$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.mft File: REhMnzpz9xlXK4vIoaH9nln6hPY.mft (raw, json) Hash identifier: vA2t+wMtG2Uspi2kSy/tApyID3Kmz9aZFPqcV+1fB9o= Subject key identifier: C7:C4:E5:FE:C3:78:A0:58:CB:A1:3E:B7:77:7C:C0:4F:6A:07:82:D5 Authority key identifier: 44:48:4C:9F:3A:73:F7:19:57:2B:8B:C8:A1:A1:FD:9E:59:FA:84:F6 Certificate issuer: /CN=A91BD73B/serialNumber=44484C9F3A73F719572B8BC8A1A1FD9E59FA84F6 Certificate serial: 348A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/REhMnzpz9xlXK4vIoaH9nln6hPY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.mft Manifest number: 348A Signing time: Sat 14 Jun 2025 15:16:10 +0000 Manifest this update: Sat 14 Jun 2025 15:16:10 +0000 Manifest next update: Sat 21 Jun 2025 15:16:10 +0000 Files and hashes: 1: REhMnzpz9xlXK4vIoaH9nln6hPY.crl (hash: xv9JlzBt4M5EK0DDB5P5Y2PmeTiKkzsTEa8zGNScgi4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.crl rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/REhMnzpz9xlXK4vIoaH9nln6hPY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 15:16:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13450 (0x348a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD73B, serialNumber=44484C9F3A73F719572B8BC8A1A1FD9E59FA84F6 Validity Not Before: Jun 14 15:16:10 2025 GMT Not After : Jun 21 15:16:10 2025 GMT Subject: CN=684d923a-b924 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:31:31:c0:ef:a4:79:7e:b5:4f:c2:38:ca:74: 14:15:74:6f:ac:cf:82:80:10:96:02:34:b4:e0:b9: 21:8c:0d:61:9c:e4:7c:a2:f3:84:48:65:a4:fd:e4: 6f:b6:6b:83:df:a5:97:31:79:0d:81:0a:07:86:a8: be:27:eb:1f:33:1d:93:8f:2b:32:5f:42:fa:6b:97: 51:27:bd:c2:76:db:f4:68:48:b8:bc:2c:6f:6e:33: 95:f8:81:65:18:c6:f8:a1:c9:03:4e:51:70:9f:0e: e9:e1:31:f2:d7:fd:0b:6d:39:d5:8b:bd:ad:98:28: b0:b8:be:d8:23:86:82:57:5b:e3:f5:25:9e:4c:0e: 28:98:03:b6:b7:b2:3e:75:38:e7:85:74:4f:0a:2b: 22:cd:50:8b:ad:d6:ce:21:21:9a:32:c8:95:f5:a2: 69:01:13:72:e7:18:d6:03:ce:b0:9b:62:a9:be:88: 8f:a7:24:db:12:26:27:8a:12:6a:ee:c2:5d:a4:6e: c4:02:72:89:b0:02:48:19:42:3f:28:ea:7e:13:2a: f9:6f:6c:20:84:e9:51:d6:1f:1e:dc:fd:b7:cb:f9: f6:4f:aa:09:e1:b9:22:8a:e7:57:00:c5:25:8d:37: 0b:ec:df:68:a4:bd:87:16:1d:90:8d:42:9b:fc:44: 6a:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:C4:E5:FE:C3:78:A0:58:CB:A1:3E:B7:77:7C:C0:4F:6A:07:82:D5 X509v3 Authority Key Identifier: keyid:44:48:4C:9F:3A:73:F7:19:57:2B:8B:C8:A1:A1:FD:9E:59:FA:84:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/REhMnzpz9xlXK4vIoaH9nln6hPY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:d7:86:d8:07:c5:5b:95:2e:49:04:ff:81:76:27:fa:27:27: 1e:a6:e2:53:d3:26:09:09:d9:32:5b:31:82:08:11:43:9a:f3: 73:12:99:69:a8:00:8e:e9:84:0d:a7:d2:35:e5:ad:35:7e:97: cf:80:95:6f:14:0a:10:f9:9b:76:d5:2e:f4:11:0e:8e:ef:28: e0:e9:c2:75:53:62:9c:4e:81:98:26:fb:94:99:2a:01:75:30: 7f:04:5b:83:c2:b7:07:ed:ed:88:30:7b:4a:5e:bc:24:71:36: 93:9a:f6:29:bb:28:87:5d:e6:df:40:97:f0:a3:01:26:ec:47: 11:cc:c1:f1:d8:52:8a:db:a3:6d:de:ef:88:e3:a7:87:50:4a: 99:b4:16:90:ba:fb:b5:eb:4c:be:9f:29:94:d1:34:f5:7e:e6: f4:41:54:9b:f2:66:69:ae:eb:8e:46:86:f5:64:fd:e8:38:e8: d9:d0:ac:7a:c0:d7:52:05:6f:b8:ce:19:98:a2:6b:46:1a:8c: ef:47:c8:27:92:5e:a5:5c:74:84:19:5c:db:80:52:60:8d:fe: bf:9c:48:56:1c:75:15:97:d9:e5:ee:eb:f8:1e:6b:4b:ae:20: 26:f7:67:ce:af:82:83:cc:1e:a9:86:ca:be:76:8f:96:83:d8: 3a:d1:3c:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkQ3M0IxMTAvBgNVBAUTKDQ0NDg0QzlGM0E3M0Y3MTk1NzJCOEJDOEExQTFGRDlF NTlGQTg0RjYwHhcNMjUwNjE0MTUxNjEwWhcNMjUwNjIxMTUxNjEwWjAYMRYwFAYD VQQDEw02ODRkOTIzYS1iOTI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxzExwO+keX61T8I4ynQUFXRvrM+CgBCWAjS04LkhjA1hnOR8ovOESGWk/eRv tmuD36WXMXkNgQoHhqi+J+sfMx2TjysyX0L6a5dRJ73Cdtv0aEi4vCxvbjOV+IFl GMb4ockDTlFwnw7p4THy1/0LbTnVi72tmCiwuL7YI4aCV1vj9SWeTA4omAO2t7I+ dTjnhXRPCisizVCLrdbOISGaMsiV9aJpARNy5xjWA86wm2KpvoiPpyTbEiYnihJq 7sJdpG7EAnKJsAJIGUI/KOp+Eyr5b2wghOlR1h8e3P23y/n2T6oJ4bkiiudXAMUl jTcL7N9opL2HFh2QjUKb/ERqnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMfE5f7D eKBYy6E+t3d8wE9qB4LVMB8GA1UdIwQYMBaAFERITJ86c/cZVyuLyKGh/Z5Z+oT2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRDczQi8yNkJERjMyQzFE QUExMUUyQkUyNUE2QTUwOEIwMkNEMi9SRWhNbnpwejl4bFhLNHZJb2FIOW5sbjZo UFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JFaE1uenB6OXhsWEs0dklvYUg5bmxuNmhQWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RDczQi8yNkJERjMyQzFEQUExMUUyQkUyNUE2QTUwOEIwMkNEMi9SRWhNbnpwejl4 bFhLNHZJb2FIOW5sbjZoUFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJ14bYB8VblS5JBP+Bdif6JycepuJT0yYJCdkyWzGCCBFDmvNzEplp qACO6YQNp9I15a01fpfPgJVvFAoQ+Zt21S70EQ6O7yjg6cJ1U2KcToGYJvuUmSoB dTB/BFuDwrcH7e2IMHtKXrwkcTaTmvYpuyiHXebfQJfwowEm7EcRzMHx2FKK26Nt 3u+I46eHUEqZtBaQuvu160y+nymU0TT1fub0QVSb8mZpruuORob1ZP3oOOjZ0Kx6 wNdSBW+4zhmYomtGGozvR8gnkl6lXHSEGVzbgFJgjf6/nEhWHHUVl9nl7uv4HmtL riAm92fOr4KDzB6phsq+do+Wg9g60TxA -----END CERTIFICATE-----Generated at Sat Jun 14 19:36:01 2025 by rpki-client