$ rpki-client -vvf rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/4hlMc0IL1P2sKL9jO7OvjNcg0LE.mft File: 4hlMc0IL1P2sKL9jO7OvjNcg0LE.mft (raw, json) Hash identifier: oNO5rdo40PUHkn7Dw4CeTuGlfRcojKpFoWaZ5BXMwL4= Subject key identifier: F0:94:79:8A:25:09:AA:25:3C:35:1C:1B:8A:EC:78:E4:BA:8F:4D:18 Authority key identifier: E2:19:4C:73:42:0B:D4:FD:AC:28:BF:63:3B:B3:AF:8C:D7:20:D0:B1 Certificate issuer: /CN=A91536B7/serialNumber=E2194C73420BD4FDAC28BF633BB3AF8CD720D0B1 Certificate serial: 55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hlMc0IL1P2sKL9jO7OvjNcg0LE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/4hlMc0IL1P2sKL9jO7OvjNcg0LE.mft Manifest number: 503A Signing time: Thu 12 Jun 2025 16:21:27 +0000 Manifest this update: Thu 12 Jun 2025 16:21:27 +0000 Manifest next update: Thu 19 Jun 2025 16:21:27 +0000 Files and hashes: 1: 4hlMc0IL1P2sKL9jO7OvjNcg0LE.crl (hash: w+ewo3ohBxhgSbXU8Tbm+6JFptkAELF7aIpUsopTWK4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/4hlMc0IL1P2sKL9jO7OvjNcg0LE.crl rsync://rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/4hlMc0IL1P2sKL9jO7OvjNcg0LE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hlMc0IL1P2sKL9jO7OvjNcg0LE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 16:21:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 85 (0x55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91536B7, serialNumber=E2194C73420BD4FDAC28BF633BB3AF8CD720D0B1 Validity Not Before: Jun 12 16:21:27 2025 GMT Not After : Jun 19 16:21:27 2025 GMT Subject: CN=684afe87-8f4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:31:aa:58:ad:82:bc:23:27:fb:ea:83:fb:01: 88:b9:26:4a:c2:39:fc:40:fb:f4:02:f6:d0:91:ed: 66:9f:87:16:02:ba:52:24:c0:36:91:06:28:fd:6e: bf:a9:d5:fd:3c:eb:08:ad:c2:44:e4:be:8b:39:d8: 85:3a:d9:3b:67:4c:e5:72:ad:fb:82:be:6c:52:01: 5d:90:bf:ef:6d:23:b2:ad:11:ec:5d:4c:2d:a9:52: 1e:fd:8a:73:4b:da:cf:09:80:b3:69:a6:77:3e:23: 5e:bb:44:a9:95:e4:80:a2:30:0f:f6:c3:76:7c:8b: 8a:4d:e0:ef:3d:f5:1e:04:4b:5f:44:02:c3:46:00: 9a:47:9b:fd:86:e4:08:36:1d:fa:3c:d0:d4:a9:0c: 8e:92:41:a0:33:1c:07:19:77:82:68:2d:96:1f:6f: 89:3c:b9:69:08:b3:e2:c5:87:f2:73:8c:8f:81:08: d7:bd:c8:76:a8:20:8f:6b:41:3d:e4:cd:a3:70:a6: d1:06:db:6a:a0:a3:29:3d:ee:cb:85:35:f3:ba:84: d8:d9:b5:3a:a8:25:fe:24:6b:b3:81:bf:d2:37:15: 4d:3c:c2:fb:b0:37:de:72:a3:95:a9:78:6e:a3:f6: b0:62:07:fc:27:ef:26:5f:3e:c6:04:c4:5d:67:5a: ec:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:94:79:8A:25:09:AA:25:3C:35:1C:1B:8A:EC:78:E4:BA:8F:4D:18 X509v3 Authority Key Identifier: keyid:E2:19:4C:73:42:0B:D4:FD:AC:28:BF:63:3B:B3:AF:8C:D7:20:D0:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/4hlMc0IL1P2sKL9jO7OvjNcg0LE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hlMc0IL1P2sKL9jO7OvjNcg0LE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/4hlMc0IL1P2sKL9jO7OvjNcg0LE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:0f:bc:b2:ea:1c:46:1d:e6:33:9a:c8:72:9f:9a:12:b9:83: eb:04:ca:b1:20:5d:12:07:cf:e9:ce:55:40:b9:f9:08:0f:c3: 5f:3e:55:c6:0e:db:f6:ce:c8:42:16:74:00:d8:94:ac:1a:26: 79:6f:22:4d:e2:5e:66:1f:f1:07:1d:1c:19:9c:32:3b:dc:ed: 47:64:c6:28:37:3d:9d:ac:64:7b:a8:bd:f2:66:45:51:cb:e6: 51:79:68:57:c5:ff:75:c8:4c:52:96:80:f3:34:56:39:2a:7c: d5:46:3a:8c:d2:de:70:ce:7c:be:22:7c:58:92:89:ab:ff:fb: e5:24:19:5e:bb:5c:14:7f:ab:b8:13:bb:7b:e7:b4:a1:40:a7: 50:5f:cc:a7:d9:af:ca:a1:1f:01:8e:cd:75:4c:82:59:07:4a: e8:a3:82:86:2e:a9:ab:65:a7:66:f1:ae:9a:28:d1:76:f5:8e: bb:1d:ea:72:6d:40:fe:5c:c5:cf:1d:75:a3:ac:61:34:ac:75: e4:d9:8a:72:35:bb:78:6b:73:91:49:2d:89:5d:46:e7:1d:fb: 2e:63:c3:4a:95:5d:bd:df:87:82:4d:fd:83:d9:12:43:f2:e9: fb:e6:c0:19:4d:f1:95:93:b6:fd:45:0f:da:80:6c:ba:b6:4b: 28:b8:db:94 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 MzZCNzExMC8GA1UEBRMoRTIxOTRDNzM0MjBCRDRGREFDMjhCRjYzM0JCM0FGOENE NzIwRDBCMTAeFw0yNTA2MTIxNjIxMjdaFw0yNTA2MTkxNjIxMjdaMBgxFjAUBgNV BAMTDTY4NGFmZTg3LThmNGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDbMapYrYK8Iyf76oP7AYi5JkrCOfxA+/QC9tCR7WafhxYCulIkwDaRBij9br+p 1f086witwkTkvos52IU62TtnTOVyrfuCvmxSAV2Qv+9tI7KtEexdTC2pUh79inNL 2s8JgLNppnc+I167RKmV5ICiMA/2w3Z8i4pN4O899R4ES19EAsNGAJpHm/2G5Ag2 Hfo80NSpDI6SQaAzHAcZd4JoLZYfb4k8uWkIs+LFh/JzjI+BCNe9yHaoII9rQT3k zaNwptEG22qgoyk97suFNfO6hNjZtTqoJf4ka7OBv9I3FU08wvuwN95yo5WpeG6j 9rBiB/wn7yZfPsYExF1nWuzZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU8JR5iiUJ qiU8NRwbiux45LqPTRgwHwYDVR0jBBgwFoAU4hlMc0IL1P2sKL9jO7OvjNcg0LEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUzNkI3L0YxQ0QyN0I0NzNB RDExRTdBQ0JEMDI1RUM0RjlBRTAyLzRobE1jMElMMVAyc0tMOWpPN092ak5jZzBM RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNGhsTWMwSUwxUDJzS0w5ak83T3ZqTmNnMExFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUz NkI3L0YxQ0QyN0I0NzNBRDExRTdBQ0JEMDI1RUM0RjlBRTAyLzRobE1jMElMMVAy c0tMOWpPN092ak5jZzBMRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGUPvLLqHEYd5jOayHKfmhK5g+sEyrEgXRIHz+nOVUC5+QgPw18+VcYO 2/bOyEIWdADYlKwaJnlvIk3iXmYf8QcdHBmcMjvc7Udkxig3PZ2sZHuovfJmRVHL 5lF5aFfF/3XITFKWgPM0VjkqfNVGOozS3nDOfL4ifFiSiav/++UkGV67XBR/q7gT u3vntKFAp1BfzKfZr8qhHwGOzXVMglkHSuijgoYuqatlp2bxrpoo0Xb1jrsd6nJt QP5cxc8ddaOsYTSsdeTZinI1u3hrc5FJLYldRucd+y5jw0qVXb3fh4JN/YPZEkPy 6fvmwBlN8ZWTtv1FD9qAbLq2Syi425Q= -----END CERTIFICATE-----Generated at Sat Jun 14 17:32:23 2025 by rpki-client