$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.mft File: 7cH-eLyHvyWy4419cs2cozAibOk.mft (raw, json) Hash identifier: S9tvuF1mG8UdXcsAp2M6tlWgtRCt6c+knARk2GMAHtQ= Subject key identifier: 0C:81:96:0D:AC:50:A9:D3:0B:A1:84:A2:D4:11:DA:41:27:86:FD:70 Authority key identifier: ED:C1:FE:78:BC:87:BF:25:B2:E3:8D:7D:72:CD:9C:A3:30:22:6C:E9 Certificate issuer: /CN=A91B5AAA/serialNumber=EDC1FE78BC87BF25B2E38D7D72CD9CA330226CE9 Certificate serial: 3482 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cH-eLyHvyWy4419cs2cozAibOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.mft Manifest number: 3FBD Signing time: Fri 30 May 2025 14:52:28 +0000 Manifest this update: Fri 30 May 2025 14:52:28 +0000 Manifest next update: Fri 06 Jun 2025 14:52:28 +0000 Files and hashes: 1: 7cH-eLyHvyWy4419cs2cozAibOk.crl (hash: 44xUf+epNloJeMYZ3LN0urBnN4hKTZfwpd5sz/UFXRs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.crl rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cH-eLyHvyWy4419cs2cozAibOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 14:52:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13442 (0x3482) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5AAA, serialNumber=EDC1FE78BC87BF25B2E38D7D72CD9CA330226CE9 Validity Not Before: May 30 14:52:28 2025 GMT Not After : Jun 6 14:52:28 2025 GMT Subject: CN=6839c62c-ab44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:1e:62:68:b2:dc:23:08:8e:b0:36:c0:86:ac: 71:68:06:4d:77:a4:a2:2f:52:bf:84:20:30:f0:82: 97:09:e2:bb:f7:5e:68:ce:96:73:0d:4a:6a:49:c3: 61:33:f6:0c:e9:61:7b:c9:b5:1a:28:b7:db:ec:9f: b1:af:41:1f:8f:72:29:09:dc:d7:a1:c6:13:28:65: 90:49:b1:37:04:08:52:e2:f0:67:ab:6c:0e:47:c7: 8b:bd:bc:85:df:ee:cd:6c:8b:ce:25:46:62:9d:11: c5:b5:5c:a1:44:2b:6e:93:b5:6d:57:ae:f6:ef:b1: ca:68:11:56:be:3d:22:aa:cc:30:fc:e8:2f:53:1c: eb:98:6e:f6:03:b3:b7:c1:85:e2:da:10:57:c9:4c: 3b:86:83:5d:cb:b9:59:ca:49:45:77:86:d4:2b:22: 16:8f:92:00:bd:98:1a:45:cc:c8:0c:7e:4a:9c:ce: 03:65:46:8f:66:6a:60:3c:64:35:36:fd:d8:aa:13: 03:de:88:f9:83:07:bc:ef:c3:ac:cf:1e:09:33:94: 20:af:15:be:a7:94:70:9d:60:3d:dd:00:d4:0d:23: 07:4d:cd:84:35:7d:18:aa:5f:ed:be:80:4a:8b:d1: 44:60:d9:56:60:8a:ac:ce:7d:e2:0b:3b:0d:65:db: a0:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:81:96:0D:AC:50:A9:D3:0B:A1:84:A2:D4:11:DA:41:27:86:FD:70 X509v3 Authority Key Identifier: keyid:ED:C1:FE:78:BC:87:BF:25:B2:E3:8D:7D:72:CD:9C:A3:30:22:6C:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cH-eLyHvyWy4419cs2cozAibOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:13:34:6d:78:ca:9a:dc:88:32:64:7c:06:b2:5d:7e:43:54: 61:62:a9:9e:22:29:b8:d8:72:5c:69:0e:32:98:13:54:83:02: 60:88:43:77:ca:08:e9:74:a3:7a:f0:f4:79:66:34:3c:bf:7f: b3:b6:75:ba:b2:af:50:05:a5:fc:c9:83:22:7e:20:e8:13:c7: 2a:19:ce:67:48:a8:b7:a6:8e:9e:c8:0e:37:5c:b0:a3:35:89: dc:91:7b:c0:36:81:f7:d9:cc:c2:4e:a0:a5:57:ac:a6:31:72: 34:2d:69:41:31:a7:ff:9f:36:23:02:05:c7:48:cc:36:62:bb: 6c:24:94:09:a8:b9:12:d4:bc:78:57:c0:cc:4c:9f:ab:16:0f: 89:ee:2a:ac:2e:34:7c:34:14:da:74:27:cf:84:45:82:fe:48: 0e:fa:cf:ad:e2:17:11:d2:24:5e:a7:7e:05:df:07:e1:02:fd: 9f:38:6d:d5:ce:2b:ca:82:4b:f0:e2:fd:fe:94:59:d0:50:10: 2e:f9:c8:44:ee:c4:fd:57:5c:f6:c9:b6:82:fd:e1:a2:ad:03: dd:49:60:95:b8:1f:5b:1e:a2:dd:72:fb:78:15:24:96:41:ed: 52:e4:ac:93:81:78:67:80:eb:4a:19:9e:08:47:10:9a:d2:a9: a5:40:c4:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNIIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVBQUExMTAvBgNVBAUTKEVEQzFGRTc4QkM4N0JGMjVCMkUzOEQ3RDcyQ0Q5Q0Ez MzAyMjZDRTkwHhcNMjUwNTMwMTQ1MjI4WhcNMjUwNjA2MTQ1MjI4WjAYMRYwFAYD VQQDEw02ODM5YzYyYy1hYjQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvx5iaLLcIwiOsDbAhqxxaAZNd6SiL1K/hCAw8IKXCeK7915ozpZzDUpqScNh M/YM6WF7ybUaKLfb7J+xr0Efj3IpCdzXocYTKGWQSbE3BAhS4vBnq2wOR8eLvbyF 3+7NbIvOJUZinRHFtVyhRCtuk7VtV67277HKaBFWvj0iqsww/OgvUxzrmG72A7O3 wYXi2hBXyUw7hoNdy7lZyklFd4bUKyIWj5IAvZgaRczIDH5KnM4DZUaPZmpgPGQ1 Nv3YqhMD3oj5gwe878Oszx4JM5QgrxW+p5RwnWA93QDUDSMHTc2ENX0Yql/tvoBK i9FEYNlWYIqszn3iCzsNZdugxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAyBlg2s UKnTC6GEotQR2kEnhv1wMB8GA1UdIwQYMBaAFO3B/ni8h78lsuONfXLNnKMwImzp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUFBQS84RjU4OTI5NDFE OTUxMUUyQTk4QTlBN0QwOEIwMkNEMi83Y0gtZUx5SHZ5V3k0NDE5Y3MyY296QWli T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdjSC1lTHlIdnlXeTQ0MTljczJjb3pBaWJPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUFBQS84RjU4OTI5NDFEOTUxMUUyQTk4QTlBN0QwOEIwMkNEMi83Y0gtZUx5SHZ5 V3k0NDE5Y3MyY296QWliT2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeEzRteMqa3IgyZHwGsl1+Q1RhYqmeIim42HJcaQ4ymBNUgwJgiEN3 ygjpdKN68PR5ZjQ8v3+ztnW6sq9QBaX8yYMifiDoE8cqGc5nSKi3po6eyA43XLCj NYnckXvANoH32czCTqClV6ymMXI0LWlBMaf/nzYjAgXHSMw2YrtsJJQJqLkS1Lx4 V8DMTJ+rFg+J7iqsLjR8NBTadCfPhEWC/kgO+s+t4hcR0iRep34F3wfhAv2fOG3V zivKgkvw4v3+lFnQUBAu+chE7sT9V1z2ybaC/eGirQPdSWCVuB9bHqLdcvt4FSSW Qe1S5KyTgXhngOtKGZ4IRxCa0qmlQMR3 -----END CERTIFICATE-----Generated at Sat May 31 16:50:42 2025 by rpki-client