$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD38B/A1AB2ABCBA8911EF9B338512C4F9AE02/L2sefhQB3gCsju23qFkNA9xUD3g.mft File: L2sefhQB3gCsju23qFkNA9xUD3g.mft (raw, json) Hash identifier: IfZ8F4UoJjxG2ow0Y3YO5JIP5StjPPsWE+ftR8jjG1M= Subject key identifier: 77:2D:8A:7D:48:93:D5:C0:99:D4:7A:6E:B1:56:FE:B4:C9:13:B7:12 Authority key identifier: 2F:6B:1E:7E:14:01:DE:00:AC:8E:ED:B7:A8:59:0D:03:DC:54:0F:78 Certificate issuer: /CN=A91DD38B/serialNumber=2F6B1E7E1401DE00AC8EEDB7A8590D03DC540F78 Certificate serial: 5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2sefhQB3gCsju23qFkNA9xUD3g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD38B/A1AB2ABCBA8911EF9B338512C4F9AE02/L2sefhQB3gCsju23qFkNA9xUD3g.mft Manifest number: 5D Signing time: Fri 13 Jun 2025 06:02:18 +0000 Manifest this update: Fri 13 Jun 2025 06:02:18 +0000 Manifest next update: Fri 20 Jun 2025 06:02:18 +0000 Files and hashes: 1: L2sefhQB3gCsju23qFkNA9xUD3g.crl (hash: yDsZxPU32sPmlwDXMe7SjVFb/8IKu8kXTY5zwOECLOY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD38B/A1AB2ABCBA8911EF9B338512C4F9AE02/L2sefhQB3gCsju23qFkNA9xUD3g.crl rsync://rpki.apnic.net/member_repository/A91DD38B/A1AB2ABCBA8911EF9B338512C4F9AE02/L2sefhQB3gCsju23qFkNA9xUD3g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2sefhQB3gCsju23qFkNA9xUD3g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 06:02:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 93 (0x5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD38B, serialNumber=2F6B1E7E1401DE00AC8EEDB7A8590D03DC540F78 Validity Not Before: Jun 13 06:02:18 2025 GMT Not After : Jun 20 06:02:18 2025 GMT Subject: CN=684bbeea-00f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:da:35:92:30:de:be:4b:3c:75:71:73:52:82: 42:2a:da:aa:25:18:b6:2e:f5:71:95:77:98:84:d9: da:7b:25:a5:4c:9c:5d:96:6c:d5:bd:5b:71:9c:0d: eb:4e:93:42:51:e3:90:e9:e5:96:1c:06:42:e5:72: ff:6d:92:d7:36:a3:c4:fb:0c:55:11:ad:d1:a2:02: b7:5a:8f:45:37:ee:e1:b4:f0:65:09:e4:a6:80:53: 70:82:d9:00:ca:aa:61:08:5f:bb:7f:b0:1d:0d:27: 1a:a1:40:c4:11:d6:f2:5d:09:56:ce:85:b3:1f:a5: cb:5d:a6:8c:11:20:a4:bb:77:ee:b5:a1:e3:ba:1d: 73:1e:24:43:11:27:a6:5c:e3:f7:88:4d:ca:aa:39: 3d:c8:1b:ab:34:d2:e6:a2:84:70:25:1c:28:54:68: e1:b2:ee:8f:ff:82:97:de:6f:bf:81:ae:38:a7:66: 93:e9:3e:79:14:59:37:10:5e:22:dc:c0:a7:1e:2b: 33:1d:29:79:b8:66:56:9b:f7:e9:a3:f6:b5:f5:ad: fe:e6:9e:22:15:57:97:c6:15:6c:db:8a:90:39:f2: ec:b7:8d:b0:8f:77:2c:7c:6c:81:db:f0:5c:e2:90: ab:b3:00:cb:16:a9:a1:cc:e0:67:2a:43:38:f3:52: 58:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:2D:8A:7D:48:93:D5:C0:99:D4:7A:6E:B1:56:FE:B4:C9:13:B7:12 X509v3 Authority Key Identifier: keyid:2F:6B:1E:7E:14:01:DE:00:AC:8E:ED:B7:A8:59:0D:03:DC:54:0F:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD38B/A1AB2ABCBA8911EF9B338512C4F9AE02/L2sefhQB3gCsju23qFkNA9xUD3g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2sefhQB3gCsju23qFkNA9xUD3g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD38B/A1AB2ABCBA8911EF9B338512C4F9AE02/L2sefhQB3gCsju23qFkNA9xUD3g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:89:f3:a2:58:a8:82:15:5b:ce:15:a5:03:64:a2:39:68:99: 81:e5:a4:08:08:93:a7:90:9b:53:19:a9:b7:86:e9:47:17:7b: 78:2f:c5:28:08:95:cc:a5:0e:53:a0:4f:c8:a6:fe:71:83:c6: 59:23:78:47:8f:7f:f7:ad:6a:d2:f7:2d:2a:1f:71:58:b5:f0: dd:0e:7c:77:a9:a5:e0:3f:98:01:13:a0:02:b8:43:38:24:b6: d8:df:76:91:e3:e6:7f:8c:3a:a0:96:53:ae:b0:5c:61:a4:7f: 6b:10:fb:98:09:ce:f6:df:e6:00:e5:12:4a:3a:2b:c6:16:4b: c1:ce:a0:b8:e1:bf:f8:7b:09:55:af:9d:22:88:d8:65:a0:11: 0c:fa:f4:df:c9:5b:58:be:1c:25:fe:2d:59:c8:53:14:45:66: 06:18:56:fd:1d:63:bc:bb:74:79:8f:7f:c2:54:f8:e5:a1:e1: 36:8c:3d:43:08:a0:a6:5a:5e:e4:96:04:55:5f:de:55:cf:8f: eb:21:5f:0e:69:7d:c5:dc:6f:44:6a:32:17:d7:e1:ed:d4:30: 46:d8:05:82:8f:15:d5:b7:11:7c:30:b6:d6:58:32:cb:13:b0: de:d4:eb:3e:c8:f1:46:37:5f:6e:a8:b9:a0:fd:df:08:40:07: 25:0b:17:cf -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE RDM4QjExMC8GA1UEBRMoMkY2QjFFN0UxNDAxREUwMEFDOEVFREI3QTg1OTBEMDNE QzU0MEY3ODAeFw0yNTA2MTMwNjAyMThaFw0yNTA2MjAwNjAyMThaMBgxFjAUBgNV BAMTDTY4NGJiZWVhLTAwZjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDr2jWSMN6+Szx1cXNSgkIq2qolGLYu9XGVd5iE2dp7JaVMnF2WbNW9W3GcDetO k0JR45Dp5ZYcBkLlcv9tktc2o8T7DFURrdGiArdaj0U37uG08GUJ5KaAU3CC2QDK qmEIX7t/sB0NJxqhQMQR1vJdCVbOhbMfpctdpowRIKS7d+61oeO6HXMeJEMRJ6Zc 4/eITcqqOT3IG6s00uaihHAlHChUaOGy7o//gpfeb7+BrjinZpPpPnkUWTcQXiLc wKceKzMdKXm4Zlab9+mj9rX1rf7mniIVV5fGFWzbipA58uy3jbCPdyx8bIHb8Fzi kKuzAMsWqaHM4GcqQzjzUlhDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUdy2KfUiT 1cCZ1HpusVb+tMkTtxIwHwYDVR0jBBgwFoAUL2sefhQB3gCsju23qFkNA9xUD3gw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUREMzhCL0ExQUIyQUJDQkE4 OTExRUY5QjMzODUxMkM0RjlBRTAyL0wyc2VmaFFCM2dDc2p1MjNxRmtOQTl4VUQz Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTDJzZWZoUUIzZ0NzanUyM3FGa05BOXhVRDNnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURE MzhCL0ExQUIyQUJDQkE4OTExRUY5QjMzODUxMkM0RjlBRTAyL0wyc2VmaFFCM2dD c2p1MjNxRmtOQTl4VUQzZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJWJ86JYqIIVW84VpQNkojlomYHlpAgIk6eQm1MZqbeG6UcXe3gvxSgI lcylDlOgT8im/nGDxlkjeEePf/etatL3LSofcVi18N0OfHeppeA/mAEToAK4Qzgk ttjfdpHj5n+MOqCWU66wXGGkf2sQ+5gJzvbf5gDlEko6K8YWS8HOoLjhv/h7CVWv nSKI2GWgEQz69N/JW1i+HCX+LVnIUxRFZgYYVv0dY7y7dHmPf8JU+OWh4TaMPUMI oKZaXuSWBFVf3lXPj+shXw5pfcXcb0RqMhfX4e3UMEbYBYKPFdW3EXwwttZYMssT sN7U6z7I8UY3X26ouaD93whAByULF88= -----END CERTIFICATE-----Generated at Sat Jun 14 19:27:02 2025 by rpki-client