$ rpki-client -vvf rpki.apnic.net/member_repository/A9189529/6929F2C25BBE11E78977E023C4F9AE02/7LIDs03q4KEdAVCjDvK0opkdepg.mft File: 7LIDs03q4KEdAVCjDvK0opkdepg.mft (raw, json) Hash identifier: dOfHXimweeTAxeqX/Q7Cqdtk6Z4rijgeLEfCVU0LdmE= Subject key identifier: F9:9B:72:9A:8E:62:CE:C3:56:E6:85:78:32:E5:45:5B:B7:97:E2:CC Authority key identifier: EC:B2:03:B3:4D:EA:E0:A1:1D:01:50:A3:0E:F2:B4:A2:99:1D:7A:98 Certificate issuer: /CN=A9189529/serialNumber=ECB203B34DEAE0A11D0150A30EF2B4A2991D7A98 Certificate serial: 19C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7LIDs03q4KEdAVCjDvK0opkdepg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189529/6929F2C25BBE11E78977E023C4F9AE02/7LIDs03q4KEdAVCjDvK0opkdepg.mft Manifest number: 19C8 Signing time: Sat 31 May 2025 16:21:02 +0000 Manifest this update: Sat 31 May 2025 16:21:01 +0000 Manifest next update: Sat 07 Jun 2025 16:21:01 +0000 Files and hashes: 1: 7LIDs03q4KEdAVCjDvK0opkdepg.crl (hash: sTO6NELa511pxGX2YiHVkfdFh+TWcKFThHB+ivMnPzY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189529/6929F2C25BBE11E78977E023C4F9AE02/7LIDs03q4KEdAVCjDvK0opkdepg.crl rsync://rpki.apnic.net/member_repository/A9189529/6929F2C25BBE11E78977E023C4F9AE02/7LIDs03q4KEdAVCjDvK0opkdepg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7LIDs03q4KEdAVCjDvK0opkdepg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 16:21:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6600 (0x19c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189529, serialNumber=ECB203B34DEAE0A11D0150A30EF2B4A2991D7A98 Validity Not Before: May 31 16:21:01 2025 GMT Not After : Jun 7 16:21:01 2025 GMT Subject: CN=683b2c6d-1221 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:18:49:54:34:13:c7:36:51:0b:2b:8a:80:60: 2e:49:8a:c8:3a:f2:62:9a:33:56:e2:c0:7e:45:c1: 18:8a:a5:e8:b6:74:d1:4c:5a:9c:f7:99:2a:86:0b: 19:12:8b:0d:6c:e0:fa:63:08:64:8e:19:47:db:44: 69:d9:8e:b3:9a:77:aa:5e:02:45:30:91:a1:e2:73: 56:67:20:8a:44:75:18:54:af:7d:76:89:59:3d:5d: f6:b4:41:01:6a:eb:af:58:a5:05:59:47:70:09:1b: 46:f3:f2:a2:18:d4:1c:ca:e0:96:80:f5:18:dd:db: 90:b9:07:0c:7e:1b:4d:15:80:52:f7:cc:f9:26:16: f6:fa:25:ba:97:0d:3f:c6:fb:e9:39:41:6c:ac:63: dc:dc:b9:82:1b:68:70:f8:d2:43:28:71:8c:10:cb: c7:10:41:3d:34:d4:cb:fd:e6:30:02:fb:36:e3:45: 59:fa:8a:d4:ef:f2:84:1e:2e:f1:1a:45:43:0d:46: ff:0b:10:fb:f2:3f:91:64:82:d1:ce:46:88:cc:72: 5d:aa:f9:ed:bd:7b:d3:9a:43:79:0f:15:5b:0f:3a: ca:64:2d:28:bc:62:d3:01:83:b4:3e:25:28:2d:a0: d5:39:57:3b:e1:2f:9b:49:84:f3:a3:78:26:79:08: 98:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:9B:72:9A:8E:62:CE:C3:56:E6:85:78:32:E5:45:5B:B7:97:E2:CC X509v3 Authority Key Identifier: keyid:EC:B2:03:B3:4D:EA:E0:A1:1D:01:50:A3:0E:F2:B4:A2:99:1D:7A:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189529/6929F2C25BBE11E78977E023C4F9AE02/7LIDs03q4KEdAVCjDvK0opkdepg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7LIDs03q4KEdAVCjDvK0opkdepg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189529/6929F2C25BBE11E78977E023C4F9AE02/7LIDs03q4KEdAVCjDvK0opkdepg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c6:28:c9:a0:2d:9e:2f:fd:7a:1b:fd:ed:1d:98:1a:b5:8f:48: 68:95:a9:7e:df:de:02:4e:e0:14:41:2d:19:a1:d0:89:aa:d4: e9:14:5b:0f:42:60:f8:93:5c:e5:96:c3:4d:e3:2b:56:28:12: e5:48:2f:26:72:a5:d1:2a:2b:7d:79:59:4a:4c:8c:6a:af:b4: a2:2d:27:7b:cf:64:5f:b6:c6:19:97:17:83:7d:27:87:18:8c: 16:e3:bf:b0:56:83:23:cb:ca:ce:64:40:9f:6a:06:c9:51:af: 9b:8a:ba:69:90:c3:7c:8c:15:39:ca:0c:ce:a2:2a:7a:8a:c5: 2b:dc:57:94:a6:43:af:23:d6:d0:71:0c:53:47:69:68:06:e1: b1:b6:f5:08:2e:17:34:dd:60:2c:68:e1:a0:d1:99:77:9c:f5: 36:9e:d1:8f:f1:78:f2:3a:fa:0c:be:e8:03:c9:48:6c:57:c5: 1b:ab:17:6b:5a:4d:64:f3:db:3a:19:89:c2:9d:07:cb:b3:99: 30:7f:5a:e8:b7:ac:fb:8c:d9:0e:fb:d6:ee:b4:dd:d1:55:a0: cb:6e:85:f8:bf:3d:ff:81:4e:07:b0:da:41:a8:19:0e:51:ee: 0a:e4:7b:78:9e:df:e7:53:60:7d:a9:bd:2d:75:39:fc:ff:64: c4:a4:ab:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGcgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODk1MjkxMTAvBgNVBAUTKEVDQjIwM0IzNERFQUUwQTExRDAxNTBBMzBFRjJCNEEy OTkxRDdBOTgwHhcNMjUwNTMxMTYyMTAxWhcNMjUwNjA3MTYyMTAxWjAYMRYwFAYD VQQDEw02ODNiMmM2ZC0xMjIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyxhJVDQTxzZRCyuKgGAuSYrIOvJimjNW4sB+RcEYiqXotnTRTFqc95kqhgsZ EosNbOD6YwhkjhlH20Rp2Y6zmneqXgJFMJGh4nNWZyCKRHUYVK99dolZPV32tEEB auuvWKUFWUdwCRtG8/KiGNQcyuCWgPUY3duQuQcMfhtNFYBS98z5Jhb2+iW6lw0/ xvvpOUFsrGPc3LmCG2hw+NJDKHGMEMvHEEE9NNTL/eYwAvs240VZ+orU7/KEHi7x GkVDDUb/CxD78j+RZILRzkaIzHJdqvntvXvTmkN5DxVbDzrKZC0ovGLTAYO0PiUo LaDVOVc74S+bSYTzo3gmeQiYjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPmbcpqO Ys7DVuaFeDLlRVu3l+LMMB8GA1UdIwQYMBaAFOyyA7NN6uChHQFQow7ytKKZHXqY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTUyOS82OTI5RjJDMjVC QkUxMUU3ODk3N0UwMjNDNEY5QUUwMi83TElEczAzcTRLRWRBVkNqRHZLMG9wa2Rl cGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdMSURzMDNxNEtFZEFWQ2pEdkswb3BrZGVwZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTUyOS82OTI5RjJDMjVCQkUxMUU3ODk3N0UwMjNDNEY5QUUwMi83TElEczAzcTRL RWRBVkNqRHZLMG9wa2RlcGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDGKMmgLZ4v/Xob/e0dmBq1j0holal+394CTuAUQS0ZodCJqtTpFFsP QmD4k1zllsNN4ytWKBLlSC8mcqXRKit9eVlKTIxqr7SiLSd7z2RftsYZlxeDfSeH GIwW47+wVoMjy8rOZECfagbJUa+birppkMN8jBU5ygzOoip6isUr3FeUpkOvI9bQ cQxTR2loBuGxtvUILhc03WAsaOGg0Zl3nPU2ntGP8XjyOvoMvugDyUhsV8Ubqxdr Wk1k89s6GYnCnQfLs5kwf1rot6z7jNkO+9butN3RVaDLboX4vz3/gU4HsNpBqBkO Ue4K5Ht4nt/nU2B9qb0tdTn8/2TEpKsG -----END CERTIFICATE-----Generated at Sat May 31 17:56:26 2025 by rpki-client