$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/h81xgndjHgvdtrTzot8esxEio4E.mft File: h81xgndjHgvdtrTzot8esxEio4E.mft (raw, json) Hash identifier: kkkF9nthKft0RfJ8owHwygQvzAyFvD/45BeSKLtvP+g= Subject key identifier: 72:59:9B:A1:E9:9F:F2:52:8F:3F:2B:DD:30:11:76:A5:27:DB:C9:83 Authority key identifier: 87:CD:71:82:77:63:1E:0B:DD:B6:B4:F3:A2:DF:1E:B3:11:22:A3:81 Certificate issuer: /CN=A91F2DDD/serialNumber=87CD718277631E0BDDB6B4F3A2DF1EB31122A381 Certificate serial: 0E52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h81xgndjHgvdtrTzot8esxEio4E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/h81xgndjHgvdtrTzot8esxEio4E.mft Manifest number: 1158 Signing time: Fri 30 May 2025 17:55:31 +0000 Manifest this update: Fri 30 May 2025 17:55:31 +0000 Manifest next update: Fri 06 Jun 2025 17:55:31 +0000 Files and hashes: 1: h81xgndjHgvdtrTzot8esxEio4E.crl (hash: GIV8tPprqDvIkfJyZq2MjfNvLlWJPp+C42LA8Dq/2qA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/h81xgndjHgvdtrTzot8esxEio4E.crl rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/h81xgndjHgvdtrTzot8esxEio4E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h81xgndjHgvdtrTzot8esxEio4E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 17:55:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3666 (0xe52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2DDD, serialNumber=87CD718277631E0BDDB6B4F3A2DF1EB31122A381 Validity Not Before: May 30 17:55:31 2025 GMT Not After : Jun 6 17:55:31 2025 GMT Subject: CN=6839f113-9be1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:12:65:0f:8d:21:f7:d3:d6:77:62:1e:2b:76: b5:a1:f0:4c:8f:9b:c5:ed:17:3b:9f:0a:a8:d1:d5: 63:b9:6d:c0:1b:ca:b5:5d:b0:42:29:d7:88:83:e5: 9d:23:40:aa:4d:24:8a:ac:8f:11:42:a3:b6:c9:42: 36:76:9c:46:d0:0b:1e:59:5b:65:f5:72:18:af:d9: 43:38:3d:86:ea:64:63:c7:95:96:bf:29:2c:59:7a: 40:d2:22:cd:5c:a8:d7:43:48:f3:d4:99:88:1a:6f: 78:9f:6b:62:90:93:06:5c:8e:fb:67:b3:15:3b:9f: 39:06:b5:a8:ce:50:6f:7c:fb:e0:7e:8d:0b:cb:95: 48:6a:71:7a:7d:80:92:71:7e:07:fe:78:af:ac:8f: f4:19:ae:65:6f:d1:ec:8a:87:25:18:cc:8b:9f:17: 30:ea:3d:ea:f9:02:fe:7e:b1:30:71:9e:f4:68:6d: 4e:63:39:42:3d:89:d9:b6:a0:3d:b0:9e:2c:33:22: 4e:0a:53:05:8b:34:57:57:a7:30:19:d0:58:b3:a1: f8:7f:f7:77:da:e9:ab:75:c7:e8:21:5d:ab:a0:27: f6:ea:90:ec:c6:41:88:f0:f1:b9:3e:9c:e4:ce:0a: 0a:0b:aa:96:04:a7:ac:b1:b1:79:ad:17:97:eb:aa: 2d:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:59:9B:A1:E9:9F:F2:52:8F:3F:2B:DD:30:11:76:A5:27:DB:C9:83 X509v3 Authority Key Identifier: keyid:87:CD:71:82:77:63:1E:0B:DD:B6:B4:F3:A2:DF:1E:B3:11:22:A3:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/h81xgndjHgvdtrTzot8esxEio4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h81xgndjHgvdtrTzot8esxEio4E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/h81xgndjHgvdtrTzot8esxEio4E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:01:4f:01:e0:83:bc:a5:f0:c1:ef:ff:64:46:45:dd:04:13: ec:9f:d0:ba:26:e5:cb:b6:8e:81:2a:3f:46:af:8b:fe:b5:1d: dd:59:d8:79:f2:f0:ec:af:91:22:04:42:cf:01:36:1b:fb:c2: a4:75:0e:da:31:1c:53:96:12:de:68:5b:65:a4:70:ba:4c:fe: 51:99:0a:b8:2d:9a:13:95:de:ef:7a:da:6f:a2:28:b8:6e:9e: 7e:96:cb:32:d4:b2:4a:2a:c0:13:c6:78:95:bd:42:3b:05:ee: 00:df:2e:43:7d:2f:00:ee:76:94:1d:d4:01:cf:12:2a:3f:67: 08:b7:42:61:60:b8:af:1e:1f:58:07:85:47:8d:9a:52:36:96: ea:a7:24:07:e9:bc:29:c7:23:a5:c8:7e:40:31:7e:fc:61:77: 7f:02:b6:a4:43:7e:fa:86:2f:c2:19:a5:7f:e1:cd:1e:a7:a4: 58:f1:72:b1:20:96:ae:e4:5c:2f:3d:03:ee:0f:28:b8:b0:2f: 87:64:bf:f3:59:02:bc:ee:1d:c5:79:a7:cd:88:61:bb:4d:b5: 41:e4:11:e2:36:5b:6d:b7:e3:67:6b:a5:ce:10:26:ea:6e:59: a3:49:d5:80:41:1a:9f:04:35:9e:66:8f:a3:7e:f6:ee:26:ea: c8:05:83:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDlIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJEREQxMTAvBgNVBAUTKDg3Q0Q3MTgyNzc2MzFFMEJEREI2QjRGM0EyREYxRUIz MTEyMkEzODEwHhcNMjUwNTMwMTc1NTMxWhcNMjUwNjA2MTc1NTMxWjAYMRYwFAYD VQQDEw02ODM5ZjExMy05YmUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwhJlD40h99PWd2IeK3a1ofBMj5vF7Rc7nwqo0dVjuW3AG8q1XbBCKdeIg+Wd I0CqTSSKrI8RQqO2yUI2dpxG0AseWVtl9XIYr9lDOD2G6mRjx5WWvyksWXpA0iLN XKjXQ0jz1JmIGm94n2tikJMGXI77Z7MVO585BrWozlBvfPvgfo0Ly5VIanF6fYCS cX4H/nivrI/0Ga5lb9HsioclGMyLnxcw6j3q+QL+frEwcZ70aG1OYzlCPYnZtqA9 sJ4sMyJOClMFizRXV6cwGdBYs6H4f/d32umrdcfoIV2roCf26pDsxkGI8PG5Ppzk zgoKC6qWBKessbF5rReX66otfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHJZm6Hp n/JSjz8r3TARdqUn28mDMB8GA1UdIwQYMBaAFIfNcYJ3Yx4L3ba086LfHrMRIqOB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkRERC9CNEEyODM2MjlF MUIxMUU5OEUxRTRFNUVDNEY5QUUwMi9oODF4Z25kakhndmR0clR6b3Q4ZXN4RWlv NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g4MXhnbmRqSGd2ZHRyVHpvdDhlc3hFaW80RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MkRERC9CNEEyODM2MjlFMUIxMUU5OEUxRTRFNUVDNEY5QUUwMi9oODF4Z25kakhn dmR0clR6b3Q4ZXN4RWlvNEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZAU8B4IO8pfDB7/9kRkXdBBPsn9C6JuXLto6BKj9Gr4v+tR3dWdh5 8vDsr5EiBELPATYb+8KkdQ7aMRxTlhLeaFtlpHC6TP5RmQq4LZoTld7vetpvoii4 bp5+lssy1LJKKsATxniVvUI7Be4A3y5DfS8A7naUHdQBzxIqP2cIt0JhYLivHh9Y B4VHjZpSNpbqpyQH6bwpxyOlyH5AMX78YXd/ArakQ376hi/CGaV/4c0ep6RY8XKx IJau5FwvPQPuDyi4sC+HZL/zWQK87h3FeafNiGG7TbVB5BHiNlttt+Nna6XOECbq blmjSdWAQRqfBDWeZo+jfvbuJurIBYOC -----END CERTIFICATE-----Generated at Sat May 31 17:48:42 2025 by rpki-client