$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9FB9/2114D5681DA411E2841AF29908B02CD2/7LW7UwpypAlWiey7FY8q5e_pElU.mft File: 7LW7UwpypAlWiey7FY8q5e_pElU.mft (raw, json) Hash identifier: cD01yq18DE+0GoYglw+YvRH2EkzhgvEvX1v/oYvPZyY= Subject key identifier: 37:43:B7:A1:A6:0B:75:89:32:92:4B:18:C7:D4:F9:EA:BA:D5:A9:66 Authority key identifier: EC:B5:BB:53:0A:72:A4:09:56:89:EC:BB:15:8F:2A:E5:EF:E9:12:55 Certificate issuer: /CN=A91B9FB9/serialNumber=ECB5BB530A72A4095689ECBB158F2AE5EFE91255 Certificate serial: 3481 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7LW7UwpypAlWiey7FY8q5e_pElU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9FB9/2114D5681DA411E2841AF29908B02CD2/7LW7UwpypAlWiey7FY8q5e_pElU.mft Manifest number: 347E Signing time: Fri 30 May 2025 15:13:35 +0000 Manifest this update: Fri 30 May 2025 15:13:34 +0000 Manifest next update: Fri 06 Jun 2025 15:13:34 +0000 Files and hashes: 1: 7LW7UwpypAlWiey7FY8q5e_pElU.crl (hash: NFeYStuqFsnasjiKaVDNb8OQJmVqegdCzE6Ngxb2Zy0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9FB9/2114D5681DA411E2841AF29908B02CD2/7LW7UwpypAlWiey7FY8q5e_pElU.crl rsync://rpki.apnic.net/member_repository/A91B9FB9/2114D5681DA411E2841AF29908B02CD2/7LW7UwpypAlWiey7FY8q5e_pElU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7LW7UwpypAlWiey7FY8q5e_pElU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 15:13:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13441 (0x3481) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9FB9, serialNumber=ECB5BB530A72A4095689ECBB158F2AE5EFE91255 Validity Not Before: May 30 15:13:34 2025 GMT Not After : Jun 6 15:13:34 2025 GMT Subject: CN=6839cb1e-9bef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:32:e1:f7:b9:87:1d:bd:ec:9f:ec:f4:0b:bc: b5:a1:cd:d1:82:bb:1b:b9:f5:18:c3:95:db:64:eb: bb:da:68:d3:82:0f:3c:dc:e4:c0:8c:58:c9:11:3e: f7:35:c1:6a:a2:26:9f:f4:45:48:c4:fc:c6:4a:d1: 10:2b:9e:79:93:19:99:0c:ac:36:b4:eb:c4:49:16: e4:e8:59:5a:46:23:de:72:23:d9:53:bd:27:e1:45: e5:05:5f:d2:41:ff:fc:54:ee:2a:be:46:80:22:be: 2a:b9:f5:43:fa:ae:ed:3e:a0:0c:89:96:04:c3:f6: 00:e0:fa:f6:9c:dc:13:98:c2:01:53:d3:fb:1e:3c: 3e:07:11:2c:a8:d1:19:ab:18:c0:8c:f4:fc:64:ab: 0a:cc:3e:52:d7:a9:5f:c7:5b:95:d7:52:bc:dd:8f: 5a:83:da:d5:7e:7f:c0:a8:46:4b:92:4d:80:32:19: 9a:7f:93:22:91:ab:e4:01:8d:48:85:27:f8:7f:bc: a0:64:09:c7:01:1c:81:b5:5f:b1:b9:2a:14:d4:2b: 36:76:21:e0:ae:25:36:8c:e9:50:d3:00:a1:63:28: ff:7e:d8:21:27:ca:38:78:20:b6:f1:7b:6f:fb:8a: f1:eb:53:4d:30:23:24:b6:92:19:d6:09:9b:da:30: 2d:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:43:B7:A1:A6:0B:75:89:32:92:4B:18:C7:D4:F9:EA:BA:D5:A9:66 X509v3 Authority Key Identifier: keyid:EC:B5:BB:53:0A:72:A4:09:56:89:EC:BB:15:8F:2A:E5:EF:E9:12:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9FB9/2114D5681DA411E2841AF29908B02CD2/7LW7UwpypAlWiey7FY8q5e_pElU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7LW7UwpypAlWiey7FY8q5e_pElU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9FB9/2114D5681DA411E2841AF29908B02CD2/7LW7UwpypAlWiey7FY8q5e_pElU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:b6:f9:04:fe:98:7f:99:e0:5f:59:06:4d:04:a5:e4:ed:7f: 88:70:80:c9:30:12:87:39:58:f8:ac:3f:28:7e:7d:d2:3a:82: bf:5e:37:a6:e0:9d:27:90:59:c4:e6:c6:2f:fd:67:f9:0c:16: 89:57:f0:67:3f:14:fa:ff:bf:6e:da:1b:b5:d2:45:29:84:c5: b5:74:d7:9e:af:d7:bb:d1:47:cf:9e:4b:8d:59:f6:92:75:ef: 32:81:69:08:7a:18:6a:9b:0b:4f:5a:8b:3b:be:13:95:1f:dc: 00:a8:7c:1e:20:95:48:f5:01:b3:85:4e:8b:b1:f6:8d:93:d5: 55:94:b5:a3:5f:4e:b8:c4:ad:17:a1:18:1f:e3:19:45:61:54: 0c:09:e0:f4:33:03:5e:fe:93:ce:e8:58:ef:a4:8e:85:8d:6e: a9:00:8d:5a:18:bf:a5:6b:e6:ec:a9:21:cf:1f:45:10:e9:b2: 68:a7:f8:1b:53:dc:63:1f:85:0b:2c:dd:b8:9b:ff:d3:9e:3f: 84:eb:3c:a0:7e:67:76:99:7d:14:fa:83:02:ef:ee:1d:02:bf: 2b:cf:51:b2:02:f7:aa:68:f0:3a:45:4a:98:d2:30:ec:37:a4: a9:6f:e6:d1:dd:3c:d7:8a:47:a8:23:b5:49:4d:5c:37:f0:84: d2:e6:92:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlGQjkxMTAvBgNVBAUTKEVDQjVCQjUzMEE3MkE0MDk1Njg5RUNCQjE1OEYyQUU1 RUZFOTEyNTUwHhcNMjUwNTMwMTUxMzM0WhcNMjUwNjA2MTUxMzM0WjAYMRYwFAYD VQQDEw02ODM5Y2IxZS05YmVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqTLh97mHHb3sn+z0C7y1oc3RgrsbufUYw5XbZOu72mjTgg883OTAjFjJET73 NcFqoiaf9EVIxPzGStEQK555kxmZDKw2tOvESRbk6FlaRiPeciPZU70n4UXlBV/S Qf/8VO4qvkaAIr4qufVD+q7tPqAMiZYEw/YA4Pr2nNwTmMIBU9P7Hjw+BxEsqNEZ qxjAjPT8ZKsKzD5S16lfx1uV11K83Y9ag9rVfn/AqEZLkk2AMhmaf5MikavkAY1I hSf4f7ygZAnHARyBtV+xuSoU1Cs2diHgriU2jOlQ0wChYyj/ftghJ8o4eCC28Xtv +4rx61NNMCMktpIZ1gmb2jAt9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDdDt6Gm C3WJMpJLGMfU+eq61almMB8GA1UdIwQYMBaAFOy1u1MKcqQJVonsuxWPKuXv6RJV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUZCOS8yMTE0RDU2ODFE QTQxMUUyODQxQUYyOTkwOEIwMkNEMi83TFc3VXdweXBBbFdpZXk3Rlk4cTVlX3BF bFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdMVzdVd3B5cEFsV2lleTdGWThxNWVfcEVsVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUZCOS8yMTE0RDU2ODFEQTQxMUUyODQxQUYyOTkwOEIwMkNEMi83TFc3VXdweXBB bFdpZXk3Rlk4cTVlX3BFbFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLtvkE/ph/meBfWQZNBKXk7X+IcIDJMBKHOVj4rD8ofn3SOoK/Xjem 4J0nkFnE5sYv/Wf5DBaJV/BnPxT6/79u2hu10kUphMW1dNeer9e70UfPnkuNWfaS de8ygWkIehhqmwtPWos7vhOVH9wAqHweIJVI9QGzhU6LsfaNk9VVlLWjX064xK0X oRgf4xlFYVQMCeD0MwNe/pPO6FjvpI6FjW6pAI1aGL+la+bsqSHPH0UQ6bJop/gb U9xjH4ULLN24m//Tnj+E6zygfmd2mX0U+oMC7+4dAr8rz1GyAveqaPA6RUqY0jDs N6Spb+bR3TzXikeoI7VJTVw38ITS5pKu -----END CERTIFICATE-----Generated at Sat May 31 17:09:00 2025 by rpki-client