$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4C67/BF3FC2FA1DA111E2B3EC1F9408B02CD2/f_xaKedfnr4HnQUkfw3_DPmH8cI.mft File: f_xaKedfnr4HnQUkfw3_DPmH8cI.mft (raw, json) Hash identifier: HJeASmQRPSswqbPbcp01F9rTHxQo3U1kz4WJvZwyHew= Subject key identifier: 7B:83:88:D9:23:05:4E:02:4D:6E:F6:4D:85:81:DF:43:4E:83:3B:EE Authority key identifier: 7F:FC:5A:29:E7:5F:9E:BE:07:9D:05:24:7F:0D:FF:0C:F9:87:F1:C2 Certificate issuer: /CN=A91B4C67/serialNumber=7FFC5A29E75F9EBE079D05247F0DFF0CF987F1C2 Certificate serial: 348D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f_xaKedfnr4HnQUkfw3_DPmH8cI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4C67/BF3FC2FA1DA111E2B3EC1F9408B02CD2/f_xaKedfnr4HnQUkfw3_DPmH8cI.mft Manifest number: 348D Signing time: Sat 14 Jun 2025 15:04:49 +0000 Manifest this update: Sat 14 Jun 2025 15:04:48 +0000 Manifest next update: Sat 21 Jun 2025 15:04:48 +0000 Files and hashes: 1: f_xaKedfnr4HnQUkfw3_DPmH8cI.crl (hash: W+IGDKuroo8eE4jA3Al1HjrhNA+3OZsVcAodMxR4Rnk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4C67/BF3FC2FA1DA111E2B3EC1F9408B02CD2/f_xaKedfnr4HnQUkfw3_DPmH8cI.crl rsync://rpki.apnic.net/member_repository/A91B4C67/BF3FC2FA1DA111E2B3EC1F9408B02CD2/f_xaKedfnr4HnQUkfw3_DPmH8cI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f_xaKedfnr4HnQUkfw3_DPmH8cI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 15:04:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13453 (0x348d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4C67, serialNumber=7FFC5A29E75F9EBE079D05247F0DFF0CF987F1C2 Validity Not Before: Jun 14 15:04:48 2025 GMT Not After : Jun 21 15:04:48 2025 GMT Subject: CN=684d8f90-43a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:31:99:f4:13:d1:af:cf:73:9d:13:54:de:29: 53:9c:09:79:bc:23:71:be:b7:ce:62:cb:e8:5d:eb: 17:0c:b2:25:f5:22:81:61:96:c9:dc:27:b9:89:94: 73:67:46:29:bf:98:b7:3e:d0:c7:b1:86:8a:95:65: 8d:b5:df:98:36:ba:95:f3:2c:1c:6c:18:44:90:fd: 7a:0a:51:61:68:93:05:1e:31:dd:7b:6a:0b:7a:7f: b5:6f:dc:e6:6f:f6:a2:74:98:50:6c:24:f8:2f:2d: ab:8e:55:ff:d9:98:e0:7a:ce:5f:cd:ce:e3:d5:b5: 79:e3:15:87:09:ae:6b:82:d5:ed:31:2a:69:fa:80: ab:f4:27:3c:a9:cf:17:75:ed:7a:f9:f6:e3:a4:7e: 5f:3e:f7:f5:14:e3:33:b0:d0:7b:f2:60:1f:ae:2e: 91:62:96:b4:91:9b:64:5a:28:4e:6b:bb:7b:12:ea: ea:d4:6c:27:02:89:fa:f6:51:24:17:09:32:9f:cc: 54:1a:0c:13:a3:5e:ec:28:49:12:d5:89:29:15:91: 2b:88:58:62:46:46:38:38:50:73:6a:0b:fb:45:3f: 05:55:51:2d:2f:51:91:ee:c4:82:3d:de:46:49:a1: 68:53:55:2d:83:61:15:ae:73:79:0a:7f:9a:e9:25: 8d:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:83:88:D9:23:05:4E:02:4D:6E:F6:4D:85:81:DF:43:4E:83:3B:EE X509v3 Authority Key Identifier: keyid:7F:FC:5A:29:E7:5F:9E:BE:07:9D:05:24:7F:0D:FF:0C:F9:87:F1:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4C67/BF3FC2FA1DA111E2B3EC1F9408B02CD2/f_xaKedfnr4HnQUkfw3_DPmH8cI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f_xaKedfnr4HnQUkfw3_DPmH8cI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4C67/BF3FC2FA1DA111E2B3EC1F9408B02CD2/f_xaKedfnr4HnQUkfw3_DPmH8cI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:22:a1:3d:1c:3d:47:9e:15:c7:44:b6:c2:28:00:a2:63:b7: d6:67:16:42:b1:43:ea:4e:82:18:c1:5f:a9:80:b2:b0:73:19: 3a:17:fd:e4:ee:70:a8:32:d0:46:ac:c4:f5:ad:78:d3:52:95: 3f:d6:e5:0a:6b:ef:7c:fb:aa:89:c1:8a:08:73:c1:b7:de:41: e1:4c:1f:86:74:4a:fd:71:83:ae:9b:ae:64:04:5b:46:07:01: 1c:5d:27:69:41:57:77:e4:b4:3e:cf:c3:1d:90:e5:16:75:07: 66:0d:53:cb:7a:0e:49:dd:3d:80:b6:70:a2:48:2b:e1:e7:e4: 18:d4:a7:53:77:9c:c3:8a:36:ad:80:e6:31:e1:9b:9f:1e:91: 15:a9:ab:3f:fd:21:8e:65:92:8e:1c:b2:d8:c4:61:22:9e:bf: 4e:5d:73:c9:a2:ef:8a:e2:06:4d:09:7d:2b:25:1b:50:fa:43: 6a:be:8f:e3:47:e8:fe:15:5d:03:89:28:b3:8b:fc:5d:85:96: 2e:27:d8:7c:31:ee:0d:b0:16:f7:7f:fe:82:ae:7f:d1:14:0f: 21:b9:d8:cb:0a:8d:ac:ea:d8:f8:77:d1:3a:d2:ba:25:c3:ce: 52:52:ed:4b:4f:7b:e3:e7:cc:83:7f:5f:05:92:6a:6a:44:a1: 1f:03:09:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjRDNjcxMTAvBgNVBAUTKDdGRkM1QTI5RTc1RjlFQkUwNzlEMDUyNDdGMERGRjBD Rjk4N0YxQzIwHhcNMjUwNjE0MTUwNDQ4WhcNMjUwNjIxMTUwNDQ4WjAYMRYwFAYD VQQDEw02ODRkOGY5MC00M2ExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtjGZ9BPRr89znRNU3ilTnAl5vCNxvrfOYsvoXesXDLIl9SKBYZbJ3Ce5iZRz Z0Ypv5i3PtDHsYaKlWWNtd+YNrqV8ywcbBhEkP16ClFhaJMFHjHde2oLen+1b9zm b/aidJhQbCT4Ly2rjlX/2Zjges5fzc7j1bV54xWHCa5rgtXtMSpp+oCr9Cc8qc8X de16+fbjpH5fPvf1FOMzsNB78mAfri6RYpa0kZtkWihOa7t7Eurq1GwnAon69lEk Fwkyn8xUGgwTo17sKEkS1YkpFZEriFhiRkY4OFBzagv7RT8FVVEtL1GR7sSCPd5G SaFoU1Utg2EVrnN5Cn+a6SWN0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHuDiNkj BU4CTW72TYWB30NOgzvuMB8GA1UdIwQYMBaAFH/8WinnX56+B50FJH8N/wz5h/HC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNEM2Ny9CRjNGQzJGQTFE QTExMUUyQjNFQzFGOTQwOEIwMkNEMi9mX3hhS2VkZm5yNEhuUVVrZnczX0RQbUg4 Y0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZfeGFLZWRmbnI0SG5RVWtmdzNfRFBtSDhjSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NEM2Ny9CRjNGQzJGQTFEQTExMUUyQjNFQzFGOTQwOEIwMkNEMi9mX3hhS2VkZm5y NEhuUVVrZnczX0RQbUg4Y0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLIqE9HD1HnhXHRLbCKACiY7fWZxZCsUPqToIYwV+pgLKwcxk6F/3k 7nCoMtBGrMT1rXjTUpU/1uUKa+98+6qJwYoIc8G33kHhTB+GdEr9cYOum65kBFtG BwEcXSdpQVd35LQ+z8MdkOUWdQdmDVPLeg5J3T2AtnCiSCvh5+QY1KdTd5zDijat gOYx4ZufHpEVqas//SGOZZKOHLLYxGEinr9OXXPJou+K4gZNCX0rJRtQ+kNqvo/j R+j+FV0DiSizi/xdhZYuJ9h8Me4NsBb3f/6Crn/RFA8hudjLCo2s6tj4d9E60rol w85SUu1LT3vj58yDf18FkmpqRKEfAwlR -----END CERTIFICATE-----Generated at Sun Jun 15 05:13:55 2025 by rpki-client