$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.mft File: kIDbUP8LdD_6MredDdXDGQIdbiQ.mft (raw, json) Hash identifier: kEWf0tQorb8xRKK8jBi/GdP14mytHiED/2ofDui0nP4= Subject key identifier: D8:3A:E7:D7:E4:5C:9B:80:4D:B0:48:48:5D:6F:08:FD:EA:64:2C:BC Authority key identifier: 90:80:DB:50:FF:0B:74:3F:FA:32:B7:9D:0D:D5:C3:19:02:1D:6E:24 Certificate issuer: /CN=A91B5377/serialNumber=9080DB50FF0B743FFA32B79D0DD5C319021D6E24 Certificate serial: 51 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIDbUP8LdD_6MredDdXDGQIdbiQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.mft Manifest number: 51 Signing time: Fri 13 Jun 2025 06:08:36 +0000 Manifest this update: Fri 13 Jun 2025 06:08:36 +0000 Manifest next update: Fri 20 Jun 2025 06:08:36 +0000 Files and hashes: 1: kIDbUP8LdD_6MredDdXDGQIdbiQ.crl (hash: fMFep6p64mB6b/2hr0vYeMWHyE5QcfkbSGgi1DAZknI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.crl rsync://rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIDbUP8LdD_6MredDdXDGQIdbiQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 06:08:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 81 (0x51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5377, serialNumber=9080DB50FF0B743FFA32B79D0DD5C319021D6E24 Validity Not Before: Jun 13 06:08:36 2025 GMT Not After : Jun 20 06:08:36 2025 GMT Subject: CN=684bc064-30a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:8d:2a:90:ab:ef:03:c6:71:33:20:20:b5:67: 16:02:9c:af:ee:2f:ae:c5:ed:aa:5c:41:0b:42:87: fe:00:bc:4c:6b:11:91:db:bf:d6:f8:c4:6e:7e:27: 4c:42:97:d4:a8:32:fe:38:25:4d:d1:b3:19:77:f5: 88:b7:73:94:a0:41:ac:5c:eb:63:11:f6:0d:93:12: a7:6b:9a:c3:ea:2c:3b:35:04:28:26:60:19:38:52: 5b:6d:9f:37:0e:7a:34:1a:ba:71:00:16:ce:6c:39: df:ec:6b:f6:e7:92:2c:41:14:61:0d:48:46:a7:cf: ad:a9:f0:a0:05:17:72:c7:94:93:ef:ba:3a:1c:7b: ac:a4:2d:30:8c:d4:ef:48:bb:be:8d:ed:66:a6:2c: 2f:a9:44:f2:c1:b1:b8:43:e8:f3:f5:0d:83:5d:f1: 94:ed:4b:73:e1:1d:8f:76:e4:d5:51:3c:5e:e4:dc: fa:8e:4f:a3:26:2d:1c:91:5f:c9:b7:dd:4b:73:e6: 18:d6:60:6c:ea:dc:1f:88:47:ad:0f:d4:93:e2:5e: 6d:0f:41:62:88:ad:9c:6f:8f:e8:a9:8e:eb:43:bc: a1:c0:0c:74:f3:36:59:2a:6b:43:1c:97:cd:3b:e9: 5d:7d:6d:7c:1f:2b:b5:5f:dd:a3:5a:5e:9d:6a:7b: 8f:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:3A:E7:D7:E4:5C:9B:80:4D:B0:48:48:5D:6F:08:FD:EA:64:2C:BC X509v3 Authority Key Identifier: keyid:90:80:DB:50:FF:0B:74:3F:FA:32:B7:9D:0D:D5:C3:19:02:1D:6E:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIDbUP8LdD_6MredDdXDGQIdbiQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:ce:d0:f2:8d:c1:96:d9:b6:4f:75:f7:0c:39:28:34:9f:9e: d0:53:4f:cc:db:24:cb:dd:7a:69:45:46:8b:7a:a5:9a:1d:2c: 19:35:5e:be:4c:1a:a1:89:4d:48:01:eb:4e:07:23:e8:ef:e7: 40:50:0e:4b:30:06:6e:06:d0:49:b9:d5:89:ef:e0:55:a5:70: 1f:ae:05:98:6e:56:4d:a0:38:08:54:e7:e6:4b:e0:a0:53:b5: b6:15:76:e5:0d:ce:8b:f4:28:a9:12:ac:de:c4:5d:56:f7:4a: 83:ce:3b:7f:70:cc:15:95:0f:0d:47:16:c8:2f:5c:53:41:70: 81:d8:d4:f0:f7:db:c8:48:24:c9:28:01:1c:57:64:aa:87:6c: 7d:ba:c4:eb:9b:02:48:0d:23:80:c7:31:72:e6:ac:3b:15:35: f7:ef:dd:fc:7c:82:b7:48:7b:84:b1:42:f6:a7:6d:16:14:3a: d2:76:89:28:aa:a7:c8:25:40:79:02:0c:0b:f9:4d:2a:a2:d3: bc:94:f5:c2:0b:72:59:5c:db:f4:ff:9c:1c:f9:9b:73:fe:6b: 2b:2c:84:bb:bc:4a:a7:c8:9e:d1:29:b4:4c:80:89:dc:91:07: bd:21:3a:5a:14:9f:be:d7:fe:21:31:22:08:23:cb:a9:e1:c7: 67:7f:60:16 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NTM3NzExMC8GA1UEBRMoOTA4MERCNTBGRjBCNzQzRkZBMzJCNzlEMERENUMzMTkw MjFENkUyNDAeFw0yNTA2MTMwNjA4MzZaFw0yNTA2MjAwNjA4MzZaMBgxFjAUBgNV BAMTDTY4NGJjMDY0LTMwYTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+jSqQq+8DxnEzICC1ZxYCnK/uL67F7apcQQtCh/4AvExrEZHbv9b4xG5+J0xC l9SoMv44JU3Rsxl39Yi3c5SgQaxc62MR9g2TEqdrmsPqLDs1BCgmYBk4UlttnzcO ejQaunEAFs5sOd/sa/bnkixBFGENSEanz62p8KAFF3LHlJPvujoce6ykLTCM1O9I u76N7WamLC+pRPLBsbhD6PP1DYNd8ZTtS3PhHY925NVRPF7k3PqOT6MmLRyRX8m3 3Utz5hjWYGzq3B+IR60P1JPiXm0PQWKIrZxvj+ipjutDvKHADHTzNlkqa0Mcl807 6V19bXwfK7Vf3aNaXp1qe4+vAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU2Drn1+Rc m4BNsEhIXW8I/epkLLwwHwYDVR0jBBgwFoAUkIDbUP8LdD/6MredDdXDGQIdbiQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI1Mzc3L0YzQzQ0QTc4Q0M1 ODExRUY5OTk4NUQ4NkM0RjlBRTAyL2tJRGJVUDhMZERfNk1yZWREZFhER1FJZGJp US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIva0lEYlVQOExkRF82TXJlZERkWERHUUlkYmlRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI1 Mzc3L0YzQzQ0QTc4Q0M1ODExRUY5OTk4NUQ4NkM0RjlBRTAyL2tJRGJVUDhMZERf Nk1yZWREZFhER1FJZGJpUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJbO0PKNwZbZtk919ww5KDSfntBTT8zbJMvdemlFRot6pZodLBk1Xr5M GqGJTUgB604HI+jv50BQDkswBm4G0Em51Ynv4FWlcB+uBZhuVk2gOAhU5+ZL4KBT tbYVduUNzov0KKkSrN7EXVb3SoPOO39wzBWVDw1HFsgvXFNBcIHY1PD328hIJMko ARxXZKqHbH26xOubAkgNI4DHMXLmrDsVNffv3fx8grdIe4SxQvanbRYUOtJ2iSiq p8glQHkCDAv5TSqi07yU9cILcllc2/T/nBz5m3P+aysshLu8SqfIntEptEyAidyR B70hOloUn77X/iExIggjy6nhx2d/YBY= -----END CERTIFICATE-----Generated at Sun Jun 15 08:39:48 2025 by rpki-client