$ rpki-client -vvf rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.mft File: md4sN9GmK6i5e1oc_SzSlAsNTQ0.mft (raw, json) Hash identifier: Tg5t8dloMThb62plRAWbvpNK/ThUb2D/lYzqlc1dirw= Subject key identifier: 47:CB:6A:BA:1E:63:EB:84:46:AB:30:25:22:7F:1B:87:51:FC:5D:35 Authority key identifier: 99:DE:2C:37:D1:A6:2B:A8:B9:7B:5A:1C:FD:2C:D2:94:0B:0D:4D:0D Certificate issuer: /CN=A91B08F7/serialNumber=99DE2C37D1A62BA8B97B5A1CFD2CD2940B0D4D0D Certificate serial: 176D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md4sN9GmK6i5e1oc_SzSlAsNTQ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.mft Manifest number: 1B70 Signing time: Mon 02 Jun 2025 16:46:36 +0000 Manifest this update: Mon 02 Jun 2025 16:46:35 +0000 Manifest next update: Mon 09 Jun 2025 16:46:35 +0000 Files and hashes: 1: md4sN9GmK6i5e1oc_SzSlAsNTQ0.crl (hash: BXZFUG9o02usu9OlaHQ1fxZJgSLKul5aNdzEGh9U0+I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.crl rsync://rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md4sN9GmK6i5e1oc_SzSlAsNTQ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 16:46:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5997 (0x176d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B08F7, serialNumber=99DE2C37D1A62BA8B97B5A1CFD2CD2940B0D4D0D Validity Not Before: Jun 2 16:46:35 2025 GMT Not After : Jun 9 16:46:35 2025 GMT Subject: CN=683dd56b-ff80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:49:d2:04:ee:1c:02:cf:ce:67:fa:20:63:16: 80:cd:39:47:0e:b1:44:ff:b6:f4:dc:a7:d8:91:5c: 89:20:43:f3:b3:7a:10:ca:46:67:82:56:5e:84:a4: 43:c5:39:ba:25:33:82:c8:bc:f0:e8:d1:2e:d8:cb: 77:69:55:54:73:96:4b:72:81:ec:b9:56:5a:c5:f5: 30:ae:2f:8a:12:f2:f8:83:8e:e2:b2:5b:7f:9d:3a: 6e:b7:e8:3a:bc:43:fe:66:08:41:f8:ab:0e:09:8f: 5c:af:bb:df:39:74:d1:d5:8a:8f:be:2c:f0:96:34: d7:1a:de:10:10:1c:e8:6a:fe:3d:ac:eb:1f:58:52: d5:9b:32:b8:05:1c:9a:e4:3e:eb:fa:09:89:e1:f2: 26:eb:57:5f:4e:df:0c:ba:c7:f0:bb:d9:4f:fe:1e: d5:80:2c:ef:ea:4f:6c:cf:fd:33:02:b6:e4:a2:81: fb:2a:ee:1e:e5:ea:a7:9f:eb:8b:84:44:57:25:39: f8:da:03:56:c5:de:1b:35:17:46:bf:59:47:e2:71: 05:e1:3b:53:b8:b0:6c:ca:a7:88:a9:e6:46:8a:80: 38:db:4b:50:c3:61:eb:bf:6f:d3:a2:3e:1a:36:71: e9:0f:ca:77:af:56:87:41:67:42:d2:90:7d:32:92: 44:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:CB:6A:BA:1E:63:EB:84:46:AB:30:25:22:7F:1B:87:51:FC:5D:35 X509v3 Authority Key Identifier: keyid:99:DE:2C:37:D1:A6:2B:A8:B9:7B:5A:1C:FD:2C:D2:94:0B:0D:4D:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md4sN9GmK6i5e1oc_SzSlAsNTQ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:54:c5:d1:0a:87:9f:8d:83:d0:bc:44:60:88:3c:45:32:56: 5a:84:c2:41:f1:42:53:6a:03:c9:3e:3e:6d:b8:4e:8d:17:c1: 17:21:15:f6:99:b3:e4:74:04:78:2c:0e:fe:2f:24:2f:02:84: 25:6c:65:30:7e:6c:9b:63:bd:e3:26:72:23:a0:e9:78:d7:b0: bb:56:0a:b2:90:56:32:f5:f4:ee:9a:fa:54:72:a5:04:f3:d6: ce:ab:7b:a7:e1:2d:2c:97:2e:63:b2:b3:45:c9:22:89:8b:42: 4a:f0:58:e3:ae:d8:26:8d:a7:74:1b:ec:33:d8:a8:59:84:82: 72:4d:12:0b:68:27:6d:aa:4b:10:bc:39:77:0c:66:99:3a:7e: b3:59:53:d2:8c:2d:f6:9f:88:9b:bc:5a:49:4d:f1:00:d4:99: cd:75:97:92:01:52:f4:05:0f:91:89:50:20:43:fa:f6:68:d6: 02:67:41:58:d3:da:c5:a2:75:68:5e:1b:69:d9:e3:9e:1e:f9: 65:95:f5:80:97:b9:dc:c7:a1:82:0d:d2:e3:3f:1d:3f:17:d3: 80:d1:2a:76:c1:f6:b9:68:a5:9b:49:c4:14:1c:e8:90:f4:05: 61:25:43:9a:d9:00:bf:70:e6:f6:78:d6:05:58:69:66:5d:c4: 1b:eb:84:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF20wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjA4RjcxMTAvBgNVBAUTKDk5REUyQzM3RDFBNjJCQThCOTdCNUExQ0ZEMkNEMjk0 MEIwRDREMEQwHhcNMjUwNjAyMTY0NjM1WhcNMjUwNjA5MTY0NjM1WjAYMRYwFAYD VQQDEw02ODNkZDU2Yi1mZjgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1UnSBO4cAs/OZ/ogYxaAzTlHDrFE/7b03KfYkVyJIEPzs3oQykZnglZehKRD xTm6JTOCyLzw6NEu2Mt3aVVUc5ZLcoHsuVZaxfUwri+KEvL4g47islt/nTput+g6 vEP+ZghB+KsOCY9cr7vfOXTR1YqPvizwljTXGt4QEBzoav49rOsfWFLVmzK4BRya 5D7r+gmJ4fIm61dfTt8Musfwu9lP/h7VgCzv6k9sz/0zArbkooH7Ku4e5eqnn+uL hERXJTn42gNWxd4bNRdGv1lH4nEF4TtTuLBsyqeIqeZGioA420tQw2Hrv2/Toj4a NnHpD8p3r1aHQWdC0pB9MpJEywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEfLaroe Y+uERqswJSJ/G4dR/F01MB8GA1UdIwQYMBaAFJneLDfRpiuouXtaHP0s0pQLDU0N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDhGNy80NzE0MzgwQUQ1 OTQxMUU3OEU3QzkxNDNDNEY5QUUwMi9tZDRzTjlHbUs2aTVlMW9jX1N6U2xBc05U UTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21kNHNOOUdtSzZpNWUxb2NfU3pTbEFzTlRRMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDhGNy80NzE0MzgwQUQ1OTQxMUU3OEU3QzkxNDNDNEY5QUUwMi9tZDRzTjlHbUs2 aTVlMW9jX1N6U2xBc05UUTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0VMXRCoefjYPQvERgiDxFMlZahMJB8UJTagPJPj5tuE6NF8EXIRX2 mbPkdAR4LA7+LyQvAoQlbGUwfmybY73jJnIjoOl417C7VgqykFYy9fTumvpUcqUE 89bOq3un4S0sly5jsrNFySKJi0JK8Fjjrtgmjad0G+wz2KhZhIJyTRILaCdtqksQ vDl3DGaZOn6zWVPSjC32n4ibvFpJTfEA1JnNdZeSAVL0BQ+RiVAgQ/r2aNYCZ0FY 09rFonVoXhtp2eOeHvlllfWAl7ncx6GCDdLjPx0/F9OA0Sp2wfa5aKWbScQUHOiQ 9AVhJUOa2QC/cOb2eNYFWGlmXcQb64R7 -----END CERTIFICATE-----Generated at Wed Jun 4 00:10:20 2025 by rpki-client