$ rpki-client -vvf rpki.apnic.net/member_repository/A918E85E/659E9010EFF311EE977CAC31C4F9AE02/tTvOFhrPYwXsBVxZqJHoIqEe-AQ.mft File: tTvOFhrPYwXsBVxZqJHoIqEe-AQ.mft (raw, json) Hash identifier: hisKFdPPDAHPSNnLOc9RvDM2e/DYaAaePSa3KxZjTts= Subject key identifier: 67:F1:10:76:28:AB:B6:E7:51:06:3A:5A:37:BA:9E:6B:63:5E:6B:5C Authority key identifier: B5:3B:CE:16:1A:CF:63:05:EC:05:5C:59:A8:91:E8:22:A1:1E:F8:04 Certificate issuer: /CN=A918E85E/serialNumber=B53BCE161ACF6305EC055C59A891E822A11EF804 Certificate serial: D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tTvOFhrPYwXsBVxZqJHoIqEe-AQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E85E/659E9010EFF311EE977CAC31C4F9AE02/tTvOFhrPYwXsBVxZqJHoIqEe-AQ.mft Manifest number: D7 Signing time: Sat 31 May 2025 05:09:30 +0000 Manifest this update: Sat 31 May 2025 05:09:30 +0000 Manifest next update: Sat 07 Jun 2025 05:09:30 +0000 Files and hashes: 1: tTvOFhrPYwXsBVxZqJHoIqEe-AQ.crl (hash: 6UXq7vj7+DBeKjY9wPFoyDpEO1ywYeccartbjxaM/jA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E85E/659E9010EFF311EE977CAC31C4F9AE02/tTvOFhrPYwXsBVxZqJHoIqEe-AQ.crl rsync://rpki.apnic.net/member_repository/A918E85E/659E9010EFF311EE977CAC31C4F9AE02/tTvOFhrPYwXsBVxZqJHoIqEe-AQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tTvOFhrPYwXsBVxZqJHoIqEe-AQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 215 (0xd7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E85E, serialNumber=B53BCE161ACF6305EC055C59A891E822A11EF804 Validity Not Before: May 31 05:09:30 2025 GMT Not After : Jun 7 05:09:30 2025 GMT Subject: CN=683a8f0a-1816 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:c9:14:cc:3e:2f:67:37:5d:cb:41:89:95:75: c8:08:70:0a:e6:10:7f:15:df:b3:98:7b:56:70:01: bc:f2:72:5e:06:88:48:13:b0:da:a9:e5:e8:42:8d: 66:c0:d0:e0:5e:ff:66:96:84:e8:68:f0:f0:99:ec: 09:0e:b4:e9:1e:64:86:12:18:96:5d:9b:91:5b:20: 76:2c:a1:77:79:43:c8:41:3e:ee:e3:bb:6c:15:6d: 8d:0e:48:1e:23:be:c6:bf:8a:27:eb:38:75:ad:2c: 2d:af:a9:94:98:b3:ea:9e:04:3b:64:07:1c:63:7f: b5:65:0a:be:70:8a:21:34:12:1c:db:df:1c:75:58: e2:34:aa:49:cf:95:e0:20:1d:3c:b3:d5:0e:af:13: ad:c6:78:d9:70:6e:ef:57:2f:5e:d9:c4:91:12:53: aa:fd:06:47:6b:50:6c:12:15:ce:dd:6c:1a:88:22: c7:4c:90:db:3c:eb:41:9a:5b:bb:c5:49:3b:64:06: 4f:b8:51:94:0e:7f:81:b9:7b:1a:13:23:cd:e2:d8: 27:e8:d6:9c:72:4c:61:db:ae:5a:8d:f9:4c:1b:b7: 93:f4:0e:46:f7:82:51:20:8d:59:4b:37:e6:cc:5b: 5c:07:f0:cc:7e:b0:35:aa:53:a7:61:04:4f:a0:50: d1:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:F1:10:76:28:AB:B6:E7:51:06:3A:5A:37:BA:9E:6B:63:5E:6B:5C X509v3 Authority Key Identifier: keyid:B5:3B:CE:16:1A:CF:63:05:EC:05:5C:59:A8:91:E8:22:A1:1E:F8:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E85E/659E9010EFF311EE977CAC31C4F9AE02/tTvOFhrPYwXsBVxZqJHoIqEe-AQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tTvOFhrPYwXsBVxZqJHoIqEe-AQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E85E/659E9010EFF311EE977CAC31C4F9AE02/tTvOFhrPYwXsBVxZqJHoIqEe-AQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:15:d3:80:ee:c7:4d:04:57:e3:c3:54:9b:92:75:1c:51:98: cf:0a:af:e6:0d:b6:53:10:7f:36:c0:cf:b9:6a:f1:c0:c5:2d: 96:54:43:20:d9:bc:19:3f:65:bb:aa:4d:1a:62:b1:ba:17:cc: 6d:d7:85:cb:ab:77:90:53:63:53:c8:d7:72:56:fd:d1:a5:83: 2c:cc:db:29:74:6d:55:f2:a0:2d:21:c5:b3:93:98:a6:e6:8b: 15:3f:3f:4f:00:73:45:f6:c4:0f:5b:9e:4d:32:e1:32:bb:fa: aa:29:99:78:a6:0d:c7:8c:32:74:29:d0:35:9c:71:1b:d8:64: f1:6c:9c:f8:95:02:94:74:c3:b8:fd:27:63:5b:25:73:91:d2: 95:d0:03:72:0d:e4:b7:ac:8c:97:28:a8:ff:98:c2:fb:d6:2f: f3:c6:d1:40:a1:e4:cc:8a:16:1d:dd:b6:66:a2:bd:62:76:d2: 25:bc:23:2f:5c:e0:9d:16:02:7a:ff:d3:75:74:85:fe:9a:81: 84:b7:e5:ea:1d:33:20:07:62:c2:1f:98:2c:02:9c:db:e4:6c: 04:80:ec:b1:69:2a:31:14:29:44:b5:58:ac:16:6b:ba:cc:af: 30:28:07:84:cc:f4:41:56:53:76:14:f1:2d:c8:d8:44:aa:b0: ff:d6:f8:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU4NUUxMTAvBgNVBAUTKEI1M0JDRTE2MUFDRjYzMDVFQzA1NUM1OUE4OTFFODIy QTExRUY4MDQwHhcNMjUwNTMxMDUwOTMwWhcNMjUwNjA3MDUwOTMwWjAYMRYwFAYD VQQDEw02ODNhOGYwYS0xODE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsMkUzD4vZzddy0GJlXXICHAK5hB/Fd+zmHtWcAG88nJeBohIE7DaqeXoQo1m wNDgXv9mloToaPDwmewJDrTpHmSGEhiWXZuRWyB2LKF3eUPIQT7u47tsFW2NDkge I77Gv4on6zh1rSwtr6mUmLPqngQ7ZAccY3+1ZQq+cIohNBIc298cdVjiNKpJz5Xg IB08s9UOrxOtxnjZcG7vVy9e2cSRElOq/QZHa1BsEhXO3WwaiCLHTJDbPOtBmlu7 xUk7ZAZPuFGUDn+BuXsaEyPN4tgn6Nacckxh265ajflMG7eT9A5G94JRII1ZSzfm zFtcB/DMfrA1qlOnYQRPoFDRVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGfxEHYo q7bnUQY6Wje6nmtjXmtcMB8GA1UdIwQYMBaAFLU7zhYaz2MF7AVcWaiR6CKhHvgE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTg1RS82NTlFOTAxMEVG RjMxMUVFOTc3Q0FDMzFDNEY5QUUwMi90VHZPRmhyUFl3WHNCVnhacUpIb0lxRWUt QVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RUdk9GaHJQWXdYc0JWeFpxSkhvSXFFZS1BUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTg1RS82NTlFOTAxMEVGRjMxMUVFOTc3Q0FDMzFDNEY5QUUwMi90VHZPRmhyUFl3 WHNCVnhacUpIb0lxRWUtQVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARFdOA7sdNBFfjw1SbknUcUZjPCq/mDbZTEH82wM+5avHAxS2WVEMg 2bwZP2W7qk0aYrG6F8xt14XLq3eQU2NTyNdyVv3RpYMszNspdG1V8qAtIcWzk5im 5osVPz9PAHNF9sQPW55NMuEyu/qqKZl4pg3HjDJ0KdA1nHEb2GTxbJz4lQKUdMO4 /SdjWyVzkdKV0ANyDeS3rIyXKKj/mML71i/zxtFAoeTMihYd3bZmor1idtIlvCMv XOCdFgJ6/9N1dIX+moGEt+XqHTMgB2LCH5gsApzb5GwEgOyxaSoxFClEtVisFmu6 zK8wKAeEzPRBVlN2FPEtyNhEqrD/1vjc -----END CERTIFICATE-----Generated at Sat May 31 17:28:52 2025 by rpki-client