$ rpki-client -vvf rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.mft File: 1H75KB4xQx3ljjR8aX45vydCkRk.mft (raw, json) Hash identifier: Ok+tgRh/7dga2W6oYaRrnJhU7w5prWb/qmiVeHaRs7s= Subject key identifier: FD:D8:2B:80:36:CA:68:EF:A3:FE:A0:81:52:05:A3:A5:4D:C0:9E:1F Authority key identifier: D4:7E:F9:28:1E:31:43:1D:E5:8E:34:7C:69:7E:39:BF:27:42:91:19 Certificate issuer: /CN=A91612FE/serialNumber=D47EF9281E31431DE58E347C697E39BF27429119 Certificate serial: 66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1H75KB4xQx3ljjR8aX45vydCkRk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.mft Manifest number: 66 Signing time: Sat 31 May 2025 06:33:53 +0000 Manifest this update: Sat 31 May 2025 06:33:52 +0000 Manifest next update: Sat 07 Jun 2025 06:33:52 +0000 Files and hashes: 1: 1H75KB4xQx3ljjR8aX45vydCkRk.crl (hash: rNx0RS1StDtYxecHT72KIejdeC3uG9f/S7yAVIXRl10=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.crl rsync://rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1H75KB4xQx3ljjR8aX45vydCkRk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:33:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 102 (0x66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91612FE, serialNumber=D47EF9281E31431DE58E347C697E39BF27429119 Validity Not Before: May 31 06:33:52 2025 GMT Not After : Jun 7 06:33:52 2025 GMT Subject: CN=683aa2d1-96a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:7b:be:dc:4a:32:08:1f:b4:77:04:d9:89:ed: b0:75:44:10:e8:88:5b:17:bf:87:82:83:20:93:f0: 64:9c:12:bd:f7:f6:24:ae:09:d4:f5:5e:1c:8c:1e: 8b:b8:c6:a1:73:7b:b5:36:9d:bf:36:8a:9b:e2:6e: 38:8a:9e:d7:1d:18:6b:3f:68:87:7e:8a:79:e0:13: 46:ed:45:63:9a:8b:83:a9:ed:b7:22:c1:62:b7:0f: ca:0c:c0:61:57:ce:8c:e9:17:d1:57:69:f4:a9:ca: 5e:7e:de:fd:2a:8e:90:c7:28:d1:02:62:b6:a8:e4: e3:25:90:b7:f6:05:d1:4b:0f:e8:2d:1c:8f:32:d7: 5c:37:1c:83:89:15:57:08:f5:f6:47:9b:d5:74:e5: c1:90:50:8f:f6:a7:2e:52:6f:8a:b1:18:df:23:dc: df:c2:57:df:c5:14:e3:81:f5:be:57:04:c7:72:e8: e7:32:a6:b4:61:28:45:27:3c:3f:86:89:62:7e:63: 87:28:18:ae:32:e5:df:82:d5:81:2d:fb:63:6a:5b: 8f:0a:46:d3:a4:8b:a1:67:21:9b:13:c6:c6:fa:71: 8e:cf:fe:b3:06:b2:7a:f9:4e:6f:c1:dc:c5:a6:5e: 15:0a:75:58:38:2e:1b:14:fe:1c:99:bf:85:2f:04: 6d:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:D8:2B:80:36:CA:68:EF:A3:FE:A0:81:52:05:A3:A5:4D:C0:9E:1F X509v3 Authority Key Identifier: keyid:D4:7E:F9:28:1E:31:43:1D:E5:8E:34:7C:69:7E:39:BF:27:42:91:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1H75KB4xQx3ljjR8aX45vydCkRk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:19:46:38:75:ec:91:ad:ac:58:c4:be:e6:4b:0a:4b:2c:da: dc:46:81:5a:19:34:e4:e8:6b:e3:f3:2b:01:ec:aa:78:2b:62: dc:8c:fc:e6:97:e0:08:2a:55:11:a6:fb:e0:d0:f8:32:8b:92: ef:02:64:c2:53:ca:97:42:5b:95:55:39:c5:d8:7b:d5:71:b9: bd:5d:2b:f0:dd:20:d4:16:b4:2f:e1:ea:bc:05:2a:58:7c:a1: 0f:3e:d9:54:8c:a9:40:a9:fa:d6:5c:8e:ae:b4:91:5a:e3:be: 02:fa:d7:a6:da:cb:4e:82:ed:0e:58:ed:68:1c:c7:3c:ba:5d: 74:97:b8:b5:b8:e0:25:08:dd:9c:22:92:4e:3a:60:48:ef:f5: 49:3c:36:f8:bd:71:a3:42:01:db:11:3b:a9:bd:72:e4:df:d1: de:37:c9:a3:4b:dc:1e:e2:31:6d:9c:5e:66:a3:95:8c:0b:4b: 9d:8b:af:48:71:a3:7b:b4:ea:f6:5d:ca:6d:84:01:28:44:37: b3:fa:2e:d5:50:6d:65:44:b0:44:dc:6b:27:47:18:a0:f8:21: 20:88:52:82:9c:1a:5e:03:a9:60:05:33:b2:d0:fd:f0:9a:29: d9:c8:af:44:0b:96:dc:43:98:5b:07:86:7f:bc:79:78:7a:9c: 6e:35:28:19 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MTJGRTExMC8GA1UEBRMoRDQ3RUY5MjgxRTMxNDMxREU1OEUzNDdDNjk3RTM5QkYy NzQyOTExOTAeFw0yNTA1MzEwNjMzNTJaFw0yNTA2MDcwNjMzNTJaMBgxFjAUBgNV BAMTDTY4M2FhMmQxLTk2YTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDSe77cSjIIH7R3BNmJ7bB1RBDoiFsXv4eCgyCT8GScEr339iSuCdT1XhyMHou4 xqFze7U2nb82ipvibjiKntcdGGs/aId+inngE0btRWOai4Op7bciwWK3D8oMwGFX zozpF9FXafSpyl5+3v0qjpDHKNECYrao5OMlkLf2BdFLD+gtHI8y11w3HIOJFVcI 9fZHm9V05cGQUI/2py5Sb4qxGN8j3N/CV9/FFOOB9b5XBMdy6OcyprRhKEUnPD+G iWJ+Y4coGK4y5d+C1YEt+2NqW48KRtOki6FnIZsTxsb6cY7P/rMGsnr5Tm/B3MWm XhUKdVg4LhsU/hyZv4UvBG3pAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU/dgrgDbK aO+j/qCBUgWjpU3Anh8wHwYDVR0jBBgwFoAU1H75KB4xQx3ljjR8aX45vydCkRkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYxMkZFLzQ5MUQ2OTRDQTI1 NTExRUZCMkNBNzgyQUM0RjlBRTAyLzFINzVLQjR4UXgzbGpqUjhhWDQ1dnlkQ2tS ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMUg3NUtCNHhReDNsampSOGFYNDV2eWRDa1JrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYx MkZFLzQ5MUQ2OTRDQTI1NTExRUZCMkNBNzgyQUM0RjlBRTAyLzFINzVLQjR4UXgz bGpqUjhhWDQ1dnlkQ2tSay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACAZRjh17JGtrFjEvuZLCkss2txGgVoZNOToa+PzKwHsqngrYtyM/OaX 4AgqVRGm++DQ+DKLku8CZMJTypdCW5VVOcXYe9Vxub1dK/DdINQWtC/h6rwFKlh8 oQ8+2VSMqUCp+tZcjq60kVrjvgL616bay06C7Q5Y7Wgcxzy6XXSXuLW44CUI3Zwi kk46YEjv9Uk8Nvi9caNCAdsRO6m9cuTf0d43yaNL3B7iMW2cXmajlYwLS52Lr0hx o3u06vZdym2EAShEN7P6LtVQbWVEsETcaydHGKD4ISCIUoKcGl4DqWAFM7LQ/fCa KdnIr0QLltxDmFsHhn+8eXh6nG41KBk= -----END CERTIFICATE-----Generated at Sat May 31 17:20:32 2025 by rpki-client