$ rpki-client -vvf rpki.apnic.net/member_repository/A917B633/D9165EBA86D911EF8B8BEB1FC4F9AE02/5g4hQdcdufyJ-r-1_a0Dct-jN9A.mft File: 5g4hQdcdufyJ-r-1_a0Dct-jN9A.mft (raw, json) Hash identifier: +CFeE2p8KyAz1AH/lMAH0g4VehdxS2o7MjO6BwObLaI= Subject key identifier: 2C:04:9C:54:B0:94:2D:91:CF:E6:89:3B:FD:B7:3D:D2:AE:AA:5A:57 Authority key identifier: E6:0E:21:41:D7:1D:B9:FC:89:FA:BF:B5:FD:AD:03:72:DF:A3:37:D0 Certificate issuer: /CN=A917B633/serialNumber=E60E2141D71DB9FC89FABFB5FDAD0372DFA337D0 Certificate serial: 80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5g4hQdcdufyJ-r-1_a0Dct-jN9A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B633/D9165EBA86D911EF8B8BEB1FC4F9AE02/5g4hQdcdufyJ-r-1_a0Dct-jN9A.mft Manifest number: 80 Signing time: Sun 15 Jun 2025 05:44:57 +0000 Manifest this update: Sun 15 Jun 2025 05:44:57 +0000 Manifest next update: Sun 22 Jun 2025 05:44:57 +0000 Files and hashes: 1: 5g4hQdcdufyJ-r-1_a0Dct-jN9A.crl (hash: 43Hgp0LBcjcMUVc9dR0NXxp2hZWY3ocvwd+2o+1vEMY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B633/D9165EBA86D911EF8B8BEB1FC4F9AE02/5g4hQdcdufyJ-r-1_a0Dct-jN9A.crl rsync://rpki.apnic.net/member_repository/A917B633/D9165EBA86D911EF8B8BEB1FC4F9AE02/5g4hQdcdufyJ-r-1_a0Dct-jN9A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5g4hQdcdufyJ-r-1_a0Dct-jN9A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 128 (0x80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B633, serialNumber=E60E2141D71DB9FC89FABFB5FDAD0372DFA337D0 Validity Not Before: Jun 15 05:44:57 2025 GMT Not After : Jun 22 05:44:57 2025 GMT Subject: CN=684e5dd9-43ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:42:78:ad:f5:00:a2:dc:5a:d1:48:4a:13:d4: d2:aa:fa:20:1e:a5:41:d0:5d:e9:f7:ef:e5:fe:9c: 32:e3:92:e4:ff:83:5e:c8:3f:63:e8:3b:34:f6:b5: a4:be:4e:17:24:e9:a7:3c:1b:8e:3b:1b:27:25:4b: 59:67:b0:c1:38:12:a5:f5:dc:0b:06:42:57:f0:4a: 6a:71:4e:cb:41:e4:b3:63:73:6c:29:d6:45:8f:2d: 2c:da:cb:81:0f:fd:ea:e2:c8:1f:bc:d5:3c:c0:d8: c1:1d:0e:85:29:35:65:92:49:97:c2:6d:16:d3:b6: a8:cb:77:d6:1b:70:52:82:1f:0b:b1:e8:4d:84:7c: b3:8f:13:ed:1a:1c:e3:ba:29:f4:a8:39:06:90:08: 7e:69:ea:94:90:39:69:29:c4:c2:f6:4f:76:21:ca: d4:d1:47:67:eb:a2:60:a8:4b:cc:62:82:b1:f8:6d: 31:d5:a9:04:4e:68:fa:fe:b0:b5:d0:bf:14:aa:2b: 8e:ed:7e:c4:c5:a9:0a:bd:05:1f:62:89:be:5d:e1: 77:a6:6b:1a:83:72:58:9d:1f:97:7b:74:f7:69:5c: 73:10:30:ef:06:52:ec:0d:5d:e6:22:1d:e6:94:41: 89:84:44:51:79:97:f5:84:54:54:3a:a4:c9:e7:d0: d6:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:04:9C:54:B0:94:2D:91:CF:E6:89:3B:FD:B7:3D:D2:AE:AA:5A:57 X509v3 Authority Key Identifier: keyid:E6:0E:21:41:D7:1D:B9:FC:89:FA:BF:B5:FD:AD:03:72:DF:A3:37:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B633/D9165EBA86D911EF8B8BEB1FC4F9AE02/5g4hQdcdufyJ-r-1_a0Dct-jN9A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5g4hQdcdufyJ-r-1_a0Dct-jN9A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B633/D9165EBA86D911EF8B8BEB1FC4F9AE02/5g4hQdcdufyJ-r-1_a0Dct-jN9A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:f0:b4:b6:93:9c:32:1c:90:c9:e7:f2:45:a4:e2:c8:c8:ec: f7:89:78:1a:c6:c4:44:46:93:66:58:d4:91:b0:00:cf:e5:b6: 2d:9d:44:c7:c0:39:f3:93:f6:99:d4:a3:cf:e2:9e:1f:73:83: 52:2a:db:e8:18:ea:6b:fa:5b:53:10:6c:3c:75:39:f6:3a:58: ff:d1:0c:6a:56:ac:58:9c:0d:0b:42:0d:e7:2f:6b:46:b0:df: de:3f:c3:19:f4:69:f6:34:a2:6e:9e:51:68:7b:f9:6f:d5:5b: 5d:67:84:86:98:e9:56:03:95:67:d6:ee:56:3b:d9:2c:f8:a1: da:43:08:df:6d:6c:d5:5a:a5:58:a7:55:b7:92:e3:9c:8e:a4: 11:17:2e:68:ec:59:65:a6:40:f0:5f:e9:70:68:9f:d2:47:5e: cc:93:51:7b:9a:be:98:a8:3b:ff:e3:09:63:b2:81:aa:88:0f: fb:12:3c:f6:3a:04:a1:cf:b8:f7:e8:87:54:9a:ff:c1:23:d2: 7a:05:3b:fe:31:f4:91:0e:17:56:cb:59:de:1c:02:ee:3d:98: 72:d9:2f:b1:1d:79:a7:41:15:9d:9b:37:33:1d:4c:b9:08:81: a5:af:f6:3b:10:49:ad:0e:37:d3:8c:da:1f:e1:b7:69:01:34: 2e:bf:df:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I2MzMxMTAvBgNVBAUTKEU2MEUyMTQxRDcxREI5RkM4OUZBQkZCNUZEQUQwMzcy REZBMzM3RDAwHhcNMjUwNjE1MDU0NDU3WhcNMjUwNjIyMDU0NDU3WjAYMRYwFAYD VQQDEw02ODRlNWRkOS00M2FjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsUJ4rfUAotxa0UhKE9TSqvogHqVB0F3p9+/l/pwy45Lk/4NeyD9j6Ds09rWk vk4XJOmnPBuOOxsnJUtZZ7DBOBKl9dwLBkJX8EpqcU7LQeSzY3NsKdZFjy0s2suB D/3q4sgfvNU8wNjBHQ6FKTVlkkmXwm0W07aoy3fWG3BSgh8LsehNhHyzjxPtGhzj uin0qDkGkAh+aeqUkDlpKcTC9k92IcrU0Udn66JgqEvMYoKx+G0x1akETmj6/rC1 0L8UqiuO7X7ExakKvQUfYom+XeF3pmsag3JYnR+Xe3T3aVxzEDDvBlLsDV3mIh3m lEGJhERReZf1hFRUOqTJ59DW2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCwEnFSw lC2Rz+aJO/23PdKuqlpXMB8GA1UdIwQYMBaAFOYOIUHXHbn8ifq/tf2tA3LfozfQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjYzMy9EOTE2NUVCQTg2 RDkxMUVGOEI4QkVCMUZDNEY5QUUwMi81ZzRoUWRjZHVmeUotci0xX2EwRGN0LWpO OUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVnNGhRZGNkdWZ5Si1yLTFfYTBEY3Qtak45QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjYzMy9EOTE2NUVCQTg2RDkxMUVGOEI4QkVCMUZDNEY5QUUwMi81ZzRoUWRjZHVm eUotci0xX2EwRGN0LWpOOUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBd8LS2k5wyHJDJ5/JFpOLIyOz3iXgaxsRERpNmWNSRsADP5bYtnUTH wDnzk/aZ1KPP4p4fc4NSKtvoGOpr+ltTEGw8dTn2Olj/0QxqVqxYnA0LQg3nL2tG sN/eP8MZ9Gn2NKJunlFoe/lv1VtdZ4SGmOlWA5Vn1u5WO9ks+KHaQwjfbWzVWqVY p1W3kuOcjqQRFy5o7FllpkDwX+lwaJ/SR17Mk1F7mr6YqDv/4wljsoGqiA/7Ejz2 OgShz7j36IdUmv/BI9J6BTv+MfSRDhdWy1neHALuPZhy2S+xHXmnQRWdmzczHUy5 CIGlr/Y7EEmtDjfTjNof4bdpATQuv99Q -----END CERTIFICATE-----Generated at Sun Jun 15 08:46:35 2025 by rpki-client