$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFAAC/53D55CD6354A11F0BA766E4CC4F9AE02/-L4s6ssxJNZg8w-KJzgGZIr0PIc.mft File: -L4s6ssxJNZg8w-KJzgGZIr0PIc.mft (raw, json) Hash identifier: k2Jp2Db4LkFaqb2fixqbo8j0BfmJ46vJyHDUb5R/xp0= Subject key identifier: 4C:AC:63:6F:31:EC:3F:FE:6E:CB:43:5F:F4:E8:D9:51:6B:AB:EE:06 Authority key identifier: F8:BE:2C:EA:CB:31:24:D6:60:F3:0F:8A:27:38:06:64:8A:F4:3C:87 Certificate issuer: /CN=A91AFAAC/serialNumber=F8BE2CEACB3124D660F30F8A273806648AF43C87 Certificate serial: 0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-L4s6ssxJNZg8w-KJzgGZIr0PIc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFAAC/53D55CD6354A11F0BA766E4CC4F9AE02/-L4s6ssxJNZg8w-KJzgGZIr0PIc.mft Manifest number: 0D Signing time: Fri 13 Jun 2025 06:58:23 +0000 Manifest this update: Fri 13 Jun 2025 06:58:23 +0000 Manifest next update: Fri 20 Jun 2025 06:58:23 +0000 Files and hashes: 1: -L4s6ssxJNZg8w-KJzgGZIr0PIc.crl (hash: OqsNCZm8V87K8LpmQD4zrwYH4/wQ72NRXcmA5m3R1VI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFAAC/53D55CD6354A11F0BA766E4CC4F9AE02/-L4s6ssxJNZg8w-KJzgGZIr0PIc.crl rsync://rpki.apnic.net/member_repository/A91AFAAC/53D55CD6354A11F0BA766E4CC4F9AE02/-L4s6ssxJNZg8w-KJzgGZIr0PIc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-L4s6ssxJNZg8w-KJzgGZIr0PIc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 06:58:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13 (0xd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFAAC, serialNumber=F8BE2CEACB3124D660F30F8A273806648AF43C87 Validity Not Before: Jun 13 06:58:23 2025 GMT Not After : Jun 20 06:58:23 2025 GMT Subject: CN=684bcc0f-3a46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:6c:6d:57:0e:ae:97:c3:49:bb:8e:17:c6:ba: 68:20:d3:7d:5b:0d:37:12:94:ab:87:00:be:b5:15: 23:5e:81:93:23:2d:f5:a0:94:10:92:92:9e:73:ea: fa:69:fe:47:73:8f:90:01:69:9f:e6:07:12:90:68: 6e:7d:7b:0e:ee:e6:54:55:e9:c1:f0:8e:1e:ad:06: 2b:d5:99:20:f9:40:38:91:92:0f:d0:ff:1d:fa:6e: f5:10:b0:07:d6:37:63:cc:a4:56:5b:0b:c5:a8:21: e6:f7:d2:5f:30:eb:9e:19:f3:4e:d8:02:46:72:d8: a3:c2:62:2d:bd:f3:bd:14:86:fc:97:05:e7:c2:cf: a8:31:26:41:3e:63:ff:25:0c:7f:62:a7:6f:42:ee: 51:7b:a5:98:65:2f:ba:11:f3:7e:8a:41:d9:19:5f: 88:3e:c5:6a:cb:e7:3e:a1:65:30:3c:5e:92:1a:01: 15:ba:76:46:f0:2a:dc:00:f6:8d:1b:8f:20:aa:4d: 2a:70:ff:48:5d:6f:36:1f:98:01:cb:bb:32:3b:f2: cd:e3:20:68:0f:2e:5d:42:96:92:58:d9:ef:76:f1: 98:3a:d0:43:01:44:dd:b2:6e:90:43:cd:68:e5:5f: d6:24:75:83:58:61:2d:03:f3:c2:c3:89:b8:33:f7: 99:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:AC:63:6F:31:EC:3F:FE:6E:CB:43:5F:F4:E8:D9:51:6B:AB:EE:06 X509v3 Authority Key Identifier: keyid:F8:BE:2C:EA:CB:31:24:D6:60:F3:0F:8A:27:38:06:64:8A:F4:3C:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFAAC/53D55CD6354A11F0BA766E4CC4F9AE02/-L4s6ssxJNZg8w-KJzgGZIr0PIc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-L4s6ssxJNZg8w-KJzgGZIr0PIc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFAAC/53D55CD6354A11F0BA766E4CC4F9AE02/-L4s6ssxJNZg8w-KJzgGZIr0PIc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:9b:e4:81:c4:d9:81:3a:88:73:c2:aa:6f:eb:f0:f6:56:e1: 93:69:b8:91:0c:ee:17:98:a1:7b:d4:de:10:ec:56:57:d0:76: 6d:72:df:02:a9:42:ff:1f:2a:31:3f:d3:8e:59:52:6d:30:7a: 0f:f0:3d:30:af:b3:f9:d0:c4:86:c9:1e:c1:3a:9c:2e:7f:aa: db:ac:ab:ee:81:09:9d:ce:c4:83:78:86:d8:8e:76:6f:80:4c: ce:57:04:bc:9f:96:c9:c5:b9:ac:55:ac:8c:2d:fb:aa:9a:65: 1d:75:63:a4:e7:66:b0:42:8c:30:e8:fc:62:64:c6:9f:20:4f: e7:04:94:8e:e2:59:57:70:44:e0:4e:8e:18:c3:29:52:a1:c6: 46:61:08:d0:9a:ae:ea:9b:a5:cc:a8:b2:07:8d:9f:f9:fc:62: d5:62:b1:54:00:45:ad:95:cb:97:0d:3f:8c:66:3e:ee:a8:4c: 1f:2c:a5:3c:40:92:c6:73:9e:1d:ec:bd:2c:59:f6:54:fd:d0: da:e7:ad:0a:62:f6:18:4b:57:a4:35:0c:e9:b4:a3:56:be:0f: ce:93:86:3d:f8:40:b0:8a:3c:27:a4:b2:48:49:90:a0:6d:0a: 99:94:4c:d6:fe:75:09:ee:03:7e:da:73:fb:0a:de:5c:33:fa: 9c:22:93:22 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB RkFBQzExMC8GA1UEBRMoRjhCRTJDRUFDQjMxMjRENjYwRjMwRjhBMjczODA2NjQ4 QUY0M0M4NzAeFw0yNTA2MTMwNjU4MjNaFw0yNTA2MjAwNjU4MjNaMBgxFjAUBgNV BAMTDTY4NGJjYzBmLTNhNDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDZbG1XDq6Xw0m7jhfGumgg031bDTcSlKuHAL61FSNegZMjLfWglBCSkp5z6vpp /kdzj5ABaZ/mBxKQaG59ew7u5lRV6cHwjh6tBivVmSD5QDiRkg/Q/x36bvUQsAfW N2PMpFZbC8WoIeb30l8w654Z807YAkZy2KPCYi29870UhvyXBefCz6gxJkE+Y/8l DH9ip29C7lF7pZhlL7oR836KQdkZX4g+xWrL5z6hZTA8XpIaARW6dkbwKtwA9o0b jyCqTSpw/0hdbzYfmAHLuzI78s3jIGgPLl1ClpJY2e928Zg60EMBRN2ybpBDzWjl X9YkdYNYYS0D88LDibgz95mVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUTKxjbzHs P/5uy0Nf9OjZUWur7gYwHwYDVR0jBBgwFoAU+L4s6ssxJNZg8w+KJzgGZIr0PIcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFGQUFDLzUzRDU1Q0Q2MzU0 QTExRjBCQTc2NkU0Q0M0RjlBRTAyLy1MNHM2c3N4Sk5aZzh3LUtKemdHWklyMFBJ Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvLUw0czZzc3hKTlpnOHctS0p6Z0daSXIwUEljLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFG QUFDLzUzRDU1Q0Q2MzU0QTExRjBCQTc2NkU0Q0M0RjlBRTAyLy1MNHM2c3N4Sk5a Zzh3LUtKemdHWklyMFBJYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAK+b5IHE2YE6iHPCqm/r8PZW4ZNpuJEM7heYoXvU3hDsVlfQdm1y3wKp Qv8fKjE/045ZUm0weg/wPTCvs/nQxIbJHsE6nC5/qtusq+6BCZ3OxIN4htiOdm+A TM5XBLyflsnFuaxVrIwt+6qaZR11Y6TnZrBCjDDo/GJkxp8gT+cElI7iWVdwROBO jhjDKVKhxkZhCNCaruqbpcyosgeNn/n8YtVisVQARa2Vy5cNP4xmPu6oTB8spTxA ksZznh3svSxZ9lT90NrnrQpi9hhLV6Q1DOm0o1a+D86Thj34QLCKPCekskhJkKBt CpmUTNb+dQnuA37ac/sK3lwz+pwikyI= -----END CERTIFICATE-----Generated at Sun Jun 15 08:43:05 2025 by rpki-client