$ rpki-client -vvf rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft File: 5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft (raw, json) Hash identifier: y0yHlNKkxVaEdXWwYEAToeuaSJXBJJX2rbhXnj5c28s= Subject key identifier: 1A:B0:94:B4:B9:FC:D3:DA:2D:E5:6A:82:77:C6:5A:63:95:EE:5A:1F Authority key identifier: E7:3F:B8:86:8D:D3:B4:61:EA:1A:67:3C:7A:36:94:52:35:E9:CA:AE Certificate issuer: /CN=A91FCEB1/serialNumber=E73FB8868DD3B461EA1A673C7A36945235E9CAAE Certificate serial: 0703 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5z-4ho3TtGHqGmc8ejaUUjXpyq4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft Manifest number: 2177 Signing time: Mon 02 Jun 2025 16:08:55 +0000 Manifest this update: Mon 02 Jun 2025 16:08:55 +0000 Manifest next update: Mon 09 Jun 2025 16:08:55 +0000 Files and hashes: 1: 5z-4ho3TtGHqGmc8ejaUUjXpyq4.crl (hash: saYE2s4nz09FFc1Hlsu4b0oE9dKX5y20txzMWLdDBoY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.crl rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5z-4ho3TtGHqGmc8ejaUUjXpyq4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 05:53:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1795 (0x703) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FCEB1, serialNumber=E73FB8868DD3B461EA1A673C7A36945235E9CAAE Validity Not Before: Jun 2 16:08:55 2025 GMT Not After : Jun 9 16:08:55 2025 GMT Subject: CN=683dcc97-4771 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:55:45:2d:56:6f:3d:c7:ae:e1:0f:3c:6e:e5: 18:56:28:ca:6d:03:c3:0a:7b:a0:7b:64:15:78:91: b5:5f:eb:59:04:6e:b2:76:8a:c1:61:71:31:6c:24: a5:25:e9:cb:1f:22:4a:87:df:31:bb:c4:e5:84:ef: d6:be:5a:48:02:b4:09:73:ed:e6:17:8e:e5:c2:ae: 6f:ce:c3:80:c3:2f:d6:48:50:aa:ea:6a:16:a7:33: ed:e7:8b:f4:c1:e3:ce:61:53:0b:f3:03:ee:4b:09: 25:81:49:19:7d:38:7c:aa:40:81:0a:16:6e:2d:bb: 73:17:2e:b4:e8:37:e2:26:69:4e:0e:f3:4d:b7:73: fa:3e:96:85:60:45:a7:29:3b:c7:2c:58:9f:f3:ce: 7a:0c:c2:e6:05:58:49:c8:58:0b:22:3f:3d:7b:3e: 38:07:d1:cc:6e:9c:38:dd:20:28:5c:2a:da:7c:2e: 22:20:e3:94:21:da:de:8c:1e:11:3b:12:5f:64:6a: 74:48:71:22:b5:f2:e9:30:44:cb:d8:dc:3b:cc:1e: f0:d9:e9:0e:83:7e:5b:2c:f2:2e:bb:7e:c0:aa:26: 65:45:e0:b1:32:c9:1c:87:1f:f2:2a:e8:f9:b5:7e: fe:80:c3:1e:0b:9e:9c:1e:89:44:c0:e7:6b:c5:07: 62:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:B0:94:B4:B9:FC:D3:DA:2D:E5:6A:82:77:C6:5A:63:95:EE:5A:1F X509v3 Authority Key Identifier: keyid:E7:3F:B8:86:8D:D3:B4:61:EA:1A:67:3C:7A:36:94:52:35:E9:CA:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5z-4ho3TtGHqGmc8ejaUUjXpyq4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:4f:5a:37:eb:e9:51:60:52:6c:f2:54:30:53:8e:b9:1e:31: 93:79:5e:5e:41:81:c3:e2:3d:19:1f:40:d5:ee:28:c2:71:83: 04:b0:7d:40:e7:8c:a8:de:6e:49:d1:e5:79:dd:9b:91:e6:04: c0:2d:0e:e9:c3:98:50:e4:7d:f5:5c:83:97:d4:a4:32:e8:be: f1:00:4c:20:d3:2a:23:36:cf:f2:69:e8:9c:f7:ab:a5:2d:a3: 1d:a1:86:5a:01:57:b2:62:bc:70:89:7d:40:a2:39:a0:2a:6c: 8d:fe:6b:81:48:1a:89:fb:66:00:bb:c5:0e:4f:6f:6c:29:3a: 53:f7:a3:19:7a:28:01:20:ca:0c:6e:68:09:b9:df:8c:c5:5f: c3:89:af:84:3d:33:8c:79:0e:7c:04:95:5c:87:04:9f:36:ec: 9b:9b:a6:a6:7c:d5:48:11:d8:6f:40:62:5d:c8:24:bc:2c:3f: c2:e2:fb:67:2e:0f:3e:63:8a:b4:9a:d3:92:b1:b3:f7:02:22: c2:8f:e3:f3:58:ec:10:ce:ff:57:39:d1:23:20:f7:ee:58:8d: 79:53:bc:56:92:64:bf:07:4e:f0:12:65:ba:25:96:ea:fc:89: f5:e8:aa:d4:f4:bf:b6:98:60:fd:60:f7:d1:31:7b:5d:31:7d: b3:1d:07:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBwMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkNFQjExMTAvBgNVBAUTKEU3M0ZCODg2OEREM0I0NjFFQTFBNjczQzdBMzY5NDUy MzVFOUNBQUUwHhcNMjUwNjAyMTYwODU1WhcNMjUwNjA5MTYwODU1WjAYMRYwFAYD VQQDEw02ODNkY2M5Ny00NzcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6FVFLVZvPceu4Q88buUYVijKbQPDCnuge2QVeJG1X+tZBG6ydorBYXExbCSl JenLHyJKh98xu8TlhO/WvlpIArQJc+3mF47lwq5vzsOAwy/WSFCq6moWpzPt54v0 wePOYVML8wPuSwklgUkZfTh8qkCBChZuLbtzFy606DfiJmlODvNNt3P6PpaFYEWn KTvHLFif8856DMLmBVhJyFgLIj89ez44B9HMbpw43SAoXCrafC4iIOOUIdrejB4R OxJfZGp0SHEitfLpMETL2Nw7zB7w2ekOg35bLPIuu37AqiZlReCxMskchx/yKuj5 tX7+gMMeC56cHolEwOdrxQdicQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBqwlLS5 /NPaLeVqgnfGWmOV7lofMB8GA1UdIwQYMBaAFOc/uIaN07Rh6hpnPHo2lFI16cqu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQ0VCMS85QzE0QjQwNjNB MjExMUU3OUFBMEQ1MUNDNEY5QUUwMi81ei00aG8zVHRHSHFHbWM4ZWphVVVqWHB5 cTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzV6LTRobzNUdEdIcUdtYzhlamFVVWpYcHlxNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Q0VCMS85QzE0QjQwNjNBMjExMUU3OUFBMEQ1MUNDNEY5QUUwMi81ei00aG8zVHRH SHFHbWM4ZWphVVVqWHB5cTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrT1o36+lRYFJs8lQwU465HjGTeV5eQYHD4j0ZH0DV7ijCcYMEsH1A 54yo3m5J0eV53ZuR5gTALQ7pw5hQ5H31XIOX1KQy6L7xAEwg0yojNs/yaeic96ul LaMdoYZaAVeyYrxwiX1AojmgKmyN/muBSBqJ+2YAu8UOT29sKTpT96MZeigBIMoM bmgJud+MxV/Dia+EPTOMeQ58BJVchwSfNuybm6amfNVIEdhvQGJdyCS8LD/C4vtn Lg8+Y4q0mtOSsbP3AiLCj+PzWOwQzv9XOdEjIPfuWI15U7xWkmS/B07wEmW6JZbq /In16KrU9L+2mGD9YPfRMXtdMX2zHQfh -----END CERTIFICATE-----Generated at Mon Jun 2 20:12:51 2025 by rpki-client