$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7CDD/936B31E0DD0D11EE9D292D6AC4F9AE02/nUYEQGD6lulKIx4DCjDj1lT0Ea4.mft File: nUYEQGD6lulKIx4DCjDj1lT0Ea4.mft (raw, json) Hash identifier: LEwhmKGPWcqx/Lv7EXo9zGInxLA+D2OP4AhAof+KlFQ= Subject key identifier: D1:1F:9E:FB:81:87:E5:97:68:03:B4:AD:EA:D2:23:CC:EE:7A:AA:37 Authority key identifier: 9D:46:04:40:60:FA:96:E9:4A:23:1E:03:0A:30:E3:D6:54:F4:11:AE Certificate issuer: /CN=A91A7CDD/serialNumber=9D46044060FA96E94A231E030A30E3D654F411AE Certificate serial: E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nUYEQGD6lulKIx4DCjDj1lT0Ea4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7CDD/936B31E0DD0D11EE9D292D6AC4F9AE02/nUYEQGD6lulKIx4DCjDj1lT0Ea4.mft Manifest number: E4 Signing time: Sat 31 May 2025 05:01:12 +0000 Manifest this update: Sat 31 May 2025 05:01:11 +0000 Manifest next update: Sat 07 Jun 2025 05:01:11 +0000 Files and hashes: 1: nUYEQGD6lulKIx4DCjDj1lT0Ea4.crl (hash: 7Tr3q93YUTYk7CRf79UBBt+nBfK6GwqRKQ8d7efBQV0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7CDD/936B31E0DD0D11EE9D292D6AC4F9AE02/nUYEQGD6lulKIx4DCjDj1lT0Ea4.crl rsync://rpki.apnic.net/member_repository/A91A7CDD/936B31E0DD0D11EE9D292D6AC4F9AE02/nUYEQGD6lulKIx4DCjDj1lT0Ea4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nUYEQGD6lulKIx4DCjDj1lT0Ea4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 228 (0xe4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7CDD, serialNumber=9D46044060FA96E94A231E030A30E3D654F411AE Validity Not Before: May 31 05:01:11 2025 GMT Not After : Jun 7 05:01:11 2025 GMT Subject: CN=683a8d18-1919 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:1b:f6:a3:e4:61:fe:56:9b:23:aa:c7:7b:82: 76:cd:78:e4:16:8d:fb:ad:d6:39:7b:7d:af:37:e7: 4b:83:99:72:19:26:2d:4f:a1:d9:d0:5d:bc:f0:70: c0:5b:c2:56:4d:03:71:d7:0f:ad:3a:63:4a:7b:41: 9c:82:e8:4e:97:0a:94:41:e6:e1:af:9c:2f:9d:46: 15:a4:4c:cb:cf:4b:1b:83:46:96:cc:4c:5f:4c:e1: a9:a2:2b:1e:d4:75:74:48:d5:25:65:fc:94:d1:68: cc:b3:9e:d2:d5:7e:5a:68:27:fc:21:07:79:1d:56: f0:4f:38:04:a9:45:99:a9:92:4b:f5:34:a2:1b:57: cd:31:d4:cb:83:96:3c:2b:87:01:68:ad:c7:e9:51: 58:f4:a0:97:ed:e7:0e:e1:b3:89:28:14:90:0b:47: 6b:a8:2d:3c:4f:94:74:fc:03:fe:8a:0e:6c:86:6e: f4:b2:18:fb:1e:60:f9:1c:b9:cd:25:40:32:3f:af: 16:29:68:ce:70:34:6c:10:e8:7f:89:59:a2:6d:36: 43:c0:bd:de:6b:0d:9d:de:13:ec:9f:38:7d:a4:de: 85:f7:2e:ea:48:b1:42:62:c4:bf:5d:03:0d:a7:44: 8f:0c:30:fd:c9:fd:34:8e:7e:f3:b2:8f:90:25:f9: 42:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:1F:9E:FB:81:87:E5:97:68:03:B4:AD:EA:D2:23:CC:EE:7A:AA:37 X509v3 Authority Key Identifier: keyid:9D:46:04:40:60:FA:96:E9:4A:23:1E:03:0A:30:E3:D6:54:F4:11:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7CDD/936B31E0DD0D11EE9D292D6AC4F9AE02/nUYEQGD6lulKIx4DCjDj1lT0Ea4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nUYEQGD6lulKIx4DCjDj1lT0Ea4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7CDD/936B31E0DD0D11EE9D292D6AC4F9AE02/nUYEQGD6lulKIx4DCjDj1lT0Ea4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:29:df:6d:03:f6:fa:d0:83:20:d3:b0:95:16:71:0b:7b:a5: d5:46:a2:d7:8d:ef:22:57:1f:68:b8:f3:f7:7d:87:49:b0:0b: 3c:bf:05:00:7c:a1:f2:f6:a6:29:df:f0:4b:60:35:57:69:23: d0:50:97:60:2b:28:cd:d7:42:9f:5b:c1:8a:a3:e0:f5:b3:4f: 33:77:40:9f:ff:0d:f5:20:5e:24:a1:ab:12:43:d0:e7:4a:b9: e9:a3:8f:cf:31:34:19:ff:9d:5f:a6:3e:af:11:7c:e1:85:ad: 43:0b:f1:5f:7a:cc:d4:99:cb:a1:2b:5d:d5:d7:15:c4:fc:c3: bd:e1:7b:0c:c0:9a:2a:80:df:2a:8f:a3:b3:ca:51:a8:0e:81: 0f:87:f0:af:7e:81:56:ac:6a:12:38:b3:d0:14:a6:aa:ba:cf: f2:23:91:3c:a5:ab:40:dd:5c:eb:a0:ca:2b:b9:c9:01:ea:14: 6d:8c:74:99:79:7b:d4:f5:cd:d4:8d:06:39:dc:2c:1b:de:a0: 21:b7:da:bf:e1:57:20:f0:82:31:6c:dd:a1:95:ff:be:82:18: 09:db:4f:b8:3c:e9:ad:45:b3:98:9c:7a:95:5a:fb:85:4c:36: 77:1e:d0:e6:f5:81:63:bd:ca:64:e7:7b:ce:df:6a:03:4e:17: 1a:b6:2f:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdDREQxMTAvBgNVBAUTKDlENDYwNDQwNjBGQTk2RTk0QTIzMUUwMzBBMzBFM0Q2 NTRGNDExQUUwHhcNMjUwNTMxMDUwMTExWhcNMjUwNjA3MDUwMTExWjAYMRYwFAYD VQQDEw02ODNhOGQxOC0xOTE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtxv2o+Rh/labI6rHe4J2zXjkFo37rdY5e32vN+dLg5lyGSYtT6HZ0F288HDA W8JWTQNx1w+tOmNKe0GcguhOlwqUQebhr5wvnUYVpEzLz0sbg0aWzExfTOGpoise 1HV0SNUlZfyU0WjMs57S1X5aaCf8IQd5HVbwTzgEqUWZqZJL9TSiG1fNMdTLg5Y8 K4cBaK3H6VFY9KCX7ecO4bOJKBSQC0drqC08T5R0/AP+ig5shm70shj7HmD5HLnN JUAyP68WKWjOcDRsEOh/iVmibTZDwL3eaw2d3hPsnzh9pN6F9y7qSLFCYsS/XQMN p0SPDDD9yf00jn7zso+QJflCsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNEfnvuB h+WXaAO0rerSI8zueqo3MB8GA1UdIwQYMBaAFJ1GBEBg+pbpSiMeAwow49ZU9BGu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0NERC85MzZCMzFFMERE MEQxMUVFOUQyOTJENkFDNEY5QUUwMi9uVVlFUUdENmx1bEtJeDREQ2pEajFsVDBF YTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25VWUVRR0Q2bHVsS0l4NERDakRqMWxUMEVhNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0NERC85MzZCMzFFMEREMEQxMUVFOUQyOTJENkFDNEY5QUUwMi9uVVlFUUdENmx1 bEtJeDREQ2pEajFsVDBFYTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKKd9tA/b60IMg07CVFnELe6XVRqLXje8iVx9ouPP3fYdJsAs8vwUA fKHy9qYp3/BLYDVXaSPQUJdgKyjN10KfW8GKo+D1s08zd0Cf/w31IF4koasSQ9Dn Srnpo4/PMTQZ/51fpj6vEXzhha1DC/FfeszUmcuhK13V1xXE/MO94XsMwJoqgN8q j6OzylGoDoEPh/CvfoFWrGoSOLPQFKaqus/yI5E8patA3VzroMoruckB6hRtjHSZ eXvU9c3UjQY53Cwb3qAht9q/4Vcg8IIxbN2hlf++ghgJ20+4POmtRbOYnHqVWvuF TDZ3HtDm9YFjvcpk53vO32oDThcati+m -----END CERTIFICATE-----Generated at Sat May 31 17:56:22 2025 by rpki-client