$ rpki-client -vvf rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/lKFbyZFsWyyhjjWQUVAeVGQsCNM.mft File: lKFbyZFsWyyhjjWQUVAeVGQsCNM.mft (raw, json) Hash identifier: HI/+Eyh4t1CZ5+9iVOgsp4Wz8zXzGL0zQPirHJhvnn8= Subject key identifier: 89:F9:78:18:C8:B7:88:05:6A:4B:E9:10:8A:CD:2C:81:FC:37:64:65 Authority key identifier: 94:A1:5B:C9:91:6C:5B:2C:A1:8E:35:90:51:50:1E:54:64:2C:08:D3 Certificate issuer: /CN=A916B0A3/serialNumber=94A15BC9916C5B2CA18E359051501E54642C08D3 Certificate serial: 26C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKFbyZFsWyyhjjWQUVAeVGQsCNM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/lKFbyZFsWyyhjjWQUVAeVGQsCNM.mft Manifest number: 3236 Signing time: Sat 14 Jun 2025 15:39:08 +0000 Manifest this update: Sat 14 Jun 2025 15:39:07 +0000 Manifest next update: Sat 21 Jun 2025 15:39:07 +0000 Files and hashes: 1: lKFbyZFsWyyhjjWQUVAeVGQsCNM.crl (hash: GkW/kQWIOhens9dn2HK0RbVC0O8Ucz75c/uqhAiBL4w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/lKFbyZFsWyyhjjWQUVAeVGQsCNM.crl rsync://rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/lKFbyZFsWyyhjjWQUVAeVGQsCNM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKFbyZFsWyyhjjWQUVAeVGQsCNM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 15:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9921 (0x26c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B0A3, serialNumber=94A15BC9916C5B2CA18E359051501E54642C08D3 Validity Not Before: Jun 14 15:39:07 2025 GMT Not After : Jun 21 15:39:07 2025 GMT Subject: CN=684d979c-1b74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:52:30:63:45:93:1e:e9:c9:a9:8e:3c:79:d7: 77:7f:4f:59:0e:ff:6d:bf:4e:1b:18:1b:d1:fe:75: bc:48:06:25:4a:a4:e7:b4:6b:95:6c:e8:8c:71:e8: 3c:ff:96:9a:23:d8:af:8c:12:1d:7b:89:91:00:1a: a9:d0:56:31:49:3c:fb:52:e3:f6:53:f9:da:c5:a4: 37:bc:db:72:83:fd:5e:10:ee:0c:53:50:34:34:bf: ea:68:bd:b0:25:88:b6:bc:89:72:f9:bd:f5:0a:11: 12:66:8f:79:a3:92:22:37:cc:f2:61:46:14:5e:ac: a4:e3:fc:73:f3:b3:3d:2a:18:ac:b7:bc:5f:7a:a9: 6a:82:83:9d:20:50:7e:fe:55:69:b5:ca:5c:7a:5d: 73:4c:e8:29:f3:a5:9d:32:37:f9:9b:24:ed:07:14: 39:39:f4:e7:ac:27:21:68:be:43:9d:cb:66:cf:48: 3f:40:71:cf:5e:7e:6d:d0:3a:fb:13:dd:a1:6f:d5: d2:10:0f:cb:30:a7:21:34:03:3a:f4:47:38:00:a5: 3a:ce:da:f9:ae:cf:90:84:c5:ba:7d:1c:8b:32:31: 17:cc:03:74:1c:ae:be:45:64:00:2f:c2:7b:81:ac: d3:96:55:2e:64:da:46:6a:55:84:f7:03:98:2c:8a: e5:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:F9:78:18:C8:B7:88:05:6A:4B:E9:10:8A:CD:2C:81:FC:37:64:65 X509v3 Authority Key Identifier: keyid:94:A1:5B:C9:91:6C:5B:2C:A1:8E:35:90:51:50:1E:54:64:2C:08:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/lKFbyZFsWyyhjjWQUVAeVGQsCNM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKFbyZFsWyyhjjWQUVAeVGQsCNM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/lKFbyZFsWyyhjjWQUVAeVGQsCNM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:41:f4:0a:16:55:39:b5:3b:47:2e:e9:ad:e8:6c:fa:83:d9: e8:2c:3b:b0:0d:39:be:b4:f2:81:8c:40:74:40:b9:af:b3:ef: 81:09:8e:39:d9:da:f7:29:7c:8e:48:8c:a4:eb:ab:7a:1f:c4: c8:f4:c9:d2:bc:25:2e:10:46:f7:bb:e6:bb:bc:75:4b:21:b6: f0:e7:ac:84:de:5f:ab:36:46:2b:4a:93:cb:47:34:4d:75:e0: cc:31:e5:e8:64:40:8c:d1:2e:9d:31:55:fc:2d:e8:de:fb:78: 52:b1:53:c1:af:54:da:fc:ac:97:8a:f9:34:5d:a8:e5:94:14: f0:45:21:bd:2e:c3:d6:b7:6b:09:13:23:b1:8b:2a:30:d0:6e: 80:1b:08:23:9c:b6:91:1b:f7:8b:fd:3f:22:3a:d4:c3:df:d6: e2:3d:cd:3a:39:fc:5c:41:78:c3:20:f7:3f:6d:98:ba:37:2f: 1a:ea:7d:e5:1c:1c:25:ab:2e:a5:f4:b8:23:6d:84:e5:39:b6: b6:d0:c0:6b:a7:49:94:0c:d6:46:3d:86:1e:d0:ee:bc:ca:e9: b9:42:c1:03:c9:a6:fd:34:64:ab:2f:2b:6b:34:ab:7e:7f:27: 7e:f8:e3:21:4e:e4:0b:d2:37:75:78:0c:de:5f:b7:cd:73:de: 44:28:59:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJsEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIwQTMxMTAvBgNVBAUTKDk0QTE1QkM5OTE2QzVCMkNBMThFMzU5MDUxNTAxRTU0 NjQyQzA4RDMwHhcNMjUwNjE0MTUzOTA3WhcNMjUwNjIxMTUzOTA3WjAYMRYwFAYD VQQDEw02ODRkOTc5Yy0xYjc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAolIwY0WTHunJqY48edd3f09ZDv9tv04bGBvR/nW8SAYlSqTntGuVbOiMceg8 /5aaI9ivjBIde4mRABqp0FYxSTz7UuP2U/naxaQ3vNtyg/1eEO4MU1A0NL/qaL2w JYi2vIly+b31ChESZo95o5IiN8zyYUYUXqyk4/xz87M9Khist7xfeqlqgoOdIFB+ /lVptcpcel1zTOgp86WdMjf5myTtBxQ5OfTnrCchaL5Dnctmz0g/QHHPXn5t0Dr7 E92hb9XSEA/LMKchNAM69Ec4AKU6ztr5rs+QhMW6fRyLMjEXzAN0HK6+RWQAL8J7 gazTllUuZNpGalWE9wOYLIrlwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIn5eBjI t4gFakvpEIrNLIH8N2RlMB8GA1UdIwQYMBaAFJShW8mRbFssoY41kFFQHlRkLAjT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjBBMy83MUFERTFGRUQ4 MjgxMUU0QUE3QzhBNDdDNEY5QUUwMi9sS0ZieVpGc1d5eWhqaldRVVZBZVZHUXND Tk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xLRmJ5WkZzV3l5aGpqV1FVVkFlVkdRc0NOTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjBBMy83MUFERTFGRUQ4MjgxMUU0QUE3QzhBNDdDNEY5QUUwMi9sS0ZieVpGc1d5 eWhqaldRVVZBZVZHUXNDTk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4QfQKFlU5tTtHLumt6Gz6g9noLDuwDTm+tPKBjEB0QLmvs++BCY45 2dr3KXyOSIyk66t6H8TI9MnSvCUuEEb3u+a7vHVLIbbw56yE3l+rNkYrSpPLRzRN deDMMeXoZECM0S6dMVX8Leje+3hSsVPBr1Ta/KyXivk0XajllBTwRSG9LsPWt2sJ EyOxiyow0G6AGwgjnLaRG/eL/T8iOtTD39biPc06OfxcQXjDIPc/bZi6Ny8a6n3l HBwlqy6l9LgjbYTlOba20MBrp0mUDNZGPYYe0O68yum5QsEDyab9NGSrLytrNKt+ fyd++OMhTuQL0jd1eAzeX7fNc95EKFnK -----END CERTIFICATE-----Generated at Sun Jun 15 08:36:42 2025 by rpki-client