$ rpki-client -vvf rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft File: tADiGrPTJXQtuHeDDrxEB233CUg.mft (raw, json) Hash identifier: iUNntSuOyiWzVEQS4GNoPLpxiSAqDhqe2xDofj7hHi8= Subject key identifier: B2:70:12:88:BB:20:14:E7:6D:63:59:38:78:46:0B:2F:2D:BD:38:B5 Authority key identifier: B4:00:E2:1A:B3:D3:25:74:2D:B8:77:83:0E:BC:44:07:6D:F7:09:48 Certificate issuer: /CN=A91658EF/serialNumber=B400E21AB3D325742DB877830EBC44076DF70948 Certificate serial: 0F03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tADiGrPTJXQtuHeDDrxEB233CUg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft Manifest number: 2B89 Signing time: Fri 30 May 2025 17:00:00 +0000 Manifest this update: Fri 30 May 2025 17:00:00 +0000 Manifest next update: Fri 06 Jun 2025 17:00:00 +0000 Files and hashes: 1: tADiGrPTJXQtuHeDDrxEB233CUg.crl (hash: baRxXnmxF/Y9f/ZfYI+zETfwbfVp/+oa4FtEwHTXB6w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.crl rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tADiGrPTJXQtuHeDDrxEB233CUg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 16:59:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3843 (0xf03) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91658EF, serialNumber=B400E21AB3D325742DB877830EBC44076DF70948 Validity Not Before: May 30 17:00:00 2025 GMT Not After : Jun 6 17:00:00 2025 GMT Subject: CN=6839e410-8f13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:44:ed:29:7f:69:65:fd:3a:b2:ea:a2:d4:e4: 5d:89:78:db:1c:19:47:cc:52:46:09:cc:5e:fb:af: 6b:95:fc:6f:d0:b7:db:a8:b5:4e:d5:1c:42:af:fa: 6f:85:36:7d:b6:ef:70:6d:21:54:7c:51:35:ff:86: 9e:e8:76:8c:a7:31:c1:56:23:a7:30:fa:48:c4:ce: a4:18:86:df:5d:7f:2e:2f:0d:a1:51:3a:92:e4:31: 12:7b:6a:6d:21:6e:a9:f0:f7:72:d9:dc:86:79:04: c7:8e:98:38:31:e6:66:65:ea:63:ef:3c:a3:e4:df: c5:fe:e0:01:85:49:dc:8e:bb:b9:c3:20:7f:6d:34: b1:7a:f8:78:da:71:28:9c:ab:7b:b7:fc:ab:bd:2f: 5a:dc:27:f9:ed:30:1a:93:05:5a:e2:6d:5f:27:60: 77:e6:b1:60:cb:37:eb:db:41:c1:da:e4:12:26:12: fc:4f:c7:9e:3e:76:8d:7b:4f:83:05:4a:fc:ab:3f: e0:bb:14:52:ae:52:95:12:64:fa:40:4a:b3:20:80: 78:d1:4e:1d:9a:5e:85:a9:77:44:9b:30:c6:1f:18: 87:21:40:da:36:90:69:7c:e4:a6:b2:8b:2c:22:4f: c2:33:ef:90:b4:b7:3e:32:fe:9c:f8:72:7a:be:a1: a9:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:70:12:88:BB:20:14:E7:6D:63:59:38:78:46:0B:2F:2D:BD:38:B5 X509v3 Authority Key Identifier: keyid:B4:00:E2:1A:B3:D3:25:74:2D:B8:77:83:0E:BC:44:07:6D:F7:09:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tADiGrPTJXQtuHeDDrxEB233CUg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:b4:b4:2f:31:6a:b6:04:fb:57:c6:c1:a9:33:eb:da:41:e0: 95:25:6c:7c:a2:37:aa:5a:54:7c:72:3f:56:07:18:16:4f:e3: fa:1a:b1:00:49:b4:c5:36:ef:60:85:f4:dc:cd:74:f6:96:f8: f6:15:f7:8f:0d:d0:a2:1b:f1:39:cc:52:18:a1:97:a1:64:db: c9:52:52:fb:f9:70:c2:00:8e:6d:25:45:0d:c7:ea:5c:5a:85: ad:1c:52:b9:8e:2d:80:d9:58:a9:0e:d8:91:08:72:31:f2:ef: db:15:b8:8e:86:e4:e0:5d:ca:ec:da:99:4e:ee:fb:6b:98:e9: ec:7c:20:ce:d4:7c:d7:7e:f0:b4:5f:d7:51:ba:e2:7d:dc:b7: ca:43:48:26:b5:e7:d4:cc:ab:79:31:34:ba:7a:36:e7:9f:9f: aa:1f:0f:b7:b3:b2:05:be:38:e8:32:2b:73:e8:7b:ec:15:47: 78:b9:43:4b:c2:e2:24:c3:ca:79:f5:4e:6a:2c:d6:30:8b:4f: 6f:fb:90:55:81:81:75:ec:be:8f:c5:21:c6:6a:5b:8b:2a:3a: 97:88:ee:c9:65:50:5a:8e:a3:cd:78:3b:a0:9e:89:e6:34:83: 54:cb:0a:86:5e:1a:48:b7:24:ac:52:d6:f5:9d:4f:99:30:86: 5e:59:30:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDwMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU4RUYxMTAvBgNVBAUTKEI0MDBFMjFBQjNEMzI1NzQyREI4Nzc4MzBFQkM0NDA3 NkRGNzA5NDgwHhcNMjUwNTMwMTcwMDAwWhcNMjUwNjA2MTcwMDAwWjAYMRYwFAYD VQQDEw02ODM5ZTQxMC04ZjEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzUTtKX9pZf06suqi1ORdiXjbHBlHzFJGCcxe+69rlfxv0LfbqLVO1RxCr/pv hTZ9tu9wbSFUfFE1/4ae6HaMpzHBViOnMPpIxM6kGIbfXX8uLw2hUTqS5DESe2pt IW6p8Pdy2dyGeQTHjpg4MeZmZepj7zyj5N/F/uABhUncjru5wyB/bTSxevh42nEo nKt7t/yrvS9a3Cf57TAakwVa4m1fJ2B35rFgyzfr20HB2uQSJhL8T8eePnaNe0+D BUr8qz/guxRSrlKVEmT6QEqzIIB40U4dml6FqXdEmzDGHxiHIUDaNpBpfOSmsoss Ik/CM++QtLc+Mv6c+HJ6vqGpNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLJwEoi7 IBTnbWNZOHhGCy8tvTi1MB8GA1UdIwQYMBaAFLQA4hqz0yV0Lbh3gw68RAdt9wlI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NThFRi9EMjQzMzc5NjRB RUMxMUU4ODQxN0YzNEFDNEY5QUUwMi90QURpR3JQVEpYUXR1SGVERHJ4RUIyMzND VWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RBRGlHclBUSlhRdHVIZUREcnhFQjIzM0NVZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NThFRi9EMjQzMzc5NjRBRUMxMUU4ODQxN0YzNEFDNEY5QUUwMi90QURpR3JQVEpY UXR1SGVERHJ4RUIyMzNDVWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5tLQvMWq2BPtXxsGpM+vaQeCVJWx8ojeqWlR8cj9WBxgWT+P6GrEA SbTFNu9ghfTczXT2lvj2FfePDdCiG/E5zFIYoZehZNvJUlL7+XDCAI5tJUUNx+pc WoWtHFK5ji2A2VipDtiRCHIx8u/bFbiOhuTgXcrs2plO7vtrmOnsfCDO1HzXfvC0 X9dRuuJ93LfKQ0gmtefUzKt5MTS6ejbnn5+qHw+3s7IFvjjoMitz6HvsFUd4uUNL wuIkw8p59U5qLNYwi09v+5BVgYF17L6PxSHGaluLKjqXiO7JZVBajqPNeDugnonm NINUywqGXhpItySsUtb1nU+ZMIZeWTBC -----END CERTIFICATE-----Generated at Sat May 31 17:08:54 2025 by rpki-client