$ rpki-client -vvf rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.mft File: 5k3PxJR4oTweMa6HKi-sEL-4lTE.mft (raw, json) Hash identifier: HDJ0ARQnbZ+PZB67kYQokKtaEbTyf+Tr8Lk4dNYDcYE= Subject key identifier: 75:4A:C7:32:08:BD:50:97:6D:45:9F:BA:F0:65:1F:A8:E5:D4:61:F2 Authority key identifier: E6:4D:CF:C4:94:78:A1:3C:1E:31:AE:87:2A:2F:AC:10:BF:B8:95:31 Certificate issuer: /CN=A915F67F/serialNumber=E64DCFC49478A13C1E31AE872A2FAC10BFB89531 Certificate serial: 348B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5k3PxJR4oTweMa6HKi-sEL-4lTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.mft Manifest number: 348B Signing time: Sun 08 Jun 2025 14:32:39 +0000 Manifest this update: Sun 08 Jun 2025 14:32:38 +0000 Manifest next update: Sun 15 Jun 2025 14:32:38 +0000 Files and hashes: 1: 5k3PxJR4oTweMa6HKi-sEL-4lTE.crl (hash: IQq4Zx8E7xb05af+SRSO5E/VuCiis2P4BRROlSpM8Yg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.crl rsync://rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5k3PxJR4oTweMa6HKi-sEL-4lTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 15 Jun 2025 14:32:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13451 (0x348b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915F67F, serialNumber=E64DCFC49478A13C1E31AE872A2FAC10BFB89531 Validity Not Before: Jun 8 14:32:38 2025 GMT Not After : Jun 15 14:32:38 2025 GMT Subject: CN=68459f07-8a3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:a8:df:01:42:ac:ad:82:c0:2e:1a:f5:9c:3f: df:af:42:40:06:ff:54:c7:97:7b:94:e5:a5:58:ca: ca:49:3b:3c:fd:de:43:95:20:22:ab:0c:2b:fc:d7: 7b:de:b9:c4:b3:9f:bb:f2:5b:a1:5e:d1:82:9e:93: 51:0f:3f:7b:15:aa:07:20:f4:44:19:41:f5:d2:05: 78:a6:ce:0a:1f:d9:9f:01:d2:3c:30:ce:e8:8f:d7: 99:21:11:d7:62:7e:cb:1c:e4:6d:45:cb:e7:fa:f7: 32:78:4b:e0:93:df:3e:70:0d:36:35:19:88:71:ed: 7d:dd:d6:f9:c0:77:7d:e6:53:25:76:89:f2:2b:13: df:84:24:f0:8e:fe:86:8c:5f:b5:aa:17:ec:e0:9b: 92:e4:b4:7d:98:2f:96:3d:fa:6a:c9:d3:3d:be:6c: 03:e2:53:73:c3:79:9d:83:a3:43:8f:f6:cc:0b:f3: 2c:3d:91:66:30:d0:40:17:b4:50:b9:5a:66:9f:b5: fb:f3:8f:2d:9c:60:c0:bc:29:d2:04:8f:33:bc:44: 85:71:00:17:87:d4:63:f6:b4:c8:15:c2:82:91:98: 8a:6c:f5:c5:af:09:44:59:4c:17:67:44:36:cd:b6: a7:a2:a4:05:97:2b:f7:1d:20:3a:d9:a2:9a:73:cd: fa:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:4A:C7:32:08:BD:50:97:6D:45:9F:BA:F0:65:1F:A8:E5:D4:61:F2 X509v3 Authority Key Identifier: keyid:E6:4D:CF:C4:94:78:A1:3C:1E:31:AE:87:2A:2F:AC:10:BF:B8:95:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5k3PxJR4oTweMa6HKi-sEL-4lTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:06:10:6e:c5:0a:12:fa:f2:59:9e:92:1e:30:b3:fd:62:50: 30:5b:93:9c:f1:b1:5c:0e:a2:32:68:f8:e7:d8:e5:c3:3f:77: b1:39:5d:55:81:7a:87:b8:64:c2:d8:85:c2:bd:5a:d5:4d:fa: 0d:fc:c3:9b:e6:47:56:a8:47:4d:03:45:c2:23:8b:c1:ee:c6: d7:2a:b3:11:06:9b:86:4c:8a:95:68:67:b6:eb:84:3a:e1:f2: b4:67:59:f5:3b:5b:6f:6e:00:ef:d1:38:a0:63:e5:16:80:39: 10:bb:f7:31:89:d6:ee:2c:14:b8:14:2e:8f:f7:29:c9:32:72: 26:48:14:ce:8f:e2:dc:62:15:ea:79:ae:5a:9e:e6:bb:d0:01: c6:ba:25:23:e5:0f:24:10:84:81:bf:38:fd:0a:0f:9d:ec:f9: ea:88:09:ba:28:38:bf:7f:68:1f:bb:11:38:fa:78:c2:a8:7a: a9:d3:5a:aa:4b:c0:9d:2c:83:0a:a4:ab:53:c5:99:f1:51:64: bb:19:33:55:82:5e:95:44:82:9b:8e:3a:5a:85:c4:2c:88:d7: 42:2c:82:22:f2:c0:cf:bd:70:62:6c:45:c6:19:48:81:43:5f: f5:f4:83:47:e6:7a:e7:2f:6a:ca:9c:09:bf:a9:07:2d:b4:f6: 66:10:1d:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUY2N0YxMTAvBgNVBAUTKEU2NERDRkM0OTQ3OEExM0MxRTMxQUU4NzJBMkZBQzEw QkZCODk1MzEwHhcNMjUwNjA4MTQzMjM4WhcNMjUwNjE1MTQzMjM4WjAYMRYwFAYD VQQDEw02ODQ1OWYwNy04YTNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtKjfAUKsrYLALhr1nD/fr0JABv9Ux5d7lOWlWMrKSTs8/d5DlSAiqwwr/Nd7 3rnEs5+78luhXtGCnpNRDz97FaoHIPREGUH10gV4ps4KH9mfAdI8MM7oj9eZIRHX Yn7LHORtRcvn+vcyeEvgk98+cA02NRmIce193db5wHd95lMldonyKxPfhCTwjv6G jF+1qhfs4JuS5LR9mC+WPfpqydM9vmwD4lNzw3mdg6NDj/bMC/MsPZFmMNBAF7RQ uVpmn7X7848tnGDAvCnSBI8zvESFcQAXh9Rj9rTIFcKCkZiKbPXFrwlEWUwXZ0Q2 zbanoqQFlyv3HSA62aKac836IQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHVKxzII vVCXbUWfuvBlH6jl1GHyMB8GA1UdIwQYMBaAFOZNz8SUeKE8HjGuhyovrBC/uJUx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RjY3Ri85MUI5ODNDODFE OEExMUUyQjBFNDk0RTQwOEIwMkNEMi81azNQeEpSNG9Ud2VNYTZIS2ktc0VMLTRs VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVrM1B4SlI0b1R3ZU1hNkhLaS1zRUwtNGxURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RjY3Ri85MUI5ODNDODFEOEExMUUyQjBFNDk0RTQwOEIwMkNEMi81azNQeEpSNG9U d2VNYTZIS2ktc0VMLTRsVEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEBhBuxQoS+vJZnpIeMLP9YlAwW5Oc8bFcDqIyaPjn2OXDP3exOV1V gXqHuGTC2IXCvVrVTfoN/MOb5kdWqEdNA0XCI4vB7sbXKrMRBpuGTIqVaGe264Q6 4fK0Z1n1O1tvbgDv0TigY+UWgDkQu/cxidbuLBS4FC6P9ynJMnImSBTOj+LcYhXq ea5anua70AHGuiUj5Q8kEISBvzj9Cg+d7PnqiAm6KDi/f2gfuxE4+njCqHqp01qq S8CdLIMKpKtTxZnxUWS7GTNVgl6VRIKbjjpahcQsiNdCLIIi8sDPvXBibEXGGUiB Q1/19INH5nrnL2rKnAm/qQcttPZmEB2Z -----END CERTIFICATE-----Generated at Mon Jun 9 14:41:17 2025 by rpki-client