$ rpki-client -vvf rpki.apnic.net/member_repository/A913F8B5/239D2A42FFF911EBA8F74360C4F9AE02/E4-ajPIH2gCLQBxt6NkTEP4l6kw.mft File: E4-ajPIH2gCLQBxt6NkTEP4l6kw.mft (raw, json) Hash identifier: 0rtE0LGEU9b9a5mB9uyz5k7oVbfFrvs/ZDaYTxZjek0= Subject key identifier: AF:30:13:7F:0F:AD:0D:B1:83:82:CF:22:95:70:42:07:38:92:7B:EF Authority key identifier: 13:8F:9A:8C:F2:07:DA:00:8B:40:1C:6D:E8:D9:13:10:FE:25:EA:4C Certificate issuer: /CN=A913F8B5/serialNumber=138F9A8CF207DA008B401C6DE8D91310FE25EA4C Certificate serial: 0532 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E4-ajPIH2gCLQBxt6NkTEP4l6kw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F8B5/239D2A42FFF911EBA8F74360C4F9AE02/E4-ajPIH2gCLQBxt6NkTEP4l6kw.mft Manifest number: 052B Signing time: Thu 12 Jun 2025 23:08:35 +0000 Manifest this update: Thu 12 Jun 2025 23:08:34 +0000 Manifest next update: Thu 19 Jun 2025 23:08:34 +0000 Files and hashes: 1: E4-ajPIH2gCLQBxt6NkTEP4l6kw.crl (hash: A1MS3E/RDQ27Hscms3w0J7wN45fcTGj/D+taUX1M720=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F8B5/239D2A42FFF911EBA8F74360C4F9AE02/E4-ajPIH2gCLQBxt6NkTEP4l6kw.crl rsync://rpki.apnic.net/member_repository/A913F8B5/239D2A42FFF911EBA8F74360C4F9AE02/E4-ajPIH2gCLQBxt6NkTEP4l6kw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E4-ajPIH2gCLQBxt6NkTEP4l6kw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 23:08:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1330 (0x532) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F8B5, serialNumber=138F9A8CF207DA008B401C6DE8D91310FE25EA4C Validity Not Before: Jun 12 23:08:34 2025 GMT Not After : Jun 19 23:08:34 2025 GMT Subject: CN=684b5df2-ce65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:5b:ec:9f:2b:c3:9b:55:17:87:e2:ce:69:8e: 3f:30:58:0a:45:27:ae:3c:e8:3c:21:59:5a:ff:0e: 8e:fa:17:c9:2a:b3:53:4b:77:07:bf:24:26:61:b4: 5e:00:f1:79:1d:96:3e:f4:51:d3:e8:a2:63:8e:ce: 1f:12:b8:95:dd:59:53:af:9c:97:d4:85:c8:ab:0c: 20:ed:65:f2:f4:6f:cb:b8:ec:9f:b8:36:a6:f9:fd: 7e:68:18:0a:32:46:2c:07:34:00:26:9e:91:ff:66: fc:c3:87:e6:1a:cc:ff:36:8d:8d:c4:35:d3:ff:15: 15:4a:af:a0:85:f3:ff:03:88:3a:bc:a3:be:d6:bd: 32:aa:5e:68:03:a3:bd:f4:09:d5:42:9c:25:00:96: 56:69:8d:d8:e2:17:d7:80:d9:1d:a1:e0:15:af:f3: 59:a7:ce:7e:81:4c:ea:48:58:5a:d0:4a:68:a5:f9: a8:ec:a9:85:d4:b3:1d:ef:73:be:aa:37:b0:34:60: 79:7c:e5:e5:48:e2:33:eb:26:32:f6:4b:c5:2f:51: 21:59:f0:6d:0d:58:f2:44:95:50:d5:02:c1:cf:81: 6f:e3:e7:93:a1:db:67:81:cf:fb:85:e3:f0:d4:3c: ac:db:ee:28:2b:dc:33:ba:09:8c:37:07:41:bd:6b: a4:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:30:13:7F:0F:AD:0D:B1:83:82:CF:22:95:70:42:07:38:92:7B:EF X509v3 Authority Key Identifier: keyid:13:8F:9A:8C:F2:07:DA:00:8B:40:1C:6D:E8:D9:13:10:FE:25:EA:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F8B5/239D2A42FFF911EBA8F74360C4F9AE02/E4-ajPIH2gCLQBxt6NkTEP4l6kw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E4-ajPIH2gCLQBxt6NkTEP4l6kw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F8B5/239D2A42FFF911EBA8F74360C4F9AE02/E4-ajPIH2gCLQBxt6NkTEP4l6kw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:cb:b8:3f:82:71:08:9a:1a:e2:85:de:31:1f:f3:8b:f9:83: ea:67:7a:57:e2:30:23:8f:e3:6a:45:71:6a:2f:bc:0b:a7:ab: 90:cb:cc:40:3f:78:80:b1:d5:e0:a8:22:10:e0:c4:a0:22:29: 05:b6:bf:a4:e7:23:c0:b7:66:fd:78:c3:56:51:54:c1:ff:f1: 1f:63:22:2e:85:bc:5d:64:1f:d0:fa:7a:04:a6:48:76:bb:dc: 0c:99:3f:59:e5:0e:06:bf:68:4a:ee:f2:a7:3e:41:e0:16:cb: ac:02:98:32:bf:fc:f1:3c:27:a7:ea:6a:36:99:22:ec:4b:ad: 8b:05:68:13:2b:5c:85:f8:8b:5f:91:33:9f:e5:3c:ed:02:be: 5d:c4:0f:6a:e9:47:d3:fb:0d:e4:72:2e:d9:8f:0b:6e:f7:dd: 17:9f:7e:a8:4e:9f:9c:f9:1c:74:00:ff:82:95:ca:88:ba:64: 6e:b6:75:6a:7c:61:3f:e0:94:0b:de:a0:91:67:ab:a2:2a:88: 6b:0d:73:be:d6:ef:b6:47:84:83:73:fc:e8:e7:4e:bc:cb:d0: 18:98:71:fe:14:a1:2c:4a:1d:04:50:45:7f:09:77:51:e1:c2: 7a:23:bf:86:b7:ca:3c:a3:0a:7c:60:5a:21:13:7f:83:df:4e: 5e:60:82:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBTIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Y4QjUxMTAvBgNVBAUTKDEzOEY5QThDRjIwN0RBMDA4QjQwMUM2REU4RDkxMzEw RkUyNUVBNEMwHhcNMjUwNjEyMjMwODM0WhcNMjUwNjE5MjMwODM0WjAYMRYwFAYD VQQDEw02ODRiNWRmMi1jZTY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2lvsnyvDm1UXh+LOaY4/MFgKRSeuPOg8IVla/w6O+hfJKrNTS3cHvyQmYbRe APF5HZY+9FHT6KJjjs4fEriV3VlTr5yX1IXIqwwg7WXy9G/LuOyfuDam+f1+aBgK MkYsBzQAJp6R/2b8w4fmGsz/No2NxDXT/xUVSq+ghfP/A4g6vKO+1r0yql5oA6O9 9AnVQpwlAJZWaY3Y4hfXgNkdoeAVr/NZp85+gUzqSFha0Epopfmo7KmF1LMd73O+ qjewNGB5fOXlSOIz6yYy9kvFL1EhWfBtDVjyRJVQ1QLBz4Fv4+eTodtngc/7hePw 1Dys2+4oK9wzugmMNwdBvWukGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK8wE38P rQ2xg4LPIpVwQgc4knvvMB8GA1UdIwQYMBaAFBOPmozyB9oAi0AcbejZExD+JepM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjhCNS8yMzlEMkE0MkZG RjkxMUVCQThGNzQzNjBDNEY5QUUwMi9FNC1halBJSDJnQ0xRQnh0Nk5rVEVQNGw2 a3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0U0LWFqUElIMmdDTFFCeHQ2TmtURVA0bDZrdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RjhCNS8yMzlEMkE0MkZGRjkxMUVCQThGNzQzNjBDNEY5QUUwMi9FNC1halBJSDJn Q0xRQnh0Nk5rVEVQNGw2a3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJy7g/gnEImhrihd4xH/OL+YPqZ3pX4jAjj+NqRXFqL7wLp6uQy8xA P3iAsdXgqCIQ4MSgIikFtr+k5yPAt2b9eMNWUVTB//EfYyIuhbxdZB/Q+noEpkh2 u9wMmT9Z5Q4Gv2hK7vKnPkHgFsusApgyv/zxPCen6mo2mSLsS62LBWgTK1yF+Itf kTOf5TztAr5dxA9q6UfT+w3kci7Zjwtu990Xn36oTp+c+Rx0AP+ClcqIumRutnVq fGE/4JQL3qCRZ6uiKohrDXO+1u+2R4SDc/zo5068y9AYmHH+FKEsSh0EUEV/CXdR 4cJ6I7+Gt8o8owp8YFohE3+D305eYIJy -----END CERTIFICATE-----Generated at Sat Jun 14 17:22:15 2025 by rpki-client