$ rpki-client -vvf rpki.apnic.net/member_repository/A9178E22/B502638674DA11EF8039B026C4F9AE02/r11hzhK3w-WNyGyXhyy7LNqtJ_E.mft File: r11hzhK3w-WNyGyXhyy7LNqtJ_E.mft (raw, json) Hash identifier: 3Nx+VOW+mDp8N5Cpjyj4AitgamnWhSjOKrGdBeTLHfw= Subject key identifier: 89:25:5D:F5:85:5B:24:29:5E:97:8B:1A:56:BA:BE:99:95:ED:B8:B9 Authority key identifier: AF:5D:61:CE:12:B7:C3:E5:8D:C8:6C:97:87:2C:BB:2C:DA:AD:27:F1 Certificate issuer: /CN=A9178E22/serialNumber=AF5D61CE12B7C3E58DC86C97872CBB2CDAAD27F1 Certificate serial: 85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r11hzhK3w-WNyGyXhyy7LNqtJ_E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178E22/B502638674DA11EF8039B026C4F9AE02/r11hzhK3w-WNyGyXhyy7LNqtJ_E.mft Manifest number: 85 Signing time: Sat 31 May 2025 06:10:16 +0000 Manifest this update: Sat 31 May 2025 06:10:15 +0000 Manifest next update: Sat 07 Jun 2025 06:10:15 +0000 Files and hashes: 1: r11hzhK3w-WNyGyXhyy7LNqtJ_E.crl (hash: VCDqffkcu3iEMVLCu7rl2Q2sodNeROvFcDxZiB1RFz8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178E22/B502638674DA11EF8039B026C4F9AE02/r11hzhK3w-WNyGyXhyy7LNqtJ_E.crl rsync://rpki.apnic.net/member_repository/A9178E22/B502638674DA11EF8039B026C4F9AE02/r11hzhK3w-WNyGyXhyy7LNqtJ_E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r11hzhK3w-WNyGyXhyy7LNqtJ_E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 133 (0x85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178E22, serialNumber=AF5D61CE12B7C3E58DC86C97872CBB2CDAAD27F1 Validity Not Before: May 31 06:10:15 2025 GMT Not After : Jun 7 06:10:15 2025 GMT Subject: CN=683a9d47-f3dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:6a:c3:5c:9b:a1:a8:e0:45:9d:50:7c:ab:ef: 17:ed:09:74:63:62:0b:da:34:7f:dc:36:4d:95:77: da:91:ac:de:b8:71:6e:d9:5e:76:40:aa:34:29:22: d6:36:b6:88:45:83:9c:8b:21:65:dc:a0:a6:bd:4e: 5f:5f:fd:0a:6f:01:89:aa:61:c6:9f:4f:90:e9:c4: 3c:82:cd:a4:d3:0a:1f:17:51:af:2e:d6:bd:3f:59: 7b:ef:f9:01:d2:a7:30:a5:bc:5e:a9:0e:b3:63:58: 24:7b:36:cd:17:e1:2a:1b:1d:e4:e0:ff:0f:4d:a0: d6:35:73:f1:6c:5d:40:cb:1a:84:00:b9:54:02:04: cb:06:85:a9:2d:65:d2:75:e2:20:3b:5c:cd:e9:1d: 7b:44:82:0b:aa:61:d0:a1:20:c4:68:fd:b2:fa:65: da:de:16:3e:1a:6d:8b:2a:55:e8:13:02:27:b5:e7: 62:90:16:c1:92:c1:b3:dd:63:1e:3f:50:0a:22:02: 7c:64:d9:82:82:b7:89:18:54:8f:bd:54:a3:68:75: 4c:6e:f1:b8:3e:52:09:b0:9e:41:1b:e9:40:0a:7d: 69:dc:bf:3d:f1:0f:cb:c6:d4:ef:dd:b8:c5:7c:7e: 1a:51:36:39:40:69:34:05:6d:32:75:6a:24:71:d7: 12:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:25:5D:F5:85:5B:24:29:5E:97:8B:1A:56:BA:BE:99:95:ED:B8:B9 X509v3 Authority Key Identifier: keyid:AF:5D:61:CE:12:B7:C3:E5:8D:C8:6C:97:87:2C:BB:2C:DA:AD:27:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178E22/B502638674DA11EF8039B026C4F9AE02/r11hzhK3w-WNyGyXhyy7LNqtJ_E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r11hzhK3w-WNyGyXhyy7LNqtJ_E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178E22/B502638674DA11EF8039B026C4F9AE02/r11hzhK3w-WNyGyXhyy7LNqtJ_E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:6c:a9:80:b7:06:53:eb:88:f4:9d:e3:8b:1a:0e:c6:83:c5: ff:5e:3e:f3:e0:1c:97:fb:b9:6a:c2:d6:e1:f0:af:81:e8:e9: c8:bf:1e:c3:fa:18:31:8b:77:af:c9:a6:c1:7f:c2:9a:85:de: 72:9f:16:6b:71:f3:7d:3e:08:5b:65:39:fd:af:60:98:ac:7c: 45:d0:c3:56:84:17:49:31:d0:93:7e:75:29:81:11:7d:88:a8: e5:c9:fe:a0:b7:6d:e1:87:26:ec:64:5e:91:d7:6b:46:92:31: bb:20:74:85:d2:f9:9e:61:30:94:6e:ab:a3:90:81:cb:22:85: fc:a9:2d:2e:89:ac:56:91:ea:56:f6:d3:2a:80:32:60:72:12: 90:d6:87:6e:58:9c:ba:3a:28:69:47:99:44:e4:96:4d:86:bd: b7:2c:1d:2f:67:e4:09:65:e6:86:60:c3:71:0b:f3:4f:e8:1b: 12:6a:57:02:14:0a:e9:de:49:5c:93:c6:47:48:bb:be:b5:48: 1a:af:b2:85:14:42:9e:ec:a9:0a:1e:ff:bd:e2:0a:bd:7c:99: 25:1d:aa:16:15:a9:49:2e:b6:4e:4b:a2:1f:a1:59:be:5b:41: e5:c8:f0:4a:53:5c:0c:3e:d1:bc:25:d3:bd:4c:e9:f1:dd:a4: af:1b:8a:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzhFMjIxMTAvBgNVBAUTKEFGNUQ2MUNFMTJCN0MzRTU4REM4NkM5Nzg3MkNCQjJD REFBRDI3RjEwHhcNMjUwNTMxMDYxMDE1WhcNMjUwNjA3MDYxMDE1WjAYMRYwFAYD VQQDEw02ODNhOWQ0Ny1mM2RjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1mrDXJuhqOBFnVB8q+8X7Ql0Y2IL2jR/3DZNlXfakazeuHFu2V52QKo0KSLW NraIRYOciyFl3KCmvU5fX/0KbwGJqmHGn0+Q6cQ8gs2k0wofF1GvLta9P1l77/kB 0qcwpbxeqQ6zY1gkezbNF+EqGx3k4P8PTaDWNXPxbF1AyxqEALlUAgTLBoWpLWXS deIgO1zN6R17RIILqmHQoSDEaP2y+mXa3hY+Gm2LKlXoEwIntedikBbBksGz3WMe P1AKIgJ8ZNmCgreJGFSPvVSjaHVMbvG4PlIJsJ5BG+lACn1p3L898Q/LxtTv3bjF fH4aUTY5QGk0BW0ydWokcdcS+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIklXfWF WyQpXpeLGla6vpmV7bi5MB8GA1UdIwQYMBaAFK9dYc4St8Pljchsl4csuyzarSfx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OEUyMi9CNTAyNjM4Njc0 REExMUVGODAzOUIwMjZDNEY5QUUwMi9yMTFoemhLM3ctV055R3lYaHl5N0xOcXRK X0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3IxMWh6aEszdy1XTnlHeVhoeXk3TE5xdEpfRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OEUyMi9CNTAyNjM4Njc0REExMUVGODAzOUIwMjZDNEY5QUUwMi9yMTFoemhLM3ct V055R3lYaHl5N0xOcXRKX0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCbKmAtwZT64j0neOLGg7Gg8X/Xj7z4ByX+7lqwtbh8K+B6OnIvx7D +hgxi3evyabBf8Kahd5ynxZrcfN9PghbZTn9r2CYrHxF0MNWhBdJMdCTfnUpgRF9 iKjlyf6gt23hhybsZF6R12tGkjG7IHSF0vmeYTCUbqujkIHLIoX8qS0uiaxWkepW 9tMqgDJgchKQ1oduWJy6OihpR5lE5JZNhr23LB0vZ+QJZeaGYMNxC/NP6BsSalcC FArp3klck8ZHSLu+tUgar7KFFEKe7KkKHv+94gq9fJklHaoWFalJLrZOS6IfoVm+ W0HlyPBKU1wMPtG8JdO9TOnx3aSvG4qz -----END CERTIFICATE-----Generated at Sat May 31 17:57:50 2025 by rpki-client