$ rpki-client -vvf rpki.apnic.net/member_repository/A9155725/5A66CF68083A11F09FF1D074C4F9AE02/aR7cVncnIjOjjzNRkaropa4q97k.mft File: aR7cVncnIjOjjzNRkaropa4q97k.mft (raw, json) Hash identifier: Nk+YkPYDoevLRGw8rN7sUyMeZWwZdCuOLsqiPBE7xlA= Subject key identifier: 46:F7:9C:32:7D:87:D6:07:C4:EF:A0:32:6F:13:BA:0B:19:23:03:72 Authority key identifier: 69:1E:DC:56:77:27:22:33:A3:8F:33:51:91:AA:E8:A5:AE:2A:F7:B9 Certificate issuer: /CN=A9155725/serialNumber=691EDC5677272233A38F335191AAE8A5AE2AF7B9 Certificate serial: 24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aR7cVncnIjOjjzNRkaropa4q97k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155725/5A66CF68083A11F09FF1D074C4F9AE02/aR7cVncnIjOjjzNRkaropa4q97k.mft Manifest number: 24 Signing time: Sat 31 May 2025 07:24:10 +0000 Manifest this update: Sat 31 May 2025 07:24:09 +0000 Manifest next update: Sat 07 Jun 2025 07:24:09 +0000 Files and hashes: 1: aR7cVncnIjOjjzNRkaropa4q97k.crl (hash: pQ67wF/2WArXppWR2MPLInhv4S9izv1B2H9jz7aPSd0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155725/5A66CF68083A11F09FF1D074C4F9AE02/aR7cVncnIjOjjzNRkaropa4q97k.crl rsync://rpki.apnic.net/member_repository/A9155725/5A66CF68083A11F09FF1D074C4F9AE02/aR7cVncnIjOjjzNRkaropa4q97k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aR7cVncnIjOjjzNRkaropa4q97k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 07:24:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36 (0x24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155725, serialNumber=691EDC5677272233A38F335191AAE8A5AE2AF7B9 Validity Not Before: May 31 07:24:09 2025 GMT Not After : Jun 7 07:24:09 2025 GMT Subject: CN=683aae99-ca2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:d5:79:71:48:61:9a:91:cc:b0:a8:69:81:77: ab:aa:ff:74:ec:b1:1f:87:a2:aa:c0:f7:79:b7:69: 86:44:69:3a:f4:e6:40:e1:90:53:c6:46:bb:3c:a4: d3:9c:b5:0d:90:40:23:54:79:10:fd:13:ec:43:12: 6c:74:f5:e5:17:93:50:98:1a:b8:be:fd:36:a6:c3: f1:a7:06:27:68:9b:25:fe:2b:90:2a:10:64:a5:3c: ee:36:d2:b1:74:97:d6:24:15:96:79:19:1b:21:9a: 6b:ce:9f:2f:cd:ff:b2:4b:f0:d1:7f:92:25:b8:11: d3:d5:84:a4:c1:9b:9c:e3:91:f6:2e:01:ca:45:e7: a3:7a:3c:2a:a3:73:e5:6f:4a:97:30:6b:d9:31:c7: ff:a4:52:86:04:50:7a:5b:89:ef:d8:eb:0a:43:62: d6:0d:92:56:19:1a:e9:26:ee:3d:1b:ad:a5:69:04: bf:c8:0a:8d:6d:df:3f:a7:0d:37:31:fb:e5:fb:c4: 7c:a1:77:98:f6:f3:6c:3d:89:19:75:99:d5:81:6d: 38:23:9b:cf:00:76:ab:77:fc:30:0a:f1:84:ff:24: be:88:5c:8c:24:d5:5a:43:fc:51:cf:e3:18:c0:fb: f9:af:69:9b:a6:42:57:da:6c:f9:df:30:1c:2f:a2: f2:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:F7:9C:32:7D:87:D6:07:C4:EF:A0:32:6F:13:BA:0B:19:23:03:72 X509v3 Authority Key Identifier: keyid:69:1E:DC:56:77:27:22:33:A3:8F:33:51:91:AA:E8:A5:AE:2A:F7:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155725/5A66CF68083A11F09FF1D074C4F9AE02/aR7cVncnIjOjjzNRkaropa4q97k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aR7cVncnIjOjjzNRkaropa4q97k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155725/5A66CF68083A11F09FF1D074C4F9AE02/aR7cVncnIjOjjzNRkaropa4q97k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption dd:47:24:bb:a6:d6:68:0c:cf:44:23:a7:44:ee:b7:cd:cd:e8: 8f:70:49:8f:d1:16:e4:9f:56:6f:74:60:60:33:1c:10:9b:ce: 3b:2e:8f:cc:a2:af:03:6b:c5:b9:d6:29:fc:eb:b7:7a:ac:72: 46:38:4b:bb:e4:3e:7c:8e:f5:f3:fd:61:ec:a8:7b:f3:2c:b3: f0:52:d1:62:30:0b:bb:c3:bf:a2:c9:21:36:1f:54:a2:77:81: e2:fe:d1:10:38:51:3f:c3:d8:8d:20:2d:33:ac:3c:56:32:03: 45:4f:cc:9d:6f:34:e0:1a:ac:77:9a:60:aa:5c:1e:0e:e5:2d: f0:c3:ce:89:89:42:dc:5a:7d:70:85:7a:ee:c6:86:4a:8d:2f: 7d:ba:d8:01:a5:cd:25:ce:61:57:c1:20:83:c0:58:58:7b:4b: e9:30:f8:6a:83:d4:f2:7c:09:48:d3:48:db:14:47:19:84:fa: 5b:dc:74:12:28:fe:47:bb:83:33:63:fc:9d:5b:78:e5:3e:2e: e4:57:7e:4a:44:43:e6:af:14:ec:2a:e0:82:38:64:f8:93:42: d5:bb:bc:ec:54:0e:25:0a:88:d1:6a:3e:99:0a:3a:5b:f9:d3: 02:46:35:6e:81:94:23:44:e2:38:37:7a:fd:03:a9:b1:bf:6a: bb:22:d1:da -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NTcyNTExMC8GA1UEBRMoNjkxRURDNTY3NzI3MjIzM0EzOEYzMzUxOTFBQUU4QTVB RTJBRjdCOTAeFw0yNTA1MzEwNzI0MDlaFw0yNTA2MDcwNzI0MDlaMBgxFjAUBgNV BAMTDTY4M2FhZTk5LWNhMmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC71XlxSGGakcywqGmBd6uq/3TssR+HoqrA93m3aYZEaTr05kDhkFPGRrs8pNOc tQ2QQCNUeRD9E+xDEmx09eUXk1CYGri+/Tamw/GnBidomyX+K5AqEGSlPO420rF0 l9YkFZZ5GRshmmvOny/N/7JL8NF/kiW4EdPVhKTBm5zjkfYuAcpF56N6PCqjc+Vv Spcwa9kxx/+kUoYEUHpbie/Y6wpDYtYNklYZGukm7j0braVpBL/ICo1t3z+nDTcx ++X7xHyhd5j282w9iRl1mdWBbTgjm88Adqt3/DAK8YT/JL6IXIwk1VpD/FHP4xjA +/mvaZumQlfabPnfMBwvovIRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQURvecMn2H 1gfE76AybxO6CxkjA3IwHwYDVR0jBBgwFoAUaR7cVncnIjOjjzNRkaropa4q97kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1NzI1LzVBNjZDRjY4MDgz QTExRjA5RkYxRDA3NEM0RjlBRTAyL2FSN2NWbmNuSWpPamp6TlJrYXJvcGE0cTk3 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYVI3Y1ZuY25Jak9qanpOUmthcm9wYTRxOTdrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1 NzI1LzVBNjZDRjY4MDgzQTExRjA5RkYxRDA3NEM0RjlBRTAyL2FSN2NWbmNuSWpP amp6TlJrYXJvcGE0cTk3ay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAN1HJLum1mgMz0Qjp0Tut83N6I9wSY/RFuSfVm90YGAzHBCbzjsuj8yi rwNrxbnWKfzrt3qsckY4S7vkPnyO9fP9Yeyoe/Mss/BS0WIwC7vDv6LJITYfVKJ3 geL+0RA4UT/D2I0gLTOsPFYyA0VPzJ1vNOAarHeaYKpcHg7lLfDDzomJQtxafXCF eu7GhkqNL3262AGlzSXOYVfBIIPAWFh7S+kw+GqD1PJ8CUjTSNsURxmE+lvcdBIo /ke7gzNj/J1beOU+LuRXfkpEQ+avFOwq4II4ZPiTQtW7vOxUDiUKiNFqPpkKOlv5 0wJGNW6BlCNE4jg3ev0DqbG/arsi0do= -----END CERTIFICATE-----Generated at Sat May 31 17:47:18 2025 by rpki-client