$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA409/0289F6FC9CAC11EFAB595516C4F9AE02/N3g1zaK9Y2fvD-tepYGY-Bg6h8E.mft File: N3g1zaK9Y2fvD-tepYGY-Bg6h8E.mft (raw, json) Hash identifier: dErY8naz/iSwwkm590QiyOiboIxCAaD7yqTF7D4qOrU= Subject key identifier: 9E:5D:D6:CA:DE:D3:9A:A5:46:8C:DF:04:75:5F:F7:62:B5:D6:5D:AE Authority key identifier: 37:78:35:CD:A2:BD:63:67:EF:0F:EB:5E:A5:81:98:F8:18:3A:87:C1 Certificate issuer: /CN=A91EA409/serialNumber=377835CDA2BD6367EF0FEB5EA58198F8183A87C1 Certificate serial: 69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N3g1zaK9Y2fvD-tepYGY-Bg6h8E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA409/0289F6FC9CAC11EFAB595516C4F9AE02/N3g1zaK9Y2fvD-tepYGY-Bg6h8E.mft Manifest number: 69 Signing time: Sat 31 May 2025 06:30:17 +0000 Manifest this update: Sat 31 May 2025 06:30:17 +0000 Manifest next update: Sat 07 Jun 2025 06:30:17 +0000 Files and hashes: 1: N3g1zaK9Y2fvD-tepYGY-Bg6h8E.crl (hash: /uqx2od33gSJlev0Xxt/+Idpg8XivVENGkr+qvILgec=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA409/0289F6FC9CAC11EFAB595516C4F9AE02/N3g1zaK9Y2fvD-tepYGY-Bg6h8E.crl rsync://rpki.apnic.net/member_repository/A91EA409/0289F6FC9CAC11EFAB595516C4F9AE02/N3g1zaK9Y2fvD-tepYGY-Bg6h8E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N3g1zaK9Y2fvD-tepYGY-Bg6h8E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:30:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 105 (0x69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA409, serialNumber=377835CDA2BD6367EF0FEB5EA58198F8183A87C1 Validity Not Before: May 31 06:30:17 2025 GMT Not After : Jun 7 06:30:17 2025 GMT Subject: CN=683aa1f9-8193 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ec:fe:0b:5d:ce:71:ef:68:36:9e:46:fa:92: 3e:8f:2b:b5:68:97:5a:c3:bd:06:05:77:89:75:ca: ea:f9:93:06:a5:a3:6c:03:2a:56:2a:2f:4e:b8:06: 01:83:03:3b:fa:17:6e:45:c9:f6:43:49:e9:e0:c6: c9:9a:7a:cc:1a:6d:96:3e:80:ca:a9:dc:df:3c:db: df:4b:ef:95:c3:b0:66:0b:9b:e9:d4:40:78:a9:5f: 5a:dd:ec:9c:46:d4:02:9a:8f:7e:d9:b2:ba:f7:7b: 7c:8b:b9:c8:0b:cd:17:cb:66:93:de:f0:ad:56:ea: dd:dd:82:c4:82:95:9c:88:8e:47:82:d9:69:c4:26: e7:cb:4e:e2:9a:4c:9f:f7:70:db:e3:4d:be:71:66: 95:43:c3:49:62:68:cb:80:9d:5f:a3:6d:3a:e2:59: e5:67:eb:85:61:89:b7:b5:a5:2e:42:21:f1:95:26: c3:69:ce:6c:88:b7:83:17:bb:76:57:48:89:68:06: 7b:40:c3:15:70:96:be:c7:70:18:ca:66:3c:c5:1e: 6c:93:04:73:43:bd:a4:25:a7:3d:f0:df:3f:c5:8e: d8:9a:84:29:ca:bd:12:d6:40:50:8f:72:4d:69:d3: fc:cd:c4:34:fe:83:b8:f6:f3:c0:f6:0f:56:95:33: 95:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:5D:D6:CA:DE:D3:9A:A5:46:8C:DF:04:75:5F:F7:62:B5:D6:5D:AE X509v3 Authority Key Identifier: keyid:37:78:35:CD:A2:BD:63:67:EF:0F:EB:5E:A5:81:98:F8:18:3A:87:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA409/0289F6FC9CAC11EFAB595516C4F9AE02/N3g1zaK9Y2fvD-tepYGY-Bg6h8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N3g1zaK9Y2fvD-tepYGY-Bg6h8E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA409/0289F6FC9CAC11EFAB595516C4F9AE02/N3g1zaK9Y2fvD-tepYGY-Bg6h8E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:b3:93:46:78:f3:5c:16:d3:f7:38:1a:1a:5c:0b:e3:23:d7: 22:54:24:05:ba:62:90:89:2d:3e:75:43:0d:ad:71:cf:c8:b6: d8:7e:9b:fc:d3:de:e8:78:ac:64:08:23:d8:8d:f6:9a:d7:c9: d1:b7:0e:1d:fa:b1:73:35:2b:8d:36:3b:5b:7d:ea:0a:ea:f7: dc:d6:a8:68:f6:98:53:6b:65:ee:c3:f3:4c:b8:63:93:bd:13: 1f:73:e0:e6:00:cc:8e:79:f9:9e:c9:80:1b:cc:bf:54:75:c9: 3d:98:07:81:92:34:5f:8c:f5:a4:85:bf:14:0c:3b:90:03:12: b2:d2:f6:97:77:19:20:b5:dd:39:57:ec:69:25:10:9e:53:a4: 3a:06:00:1d:e6:17:f9:a6:0b:d7:7d:1c:f9:af:49:bb:e1:a3: fc:a9:76:5e:ed:f1:17:a1:40:bb:03:ca:d7:88:90:bd:68:72: 69:aa:c6:a5:41:ec:82:44:26:57:4a:a3:c0:f6:5c:4e:4e:9d: 93:4f:1d:2d:dc:20:b5:df:f9:c1:cd:29:aa:50:bc:a3:59:fd: 9e:f2:f9:97:e8:dc:c3:23:69:51:b3:83:73:90:71:28:f7:02: c5:42:b1:10:74:4b:5e:00:46:a5:6d:ba:64:5d:73:39:53:53: 39:f9:e6:50 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBaTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QTQwOTExMC8GA1UEBRMoMzc3ODM1Q0RBMkJENjM2N0VGMEZFQjVFQTU4MTk4Rjgx ODNBODdDMTAeFw0yNTA1MzEwNjMwMTdaFw0yNTA2MDcwNjMwMTdaMBgxFjAUBgNV BAMTDTY4M2FhMWY5LTgxOTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDA7P4LXc5x72g2nkb6kj6PK7Vol1rDvQYFd4l1yur5kwalo2wDKlYqL064BgGD Azv6F25FyfZDSengxsmaeswabZY+gMqp3N88299L75XDsGYLm+nUQHipX1rd7JxG 1AKaj37Zsrr3e3yLucgLzRfLZpPe8K1W6t3dgsSClZyIjkeC2WnEJufLTuKaTJ/3 cNvjTb5xZpVDw0liaMuAnV+jbTriWeVn64Vhibe1pS5CIfGVJsNpzmyIt4MXu3ZX SIloBntAwxVwlr7HcBjKZjzFHmyTBHNDvaQlpz3w3z/FjtiahCnKvRLWQFCPck1p 0/zNxDT+g7j288D2D1aVM5WbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUnl3Wyt7T mqVGjN8EdV/3YrXWXa4wHwYDVR0jBBgwFoAUN3g1zaK9Y2fvD+tepYGY+Bg6h8Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVBNDA5LzAyODlGNkZDOUNB QzExRUZBQjU5NTUxNkM0RjlBRTAyL04zZzF6YUs5WTJmdkQtdGVwWUdZLUJnNmg4 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTjNnMXphSzlZMmZ2RC10ZXBZR1ktQmc2aDhFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVB NDA5LzAyODlGNkZDOUNBQzExRUZBQjU5NTUxNkM0RjlBRTAyL04zZzF6YUs5WTJm dkQtdGVwWUdZLUJnNmg4RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHqzk0Z481wW0/c4GhpcC+Mj1yJUJAW6YpCJLT51Qw2tcc/Itth+m/zT 3uh4rGQII9iN9prXydG3Dh36sXM1K402O1t96grq99zWqGj2mFNrZe7D80y4Y5O9 Ex9z4OYAzI55+Z7JgBvMv1R1yT2YB4GSNF+M9aSFvxQMO5ADErLS9pd3GSC13TlX 7GklEJ5TpDoGAB3mF/mmC9d9HPmvSbvho/ypdl7t8RehQLsDyteIkL1ocmmqxqVB 7IJEJldKo8D2XE5OnZNPHS3cILXf+cHNKapQvKNZ/Z7y+Zfo3MMjaVGzg3OQcSj3 AsVCsRB0S14ARqVtumRdczlTUzn55lA= -----END CERTIFICATE-----Generated at Sat May 31 17:54:49 2025 by rpki-client