$ rpki-client -vvf rpki.apnic.net/member_repository/A918429B/B60063AC1D9711E2BA2E458108B02CD2/at5OHE4cCb8U36pMPWAPQY4X5y4.mft File: at5OHE4cCb8U36pMPWAPQY4X5y4.mft (raw, json) Hash identifier: tbjBAwXee3jGoE/Z9idKokQiU9Npe78MEP6vbaVvKHY= Subject key identifier: D7:11:BE:BB:6D:22:28:E6:A2:F0:54:AC:5D:8F:09:FA:09:6F:87:26 Authority key identifier: 6A:DE:4E:1C:4E:1C:09:BF:14:DF:AA:4C:3D:60:0F:41:8E:17:E7:2E Certificate issuer: /CN=A918429B/serialNumber=6ADE4E1C4E1C09BF14DFAA4C3D600F418E17E72E Certificate serial: 3489 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/at5OHE4cCb8U36pMPWAPQY4X5y4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918429B/B60063AC1D9711E2BA2E458108B02CD2/at5OHE4cCb8U36pMPWAPQY4X5y4.mft Manifest number: 3489 Signing time: Fri 06 Jun 2025 14:55:09 +0000 Manifest this update: Fri 06 Jun 2025 14:55:08 +0000 Manifest next update: Fri 13 Jun 2025 14:55:08 +0000 Files and hashes: 1: at5OHE4cCb8U36pMPWAPQY4X5y4.crl (hash: GAcxhyfJ6dyPZNiNHnNOexwGZdaOoql51wgEbrUmlZA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918429B/B60063AC1D9711E2BA2E458108B02CD2/at5OHE4cCb8U36pMPWAPQY4X5y4.crl rsync://rpki.apnic.net/member_repository/A918429B/B60063AC1D9711E2BA2E458108B02CD2/at5OHE4cCb8U36pMPWAPQY4X5y4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/at5OHE4cCb8U36pMPWAPQY4X5y4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Jun 2025 14:55:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13449 (0x3489) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918429B, serialNumber=6ADE4E1C4E1C09BF14DFAA4C3D600F418E17E72E Validity Not Before: Jun 6 14:55:08 2025 GMT Not After : Jun 13 14:55:08 2025 GMT Subject: CN=6843014c-076f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:10:e8:2f:20:3c:aa:d0:1f:b9:e0:92:74:b4: b7:e8:d2:01:83:9a:1e:f0:09:a6:55:be:b4:7f:cb: a0:6c:c6:c5:c0:94:7a:df:86:93:53:97:52:a8:48: 29:92:58:f6:8c:6c:40:f6:2e:80:24:59:f1:80:eb: cc:77:2a:ac:cf:b8:61:af:5c:42:e6:14:db:3f:53: c4:c5:19:da:20:b9:0d:c2:89:d2:db:54:2e:2f:91: f2:a3:f0:62:80:e1:d8:ee:4e:3f:45:6d:67:0b:74: d3:42:c7:55:ae:0b:d0:87:b1:d8:fb:07:43:af:f7: 77:26:85:17:64:cc:9e:cd:f1:e2:a9:39:14:ba:9f: 1b:3d:74:74:42:a5:24:68:ee:e3:97:51:10:1a:e7: fe:a3:a9:e3:de:6c:6e:e4:4e:5d:5f:f9:64:b0:0c: f7:3c:24:d0:0d:89:dd:21:cf:c5:c9:d7:01:47:16: e1:ba:54:80:b7:c3:36:27:65:50:59:cb:45:7d:d1: 1d:13:32:57:86:25:23:af:c6:bb:5b:f0:58:36:67: 9a:eb:a4:b2:50:af:b5:6c:dd:bd:4b:18:33:33:0d: 6e:90:a0:db:2e:e1:8d:2e:6f:77:48:21:f5:32:5e: 6c:a7:1e:cb:38:e6:39:83:d4:61:a5:2d:c8:b9:df: df:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:11:BE:BB:6D:22:28:E6:A2:F0:54:AC:5D:8F:09:FA:09:6F:87:26 X509v3 Authority Key Identifier: keyid:6A:DE:4E:1C:4E:1C:09:BF:14:DF:AA:4C:3D:60:0F:41:8E:17:E7:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918429B/B60063AC1D9711E2BA2E458108B02CD2/at5OHE4cCb8U36pMPWAPQY4X5y4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/at5OHE4cCb8U36pMPWAPQY4X5y4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918429B/B60063AC1D9711E2BA2E458108B02CD2/at5OHE4cCb8U36pMPWAPQY4X5y4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d1:e1:03:34:88:2a:c8:c8:0b:6a:49:ba:aa:8a:80:50:2b:04: f1:73:f7:9f:b0:fa:70:0c:ce:83:59:30:0c:1a:76:eb:ab:02: e0:f7:4c:59:5f:f2:40:ce:67:44:7b:b0:29:d7:7e:b4:e7:96: 60:64:cc:a5:95:7e:85:af:c8:83:f9:50:da:47:92:e6:53:34: 38:b5:b0:4e:ea:f1:72:32:47:c7:1f:96:60:f5:1f:95:38:84: 07:0d:a2:c2:d5:dd:77:cd:3b:1a:f8:a4:b5:a4:60:9d:53:97: 01:9e:51:af:27:84:bf:1e:d1:6d:da:91:bc:b8:fb:a5:3d:9c: 25:46:25:13:dc:5e:26:ca:fc:20:68:7d:2d:4b:6c:42:bd:a7: b5:db:d3:49:b0:2e:d1:b7:21:7d:c1:10:49:60:7e:a3:b6:f0: 9d:41:7e:81:63:b4:6b:51:0c:57:b9:a3:6d:93:d8:a6:cb:56: 6e:75:45:fb:ad:ca:dc:05:11:01:b0:24:50:ec:c0:66:14:9b: 90:a1:b2:1f:ac:9d:9f:fe:12:e1:9d:91:62:cc:a2:ab:68:c8: 05:14:db:fb:ce:2b:03:0b:54:63:ce:ff:98:82:f8:ed:2c:a3: c4:ea:83:87:52:f5:eb:99:f4:9e:16:35:4a:95:b2:ba:5d:c3: 72:cb:07:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQyOUIxMTAvBgNVBAUTKDZBREU0RTFDNEUxQzA5QkYxNERGQUE0QzNENjAwRjQx OEUxN0U3MkUwHhcNMjUwNjA2MTQ1NTA4WhcNMjUwNjEzMTQ1NTA4WjAYMRYwFAYD VQQDEw02ODQzMDE0Yy0wNzZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1xDoLyA8qtAfueCSdLS36NIBg5oe8AmmVb60f8ugbMbFwJR634aTU5dSqEgp klj2jGxA9i6AJFnxgOvMdyqsz7hhr1xC5hTbP1PExRnaILkNwonS21QuL5Hyo/Bi gOHY7k4/RW1nC3TTQsdVrgvQh7HY+wdDr/d3JoUXZMyezfHiqTkUup8bPXR0QqUk aO7jl1EQGuf+o6nj3mxu5E5dX/lksAz3PCTQDYndIc/FydcBRxbhulSAt8M2J2VQ WctFfdEdEzJXhiUjr8a7W/BYNmea66SyUK+1bN29SxgzMw1ukKDbLuGNLm93SCH1 Ml5spx7LOOY5g9RhpS3Iud/fAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNcRvrtt IijmovBUrF2PCfoJb4cmMB8GA1UdIwQYMBaAFGreThxOHAm/FN+qTD1gD0GOF+cu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDI5Qi9CNjAwNjNBQzFE OTcxMUUyQkEyRTQ1ODEwOEIwMkNEMi9hdDVPSEU0Y0NiOFUzNnBNUFdBUFFZNFg1 eTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2F0NU9IRTRjQ2I4VTM2cE1QV0FQUVk0WDV5NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDI5Qi9CNjAwNjNBQzFEOTcxMUUyQkEyRTQ1ODEwOEIwMkNEMi9hdDVPSEU0Y0Ni OFUzNnBNUFdBUFFZNFg1eTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDR4QM0iCrIyAtqSbqqioBQKwTxc/efsPpwDM6DWTAMGnbrqwLg90xZ X/JAzmdEe7Ap136055ZgZMyllX6Fr8iD+VDaR5LmUzQ4tbBO6vFyMkfHH5Zg9R+V OIQHDaLC1d13zTsa+KS1pGCdU5cBnlGvJ4S/HtFt2pG8uPulPZwlRiUT3F4myvwg aH0tS2xCvae129NJsC7RtyF9wRBJYH6jtvCdQX6BY7RrUQxXuaNtk9imy1ZudUX7 rcrcBREBsCRQ7MBmFJuQobIfrJ2f/hLhnZFizKKraMgFFNv7zisDC1Rjzv+Ygvjt LKPE6oOHUvXrmfSeFjVKlbK6XcNyywcB -----END CERTIFICATE-----Generated at Fri Jun 6 16:54:31 2025 by rpki-client