$ rpki-client -vvf rpki.apnic.net/member_repository/A91A78A7/50D61BB6713D11ED9FDF3D12C4F9AE02/n095sMMg0u--SKvL-paoRdZHlu8.mft File: n095sMMg0u--SKvL-paoRdZHlu8.mft (raw, json) Hash identifier: i98v6k4tJ0kliH+NDJSeyhikZ5PMIG76MR/SrY/K5kA= Subject key identifier: 40:4E:EE:96:30:7F:FD:AF:82:83:99:15:22:BC:BB:36:FD:F8:81:2F Authority key identifier: 9F:4F:79:B0:C3:20:D2:EF:BE:48:AB:CB:FA:96:A8:45:D6:47:96:EF Certificate issuer: /CN=A91A78A7/serialNumber=9F4F79B0C320D2EFBE48ABCBFA96A845D64796EF Certificate serial: 01D2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/n095sMMg0u--SKvL-paoRdZHlu8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A78A7/50D61BB6713D11ED9FDF3D12C4F9AE02/n095sMMg0u--SKvL-paoRdZHlu8.mft Manifest number: 01D2 Signing time: Sun 01 Jun 2025 01:53:55 +0000 Manifest this update: Sun 01 Jun 2025 01:53:55 +0000 Manifest next update: Sun 08 Jun 2025 01:53:55 +0000 Files and hashes: 1: n095sMMg0u--SKvL-paoRdZHlu8.crl (hash: wiQBi33mi69D8z4AoZ2cEfV620l+0E4ZCdVz1rpHw/A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A78A7/50D61BB6713D11ED9FDF3D12C4F9AE02/n095sMMg0u--SKvL-paoRdZHlu8.crl rsync://rpki.apnic.net/member_repository/A91A78A7/50D61BB6713D11ED9FDF3D12C4F9AE02/n095sMMg0u--SKvL-paoRdZHlu8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/n095sMMg0u--SKvL-paoRdZHlu8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 01:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 466 (0x1d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A78A7, serialNumber=9F4F79B0C320D2EFBE48ABCBFA96A845D64796EF Validity Not Before: Jun 1 01:53:55 2025 GMT Not After : Jun 8 01:53:55 2025 GMT Subject: CN=683bb2b3-7058 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:d4:22:1a:f5:5c:36:89:97:c5:da:33:d8:9e: 31:53:24:11:2a:68:d1:2a:75:d6:f9:53:50:e1:22: 6e:aa:8d:41:b1:27:10:52:a6:c6:40:9e:b2:e7:b6: 8c:4d:69:b4:53:13:6b:8f:b4:98:2d:03:2d:d8:f7: e2:67:d5:3c:ae:f7:97:47:13:76:be:0d:da:5b:5a: 84:fc:2f:56:b6:d9:2a:f3:97:8c:9a:33:a6:ea:1d: 03:e8:6e:58:8b:47:f7:28:da:18:e8:2e:ac:a1:10: 3a:ce:2b:d5:b6:65:76:bc:31:6f:f0:b6:e4:b2:8f: ed:13:69:6b:f6:16:a0:f2:38:de:38:c1:d8:95:7a: ee:78:36:a5:57:79:5f:2b:73:6e:9a:75:94:ae:df: 78:c7:f5:f6:db:49:58:66:6e:92:3a:4f:0e:28:a0: 5c:ab:35:cd:b7:90:a1:a6:ca:6b:c4:f2:ca:cb:d5: 71:97:68:88:71:aa:e5:9e:6d:6d:86:96:9f:15:ba: ea:62:37:4b:a7:91:5a:75:3e:46:84:f1:4d:d7:ce: ba:8b:7d:6e:bc:f7:71:10:bf:f6:c3:f2:e3:c6:cf: 9d:2e:c7:db:92:92:54:97:a7:d8:89:25:47:85:fb: ea:63:8f:5e:37:9f:7d:d8:ce:35:42:37:c7:bc:9c: ea:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:4E:EE:96:30:7F:FD:AF:82:83:99:15:22:BC:BB:36:FD:F8:81:2F X509v3 Authority Key Identifier: keyid:9F:4F:79:B0:C3:20:D2:EF:BE:48:AB:CB:FA:96:A8:45:D6:47:96:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A78A7/50D61BB6713D11ED9FDF3D12C4F9AE02/n095sMMg0u--SKvL-paoRdZHlu8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/n095sMMg0u--SKvL-paoRdZHlu8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A78A7/50D61BB6713D11ED9FDF3D12C4F9AE02/n095sMMg0u--SKvL-paoRdZHlu8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:d4:c7:a1:5d:e4:f6:28:c8:5a:30:46:af:38:a8:39:80:cb: 89:d7:ea:bc:9f:17:5c:0c:99:11:05:78:bd:a2:61:9d:9a:39: 4b:a9:d5:13:03:15:51:b8:c7:d8:1a:5c:37:07:fd:ce:25:c6: 0c:fa:5f:6a:1c:ef:fd:11:d0:9d:f1:d1:3b:41:bd:7f:f3:c5: ed:23:9c:c5:d2:40:71:db:02:c7:94:b5:a2:0e:54:c6:cc:87: 7e:7e:eb:44:5e:68:11:2d:f4:36:4d:c0:4a:a3:3f:d1:9c:14: c2:4f:78:bd:a2:a4:11:f6:d2:fe:01:e9:5b:53:48:99:3e:dc: e7:da:6f:7d:ff:7c:52:1f:42:50:34:ba:07:97:ff:b3:32:56: c5:db:a3:01:fb:a5:0e:7f:81:22:d3:f5:5f:dc:2d:84:18:f3: 54:b5:4f:cf:22:c9:a4:96:ea:a4:4f:51:92:85:65:d4:ef:d2: 96:7f:4d:45:a8:77:ee:7d:65:fe:bb:6b:3c:75:a8:2a:f1:ad: 3b:ff:10:2b:9f:a3:06:b3:f0:35:c2:8b:40:85:ab:63:79:72: bf:b9:63:0f:2e:3b:f6:60:8a:4e:43:e9:e2:73:b8:bf:82:e8: 5b:12:7b:4c:89:bd:c9:4d:7c:db:d3:2a:6b:62:90:ad:04:69: 52:0a:8f:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTc4QTcxMTAvBgNVBAUTKDlGNEY3OUIwQzMyMEQyRUZCRTQ4QUJDQkZBOTZBODQ1 RDY0Nzk2RUYwHhcNMjUwNjAxMDE1MzU1WhcNMjUwNjA4MDE1MzU1WjAYMRYwFAYD VQQDEw02ODNiYjJiMy03MDU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0tQiGvVcNomXxdoz2J4xUyQRKmjRKnXW+VNQ4SJuqo1BsScQUqbGQJ6y57aM TWm0UxNrj7SYLQMt2PfiZ9U8rveXRxN2vg3aW1qE/C9Wttkq85eMmjOm6h0D6G5Y i0f3KNoY6C6soRA6zivVtmV2vDFv8Lbkso/tE2lr9hag8jjeOMHYlXrueDalV3lf K3NumnWUrt94x/X220lYZm6SOk8OKKBcqzXNt5ChpsprxPLKy9Vxl2iIcarlnm1t hpafFbrqYjdLp5FadT5GhPFN1866i31uvPdxEL/2w/Ljxs+dLsfbkpJUl6fYiSVH hfvqY49eN5992M41QjfHvJzqPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEBO7pYw f/2vgoOZFSK8uzb9+IEvMB8GA1UdIwQYMBaAFJ9PebDDINLvvkiry/qWqEXWR5bv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzhBNy81MEQ2MUJCNjcx M0QxMUVEOUZERjNEMTJDNEY5QUUwMi9uMDk1c01NZzB1LS1TS3ZMLXBhb1JkWkhs dTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL24wOTVzTU1nMHUtLVNLdkwtcGFvUmRaSGx1OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzhBNy81MEQ2MUJCNjcxM0QxMUVEOUZERjNEMTJDNEY5QUUwMi9uMDk1c01NZzB1 LS1TS3ZMLXBhb1JkWkhsdTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCl1MehXeT2KMhaMEavOKg5gMuJ1+q8nxdcDJkRBXi9omGdmjlLqdUT AxVRuMfYGlw3B/3OJcYM+l9qHO/9EdCd8dE7Qb1/88XtI5zF0kBx2wLHlLWiDlTG zId+futEXmgRLfQ2TcBKoz/RnBTCT3i9oqQR9tL+AelbU0iZPtzn2m99/3xSH0JQ NLoHl/+zMlbF26MB+6UOf4Ei0/Vf3C2EGPNUtU/PIsmkluqkT1GShWXU79KWf01F qHfufWX+u2s8dagq8a07/xArn6MGs/A1wotAhatjeXK/uWMPLjv2YIpOQ+nic7i/ guhbEntMib3JTXzb0yprYpCtBGlSCo9z -----END CERTIFICATE-----Generated at Mon Jun 2 21:45:29 2025 by rpki-client