL1P2sKL9jO7OvjNcg0LE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 16:35:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77 (0x4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91536B7, serialNumber=E2194C73420BD4FDAC28BF633BB3AF8CD720D0B1 Validity Not Before: May 30 16:35:32 2025 GMT Not After : Jun 6 16:35:32 2025 GMT Subject: CN=6839de55-6da1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:49:fc:8d:86:2b:f1:a8:d6:e1:16:37:dc:79: 46:24:67:98:92:d6:1b:7e:70:df:cd:b9:63:4c:1e: 1f:94:cb:db:03:33:d9:5b:fd:2f:27:2f:c0:90:e2: bd:4d:78:a3:2c:64:dd:9a:21:55:dd:18:1f:d1:17: 13:e2:be:46:95:c9:ad:2e:9b:12:1f:13:b8:39:8e: 4a:c1:9c:34:d2:67:9f:fc:09:b3:d6:e0:65:1b:79: f3:e6:a9:17:d9:54:90:7f:89:3a:8d:e1:17:09:6e: 9c:eb:f8:63:68:f7:df:9b:42:80:52:0b:4c:6c:8a: 69:e8:82:57:45:1f:bd:43:33:a3:c2:ff:42:c0:fe: 80:8c:64:65:52:ed:1f:f6:d2:ec:01:3f:87:4c:9a: 5b:31:2b:02:e0:b5:7b:53:82:6a:05:7a:96:9c:dc: 65:2d:e6:c1:36:c4:23:c7:c2:15:fb:8e:b5:eb:07: c8:fd:20:9c:ff:3b:a3:6f:2a:82:59:89:04:6a:ff: 00:0c:e3:ab:58:ec:c3:03:0b:92:c9:0b:aa:7d:08: bc:82:32:82:cf:dd:6d:a2:6c:85:1d:72:b0:fa:5d: 75:5d:51:54:0f:19:d5:67:1c:ec:ae:cb:db:e0:e3: 81:d9:ae:f3:16:07:c8:41:26:c3:35:53:22:67:4d: b0:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:34:8C:CE:DB:13:0A:37:F1:C0:8C:9E:E4:09:6E:B9:AE:B5:D8:32 X509v3 Authority Key Identifier: keyid:E2:19:4C:73:42:0B:D4:FD:AC:28:BF:63:3B:B3:AF:8C:D7:20:D0:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/4hlMc0IL1P2sKL9jO7OvjNcg0LE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hlMc0IL1P2sKL9jO7OvjNcg0LE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/4hlMc0IL1P2sKL9jO7OvjNcg0LE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:d4:fd:8c:53:ca:6f:5f:5a:15:85:92:ba:44:fc:1e:dc:9e: f2:ab:e2:a0:ce:87:09:03:dd:cd:17:d2:fb:92:26:5e:08:31: 3e:25:4b:e4:fa:8b:0a:77:21:50:40:e8:70:2e:e3:82:bd:55: f8:0b:a8:09:74:4e:d7:72:6a:9a:54:b3:aa:23:e1:46:2a:b0: bf:fc:f8:63:7c:b1:9b:1c:06:98:de:b7:cc:87:63:ba:b3:bb: 07:b5:51:82:e1:63:a4:ba:6a:5e:28:a3:60:3e:f3:01:90:fe: dc:a2:7f:e6:c0:3b:0e:ff:26:9e:37:59:56:17:0a:b6:5d:ed: d1:81:93:55:0c:ce:87:6f:89:d2:85:2b:6a:79:f9:04:d7:08: 76:3f:ac:7d:c1:a2:c2:01:7f:53:71:db:0f:b0:9d:6b:38:87: db:f6:1b:5a:23:0f:e4:f8:51:46:af:a3:0c:13:d5:75:33:30: dd:3a:03:85:41:6f:97:2c:f2:86:63:21:52:65:f5:35:bd:52: db:58:e0:a0:e7:e2:aa:14:85:2e:74:9d:d3:6f:81:e6:c0:9f: fb:30:9b:55:93:82:7f:f3:46:c3:d0:18:bd:85:02:c1:2a:eb: 97:41:0e:b5:4a:27:ec:e1:42:4a:81:37:32:bf:b6:07:f0:53: 2b:a4:bf:de -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 MzZCNzExMC8GA1UEBRMoRTIxOTRDNzM0MjBCRDRGREFDMjhCRjYzM0JCM0FGOENE NzIwRDBCMTAeFw0yNTA1MzAxNjM1MzJaFw0yNTA2MDYxNjM1MzJaMBgxFjAUBgNV BAMTDTY4MzlkZTU1LTZkYTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDqSfyNhivxqNbhFjfceUYkZ5iS1ht+cN/NuWNMHh+Uy9sDM9lb/S8nL8CQ4r1N eKMsZN2aIVXdGB/RFxPivkaVya0umxIfE7g5jkrBnDTSZ5/8CbPW4GUbefPmqRfZ VJB/iTqN4RcJbpzr+GNo99+bQoBSC0xsimnogldFH71DM6PC/0LA/oCMZGVS7R/2 0uwBP4dMmlsxKwLgtXtTgmoFepac3GUt5sE2xCPHwhX7jrXrB8j9IJz/O6NvKoJZ iQRq/wAM46tY7MMDC5LJC6p9CLyCMoLP3W2ibIUdcrD6XXVdUVQPGdVnHOyuy9vg 44HZrvMWB8hBJsM1UyJnTbDZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUxjSMztsT CjfxwIye5Aluua612DIwHwYDVR0jBBgwFoAU4hlMc0IL1P2sKL9jO7OvjNcg0LEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUzNkI3L0YxQ0QyN0I0NzNB RDExRTdBQ0JEMDI1RUM0RjlBRTAyLzRobE1jMElMMVAyc0tMOWpPN092ak5jZzBM RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNGhsTWMwSUwxUDJzS0w5ak83T3ZqTmNnMExFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUz NkI3L0YxQ0QyN0I0NzNBRDExRTdBQ0JEMDI1RUM0RjlBRTAyLzRobE1jMElMMVAy c0tMOWpPN092ak5jZzBMRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADDU/YxTym9fWhWFkrpE/B7cnvKr4qDOhwkD3c0X0vuSJl4IMT4lS+T6 iwp3IVBA6HAu44K9VfgLqAl0TtdyappUs6oj4UYqsL/8+GN8sZscBpjet8yHY7qz uwe1UYLhY6S6al4oo2A+8wGQ/tyif+bAOw7/Jp43WVYXCrZd7dGBk1UMzodvidKF K2p5+QTXCHY/rH3BosIBf1Nx2w+wnWs4h9v2G1ojD+T4UUavowwT1XUzMN06A4VB b5cs8oZjIVJl9TW9UttY4KDn4qoUhS50ndNvgebAn/swm1WTgn/zRsPQGL2FAsEq 65dBDrVKJ+zhQkqBNzK/tgfwUyukv94= -----END CERTIFICATE-----Generated at Sat May 31 16:32:15 2025 by rpki-client