$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft File: MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft (raw, json) Hash identifier: 1VykVbVjQ+rbo2QaQzdnpWzFjEsBfKcdz0yu4Lrz33s= Subject key identifier: ED:27:BA:DD:B7:5A:BB:25:9E:7F:EC:F6:99:5D:2C:8D:1B:28:CE:7E Authority key identifier: 32:70:F3:AC:D9:71:EE:DF:84:61:75:48:F7:2E:51:E2:2A:50:3C:F8 Certificate issuer: /CN=A91DA023/serialNumber=3270F3ACD971EEDF84617548F72E51E22A503CF8 Certificate serial: 3489 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft Manifest number: 3489 Signing time: Mon 16 Jun 2025 15:07:05 +0000 Manifest this update: Mon 16 Jun 2025 15:07:05 +0000 Manifest next update: Mon 23 Jun 2025 15:07:05 +0000 Files and hashes: 1: MnDzrNlx7t-EYXVI9y5R4ipQPPg.crl (hash: xPGp1PcWMeMtJ8w+8IIXQb3HpKrgvSfF5Rz27AmJgMk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.crl rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 15:07:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13449 (0x3489) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA023, serialNumber=3270F3ACD971EEDF84617548F72E51E22A503CF8 Validity Not Before: Jun 16 15:07:05 2025 GMT Not After : Jun 23 15:07:05 2025 GMT Subject: CN=68503319-3d33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:41:5e:38:f2:57:65:86:f0:fa:33:c4:56:58: f0:34:ca:66:a4:78:ca:7c:e9:6e:59:fa:10:1e:c7: 12:f5:ed:a6:ce:fe:f3:e1:f0:49:17:5d:03:ab:3a: 94:01:2e:f1:f7:fe:02:cd:83:32:f8:7f:de:67:70: 35:59:f3:b2:42:be:6b:e4:66:43:c0:ac:d6:a9:3e: 0c:8d:fe:43:11:ab:47:75:d2:96:8a:4c:a1:8f:e2: 21:dd:fb:e4:d2:c3:d0:f0:10:05:c6:41:46:e1:18: e6:1c:26:5e:09:37:b9:f9:7c:3e:4a:8e:f5:fc:b2: cd:ce:1a:4a:d7:5d:be:ca:cf:dd:a9:da:eb:20:c7: fa:09:2a:5e:64:d7:0f:be:2b:c4:ea:ca:09:1c:71: 9c:75:7d:b7:18:94:c2:a2:12:27:0d:9e:35:61:47: 21:8e:2b:e9:0d:81:a9:1f:87:de:1c:85:30:a3:16: 66:ff:f9:90:b8:99:58:78:b7:0c:d0:27:96:75:b6: 61:c3:9f:0d:e0:7b:a2:2c:23:6a:fe:be:d8:d2:d0: 58:d6:1c:a9:08:3a:e4:95:e3:bf:fe:e9:bc:d3:08: 5d:ad:09:3a:c0:44:38:c0:f4:cb:43:bd:68:9c:97: 8b:2d:91:4d:73:c2:88:02:10:af:36:fa:93:08:7c: d3:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:27:BA:DD:B7:5A:BB:25:9E:7F:EC:F6:99:5D:2C:8D:1B:28:CE:7E X509v3 Authority Key Identifier: keyid:32:70:F3:AC:D9:71:EE:DF:84:61:75:48:F7:2E:51:E2:2A:50:3C:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:7e:fe:96:32:27:60:80:ea:b9:3a:81:46:95:92:59:9f:15: da:b7:5f:bf:52:c3:85:6e:0b:34:68:1c:13:7b:95:7b:9a:da: 78:b0:b4:8e:a9:a7:b8:28:7c:e6:32:a1:65:b5:c8:2e:b4:6a: eb:8b:bf:8b:ea:0e:2a:75:4a:35:9d:b4:81:da:88:f5:92:18: 96:23:5b:41:e9:6e:66:d8:72:1a:29:76:d8:a3:2e:72:42:4d: c8:a4:cc:70:87:69:2e:c5:d6:05:3d:f1:53:e3:d9:b6:58:f2: 02:bd:18:53:21:25:70:62:52:e4:10:88:94:79:7e:c7:18:73: 69:91:82:72:f0:8b:a9:b0:8c:65:25:58:ca:3c:df:93:6e:3f: 1f:d0:6f:2c:85:d5:f0:73:00:eb:25:7b:15:df:7a:b1:f6:ce: db:a3:5c:4c:cc:af:c0:5e:5a:ef:64:1a:da:a4:01:87:f4:90: 7a:64:b0:f5:fe:3d:f4:76:8a:83:53:90:fe:cb:1f:84:69:07: c1:54:34:de:aa:0d:cb:8f:4d:96:e5:f3:10:0f:48:2b:54:3f: 6a:ad:e9:7c:e6:4e:06:b2:5b:8e:ff:fa:b4:75:f3:d9:fc:3f: b4:26:20:f8:b7:ac:4c:d0:07:0b:b8:1d:01:6c:a2:fe:d6:61: ce:60:0f:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEwMjMxMTAvBgNVBAUTKDMyNzBGM0FDRDk3MUVFREY4NDYxNzU0OEY3MkU1MUUy MkE1MDNDRjgwHhcNMjUwNjE2MTUwNzA1WhcNMjUwNjIzMTUwNzA1WjAYMRYwFAYD VQQDEw02ODUwMzMxOS0zZDMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5UFeOPJXZYbw+jPEVljwNMpmpHjKfOluWfoQHscS9e2mzv7z4fBJF10DqzqU AS7x9/4CzYMy+H/eZ3A1WfOyQr5r5GZDwKzWqT4Mjf5DEatHddKWikyhj+Ih3fvk 0sPQ8BAFxkFG4RjmHCZeCTe5+Xw+So71/LLNzhpK112+ys/dqdrrIMf6CSpeZNcP vivE6soJHHGcdX23GJTCohInDZ41YUchjivpDYGpH4feHIUwoxZm//mQuJlYeLcM 0CeWdbZhw58N4HuiLCNq/r7Y0tBY1hypCDrkleO//um80whdrQk6wEQ4wPTLQ71o nJeLLZFNc8KIAhCvNvqTCHzTdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO0nut23 Wrslnn/s9pldLI0bKM5+MB8GA1UdIwQYMBaAFDJw86zZce7fhGF1SPcuUeIqUDz4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTAyMy82RjE3MkRGMDFE QTAxMUUyQTFDM0E2OTEwOEIwMkNEMi9NbkR6ck5seDd0LUVZWFZJOXk1UjRpcFFQ UGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01uRHpyTmx4N3QtRVlYVkk5eTVSNGlwUVBQZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTAyMy82RjE3MkRGMDFEQTAxMUUyQTFDM0E2OTEwOEIwMkNEMi9NbkR6ck5seDd0 LUVZWFZJOXk1UjRpcFFQUGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsfv6WMidggOq5OoFGlZJZnxXat1+/UsOFbgs0aBwTe5V7mtp4sLSO qae4KHzmMqFltcgutGrri7+L6g4qdUo1nbSB2oj1khiWI1tB6W5m2HIaKXbYoy5y Qk3IpMxwh2kuxdYFPfFT49m2WPICvRhTISVwYlLkEIiUeX7HGHNpkYJy8IupsIxl JVjKPN+Tbj8f0G8shdXwcwDrJXsV33qx9s7bo1xMzK/AXlrvZBrapAGH9JB6ZLD1 /j30doqDU5D+yx+EaQfBVDTeqg3Lj02W5fMQD0grVD9qrel85k4GsluO//q0dfPZ /D+0JiD4t6xM0AcLuB0BbKL+1mHOYA/H -----END CERTIFICATE-----Generated at Tue Jun 17 20:15:13 2025 by rpki-client