$ rpki-client -vvf rpki.apnic.net/member_repository/A91509C4/4B8961381D8B11E28A33C7E508B02CD2/hQaYWfujzd6OwbgaHgTdYFCzgRM.mft File: hQaYWfujzd6OwbgaHgTdYFCzgRM.mft (raw, json) Hash identifier: 7pe8koDgrNsY/vlh66oRvWj8d1VhydKWV/kLnjoW7wU= Subject key identifier: EA:2B:E3:86:A7:B6:2F:71:1C:65:DA:ED:77:B5:47:7E:B4:E7:E7:14 Authority key identifier: 85:06:98:59:FB:A3:CD:DE:8E:C1:B8:1A:1E:04:DD:60:50:B3:81:13 Certificate issuer: /CN=A91509C4/serialNumber=85069859FBA3CDDE8EC1B81A1E04DD6050B38113 Certificate serial: 348D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hQaYWfujzd6OwbgaHgTdYFCzgRM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91509C4/4B8961381D8B11E28A33C7E508B02CD2/hQaYWfujzd6OwbgaHgTdYFCzgRM.mft Manifest number: 348D Signing time: Sat 14 Jun 2025 14:33:59 +0000 Manifest this update: Sat 14 Jun 2025 14:33:58 +0000 Manifest next update: Sat 21 Jun 2025 14:33:58 +0000 Files and hashes: 1: hQaYWfujzd6OwbgaHgTdYFCzgRM.crl (hash: 5FBzzTCpoHxUrS7nUAMazif2ZFPnFb4b6mDnmn5l7Ac=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91509C4/4B8961381D8B11E28A33C7E508B02CD2/hQaYWfujzd6OwbgaHgTdYFCzgRM.crl rsync://rpki.apnic.net/member_repository/A91509C4/4B8961381D8B11E28A33C7E508B02CD2/hQaYWfujzd6OwbgaHgTdYFCzgRM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hQaYWfujzd6OwbgaHgTdYFCzgRM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 14:33:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13453 (0x348d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509C4, serialNumber=85069859FBA3CDDE8EC1B81A1E04DD6050B38113 Validity Not Before: Jun 14 14:33:58 2025 GMT Not After : Jun 21 14:33:58 2025 GMT Subject: CN=684d8857-4892 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:f0:96:61:85:61:78:29:68:b9:86:2a:5a:f9: c9:4f:22:31:de:1f:0a:4f:df:93:37:be:a8:7c:48: fa:66:1b:43:3e:4a:e2:fd:3b:2d:74:23:5f:ed:f0: b5:9f:24:60:20:48:f3:bd:d1:61:28:f7:66:7e:5f: 77:da:10:4c:eb:a3:fb:bd:66:25:c8:a7:98:dd:fd: d9:d1:3e:41:12:80:71:92:3d:fd:95:14:11:a1:1b: af:d0:a5:50:43:e7:93:7a:9c:15:29:63:0c:25:e2: b8:83:c8:cf:48:2b:35:97:5c:0c:31:d0:b7:55:3e: d5:f4:52:8a:5f:fb:1f:52:e1:1a:f1:4f:6d:5b:44: 8e:09:e7:ac:8b:e5:49:27:49:73:ec:f5:6a:a2:cd: 88:e4:dc:00:2b:17:64:f6:90:04:74:93:58:50:46: 86:00:30:03:a0:5d:a4:fe:d5:d1:48:4c:64:5b:e2: 91:d1:02:85:36:ad:20:f0:fc:66:ab:12:5a:6f:22: d4:cf:5d:25:c7:ce:db:b6:e2:72:45:1a:e5:67:f9: f2:82:1d:70:af:fc:ce:27:64:83:9e:1c:1d:5b:f6: e2:68:18:be:04:03:11:40:f8:af:04:4b:1d:11:a5: 7b:83:87:b7:ec:7a:10:65:1b:dc:4c:6b:1b:72:a5: 21:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:2B:E3:86:A7:B6:2F:71:1C:65:DA:ED:77:B5:47:7E:B4:E7:E7:14 X509v3 Authority Key Identifier: keyid:85:06:98:59:FB:A3:CD:DE:8E:C1:B8:1A:1E:04:DD:60:50:B3:81:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91509C4/4B8961381D8B11E28A33C7E508B02CD2/hQaYWfujzd6OwbgaHgTdYFCzgRM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hQaYWfujzd6OwbgaHgTdYFCzgRM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91509C4/4B8961381D8B11E28A33C7E508B02CD2/hQaYWfujzd6OwbgaHgTdYFCzgRM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:b2:19:15:ba:60:65:7b:1a:c9:c7:3c:f1:e4:47:a6:92:f5: 7c:5d:82:0c:92:12:87:3d:62:4d:61:bb:c5:15:3f:c7:53:5f: 6f:85:c8:a3:79:27:b4:d2:ae:4d:aa:5a:85:82:84:4e:6a:f9: dd:2a:cc:83:ef:3c:e4:cd:15:dc:c7:9e:2a:3b:ee:14:1c:8c: 39:83:76:44:75:da:5e:0a:d7:26:d5:9e:05:27:7b:2e:6f:e6: 5f:6d:b2:9d:57:13:88:f1:9b:ee:5d:08:56:26:08:aa:ff:ee: 7e:ba:d8:20:d0:27:34:a8:f5:11:de:b1:d4:a9:73:36:85:93: da:77:a1:35:97:9b:e3:e3:78:ed:0e:d9:4e:54:e3:bc:6d:71: 2a:cb:3f:b3:c1:e3:cb:cd:b4:79:05:f9:72:6e:63:49:37:5c: ce:54:b9:1f:85:af:6f:9b:32:cf:ba:ec:b7:46:e7:c1:b2:af: 56:db:ad:0e:66:86:24:0b:e5:21:a1:8f:07:8c:7a:8e:1f:02: 23:20:84:37:33:2b:0b:d2:70:fc:c4:29:d1:2c:fa:11:32:63: 60:bc:50:ff:13:be:ea:e5:21:7c:a8:c3:b1:f6:85:c2:0f:bc: d3:46:2a:06:64:2f:29:49:53:02:03:b3:2a:78:dc:c6:00:2c: c8:54:cb:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTA5QzQxMTAvBgNVBAUTKDg1MDY5ODU5RkJBM0NEREU4RUMxQjgxQTFFMDRERDYw NTBCMzgxMTMwHhcNMjUwNjE0MTQzMzU4WhcNMjUwNjIxMTQzMzU4WjAYMRYwFAYD VQQDEw02ODRkODg1Ny00ODkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqPCWYYVheClouYYqWvnJTyIx3h8KT9+TN76ofEj6ZhtDPkri/TstdCNf7fC1 nyRgIEjzvdFhKPdmfl932hBM66P7vWYlyKeY3f3Z0T5BEoBxkj39lRQRoRuv0KVQ Q+eTepwVKWMMJeK4g8jPSCs1l1wMMdC3VT7V9FKKX/sfUuEa8U9tW0SOCeesi+VJ J0lz7PVqos2I5NwAKxdk9pAEdJNYUEaGADADoF2k/tXRSExkW+KR0QKFNq0g8Pxm qxJabyLUz10lx87btuJyRRrlZ/nygh1wr/zOJ2SDnhwdW/biaBi+BAMRQPivBEsd EaV7g4e37HoQZRvcTGsbcqUhWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOor44an ti9xHGXa7Xe1R3605+cUMB8GA1UdIwQYMBaAFIUGmFn7o83ejsG4Gh4E3WBQs4ET MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDlDNC80Qjg5NjEzODFE OEIxMUUyOEEzM0M3RTUwOEIwMkNEMi9oUWFZV2Z1anpkNk93YmdhSGdUZFlGQ3pn Uk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hRYVlXZnVqemQ2T3diZ2FIZ1RkWUZDemdSTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDlDNC80Qjg5NjEzODFEOEIxMUUyOEEzM0M3RTUwOEIwMkNEMi9oUWFZV2Z1anpk Nk93YmdhSGdUZFlGQ3pnUk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAshkVumBlexrJxzzx5EemkvV8XYIMkhKHPWJNYbvFFT/HU19vhcij eSe00q5NqlqFgoROavndKsyD7zzkzRXcx54qO+4UHIw5g3ZEddpeCtcm1Z4FJ3su b+ZfbbKdVxOI8ZvuXQhWJgiq/+5+utgg0Cc0qPUR3rHUqXM2hZPad6E1l5vj43jt DtlOVOO8bXEqyz+zwePLzbR5BflybmNJN1zOVLkfha9vmzLPuuy3RufBsq9W260O ZoYkC+UhoY8HjHqOHwIjIIQ3MysL0nD8xCnRLPoRMmNgvFD/E77q5SF8qMOx9oXC D7zTRioGZC8pSVMCA7MqeNzGACzIVMsh -----END CERTIFICATE-----Generated at Sun Jun 15 08:47:25 2025 by rpki-client