$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.mft File: 0S_1veXU0upxiMsALH_wFtyZTXI.mft (raw, json) Hash identifier: Y4ndeilU+c/1/0/gKdA78EffirNUkO1QOk1m2j1sp0w= Subject key identifier: F4:DD:22:44:D2:D6:F8:FC:ED:4E:DE:7F:6E:0E:0A:93:46:26:60:8A Authority key identifier: D1:2F:F5:BD:E5:D4:D2:EA:71:88:CB:00:2C:7F:F0:16:DC:99:4D:72 Certificate issuer: /CN=A91EA623/serialNumber=D12FF5BDE5D4D2EA7188CB002C7FF016DC994D72 Certificate serial: 0514 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0S_1veXU0upxiMsALH_wFtyZTXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.mft Manifest number: 0514 Signing time: Mon 02 Jun 2025 23:50:16 +0000 Manifest this update: Mon 02 Jun 2025 23:50:15 +0000 Manifest next update: Mon 09 Jun 2025 23:50:15 +0000 Files and hashes: 1: 0S_1veXU0upxiMsALH_wFtyZTXI.crl (hash: D+oOlYQulPu3WyBDMVpNA15ZVWDZ3OuqIwpMKD3YPl8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.crl rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0S_1veXU0upxiMsALH_wFtyZTXI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 23:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1300 (0x514) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA623, serialNumber=D12FF5BDE5D4D2EA7188CB002C7FF016DC994D72 Validity Not Before: Jun 2 23:50:15 2025 GMT Not After : Jun 9 23:50:15 2025 GMT Subject: CN=683e38b8-eb5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ec:7b:97:6a:90:19:8c:87:23:fb:c6:1d:cb: 88:69:2b:c4:ce:5a:41:18:2a:37:18:82:b2:1a:47: b8:fc:ee:80:e9:e8:09:3d:55:05:34:39:a6:bc:96: 38:fd:f0:82:4c:5c:24:bd:59:e2:fe:d2:85:41:c3: 80:a3:2f:14:6a:77:f9:02:7d:aa:71:ab:ba:4d:4c: e7:69:36:47:81:90:36:64:5f:f1:0b:f5:3a:a2:ea: 59:29:f9:c2:9e:f5:0d:48:9b:72:c9:4e:2b:5e:6f: 18:df:41:71:b3:f0:a1:f9:ef:1e:2b:b1:35:c0:61: c9:8a:5f:95:0b:6b:6b:f5:12:ee:98:5d:be:e5:09: 00:2d:ed:4e:f8:ea:6a:28:bd:61:ed:2f:4a:db:52: e0:75:bf:0e:59:c3:57:1a:f0:ef:88:d3:0c:e1:bb: 1e:27:f8:40:74:b2:9a:17:e8:15:a3:55:b1:a4:f8: 75:ac:f4:f1:cf:22:9f:d5:61:64:5c:cb:94:37:c4: 9e:5d:5a:9b:4b:8c:36:b5:90:26:ae:1a:fa:db:43: 78:5c:5d:32:f8:08:eb:0a:9f:c6:ca:e2:d0:a0:b9: d8:56:46:20:0b:ca:aa:07:13:ce:a9:56:2f:a3:d7: 5c:08:0e:bb:55:14:ec:7c:6e:c5:21:76:da:e6:38: 7d:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:DD:22:44:D2:D6:F8:FC:ED:4E:DE:7F:6E:0E:0A:93:46:26:60:8A X509v3 Authority Key Identifier: keyid:D1:2F:F5:BD:E5:D4:D2:EA:71:88:CB:00:2C:7F:F0:16:DC:99:4D:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0S_1veXU0upxiMsALH_wFtyZTXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:df:8f:af:e2:96:bf:ef:62:82:5e:87:b9:16:40:f4:73:12: 88:bd:3d:51:39:37:3e:b8:49:9f:dc:da:7e:25:0c:55:9e:2a: 66:69:f2:42:df:11:82:0d:15:92:36:98:07:f3:a0:60:d8:33: 2b:75:e5:e4:77:d2:97:78:0a:ea:aa:68:ab:c8:92:09:c9:03: 13:73:1b:15:37:15:c4:ba:6d:7a:5f:74:d4:48:41:c4:a2:1c: 39:88:6c:81:d5:ec:d2:b3:2e:80:90:0b:54:68:d7:2d:58:c2: 7c:8f:42:23:1e:bc:4b:b6:b6:8f:83:bc:e2:46:ef:61:a1:34: e0:bc:26:28:10:df:91:d6:f6:94:1e:ef:5c:8e:ea:f6:ec:0f: e8:08:d0:04:1b:c4:c6:09:6d:08:cb:6c:26:bf:f4:ce:38:0b: 1b:af:7b:d3:97:af:5d:e3:8e:bc:eb:3f:8e:92:6f:38:25:84: 6f:62:21:55:44:39:4f:18:90:88:04:ce:c7:9f:fc:db:b3:ea: 11:ab:72:68:a0:64:98:5a:f4:5c:40:a7:7f:6a:0c:0b:c3:be: f6:2b:2e:47:ae:87:5c:30:de:83:9d:b0:00:0b:1d:87:52:0c: a7:6d:84:bf:89:f8:13:41:3c:5b:a1:41:58:eb:2e:da:38:54: 30:f9:55:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBRQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE2MjMxMTAvBgNVBAUTKEQxMkZGNUJERTVENEQyRUE3MTg4Q0IwMDJDN0ZGMDE2 REM5OTRENzIwHhcNMjUwNjAyMjM1MDE1WhcNMjUwNjA5MjM1MDE1WjAYMRYwFAYD VQQDEw02ODNlMzhiOC1lYjVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsOx7l2qQGYyHI/vGHcuIaSvEzlpBGCo3GIKyGke4/O6A6egJPVUFNDmmvJY4 /fCCTFwkvVni/tKFQcOAoy8Uanf5An2qcau6TUznaTZHgZA2ZF/xC/U6oupZKfnC nvUNSJtyyU4rXm8Y30Fxs/Ch+e8eK7E1wGHJil+VC2tr9RLumF2+5QkALe1O+Opq KL1h7S9K21Lgdb8OWcNXGvDviNMM4bseJ/hAdLKaF+gVo1WxpPh1rPTxzyKf1WFk XMuUN8SeXVqbS4w2tZAmrhr620N4XF0y+AjrCp/GyuLQoLnYVkYgC8qqBxPOqVYv o9dcCA67VRTsfG7FIXba5jh9aQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPTdIkTS 1vj87U7ef24OCpNGJmCKMB8GA1UdIwQYMBaAFNEv9b3l1NLqcYjLACx/8BbcmU1y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTYyMy9EMzE2N0YwQTA2 MEMxMUVDQUY2NzUwNDNDNEY5QUUwMi8wU18xdmVYVTB1cHhpTXNBTEhfd0Z0eVpU WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzBTXzF2ZVhVMHVweGlNc0FMSF93RnR5WlRYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTYyMy9EMzE2N0YwQTA2MEMxMUVDQUY2NzUwNDNDNEY5QUUwMi8wU18xdmVYVTB1 cHhpTXNBTEhfd0Z0eVpUWEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCc34+v4pa/72KCXoe5FkD0cxKIvT1ROTc+uEmf3Np+JQxVnipmafJC 3xGCDRWSNpgH86Bg2DMrdeXkd9KXeArqqmiryJIJyQMTcxsVNxXEum16X3TUSEHE ohw5iGyB1ezSsy6AkAtUaNctWMJ8j0IjHrxLtraPg7ziRu9hoTTgvCYoEN+R1vaU Hu9cjur27A/oCNAEG8TGCW0Iy2wmv/TOOAsbr3vTl69d44686z+Okm84JYRvYiFV RDlPGJCIBM7Hn/zbs+oRq3JooGSYWvRcQKd/agwLw772Ky5HrodcMN6DnbAACx2H UgynbYS/ifgTQTxboUFY6y7aOFQw+VWR -----END CERTIFICATE-----Generated at Tue Jun 3 23:59:12 2025 by rpki-client