$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.mft File: mGsNU3ZLyD3A4HLsrzacefIqOdc.mft (raw, json) Hash identifier: NzqBN4iqpgdoMc0hD5fiMmh+WZokSUJzI8sqXGao4Ck= Subject key identifier: 11:13:A1:04:7B:80:AC:A6:2B:99:E5:4A:D5:F8:F7:CF:BF:6D:3A:9B Authority key identifier: 98:6B:0D:53:76:4B:C8:3D:C0:E0:72:EC:AF:36:9C:79:F2:2A:39:D7 Certificate issuer: /CN=A91DD799/serialNumber=986B0D53764BC83DC0E072ECAF369C79F22A39D7 Certificate serial: 070D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mGsNU3ZLyD3A4HLsrzacefIqOdc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.mft Manifest number: 070D Signing time: Mon 02 Jun 2025 14:50:12 +0000 Manifest this update: Mon 02 Jun 2025 14:50:12 +0000 Manifest next update: Mon 09 Jun 2025 14:50:12 +0000 Files and hashes: 1: mGsNU3ZLyD3A4HLsrzacefIqOdc.crl (hash: SFAbMYeyRRPMjYBIpUxdknpiK6oaKSI7Urz7/Lw6mqE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.crl rsync://rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mGsNU3ZLyD3A4HLsrzacefIqOdc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 14:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1805 (0x70d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD799, serialNumber=986B0D53764BC83DC0E072ECAF369C79F22A39D7 Validity Not Before: Jun 2 14:50:12 2025 GMT Not After : Jun 9 14:50:12 2025 GMT Subject: CN=683dba24-e70f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:f0:78:d1:7f:7e:c0:f5:82:83:01:b6:c7:dd: b1:85:98:48:73:27:84:9d:55:75:77:f6:95:bc:72: 8c:a9:2f:6d:48:88:af:46:af:29:4a:eb:67:17:16: f4:e5:32:00:57:24:c7:81:12:25:1a:32:e4:f8:d6: 67:79:3b:3a:b0:8c:ba:70:a0:8e:4d:4c:33:23:a8: fd:98:0c:73:65:47:8f:f6:3d:b6:2c:b0:3e:05:df: 5a:42:6c:20:6a:35:15:76:92:c1:9d:2e:ad:e8:a0: 20:2c:16:25:fd:0f:4e:b2:fb:b2:f8:74:62:e6:3b: 3b:e2:67:24:26:9f:ce:a9:5f:6c:fa:fd:fe:4f:59: 6f:d9:07:b0:f0:0b:30:33:fa:00:d3:0a:87:fb:d0: e2:22:1c:79:9b:1b:49:d7:d5:6e:ec:63:aa:fc:85: 0a:16:8e:4f:6a:f2:e2:26:52:54:2e:54:d3:45:00: 0e:71:f5:b0:98:dd:0a:d1:92:38:97:c4:68:0e:16: 07:42:2b:51:fb:c2:eb:85:36:d0:1a:f4:4c:1b:b3: 05:fb:b4:13:1f:86:3d:f3:f8:6c:4b:ee:72:b0:f1: 5e:76:1b:51:f7:08:3c:71:06:80:4e:cc:d5:0c:66: ab:e4:c7:1f:a7:77:91:da:08:7f:7a:50:27:5e:9c: b9:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:13:A1:04:7B:80:AC:A6:2B:99:E5:4A:D5:F8:F7:CF:BF:6D:3A:9B X509v3 Authority Key Identifier: keyid:98:6B:0D:53:76:4B:C8:3D:C0:E0:72:EC:AF:36:9C:79:F2:2A:39:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mGsNU3ZLyD3A4HLsrzacefIqOdc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:ce:a8:9c:92:9f:c2:09:ef:dd:00:0f:b9:ec:c2:43:69:fd: 9c:fa:30:4f:29:15:16:7f:ab:7a:a1:6c:9b:c0:aa:18:ec:36: a5:96:3d:92:ec:3f:aa:ba:ff:10:42:41:93:49:81:20:8b:27: 73:d3:11:91:7d:2f:b1:f1:b0:61:45:b6:56:4e:b3:83:fb:66: 63:b2:c3:fb:a6:82:da:d3:1b:37:d0:05:27:56:80:83:84:21: 9f:9c:dd:ce:61:92:3d:68:14:11:c6:59:52:60:a9:47:91:5e: b4:01:ce:04:6c:a1:51:7c:9e:81:b3:a6:c2:c5:cb:ef:eb:d5: 2f:80:e6:32:06:8c:72:bb:17:f8:39:d6:37:38:eb:ae:38:15: 26:1b:35:53:5b:d1:24:4c:2c:87:ae:2f:d1:8b:b0:5e:e5:fa: d7:35:77:00:fa:40:cc:8c:e3:87:10:74:fa:46:8e:4f:32:df: a5:db:2f:ef:81:e5:bb:cb:ed:f9:da:3a:ad:14:ff:ea:42:ac: 9f:43:36:7d:f3:14:64:91:75:6a:ee:ea:6a:b4:4a:7f:f3:1c: 72:be:bf:d1:52:7d:ce:59:26:17:9b:0e:e8:05:c1:ce:a7:a3: ac:3b:27:bd:37:3e:bf:ab:48:58:44:43:30:de:0a:8f:ab:7c: f1:fa:a4:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBw0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQ3OTkxMTAvBgNVBAUTKDk4NkIwRDUzNzY0QkM4M0RDMEUwNzJFQ0FGMzY5Qzc5 RjIyQTM5RDcwHhcNMjUwNjAyMTQ1MDEyWhcNMjUwNjA5MTQ1MDEyWjAYMRYwFAYD VQQDEw02ODNkYmEyNC1lNzBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkvB40X9+wPWCgwG2x92xhZhIcyeEnVV1d/aVvHKMqS9tSIivRq8pSutnFxb0 5TIAVyTHgRIlGjLk+NZneTs6sIy6cKCOTUwzI6j9mAxzZUeP9j22LLA+Bd9aQmwg ajUVdpLBnS6t6KAgLBYl/Q9Osvuy+HRi5js74mckJp/OqV9s+v3+T1lv2Qew8Asw M/oA0wqH+9DiIhx5mxtJ19Vu7GOq/IUKFo5PavLiJlJULlTTRQAOcfWwmN0K0ZI4 l8RoDhYHQitR+8LrhTbQGvRMG7MF+7QTH4Y98/hsS+5ysPFedhtR9wg8cQaATszV DGar5Mcfp3eR2gh/elAnXpy5oQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBEToQR7 gKymK5nlStX498+/bTqbMB8GA1UdIwQYMBaAFJhrDVN2S8g9wOBy7K82nHnyKjnX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDc5OS8xM0NBODJGQTQz RkIxMUVCOUY3M0Q2M0NDNEY5QUUwMi9tR3NOVTNaTHlEM0E0SExzcnphY2VmSXFP ZGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21Hc05VM1pMeUQzQTRITHNyemFjZWZJcU9kYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDc5OS8xM0NBODJGQTQzRkIxMUVCOUY3M0Q2M0NDNEY5QUUwMi9tR3NOVTNaTHlE M0E0SExzcnphY2VmSXFPZGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAszqickp/CCe/dAA+57MJDaf2c+jBPKRUWf6t6oWybwKoY7Dallj2S 7D+quv8QQkGTSYEgiydz0xGRfS+x8bBhRbZWTrOD+2ZjssP7poLa0xs30AUnVoCD hCGfnN3OYZI9aBQRxllSYKlHkV60Ac4EbKFRfJ6Bs6bCxcvv69UvgOYyBoxyuxf4 OdY3OOuuOBUmGzVTW9EkTCyHri/Ri7Be5frXNXcA+kDMjOOHEHT6Ro5PMt+l2y/v geW7y+352jqtFP/qQqyfQzZ98xRkkXVq7upqtEp/8xxyvr/RUn3OWSYXmw7oBcHO p6OsOye9Nz6/q0hYREMw3gqPq3zx+qRP -----END CERTIFICATE-----Generated at Tue Jun 3 23:40:58 2025 by rpki-client