$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3876/262F7ACA977211EBBF6A5368C4F9AE02/EnvYBqI30MrekRgrn8cmZZvi73E.mft File: EnvYBqI30MrekRgrn8cmZZvi73E.mft (raw, json) Hash identifier: 7nsHqMShAOwYpyqEy+eYUHJvHRis5VssHOD0Btk9VSQ= Subject key identifier: D5:07:74:0A:7F:AD:5F:B5:FF:2A:96:B6:D5:3E:2E:07:42:1C:E5:B7 Authority key identifier: 12:7B:D8:06:A2:37:D0:CA:DE:91:18:2B:9F:C7:26:65:9B:E2:EF:71 Certificate issuer: /CN=A91D3876/serialNumber=127BD806A237D0CADE91182B9FC726659BE2EF71 Certificate serial: 0629 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EnvYBqI30MrekRgrn8cmZZvi73E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3876/262F7ACA977211EBBF6A5368C4F9AE02/EnvYBqI30MrekRgrn8cmZZvi73E.mft Manifest number: 0623 Signing time: Thu 24 Apr 2025 22:33:56 +0000 Manifest this update: Thu 24 Apr 2025 22:33:55 +0000 Manifest next update: Thu 01 May 2025 22:33:55 +0000 Files and hashes: 1: EnvYBqI30MrekRgrn8cmZZvi73E.crl (hash: uIeU+v8UPj6B64YK7VP8a1HeAJbue2o1ftB1vNPGXtQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3876/262F7ACA977211EBBF6A5368C4F9AE02/EnvYBqI30MrekRgrn8cmZZvi73E.crl rsync://rpki.apnic.net/member_repository/A91D3876/262F7ACA977211EBBF6A5368C4F9AE02/EnvYBqI30MrekRgrn8cmZZvi73E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EnvYBqI30MrekRgrn8cmZZvi73E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:33:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1577 (0x629) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3876, serialNumber=127BD806A237D0CADE91182B9FC726659BE2EF71 Validity Not Before: Apr 24 22:33:55 2025 GMT Not After : May 1 22:33:55 2025 GMT Subject: CN=680abc53-dd08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:fe:29:48:4f:ca:3d:a5:c8:8e:bf:47:39:e8: 87:46:f0:3d:ce:91:ec:4c:eb:1a:aa:1e:66:a4:72: d9:4e:02:b4:f6:02:50:7d:c8:9d:ab:4c:8f:b3:e2: 63:9f:60:3a:42:db:6a:92:8b:82:57:fe:33:95:db: 34:11:8f:2f:ba:f1:41:bf:f3:d0:a4:63:55:7f:e8: f0:ba:29:11:fa:87:54:f6:8e:ce:e4:32:e9:14:12: 3c:59:46:1e:c2:74:8f:a6:5e:69:ed:fa:43:32:78: cb:fa:3e:a2:12:72:8d:5a:22:45:5f:62:f8:02:8a: 14:86:f1:60:60:2f:9f:83:b8:d6:62:0c:c3:f9:1d: c3:d5:03:3b:2c:ba:d8:25:24:c1:c4:69:d3:14:04: 64:84:e6:fc:70:16:8b:70:b4:e0:9f:c9:58:af:f4: 8f:48:0d:c4:b8:4f:8b:b7:5d:c0:39:38:bc:7c:be: 0a:cd:d4:00:aa:99:1d:59:d2:a4:e0:2d:2a:93:d4: c0:48:45:b3:8a:8b:00:f2:34:70:81:71:b8:a1:77: 88:9b:da:c1:fe:72:9a:07:c5:d5:d8:71:c4:3c:f5: 01:67:53:b8:4f:2f:c4:5c:63:e5:21:be:91:4c:6c: 61:9b:47:b1:a5:86:c3:fe:8b:5f:6e:87:dc:75:8a: a4:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:07:74:0A:7F:AD:5F:B5:FF:2A:96:B6:D5:3E:2E:07:42:1C:E5:B7 X509v3 Authority Key Identifier: keyid:12:7B:D8:06:A2:37:D0:CA:DE:91:18:2B:9F:C7:26:65:9B:E2:EF:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3876/262F7ACA977211EBBF6A5368C4F9AE02/EnvYBqI30MrekRgrn8cmZZvi73E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EnvYBqI30MrekRgrn8cmZZvi73E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3876/262F7ACA977211EBBF6A5368C4F9AE02/EnvYBqI30MrekRgrn8cmZZvi73E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:b2:42:57:20:1e:67:b4:67:8b:c4:7e:bc:6b:57:a4:68:a7: 63:cd:1a:0f:42:79:19:19:35:a5:36:20:a8:a7:30:29:61:0f: 53:52:b0:72:5e:fd:77:db:11:a4:18:88:7c:db:35:73:2f:15: 79:a4:99:ae:ff:4b:91:9c:d0:ac:f8:5e:f7:46:e5:e0:71:ab: 67:49:1a:7f:67:78:7b:d9:b0:db:cd:e8:b5:2d:99:2d:66:c1: f6:bb:30:84:23:bf:6d:ab:65:3a:72:38:19:63:67:83:b0:9e: 89:10:3a:6e:ef:15:d0:7a:00:d2:69:d3:e2:ee:ff:ef:fb:4e: 8d:0e:f6:5f:92:2a:da:1b:fd:f1:03:2d:47:e3:45:17:18:0d: a8:c7:d8:a0:b7:d0:3c:06:b6:d7:bd:3d:94:b6:8b:62:d5:25: 5b:77:c9:24:67:11:4b:de:47:fc:e8:f5:eb:60:67:0a:5e:4c: 17:a9:e6:93:13:b9:29:75:44:24:25:47:6a:b5:09:da:76:e4: 63:e1:f1:31:3b:59:07:23:2a:f0:3e:9b:bf:23:82:31:ef:a6: 63:7b:57:cb:d1:60:25:b9:55:ee:1c:26:81:ef:21:3e:95:fb: d5:6f:89:be:44:46:41:2f:54:79:f5:3f:96:2c:d7:54:59:10: 6a:05:d8:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBikwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDM4NzYxMTAvBgNVBAUTKDEyN0JEODA2QTIzN0QwQ0FERTkxMTgyQjlGQzcyNjY1 OUJFMkVGNzEwHhcNMjUwNDI0MjIzMzU1WhcNMjUwNTAxMjIzMzU1WjAYMRYwFAYD VQQDEw02ODBhYmM1My1kZDA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo/4pSE/KPaXIjr9HOeiHRvA9zpHsTOsaqh5mpHLZTgK09gJQfcidq0yPs+Jj n2A6QttqkouCV/4zlds0EY8vuvFBv/PQpGNVf+jwuikR+odU9o7O5DLpFBI8WUYe wnSPpl5p7fpDMnjL+j6iEnKNWiJFX2L4AooUhvFgYC+fg7jWYgzD+R3D1QM7LLrY JSTBxGnTFARkhOb8cBaLcLTgn8lYr/SPSA3EuE+Lt13AOTi8fL4KzdQAqpkdWdKk 4C0qk9TASEWziosA8jRwgXG4oXeIm9rB/nKaB8XV2HHEPPUBZ1O4Ty/EXGPlIb6R TGxhm0expYbD/otfbofcdYqkPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNUHdAp/ rV+1/yqWttU+LgdCHOW3MB8GA1UdIwQYMBaAFBJ72AaiN9DK3pEYK5/HJmWb4u9x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzg3Ni8yNjJGN0FDQTk3 NzIxMUVCQkY2QTUzNjhDNEY5QUUwMi9FbnZZQnFJMzBNcmVrUmdybjhjbVpadmk3 M0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VudllCcUkzME1yZWtSZ3JuOGNtWlp2aTczRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Mzg3Ni8yNjJGN0FDQTk3NzIxMUVCQkY2QTUzNjhDNEY5QUUwMi9FbnZZQnFJMzBN cmVrUmdybjhjbVpadmk3M0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNskJXIB5ntGeLxH68a1ekaKdjzRoPQnkZGTWlNiCopzApYQ9TUrBy Xv132xGkGIh82zVzLxV5pJmu/0uRnNCs+F73RuXgcatnSRp/Z3h72bDbzei1LZkt ZsH2uzCEI79tq2U6cjgZY2eDsJ6JEDpu7xXQegDSadPi7v/v+06NDvZfkiraG/3x Ay1H40UXGA2ox9igt9A8BrbXvT2Utoti1SVbd8kkZxFL3kf86PXrYGcKXkwXqeaT E7kpdUQkJUdqtQnaduRj4fExO1kHIyrwPpu/I4Ix76Zje1fL0WAluVXuHCaB7yE+ lfvVb4m+REZBL1R59T+WLNdUWRBqBdhz -----END CERTIFICATE-----Generated at Sat Apr 26 17:11:33 2025 by rpki-client