$ rpki-client -vvf rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.mft File: 5vEsD995brDfK2AuWsQsy4OyLhg.mft (raw, json) Hash identifier: G5MGGl4vuIuj3YX+iSEHhA05MpwZyd2daHzRwhlMnXM= Subject key identifier: 54:05:77:9C:8D:A8:E4:DB:12:21:B7:9E:AF:E6:FC:F6:16:3D:2E:65 Authority key identifier: E6:F1:2C:0F:DF:79:6E:B0:DF:2B:60:2E:5A:C4:2C:CB:83:B2:2E:18 Certificate issuer: /CN=A914E3B7/serialNumber=E6F12C0FDF796EB0DF2B602E5AC42CCB83B22E18 Certificate serial: 348B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vEsD995brDfK2AuWsQsy4OyLhg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.mft Manifest number: 3488 Signing time: Sat 14 Jun 2025 15:08:25 +0000 Manifest this update: Sat 14 Jun 2025 15:08:24 +0000 Manifest next update: Sat 21 Jun 2025 15:08:24 +0000 Files and hashes: 1: 5vEsD995brDfK2AuWsQsy4OyLhg.crl (hash: A4JB2vZ9J/tmal9Ip3Bmq1n9K+CK+3KoL0Zd7Y5vlto=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.crl rsync://rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vEsD995brDfK2AuWsQsy4OyLhg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 15:08:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13451 (0x348b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E3B7, serialNumber=E6F12C0FDF796EB0DF2B602E5AC42CCB83B22E18 Validity Not Before: Jun 14 15:08:24 2025 GMT Not After : Jun 21 15:08:24 2025 GMT Subject: CN=684d9069-d8ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:4d:37:94:60:e5:1f:44:a5:fb:9b:50:aa:c2: 6b:20:b3:ae:85:a4:7f:df:99:f6:cd:2f:52:bc:c4: e4:77:1d:5b:51:a2:f1:a8:c1:84:0e:b1:3d:73:e3: 3f:7c:cf:b8:58:02:9c:b0:fb:0d:5e:87:2f:0c:57: 77:b1:f8:c0:6c:48:f3:df:eb:36:f8:8f:08:4a:5e: 56:98:ba:2a:46:ff:aa:49:76:1c:cc:a4:67:23:2d: 44:7c:52:34:13:68:3c:45:37:a7:bb:64:92:5f:82: a0:1b:be:36:12:ce:4f:9c:0f:2e:02:4f:95:bc:48: 9d:c9:e5:53:7d:fc:93:57:4d:08:17:94:1a:a4:30: 99:ba:13:55:a6:b4:7e:08:fc:40:7e:c2:be:b9:eb: 65:94:6e:93:f8:0f:63:d7:51:49:2a:69:b6:05:7a: 0d:71:86:c6:a3:98:95:f0:73:70:01:b3:90:ab:30: ab:05:86:54:08:d3:65:c4:92:14:92:ca:b8:58:72: 86:6d:e3:f6:5f:e4:7e:1b:5a:6d:84:38:51:71:e0: 13:96:7d:50:2a:ce:7f:ed:7c:87:96:0e:85:88:35: 43:11:19:fa:ad:5a:01:78:42:99:ef:ab:e3:85:e1: ce:6f:05:30:31:af:db:73:0e:18:ea:56:ce:62:0d: 75:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:05:77:9C:8D:A8:E4:DB:12:21:B7:9E:AF:E6:FC:F6:16:3D:2E:65 X509v3 Authority Key Identifier: keyid:E6:F1:2C:0F:DF:79:6E:B0:DF:2B:60:2E:5A:C4:2C:CB:83:B2:2E:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vEsD995brDfK2AuWsQsy4OyLhg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:1f:6f:f6:59:6f:bd:77:cd:08:55:06:a1:22:92:59:09:5a: d8:fb:da:ec:fe:65:66:b0:05:b8:dd:0f:18:5b:33:62:65:45: 13:47:22:d1:0f:2c:5d:af:00:ea:a4:5b:54:79:32:47:be:5a: 16:3b:5f:55:95:4b:ee:53:34:f6:97:81:a4:d1:cb:62:35:25: e7:e6:cd:3b:85:d8:34:d8:dc:76:59:33:6f:8e:9e:26:89:76: f1:35:43:39:9c:b7:8a:9c:02:13:42:1c:9d:10:99:ea:77:94: 96:29:3f:04:23:dc:dc:1e:ba:4f:30:8b:07:8c:0c:4b:6f:20: 12:ab:34:17:c6:9c:2a:6c:ad:80:a7:c5:e7:8b:a5:8c:d9:d7: e8:fa:4d:71:c9:35:5d:ce:23:30:46:97:8a:be:d2:b8:80:39: 83:f5:e8:eb:d8:7b:47:c3:08:5c:02:54:20:61:69:9e:a3:90: a8:82:99:cb:5b:d9:d5:ab:54:8a:a0:0b:d6:c9:44:e4:3b:60: e1:f1:d3:80:9d:72:a1:5b:77:e5:a8:23:e2:42:b5:e1:8f:f7: 73:5b:d3:09:12:54:c9:b8:9f:2b:65:dc:54:c9:c5:68:cd:dc: 05:8d:f1:a1:cf:0b:da:dc:d3:c0:90:e8:5a:9d:18:8a:4e:ec: ec:74:b4:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUzQjcxMTAvBgNVBAUTKEU2RjEyQzBGREY3OTZFQjBERjJCNjAyRTVBQzQyQ0NC ODNCMjJFMTgwHhcNMjUwNjE0MTUwODI0WhcNMjUwNjIxMTUwODI0WjAYMRYwFAYD VQQDEw02ODRkOTA2OS1kOGFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuk03lGDlH0Sl+5tQqsJrILOuhaR/35n2zS9SvMTkdx1bUaLxqMGEDrE9c+M/ fM+4WAKcsPsNXocvDFd3sfjAbEjz3+s2+I8ISl5WmLoqRv+qSXYczKRnIy1EfFI0 E2g8RTenu2SSX4KgG742Es5PnA8uAk+VvEidyeVTffyTV00IF5QapDCZuhNVprR+ CPxAfsK+uetllG6T+A9j11FJKmm2BXoNcYbGo5iV8HNwAbOQqzCrBYZUCNNlxJIU ksq4WHKGbeP2X+R+G1pthDhRceATln1QKs5/7XyHlg6FiDVDERn6rVoBeEKZ76vj heHObwUwMa/bcw4Y6lbOYg11UwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFQFd5yN qOTbEiG3nq/m/PYWPS5lMB8GA1UdIwQYMBaAFObxLA/feW6w3ytgLlrELMuDsi4Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTNCNy85RkFFODRGQTFE QTQxMUUyQUMyQkFGOUEwOEIwMkNEMi81dkVzRDk5NWJyRGZLMkF1V3NRc3k0T3lM aGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzV2RXNEOTk1YnJEZksyQXVXc1FzeTRPeUxoZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTNCNy85RkFFODRGQTFEQTQxMUUyQUMyQkFGOUEwOEIwMkNEMi81dkVzRDk5NWJy RGZLMkF1V3NRc3k0T3lMaGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhH2/2WW+9d80IVQahIpJZCVrY+9rs/mVmsAW43Q8YWzNiZUUTRyLR DyxdrwDqpFtUeTJHvloWO19VlUvuUzT2l4Gk0ctiNSXn5s07hdg02Nx2WTNvjp4m iXbxNUM5nLeKnAITQhydEJnqd5SWKT8EI9zcHrpPMIsHjAxLbyASqzQXxpwqbK2A p8Xni6WM2dfo+k1xyTVdziMwRpeKvtK4gDmD9ejr2HtHwwhcAlQgYWmeo5CogpnL W9nVq1SKoAvWyUTkO2Dh8dOAnXKhW3flqCPiQrXhj/dzW9MJElTJuJ8rZdxUycVo zdwFjfGhzwva3NPAkOhanRiKTuzsdLSs -----END CERTIFICATE-----Generated at Sun Jun 15 09:41:21 2025 by rpki-client