$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFAAC/53D55CD6354A11F0BA766E4CC4F9AE02/-L4s6ssxJNZg8w-KJzgGZIr0PIc.mft File: -L4s6ssxJNZg8w-KJzgGZIr0PIc.mft (raw, json) Hash identifier: 1I0iUXbCq3OvkJ6r6xJ7l9tGLHVU7oxNwNY87yiww80= Subject key identifier: 17:36:26:6D:7C:17:68:18:35:E3:BD:F1:80:90:69:9B:69:55:26:B9 Authority key identifier: F8:BE:2C:EA:CB:31:24:D6:60:F3:0F:8A:27:38:06:64:8A:F4:3C:87 Certificate issuer: /CN=A91AFAAC/serialNumber=F8BE2CEACB3124D660F30F8A273806648AF43C87 Certificate serial: 06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-L4s6ssxJNZg8w-KJzgGZIr0PIc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFAAC/53D55CD6354A11F0BA766E4CC4F9AE02/-L4s6ssxJNZg8w-KJzgGZIr0PIc.mft Manifest number: 06 Signing time: Sat 31 May 2025 07:43:46 +0000 Manifest this update: Sat 31 May 2025 07:43:45 +0000 Manifest next update: Sat 07 Jun 2025 07:43:45 +0000 Files and hashes: 1: -L4s6ssxJNZg8w-KJzgGZIr0PIc.crl (hash: mzSdu9ug3Jk4sL2PqiS2vWyQXk0S9pS4Xcpj6P15tCI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFAAC/53D55CD6354A11F0BA766E4CC4F9AE02/-L4s6ssxJNZg8w-KJzgGZIr0PIc.crl rsync://rpki.apnic.net/member_repository/A91AFAAC/53D55CD6354A11F0BA766E4CC4F9AE02/-L4s6ssxJNZg8w-KJzgGZIr0PIc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-L4s6ssxJNZg8w-KJzgGZIr0PIc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 07:43:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFAAC, serialNumber=F8BE2CEACB3124D660F30F8A273806648AF43C87 Validity Not Before: May 31 07:43:45 2025 GMT Not After : Jun 7 07:43:45 2025 GMT Subject: CN=683ab331-932c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:a3:32:97:5e:16:c9:be:b3:72:4a:f2:31:a8: 00:d3:12:31:09:3e:c9:4c:4c:a2:db:65:38:08:0d: 5f:6b:3b:35:a3:f2:f5:ed:63:a1:de:ee:b9:75:c0: 6b:82:cb:07:dc:a4:ae:e1:42:37:ad:97:eb:c3:44: e6:26:9b:10:65:eb:58:19:e1:21:bf:ee:57:d5:96: 6f:97:36:87:3d:03:b0:2b:4a:fe:3e:7e:4c:20:48: 4e:ea:db:45:08:83:25:ad:39:e5:6f:d8:f2:06:9e: 22:4b:54:60:de:a8:27:22:fb:45:31:b2:5b:25:0c: 8a:8d:59:f9:66:9f:27:e2:fe:e0:96:ee:7d:e0:bd: 91:97:4f:c3:b7:2a:61:d6:26:7d:60:83:95:e7:5e: 0f:2f:97:e1:d8:5d:5a:fa:03:3d:93:65:24:58:56: 40:fa:02:3b:70:bb:7b:45:76:7d:19:c3:6c:95:88: 23:11:b9:72:96:69:a1:65:f4:d8:70:d0:d2:d2:73: c7:8f:ec:63:d2:c8:a9:04:af:e2:89:89:50:25:99: b5:18:0b:06:c5:b8:35:98:66:c0:75:a1:2c:02:3a: be:b8:b6:c1:30:23:38:19:22:57:18:ee:b4:d7:38: 78:85:98:87:e4:50:f8:f0:18:0b:e0:de:38:2a:b1: 5d:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:36:26:6D:7C:17:68:18:35:E3:BD:F1:80:90:69:9B:69:55:26:B9 X509v3 Authority Key Identifier: keyid:F8:BE:2C:EA:CB:31:24:D6:60:F3:0F:8A:27:38:06:64:8A:F4:3C:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFAAC/53D55CD6354A11F0BA766E4CC4F9AE02/-L4s6ssxJNZg8w-KJzgGZIr0PIc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-L4s6ssxJNZg8w-KJzgGZIr0PIc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFAAC/53D55CD6354A11F0BA766E4CC4F9AE02/-L4s6ssxJNZg8w-KJzgGZIr0PIc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:14:34:8b:7a:42:4c:aa:61:d8:f4:b9:a0:92:74:07:70:72: c3:e0:d5:fe:3d:a0:e0:5a:83:2e:9f:68:29:9e:c5:4c:a6:3e: 7d:52:4d:7f:8e:00:3e:13:fe:13:32:e4:d4:ae:48:1e:f1:44: b1:94:1e:dc:c2:f5:01:94:35:98:f0:2a:69:5d:cb:5b:1c:28: 27:c5:43:0c:2a:3d:df:66:55:45:f0:bf:1f:ec:0f:47:df:97: 14:ab:ca:f6:f1:b7:d3:85:0f:c6:7c:0e:7d:79:52:83:1d:22: 7b:67:b3:04:0b:48:0b:1d:01:74:7e:da:49:ec:dc:51:ba:66: 8c:d6:8c:f7:5f:76:a3:76:32:60:f0:e8:83:0c:6b:61:bf:92: 71:b6:8e:80:6c:48:a4:61:6e:61:66:37:62:79:cf:7b:0e:9c: 26:a2:23:36:7c:f1:bf:27:b6:f2:2f:e9:6a:1e:87:27:69:cf: bc:8a:92:79:15:6e:99:cb:f4:ff:9c:56:ea:c2:87:18:0b:69: 94:82:15:e2:b4:92:e2:e5:7e:52:ef:e4:66:4a:3b:68:48:4d: 92:a1:b8:4f:a7:dd:68:87:02:47:01:13:7c:f0:1b:a1:42:1b: 4a:e3:e2:04:7b:37:a6:70:4b:11:d7:47:f9:8b:38:be:3e:99: ed:6b:3a:c2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB RkFBQzExMC8GA1UEBRMoRjhCRTJDRUFDQjMxMjRENjYwRjMwRjhBMjczODA2NjQ4 QUY0M0M4NzAeFw0yNTA1MzEwNzQzNDVaFw0yNTA2MDcwNzQzNDVaMBgxFjAUBgNV BAMTDTY4M2FiMzMxLTkzMmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1ozKXXhbJvrNySvIxqADTEjEJPslMTKLbZTgIDV9rOzWj8vXtY6He7rl1wGuC ywfcpK7hQjetl+vDROYmmxBl61gZ4SG/7lfVlm+XNoc9A7ArSv4+fkwgSE7q20UI gyWtOeVv2PIGniJLVGDeqCci+0UxslslDIqNWflmnyfi/uCW7n3gvZGXT8O3KmHW Jn1gg5XnXg8vl+HYXVr6Az2TZSRYVkD6Ajtwu3tFdn0Zw2yViCMRuXKWaaFl9Nhw 0NLSc8eP7GPSyKkEr+KJiVAlmbUYCwbFuDWYZsB1oSwCOr64tsEwIzgZIlcY7rTX OHiFmIfkUPjwGAvg3jgqsV1bAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUFzYmbXwX aBg1473xgJBpm2lVJrkwHwYDVR0jBBgwFoAU+L4s6ssxJNZg8w+KJzgGZIr0PIcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFGQUFDLzUzRDU1Q0Q2MzU0 QTExRjBCQTc2NkU0Q0M0RjlBRTAyLy1MNHM2c3N4Sk5aZzh3LUtKemdHWklyMFBJ Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvLUw0czZzc3hKTlpnOHctS0p6Z0daSXIwUEljLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFG QUFDLzUzRDU1Q0Q2MzU0QTExRjBCQTc2NkU0Q0M0RjlBRTAyLy1MNHM2c3N4Sk5a Zzh3LUtKemdHWklyMFBJYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEcUNIt6QkyqYdj0uaCSdAdwcsPg1f49oOBagy6faCmexUymPn1STX+O AD4T/hMy5NSuSB7xRLGUHtzC9QGUNZjwKmldy1scKCfFQwwqPd9mVUXwvx/sD0ff lxSryvbxt9OFD8Z8Dn15UoMdIntnswQLSAsdAXR+2kns3FG6ZozWjPdfdqN2MmDw 6IMMa2G/knG2joBsSKRhbmFmN2J5z3sOnCaiIzZ88b8ntvIv6Woehydpz7yKknkV bpnL9P+cVurChxgLaZSCFeK0kuLlflLv5GZKO2hITZKhuE+n3WiHAkcBE3zwG6FC G0rj4gR7N6ZwSxHXR/mLOL4+me1rOsI= -----END CERTIFICATE-----Generated at Sat May 31 17:06:26 2025 by rpki-client