$ rpki-client -vvf rpki.apnic.net/member_repository/A9141E28/8458B9101D8F11E2AB03A2EE08B02CD2/rBnGa8SzHOuTC6auDW63R7EKtgY.mft File: rBnGa8SzHOuTC6auDW63R7EKtgY.mft (raw, json) Hash identifier: aHxM03kJJx7E9rLcN4sk+4wnbE4ukRsci8r+RhBh7vw= Subject key identifier: 22:50:E9:31:C4:05:D5:37:76:0A:4D:15:EF:56:12:E1:8A:76:2F:97 Authority key identifier: AC:19:C6:6B:C4:B3:1C:EB:93:0B:A6:AE:0D:6E:B7:47:B1:0A:B6:06 Certificate issuer: /CN=A9141E28/serialNumber=AC19C66BC4B31CEB930BA6AE0D6EB747B10AB606 Certificate serial: 3496 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rBnGa8SzHOuTC6auDW63R7EKtgY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9141E28/8458B9101D8F11E2AB03A2EE08B02CD2/rBnGa8SzHOuTC6auDW63R7EKtgY.mft Manifest number: 3496 Signing time: Wed 18 Jun 2025 14:39:05 +0000 Manifest this update: Wed 18 Jun 2025 14:39:05 +0000 Manifest next update: Wed 25 Jun 2025 14:39:05 +0000 Files and hashes: 1: rBnGa8SzHOuTC6auDW63R7EKtgY.crl (hash: NtnGYp4v17loPgWAndg+H3NZDZrYz09cenDDrhGc8Sg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9141E28/8458B9101D8F11E2AB03A2EE08B02CD2/rBnGa8SzHOuTC6auDW63R7EKtgY.crl rsync://rpki.apnic.net/member_repository/A9141E28/8458B9101D8F11E2AB03A2EE08B02CD2/rBnGa8SzHOuTC6auDW63R7EKtgY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rBnGa8SzHOuTC6auDW63R7EKtgY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 14:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13462 (0x3496) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9141E28, serialNumber=AC19C66BC4B31CEB930BA6AE0D6EB747B10AB606 Validity Not Before: Jun 18 14:39:05 2025 GMT Not After : Jun 25 14:39:05 2025 GMT Subject: CN=6852cf89-e632 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:03:15:24:04:c4:e9:8e:ac:5c:69:78:1f:92: 9d:71:e4:6c:ec:84:6a:47:a5:a7:91:38:73:fd:9a: 6f:e6:1b:fa:0d:87:ed:ba:4b:cf:65:13:13:37:87: 19:f3:71:81:3c:cc:c8:33:9a:9b:32:18:f7:38:b4: 0d:b0:56:96:dc:52:2a:dc:12:06:d9:17:b5:3f:7d: 9f:48:e3:7e:f6:21:eb:79:f6:d1:ad:22:8b:d4:58: 6a:37:1a:e8:33:08:d9:08:d2:e6:74:be:2e:2d:fa: 71:a3:08:6b:f3:b8:77:54:27:fc:ad:ae:41:d6:fa: 24:5d:74:61:5f:9e:a9:0e:9b:9f:9b:08:c7:63:8c: b7:a2:9d:8a:b6:3b:57:6e:c3:64:04:ef:8a:59:71: 17:00:8e:65:51:69:30:3c:3c:bf:d3:a4:22:e3:4c: 87:23:ef:9f:3c:ac:c3:23:53:88:76:7e:09:e7:d1: b2:3a:24:55:7a:28:03:93:8d:8b:43:3b:62:24:f9: b2:87:73:80:48:51:00:44:c3:ac:8c:87:53:36:80: 9b:87:32:e0:cc:63:9d:a8:7e:de:fd:27:2d:53:4e: d2:3e:e2:02:c0:fe:b2:fd:39:44:45:cb:80:cb:35: 78:46:77:d0:4f:f3:8d:98:43:23:60:70:94:83:9d: ea:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:50:E9:31:C4:05:D5:37:76:0A:4D:15:EF:56:12:E1:8A:76:2F:97 X509v3 Authority Key Identifier: keyid:AC:19:C6:6B:C4:B3:1C:EB:93:0B:A6:AE:0D:6E:B7:47:B1:0A:B6:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9141E28/8458B9101D8F11E2AB03A2EE08B02CD2/rBnGa8SzHOuTC6auDW63R7EKtgY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rBnGa8SzHOuTC6auDW63R7EKtgY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9141E28/8458B9101D8F11E2AB03A2EE08B02CD2/rBnGa8SzHOuTC6auDW63R7EKtgY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:cf:1b:d3:18:a3:e2:cc:fe:b1:fb:07:18:0e:14:61:43:e5: 5b:b4:87:6d:79:32:64:bf:e4:3d:91:dd:a3:1e:1f:72:ea:3a: b9:f0:5c:c2:94:2e:a9:d2:eb:bc:e9:83:8e:5f:a2:ae:4c:e7: 27:18:c3:86:ff:bd:43:0c:9e:7d:b2:91:82:d2:44:8e:38:91: 06:87:b4:60:cf:9a:8d:7a:5f:60:cf:cd:88:a1:89:60:ef:57: f9:83:52:19:db:d4:33:12:79:24:20:56:44:d9:d3:c9:55:91: 50:41:34:a5:af:ff:e6:fc:af:5b:8a:bb:8c:44:45:ad:cd:93: 5e:c9:98:ab:0b:ef:d4:b0:aa:6f:46:65:b2:1d:9d:5b:af:8b: 51:5f:5a:be:dc:8c:6d:74:2e:a2:e1:32:f6:c8:11:d6:40:f4: 14:39:9f:52:54:cd:34:8e:6f:6c:db:79:be:7b:89:74:35:5e: 98:eb:15:ba:06:c6:17:b4:2a:33:ca:99:8d:47:84:82:cf:a7: ef:b1:8c:39:78:03:ed:cf:4d:db:57:a8:61:78:72:68:d5:07: 26:a6:28:54:cd:0d:b5:0b:d2:fd:0a:52:5f:9c:8d:18:c3:a6: 83:99:07:a3:d7:ea:d6:4f:8d:95:a5:db:19:f2:23:0e:19:9d: 2b:dd:10:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDFFMjgxMTAvBgNVBAUTKEFDMTlDNjZCQzRCMzFDRUI5MzBCQTZBRTBENkVCNzQ3 QjEwQUI2MDYwHhcNMjUwNjE4MTQzOTA1WhcNMjUwNjI1MTQzOTA1WjAYMRYwFAYD VQQDEw02ODUyY2Y4OS1lNjMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxAMVJATE6Y6sXGl4H5KdceRs7IRqR6WnkThz/Zpv5hv6DYftukvPZRMTN4cZ 83GBPMzIM5qbMhj3OLQNsFaW3FIq3BIG2Re1P32fSON+9iHrefbRrSKL1FhqNxro MwjZCNLmdL4uLfpxowhr87h3VCf8ra5B1vokXXRhX56pDpufmwjHY4y3op2KtjtX bsNkBO+KWXEXAI5lUWkwPDy/06Qi40yHI++fPKzDI1OIdn4J59GyOiRVeigDk42L QztiJPmyh3OASFEARMOsjIdTNoCbhzLgzGOdqH7e/SctU07SPuICwP6y/TlERcuA yzV4RnfQT/ONmEMjYHCUg53qDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCJQ6THE BdU3dgpNFe9WEuGKdi+XMB8GA1UdIwQYMBaAFKwZxmvEsxzrkwumrg1ut0exCrYG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MUUyOC84NDU4QjkxMDFE OEYxMUUyQUIwM0EyRUUwOEIwMkNEMi9yQm5HYThTekhPdVRDNmF1RFc2M1I3RUt0 Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JCbkdhOFN6SE91VEM2YXVEVzYzUjdFS3RnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MUUyOC84NDU4QjkxMDFEOEYxMUUyQUIwM0EyRUUwOEIwMkNEMi9yQm5HYThTekhP dVRDNmF1RFc2M1I3RUt0Z1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6zxvTGKPizP6x+wcYDhRhQ+VbtIdteTJkv+Q9kd2jHh9y6jq58FzC lC6p0uu86YOOX6KuTOcnGMOG/71DDJ59spGC0kSOOJEGh7Rgz5qNel9gz82IoYlg 71f5g1IZ29QzEnkkIFZE2dPJVZFQQTSlr//m/K9biruMREWtzZNeyZirC+/UsKpv RmWyHZ1br4tRX1q+3IxtdC6i4TL2yBHWQPQUOZ9SVM00jm9s23m+e4l0NV6Y6xW6 BsYXtCozypmNR4SCz6fvsYw5eAPtz03bV6hheHJo1QcmpihUzQ21C9L9ClJfnI0Y w6aDmQej1+rWT42VpdsZ8iMOGZ0r3RCJ -----END CERTIFICATE-----Generated at Wed Jun 18 16:35:27 2025 by rpki-client