$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8B2B/A465A49ACF9C11EEAF34465FC4F9AE02/L-aHDoJAvxJ46pnCMRal4KjSCZA.mft File: L-aHDoJAvxJ46pnCMRal4KjSCZA.mft (raw, json) Hash identifier: GT3fgMR7iKKjtSnD+9979Mg40rlhQhJmeHeV2B8PYoo= Subject key identifier: 91:CF:E7:73:E8:37:BA:B6:75:E5:69:20:3D:2B:30:55:7B:CC:24:1A Authority key identifier: 2F:E6:87:0E:82:40:BF:12:78:EA:99:C2:31:16:A5:E0:A8:D2:09:90 Certificate issuer: /CN=A91D8B2B/serialNumber=2FE6870E8240BF1278EA99C23116A5E0A8D20990 Certificate serial: F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L-aHDoJAvxJ46pnCMRal4KjSCZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8B2B/A465A49ACF9C11EEAF34465FC4F9AE02/L-aHDoJAvxJ46pnCMRal4KjSCZA.mft Manifest number: F4 Signing time: Fri 13 Jun 2025 04:11:11 +0000 Manifest this update: Fri 13 Jun 2025 04:11:10 +0000 Manifest next update: Fri 20 Jun 2025 04:11:10 +0000 Files and hashes: 1: L-aHDoJAvxJ46pnCMRal4KjSCZA.crl (hash: 3zWLxdIQAsN0fboUbYNmt44sgKTOx4ftwHEqyD/WjU0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8B2B/A465A49ACF9C11EEAF34465FC4F9AE02/L-aHDoJAvxJ46pnCMRal4KjSCZA.crl rsync://rpki.apnic.net/member_repository/A91D8B2B/A465A49ACF9C11EEAF34465FC4F9AE02/L-aHDoJAvxJ46pnCMRal4KjSCZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L-aHDoJAvxJ46pnCMRal4KjSCZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 04:11:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 244 (0xf4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8B2B, serialNumber=2FE6870E8240BF1278EA99C23116A5E0A8D20990 Validity Not Before: Jun 13 04:11:10 2025 GMT Not After : Jun 20 04:11:10 2025 GMT Subject: CN=684ba4de-f5dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:0b:1d:41:d7:61:02:59:ab:6d:35:eb:93:44: ad:40:29:22:09:14:ab:fc:7b:0d:b3:32:ed:67:d4: 75:0d:a2:33:0b:9e:42:b0:22:67:d1:88:62:38:ce: 17:1c:74:d5:0c:32:21:1b:c0:3b:6c:49:a7:9a:8b: 12:e1:15:05:b8:4f:72:b8:ab:93:50:60:8c:7d:6b: a9:f4:60:34:45:f7:2f:88:02:af:5a:2d:4b:65:67: fe:ba:4f:60:4d:05:56:d1:a1:86:ec:ee:a9:f5:ae: b6:5e:fc:3d:1c:00:a3:87:e1:f3:12:2a:73:74:71: 14:06:79:10:03:2b:8c:9e:63:26:84:07:07:f3:a1: 20:95:b5:91:86:d4:3b:72:29:0a:d1:ac:f5:0d:97: 4d:0f:7c:e1:4b:e4:5a:e8:86:c0:c9:21:8f:39:58: 12:bb:1c:b5:0b:7d:c5:ab:b7:7c:46:dc:7e:61:f5: f3:7c:3a:72:43:1b:31:8d:bf:4d:8a:de:1a:33:28: 5c:3f:87:ff:f3:a2:b5:33:d1:cf:37:9b:af:12:e7: 5f:88:f8:aa:e9:6f:2e:22:bb:c3:a7:92:89:08:7a: 7a:df:24:a6:14:a0:17:9d:73:dd:1f:76:de:71:1d: e2:e1:1f:a1:8a:4f:85:0d:66:81:84:a7:20:25:08: b6:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:CF:E7:73:E8:37:BA:B6:75:E5:69:20:3D:2B:30:55:7B:CC:24:1A X509v3 Authority Key Identifier: keyid:2F:E6:87:0E:82:40:BF:12:78:EA:99:C2:31:16:A5:E0:A8:D2:09:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8B2B/A465A49ACF9C11EEAF34465FC4F9AE02/L-aHDoJAvxJ46pnCMRal4KjSCZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L-aHDoJAvxJ46pnCMRal4KjSCZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8B2B/A465A49ACF9C11EEAF34465FC4F9AE02/L-aHDoJAvxJ46pnCMRal4KjSCZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:84:7b:24:48:89:4e:91:4a:55:13:5b:df:ef:e4:4d:18:ce: 9b:8f:fb:67:20:a2:b3:68:a6:6f:83:3d:0e:c9:0c:fc:5b:91: ba:6d:54:0f:74:b5:aa:10:a5:d6:bb:06:82:a1:4a:29:d9:a8: 25:db:cb:d6:3b:70:75:76:64:0e:4a:b1:13:dc:45:ad:86:20: fc:10:9f:6d:9e:6e:22:03:b9:42:f4:78:3f:32:ff:55:18:d2: 45:6a:f7:15:50:05:b5:62:b0:a7:4e:8e:11:3c:9c:6b:31:26: 5d:76:f0:09:71:a0:1f:f1:4c:e2:0a:73:c6:26:23:46:b0:ac: d0:cd:f0:74:e8:41:94:1c:e9:d2:49:b9:c0:b7:c3:d6:47:11: 34:c3:7d:03:ec:06:65:71:79:7d:59:05:eb:5a:4d:f7:bf:e0: 35:15:90:91:77:68:db:f5:ff:de:6b:c1:e6:f0:09:0b:34:3b: 3a:02:08:0d:7a:5a:9a:ee:a5:b3:e5:8e:42:e9:ae:ac:8a:23: d3:7d:54:c9:de:09:5c:d2:b0:3e:19:72:f7:33:cb:64:d3:1a: d0:21:b2:28:da:4a:9b:71:e4:34:8d:a7:47:5c:d6:ba:ad:22: ac:cb:26:79:09:e7:25:5e:63:d9:0f:54:98:df:55:3b:72:e7: 5b:2e:45:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhCMkIxMTAvBgNVBAUTKDJGRTY4NzBFODI0MEJGMTI3OEVBOTlDMjMxMTZBNUUw QThEMjA5OTAwHhcNMjUwNjEzMDQxMTEwWhcNMjUwNjIwMDQxMTEwWjAYMRYwFAYD VQQDEw02ODRiYTRkZS1mNWRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwgsdQddhAlmrbTXrk0StQCkiCRSr/HsNszLtZ9R1DaIzC55CsCJn0YhiOM4X HHTVDDIhG8A7bEmnmosS4RUFuE9yuKuTUGCMfWup9GA0RfcviAKvWi1LZWf+uk9g TQVW0aGG7O6p9a62Xvw9HACjh+HzEipzdHEUBnkQAyuMnmMmhAcH86EglbWRhtQ7 cikK0az1DZdND3zhS+Ra6IbAySGPOVgSuxy1C33Fq7d8Rtx+YfXzfDpyQxsxjb9N it4aMyhcP4f/86K1M9HPN5uvEudfiPiq6W8uIrvDp5KJCHp63ySmFKAXnXPdH3be cR3i4R+hik+FDWaBhKcgJQi2RQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJHP53Po N7q2deVpID0rMFV7zCQaMB8GA1UdIwQYMBaAFC/mhw6CQL8SeOqZwjEWpeCo0gmQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEIyQi9BNDY1QTQ5QUNG OUMxMUVFQUYzNDQ2NUZDNEY5QUUwMi9MLWFIRG9KQXZ4SjQ2cG5DTVJhbDRLalND WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0wtYUhEb0pBdnhKNDZwbkNNUmFsNEtqU0NaQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OEIyQi9BNDY1QTQ5QUNGOUMxMUVFQUYzNDQ2NUZDNEY5QUUwMi9MLWFIRG9KQXZ4 SjQ2cG5DTVJhbDRLalNDWkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXhHskSIlOkUpVE1vf7+RNGM6bj/tnIKKzaKZvgz0OyQz8W5G6bVQP dLWqEKXWuwaCoUop2agl28vWO3B1dmQOSrET3EWthiD8EJ9tnm4iA7lC9Hg/Mv9V GNJFavcVUAW1YrCnTo4RPJxrMSZddvAJcaAf8UziCnPGJiNGsKzQzfB06EGUHOnS SbnAt8PWRxE0w30D7AZlcXl9WQXrWk33v+A1FZCRd2jb9f/ea8Hm8AkLNDs6AggN elqa7qWz5Y5C6a6siiPTfVTJ3glc0rA+GXL3M8tk0xrQIbIo2kqbceQ0jadHXNa6 rSKsyyZ5CeclXmPZD1SY31U7cudbLkXb -----END CERTIFICATE-----Generated at Sun Jun 15 05:23:15 2025 by rpki-client