$ rpki-client -vvf rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.mft File: 5k3PxJR4oTweMa6HKi-sEL-4lTE.mft (raw, json) Hash identifier: k3BqZqAoxGTIfpYIeAq1sbnuSYYOr1pvQAp1j+fUoxs= Subject key identifier: 33:44:75:7D:5B:78:14:47:4E:55:92:C2:6B:93:09:6D:C8:16:68:D5 Authority key identifier: E6:4D:CF:C4:94:78:A1:3C:1E:31:AE:87:2A:2F:AC:10:BF:B8:95:31 Certificate issuer: /CN=A915F67F/serialNumber=E64DCFC49478A13C1E31AE872A2FAC10BFB89531 Certificate serial: 348D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5k3PxJR4oTweMa6HKi-sEL-4lTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.mft Manifest number: 348D Signing time: Thu 12 Jun 2025 14:32:02 +0000 Manifest this update: Thu 12 Jun 2025 14:32:01 +0000 Manifest next update: Thu 19 Jun 2025 14:32:01 +0000 Files and hashes: 1: 5k3PxJR4oTweMa6HKi-sEL-4lTE.crl (hash: 9g1cq7GEQCfYj/Xp6acKhRDLpmzAcENJJ+rA9JAW7pU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.crl rsync://rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5k3PxJR4oTweMa6HKi-sEL-4lTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 14:32:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13453 (0x348d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915F67F, serialNumber=E64DCFC49478A13C1E31AE872A2FAC10BFB89531 Validity Not Before: Jun 12 14:32:01 2025 GMT Not After : Jun 19 14:32:01 2025 GMT Subject: CN=684ae4e1-b7d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:03:b6:27:8d:32:26:84:36:a2:83:54:f5:27: b8:8d:cb:e1:d8:30:f0:91:f5:a5:f6:e1:5e:44:dc: 72:1c:da:31:e5:24:7e:02:ac:47:5f:45:1e:ad:34: 35:a9:e5:de:72:3f:7a:4d:00:65:71:4a:ab:04:d6: d6:50:78:af:f6:14:b4:05:4f:e4:26:e8:91:cf:93: 44:af:7e:14:2f:bb:d4:d2:5f:f9:0d:20:30:75:42: 69:03:1f:49:94:34:8b:96:5e:ba:09:a8:87:de:56: e2:cd:2d:d0:9a:cb:3a:95:a5:aa:e0:9e:8e:d6:1d: 16:43:0a:4b:81:56:e6:95:72:20:ad:57:2b:95:05: 05:53:da:4e:72:89:40:72:f1:55:f4:45:1f:3e:8f: f9:c2:0a:4b:83:2b:d4:b5:9a:df:87:7a:82:00:c1: 14:75:fd:61:11:51:7a:53:a3:72:b6:2a:6b:40:ec: 2c:99:f3:55:ce:ab:0e:ff:1a:be:97:a0:62:5b:bf: 17:a6:16:bc:1d:af:ad:80:47:74:86:d7:e4:50:b7: 46:8b:28:72:82:55:e8:84:be:18:f8:6f:1d:80:4b: bd:5e:81:22:4c:e6:12:17:df:8b:17:d6:58:5c:9d: 57:e1:bd:a3:7d:95:01:85:c5:3b:5d:57:37:6d:19: af:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:44:75:7D:5B:78:14:47:4E:55:92:C2:6B:93:09:6D:C8:16:68:D5 X509v3 Authority Key Identifier: keyid:E6:4D:CF:C4:94:78:A1:3C:1E:31:AE:87:2A:2F:AC:10:BF:B8:95:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5k3PxJR4oTweMa6HKi-sEL-4lTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:0d:63:70:da:15:c1:0c:47:94:72:14:e4:12:bc:8f:eb:41: 85:e7:dd:99:77:9f:09:73:89:84:18:c7:14:71:f5:28:b9:25: 57:34:4f:ef:a5:60:e6:72:92:7a:ac:4c:a5:3a:0a:f0:fb:b4: 1a:eb:fc:83:7d:e1:4f:bd:ff:a2:a3:27:81:bf:38:07:6d:8e: 7f:65:52:b0:b9:2a:47:95:41:fe:e2:32:10:e5:57:de:24:25: 2d:de:78:fa:b8:5a:28:40:01:f2:1e:41:b8:de:a1:e3:93:0a: ed:33:cd:c6:c1:ef:8c:8b:98:15:b7:3f:dd:0b:99:02:25:17: b2:76:85:a3:64:88:30:a9:ed:65:18:b1:ba:16:e8:12:1f:b6: e4:55:03:3c:85:88:c2:2c:ce:24:2b:33:57:20:0d:a2:33:62: 64:54:e3:bd:da:0b:bb:be:0f:ad:f3:67:90:8c:65:5f:96:04: bc:8d:9e:47:88:80:3c:7f:65:29:88:6c:62:35:57:02:b5:cc: 9c:f2:96:9b:66:68:3e:31:8a:67:78:89:d7:ad:ec:64:a3:a6: 42:4c:a4:c0:62:b1:30:61:f3:7f:1f:fc:92:1e:d4:6d:1d:10: 52:ec:50:2a:f4:42:17:c1:4d:65:9c:36:49:fd:08:e9:c6:e1: 3d:2d:f2:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUY2N0YxMTAvBgNVBAUTKEU2NERDRkM0OTQ3OEExM0MxRTMxQUU4NzJBMkZBQzEw QkZCODk1MzEwHhcNMjUwNjEyMTQzMjAxWhcNMjUwNjE5MTQzMjAxWjAYMRYwFAYD VQQDEw02ODRhZTRlMS1iN2QzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2gO2J40yJoQ2ooNU9Se4jcvh2DDwkfWl9uFeRNxyHNox5SR+AqxHX0UerTQ1 qeXecj96TQBlcUqrBNbWUHiv9hS0BU/kJuiRz5NEr34UL7vU0l/5DSAwdUJpAx9J lDSLll66CaiH3lbizS3Qmss6laWq4J6O1h0WQwpLgVbmlXIgrVcrlQUFU9pOcolA cvFV9EUfPo/5wgpLgyvUtZrfh3qCAMEUdf1hEVF6U6NytiprQOwsmfNVzqsO/xq+ l6BiW78Xpha8Ha+tgEd0htfkULdGiyhyglXohL4Y+G8dgEu9XoEiTOYSF9+LF9ZY XJ1X4b2jfZUBhcU7XVc3bRmv6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDNEdX1b eBRHTlWSwmuTCW3IFmjVMB8GA1UdIwQYMBaAFOZNz8SUeKE8HjGuhyovrBC/uJUx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RjY3Ri85MUI5ODNDODFE OEExMUUyQjBFNDk0RTQwOEIwMkNEMi81azNQeEpSNG9Ud2VNYTZIS2ktc0VMLTRs VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVrM1B4SlI0b1R3ZU1hNkhLaS1zRUwtNGxURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RjY3Ri85MUI5ODNDODFEOEExMUUyQjBFNDk0RTQwOEIwMkNEMi81azNQeEpSNG9U d2VNYTZIS2ktc0VMLTRsVEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0DWNw2hXBDEeUchTkEryP60GF592Zd58Jc4mEGMcUcfUouSVXNE/v pWDmcpJ6rEylOgrw+7Qa6/yDfeFPvf+ioyeBvzgHbY5/ZVKwuSpHlUH+4jIQ5Vfe JCUt3nj6uFooQAHyHkG43qHjkwrtM83Gwe+Mi5gVtz/dC5kCJReydoWjZIgwqe1l GLG6FugSH7bkVQM8hYjCLM4kKzNXIA2iM2JkVOO92gu7vg+t82eQjGVflgS8jZ5H iIA8f2UpiGxiNVcCtcyc8pabZmg+MYpneInXrexko6ZCTKTAYrEwYfN/H/ySHtRt HRBS7FAq9EIXwU1lnDZJ/QjpxuE9LfKf -----END CERTIFICATE-----Generated at Sat Jun 14 08:26:33 2025 by rpki-client