$ rpki-client -vvf rpki.apnic.net/member_repository/A91559AC/C06135165F8D11EAB500BD64C4F9AE02/CmH1ryEJpoNhH7ogbyCM7-NImCE.mft File: CmH1ryEJpoNhH7ogbyCM7-NImCE.mft (raw, json) Hash identifier: Ybptmkj1Xd6hpUoN6wrR0jI8BRvW9gA5Uqyvo1WhIeQ= Subject key identifier: 06:B2:52:6C:00:74:70:DB:D0:32:20:36:24:86:86:9C:D3:0D:37:EF Authority key identifier: 0A:61:F5:AF:21:09:A6:83:61:1F:BA:20:6F:20:8C:EF:E3:48:98:21 Certificate issuer: /CN=A91559AC/serialNumber=0A61F5AF2109A683611FBA206F208CEFE3489821 Certificate serial: 0A89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmH1ryEJpoNhH7ogbyCM7-NImCE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91559AC/C06135165F8D11EAB500BD64C4F9AE02/CmH1ryEJpoNhH7ogbyCM7-NImCE.mft Manifest number: 0A9E Signing time: Fri 30 May 2025 19:48:59 +0000 Manifest this update: Fri 30 May 2025 19:48:59 +0000 Manifest next update: Fri 06 Jun 2025 19:48:59 +0000 Files and hashes: 1: CmH1ryEJpoNhH7ogbyCM7-NImCE.crl (hash: YJfLH/diqPK2Uq6KA6rVxhtzPfc+LQc8nlZrzo9TgEk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91559AC/C06135165F8D11EAB500BD64C4F9AE02/CmH1ryEJpoNhH7ogbyCM7-NImCE.crl rsync://rpki.apnic.net/member_repository/A91559AC/C06135165F8D11EAB500BD64C4F9AE02/CmH1ryEJpoNhH7ogbyCM7-NImCE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmH1ryEJpoNhH7ogbyCM7-NImCE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:48:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2697 (0xa89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91559AC, serialNumber=0A61F5AF2109A683611FBA206F208CEFE3489821 Validity Not Before: May 30 19:48:59 2025 GMT Not After : Jun 6 19:48:59 2025 GMT Subject: CN=683a0bab-4dd4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:ae:25:57:84:2e:3f:b7:b3:e4:a8:2b:99:74: 27:c6:74:a9:09:7e:0e:ac:76:62:d7:53:34:fc:75: b8:e6:e4:40:d4:e5:5d:89:f5:ec:86:81:9f:9d:dd: 14:b4:92:fe:ce:40:f9:21:6b:07:4e:a4:f1:cd:ef: e5:54:ec:33:a2:cb:b5:93:fa:21:88:fe:e8:f2:aa: 27:b1:98:90:e5:a6:7e:a4:10:26:fc:55:cc:35:06: de:c6:06:83:04:d8:5f:d8:d2:d6:f3:8b:41:7a:15: 99:07:0a:14:15:5e:61:be:73:13:2e:46:e9:6d:3e: 70:23:cd:4b:05:7b:0a:ed:6e:c2:71:60:36:5c:81: b2:b6:60:6c:2d:8e:0d:b6:09:bb:42:ed:a3:e3:18: 88:a0:8e:1a:42:56:4d:65:b9:c5:e3:a8:a8:f1:c5: 07:6b:d3:b6:ef:cc:69:79:77:a9:8e:15:64:df:39: e7:14:eb:26:78:37:69:b8:ce:c3:00:70:34:dc:90: 1a:af:18:f9:da:30:b5:f9:bf:ac:72:d9:6f:f6:86: 5d:70:13:f8:c7:2a:e9:c6:60:1d:bf:d2:f3:38:9f: 94:ea:32:f1:d7:07:ae:b0:52:c9:12:53:fa:1f:18: e0:4e:b7:89:e3:02:74:86:ba:0e:eb:ea:8e:96:3c: ca:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:B2:52:6C:00:74:70:DB:D0:32:20:36:24:86:86:9C:D3:0D:37:EF X509v3 Authority Key Identifier: keyid:0A:61:F5:AF:21:09:A6:83:61:1F:BA:20:6F:20:8C:EF:E3:48:98:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91559AC/C06135165F8D11EAB500BD64C4F9AE02/CmH1ryEJpoNhH7ogbyCM7-NImCE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmH1ryEJpoNhH7ogbyCM7-NImCE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91559AC/C06135165F8D11EAB500BD64C4F9AE02/CmH1ryEJpoNhH7ogbyCM7-NImCE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:37:0d:0d:53:1d:1e:15:7a:bf:e5:b5:94:3d:8f:d8:44:42: a0:3b:8f:9c:19:01:90:d7:e1:7b:c0:30:ef:3b:14:04:7e:d1: 16:27:8e:26:76:a6:ee:8c:10:a7:d7:fb:ab:19:82:6c:40:de: 3a:cc:18:b3:a6:76:39:62:e9:ad:fa:13:54:99:d2:d1:61:20: 97:e4:d4:7c:f4:ef:dd:fb:10:b9:82:88:fc:d4:68:30:82:d5: ef:9c:04:8d:48:cf:24:c2:32:cd:65:8b:b0:27:72:d3:75:7d: 71:8e:62:d7:25:34:a7:8e:74:70:33:51:d2:75:b7:a0:10:f9: 0c:9b:90:63:58:90:a0:f8:a1:f3:91:f5:6b:53:2f:22:a3:73: d9:ea:e1:dc:c3:59:68:28:6c:79:a2:5d:f5:6c:0a:8c:b6:96: 36:08:43:ed:c9:bb:7c:1d:b1:ad:a7:9f:41:4b:a2:e3:19:19: 24:12:c0:43:18:89:5d:e7:0a:e5:60:6c:bd:bb:a7:ce:bb:24: b7:19:9e:f0:c8:2f:6b:3d:a8:46:fa:2f:1d:32:0a:83:a8:84: dd:eb:3c:cd:41:bc:25:17:74:e2:55:76:3c:d9:ef:2a:52:8a: a5:82:f7:a7:91:5b:49:5a:7e:2a:30:d3:35:3d:51:6b:81:ac: a9:27:d6:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCokwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU5QUMxMTAvBgNVBAUTKDBBNjFGNUFGMjEwOUE2ODM2MTFGQkEyMDZGMjA4Q0VG RTM0ODk4MjEwHhcNMjUwNTMwMTk0ODU5WhcNMjUwNjA2MTk0ODU5WjAYMRYwFAYD VQQDEw02ODNhMGJhYi00ZGQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoa4lV4QuP7ez5KgrmXQnxnSpCX4OrHZi11M0/HW45uRA1OVdifXshoGfnd0U tJL+zkD5IWsHTqTxze/lVOwzosu1k/ohiP7o8qonsZiQ5aZ+pBAm/FXMNQbexgaD BNhf2NLW84tBehWZBwoUFV5hvnMTLkbpbT5wI81LBXsK7W7CcWA2XIGytmBsLY4N tgm7Qu2j4xiIoI4aQlZNZbnF46io8cUHa9O278xpeXepjhVk3znnFOsmeDdpuM7D AHA03JAarxj52jC1+b+sctlv9oZdcBP4xyrpxmAdv9LzOJ+U6jLx1weusFLJElP6 HxjgTreJ4wJ0hroO6+qOljzKXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAayUmwA dHDb0DIgNiSGhpzTDTfvMB8GA1UdIwQYMBaAFAph9a8hCaaDYR+6IG8gjO/jSJgh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTlBQy9DMDYxMzUxNjVG OEQxMUVBQjUwMEJENjRDNEY5QUUwMi9DbUgxcnlFSnBvTmhIN29nYnlDTTctTklt Q0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NtSDFyeUVKcG9OaEg3b2dieUNNNy1OSW1DRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTlBQy9DMDYxMzUxNjVGOEQxMUVBQjUwMEJENjRDNEY5QUUwMi9DbUgxcnlFSnBv TmhIN29nYnlDTTctTkltQ0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXNw0NUx0eFXq/5bWUPY/YREKgO4+cGQGQ1+F7wDDvOxQEftEWJ44m dqbujBCn1/urGYJsQN46zBizpnY5Yumt+hNUmdLRYSCX5NR89O/d+xC5goj81Ggw gtXvnASNSM8kwjLNZYuwJ3LTdX1xjmLXJTSnjnRwM1HSdbegEPkMm5BjWJCg+KHz kfVrUy8io3PZ6uHcw1loKGx5ol31bAqMtpY2CEPtybt8HbGtp59BS6LjGRkkEsBD GIld5wrlYGy9u6fOuyS3GZ7wyC9rPahG+i8dMgqDqITd6zzNQbwlF3TiVXY82e8q UoqlgvenkVtJWn4qMNM1PVFrgaypJ9YY -----END CERTIFICATE-----Generated at Sat May 31 17:08:55 2025 by rpki-client