$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft File: lQfxHRNjrFs5Lzb17zgixc_NaPk.mft (raw, json) Hash identifier: BWa9PJpuyczW8xpKRsa3K6uE0YnBoft3o/oCSZmWHE0= Subject key identifier: 90:2E:46:97:96:CE:10:47:57:9C:98:0B:C6:64:70:ED:05:40:70:FF Authority key identifier: 95:07:F1:1D:13:63:AC:5B:39:2F:36:F5:EF:38:22:C5:CF:CD:68:F9 Certificate issuer: /CN=A91EE8AC/serialNumber=9507F11D1363AC5B392F36F5EF3822C5CFCD68F9 Certificate serial: 01D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQfxHRNjrFs5Lzb17zgixc_NaPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft Manifest number: 02AC Signing time: Sat 31 May 2025 02:39:01 +0000 Manifest this update: Sat 31 May 2025 02:39:01 +0000 Manifest next update: Sat 07 Jun 2025 02:39:01 +0000 Files and hashes: 1: lQfxHRNjrFs5Lzb17zgixc_NaPk.crl (hash: Ejouxi34VfHlwhqacxqk3KQlc7Ln4awKHggtyh8fcAg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.crl rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQfxHRNjrFs5Lzb17zgixc_NaPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:39:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 466 (0x1d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE8AC, serialNumber=9507F11D1363AC5B392F36F5EF3822C5CFCD68F9 Validity Not Before: May 31 02:39:01 2025 GMT Not After : Jun 7 02:39:01 2025 GMT Subject: CN=683a6bc5-e47d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:e5:9c:ee:0a:59:a9:d7:7d:63:87:31:9e:92: c5:cc:cf:da:d3:9e:dd:36:04:e5:3c:f9:e9:3d:45: 44:4f:99:ad:b3:62:e7:41:14:dc:05:5e:03:fb:a5: 3c:d5:ec:ae:9c:c0:f8:3d:a7:12:90:58:3e:35:05: 80:e3:a2:cf:ae:c1:4e:a3:96:7b:b9:04:99:53:72: 7c:2b:e2:53:bd:79:e2:e6:fa:fa:1e:de:45:e5:93: 4b:ca:38:77:15:fa:ba:7d:ee:3d:a9:37:43:ad:e1: a5:a9:79:12:38:35:73:82:06:6b:a5:82:2a:f7:cc: f1:e8:f3:5a:00:b5:b7:3b:39:59:a4:29:fc:7d:20: e0:5e:72:aa:92:d6:16:9d:48:91:c1:23:ca:7a:7b: ce:1f:d7:20:77:2e:09:d6:e9:c2:16:f2:10:b0:5f: 65:8b:7c:ba:35:48:ea:40:09:51:3b:56:6e:2e:38: 6b:45:72:5e:52:95:a4:95:5a:d3:76:4a:46:4f:0c: f0:c7:7b:24:43:21:7a:4d:e8:8c:d3:27:61:52:4d: dd:a0:99:0b:ab:ca:17:99:cb:f4:d3:50:35:ab:a3: f4:86:50:c7:bf:67:78:5c:73:0c:02:93:25:87:b0: 89:74:48:74:93:2e:ad:01:a6:52:dd:93:de:41:43: 5a:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:2E:46:97:96:CE:10:47:57:9C:98:0B:C6:64:70:ED:05:40:70:FF X509v3 Authority Key Identifier: keyid:95:07:F1:1D:13:63:AC:5B:39:2F:36:F5:EF:38:22:C5:CF:CD:68:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQfxHRNjrFs5Lzb17zgixc_NaPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:c6:c2:23:72:41:c0:bb:e2:b2:30:0d:dc:6a:78:69:dd:06: ec:a9:d6:6c:8b:cf:c7:ec:2f:a1:4d:6d:40:b6:71:d1:2d:c4: 6f:60:9d:b5:9e:45:68:66:02:4d:1e:a2:3e:1e:30:37:e0:eb: 9d:69:1e:a9:92:79:6e:ea:75:17:e1:f0:ef:33:b9:7d:1d:9b: 21:89:68:f9:29:78:7e:f4:e3:69:79:8a:77:0b:5b:8f:4b:70: 27:ef:37:56:03:43:f6:13:ca:33:7f:c5:da:dc:d4:9d:7b:c9: b0:2e:af:ce:be:b9:4c:c5:ec:76:7d:a8:d5:a0:c7:bd:8e:8d: ed:53:e3:47:b0:d8:8c:d5:d1:7d:18:fe:f0:2c:d4:16:48:31: 21:5f:be:43:80:a3:52:bd:28:1d:ee:53:52:9f:63:dc:ab:2d: 41:e4:2c:28:e5:3f:7f:c3:44:d9:ff:74:cb:19:26:0f:c3:0e: 97:65:b1:1a:44:93:2d:77:bd:a1:f0:37:f4:5e:f1:25:56:c4: 45:71:02:4e:32:4c:1d:b7:14:4f:b6:5e:d7:b1:6e:b7:11:ba: 72:30:c5:e8:76:33:aa:eb:1d:9a:27:28:07:2d:99:5b:0b:7d: 64:c0:0b:5c:52:57:95:b5:e2:dd:9e:96:ee:6e:67:3c:4b:df: fb:65:37:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUU4QUMxMTAvBgNVBAUTKDk1MDdGMTFEMTM2M0FDNUIzOTJGMzZGNUVGMzgyMkM1 Q0ZDRDY4RjkwHhcNMjUwNTMxMDIzOTAxWhcNMjUwNjA3MDIzOTAxWjAYMRYwFAYD VQQDEw02ODNhNmJjNS1lNDdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwuWc7gpZqdd9Y4cxnpLFzM/a057dNgTlPPnpPUVET5mts2LnQRTcBV4D+6U8 1eyunMD4PacSkFg+NQWA46LPrsFOo5Z7uQSZU3J8K+JTvXni5vr6Ht5F5ZNLyjh3 Ffq6fe49qTdDreGlqXkSODVzggZrpYIq98zx6PNaALW3OzlZpCn8fSDgXnKqktYW nUiRwSPKenvOH9cgdy4J1unCFvIQsF9li3y6NUjqQAlRO1ZuLjhrRXJeUpWklVrT dkpGTwzwx3skQyF6TeiM0ydhUk3doJkLq8oXmcv001A1q6P0hlDHv2d4XHMMApMl h7CJdEh0ky6tAaZS3ZPeQUNaIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJAuRpeW zhBHV5yYC8ZkcO0FQHD/MB8GA1UdIwQYMBaAFJUH8R0TY6xbOS829e84IsXPzWj5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRThBQy81MDM4RUM4QzdE RUIxMUVEQTdDQTRBN0VDNEY5QUUwMi9sUWZ4SFJOanJGczVMemIxN3pnaXhjX05h UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xRZnhIUk5qckZzNUx6YjE3emdpeGNfTmFQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RThBQy81MDM4RUM4QzdERUIxMUVEQTdDQTRBN0VDNEY5QUUwMi9sUWZ4SFJOanJG czVMemIxN3pnaXhjX05hUGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFxsIjckHAu+KyMA3canhp3QbsqdZsi8/H7C+hTW1AtnHRLcRvYJ21 nkVoZgJNHqI+HjA34OudaR6pknlu6nUX4fDvM7l9HZshiWj5KXh+9ONpeYp3C1uP S3An7zdWA0P2E8ozf8Xa3NSde8mwLq/OvrlMxex2fajVoMe9jo3tU+NHsNiM1dF9 GP7wLNQWSDEhX75DgKNSvSgd7lNSn2Pcqy1B5Cwo5T9/w0TZ/3TLGSYPww6XZbEa RJMtd72h8Df0XvElVsRFcQJOMkwdtxRPtl7XsW63EbpyMMXodjOq6x2aJygHLZlb C31kwAtcUleVteLdnpbubmc8S9/7ZTcw -----END CERTIFICATE-----Generated at Sat May 31 16:34:56 2025 by rpki-client