$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF645/AB16E55201F611E9ABB8870DC4F9AE02/4j5WiDpuN63lIjxBOzs7D3gbySk.mft File: 4j5WiDpuN63lIjxBOzs7D3gbySk.mft (raw, json) Hash identifier: xgIeb6icvYxPWDAeksu9FGZSQmrrpqX3TX9nnptUGz8= Subject key identifier: A4:7E:6A:54:ED:F1:75:21:66:B5:64:43:8A:82:B9:63:34:44:DE:23 Authority key identifier: E2:3E:56:88:3A:6E:37:AD:E5:22:3C:41:3B:3B:3B:0F:78:1B:C9:29 Certificate issuer: /CN=A91DF645/serialNumber=E23E56883A6E37ADE5223C413B3B3B0F781BC929 Certificate serial: 117C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4j5WiDpuN63lIjxBOzs7D3gbySk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF645/AB16E55201F611E9ABB8870DC4F9AE02/4j5WiDpuN63lIjxBOzs7D3gbySk.mft Manifest number: 1173 Signing time: Sat 14 Jun 2025 17:10:34 +0000 Manifest this update: Sat 14 Jun 2025 17:10:33 +0000 Manifest next update: Sat 21 Jun 2025 17:10:33 +0000 Files and hashes: 1: 4j5WiDpuN63lIjxBOzs7D3gbySk.crl (hash: eh7H508Zj/8oCZxmwDOl1LQV2JXKHAum8ibP4SJ+0d4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF645/AB16E55201F611E9ABB8870DC4F9AE02/4j5WiDpuN63lIjxBOzs7D3gbySk.crl rsync://rpki.apnic.net/member_repository/A91DF645/AB16E55201F611E9ABB8870DC4F9AE02/4j5WiDpuN63lIjxBOzs7D3gbySk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4j5WiDpuN63lIjxBOzs7D3gbySk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:10:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4476 (0x117c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF645, serialNumber=E23E56883A6E37ADE5223C413B3B3B0F781BC929 Validity Not Before: Jun 14 17:10:33 2025 GMT Not After : Jun 21 17:10:33 2025 GMT Subject: CN=684dad0a-60bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:20:20:79:cd:a1:3a:f7:45:4d:44:e4:d1:1f: f0:be:1b:96:57:33:ef:f8:ee:da:fa:6c:10:5f:c9: 88:00:df:1a:df:b1:e4:eb:80:10:33:64:09:62:ae: c8:1a:6f:1e:ed:95:82:02:97:02:fa:8e:70:ef:af: ba:2e:93:76:a3:c4:5a:1c:39:39:b5:9a:31:50:17: 8b:2a:e1:87:fe:5b:bb:b0:fb:51:f8:81:d6:ed:b1: 8b:83:17:57:35:e8:e7:37:ce:ba:86:ef:37:66:7e: f9:fd:2f:7c:78:e9:88:ee:8d:73:7e:4d:51:cb:be: e2:1c:e9:1a:eb:0b:30:d5:32:51:c1:47:e7:6f:1c: 12:82:35:64:f4:b0:91:f3:4b:53:a7:28:16:eb:48: 5b:be:79:8f:ed:2a:38:7b:64:bc:c2:ad:22:e9:13: cd:04:b2:fb:e3:01:0c:72:c8:dd:1c:60:da:15:d1: a8:0e:e5:1a:a4:24:64:46:93:3c:80:d4:f2:94:20: 62:92:be:79:30:5f:39:c8:2d:67:32:a7:86:b4:83: 90:1b:2c:2d:62:c2:e7:03:9a:b1:6d:45:c1:c1:e1: ba:39:52:e0:d3:9f:ff:ab:84:14:44:3b:18:00:97: 87:00:9b:19:2c:b7:a4:11:e1:ec:f0:fc:4a:28:e0: 66:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:7E:6A:54:ED:F1:75:21:66:B5:64:43:8A:82:B9:63:34:44:DE:23 X509v3 Authority Key Identifier: keyid:E2:3E:56:88:3A:6E:37:AD:E5:22:3C:41:3B:3B:3B:0F:78:1B:C9:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF645/AB16E55201F611E9ABB8870DC4F9AE02/4j5WiDpuN63lIjxBOzs7D3gbySk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4j5WiDpuN63lIjxBOzs7D3gbySk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF645/AB16E55201F611E9ABB8870DC4F9AE02/4j5WiDpuN63lIjxBOzs7D3gbySk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:8e:e2:e4:70:8c:8d:54:9e:aa:18:bf:d6:ac:dd:0a:8b:60: df:d4:10:63:ca:20:50:33:71:be:fe:29:06:1d:9c:6c:f2:85: 6b:f6:05:f2:3c:66:76:97:e1:e7:f3:fc:49:e9:6a:5a:2c:e5: 14:a4:a2:51:47:43:4f:0f:52:4f:38:13:41:90:81:c4:8f:45: f7:d6:c9:ea:dd:85:fd:6a:bd:4f:66:9e:03:0e:d8:c7:df:7b: eb:a3:cb:c6:18:10:92:52:a3:71:c8:6e:69:c3:e7:70:c6:2f: c7:71:f6:eb:76:b7:62:1f:ac:08:0c:47:bd:55:64:2e:e0:5f: d5:96:43:df:6b:dc:56:dc:bb:59:d5:16:f2:9c:40:e3:7e:d0: a9:7f:61:29:9a:42:81:59:7b:82:93:86:c1:c7:de:98:e8:73: 25:c5:80:7a:b7:fd:fb:9b:10:8e:80:3b:73:62:f5:40:5d:f4: 36:95:2d:fa:44:5f:ed:fd:f5:fb:31:5e:dc:f7:84:2c:ca:fa: 93:05:63:6a:1f:d0:92:ef:9a:fb:74:eb:56:7c:35:a5:f0:86: f5:2f:08:23:e1:71:80:6e:29:76:e6:62:57:9d:e4:3d:d6:5e: 0f:04:e1:83:20:12:eb:d2:05:b8:67:5f:54:5a:54:22:66:d1: 80:34:d0:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEXwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY2NDUxMTAvBgNVBAUTKEUyM0U1Njg4M0E2RTM3QURFNTIyM0M0MTNCM0IzQjBG NzgxQkM5MjkwHhcNMjUwNjE0MTcxMDMzWhcNMjUwNjIxMTcxMDMzWjAYMRYwFAYD VQQDEw02ODRkYWQwYS02MGJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6CAgec2hOvdFTUTk0R/wvhuWVzPv+O7a+mwQX8mIAN8a37Hk64AQM2QJYq7I Gm8e7ZWCApcC+o5w76+6LpN2o8RaHDk5tZoxUBeLKuGH/lu7sPtR+IHW7bGLgxdX NejnN866hu83Zn75/S98eOmI7o1zfk1Ry77iHOka6wsw1TJRwUfnbxwSgjVk9LCR 80tTpygW60hbvnmP7So4e2S8wq0i6RPNBLL74wEMcsjdHGDaFdGoDuUapCRkRpM8 gNTylCBikr55MF85yC1nMqeGtIOQGywtYsLnA5qxbUXBweG6OVLg05//q4QURDsY AJeHAJsZLLekEeHs8PxKKOBm7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKR+alTt 8XUhZrVkQ4qCuWM0RN4jMB8GA1UdIwQYMBaAFOI+Vog6bjet5SI8QTs7Ow94G8kp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjY0NS9BQjE2RTU1MjAx RjYxMUU5QUJCODg3MERDNEY5QUUwMi80ajVXaURwdU42M2xJanhCT3pzN0QzZ2J5 U2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRqNVdpRHB1TjYzbElqeEJPenM3RDNnYnlTay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjY0NS9BQjE2RTU1MjAxRjYxMUU5QUJCODg3MERDNEY5QUUwMi80ajVXaURwdU42 M2xJanhCT3pzN0QzZ2J5U2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDDjuLkcIyNVJ6qGL/WrN0Ki2Df1BBjyiBQM3G+/ikGHZxs8oVr9gXy PGZ2l+Hn8/xJ6WpaLOUUpKJRR0NPD1JPOBNBkIHEj0X31snq3YX9ar1PZp4DDtjH 33vro8vGGBCSUqNxyG5pw+dwxi/HcfbrdrdiH6wIDEe9VWQu4F/VlkPfa9xW3LtZ 1RbynEDjftCpf2EpmkKBWXuCk4bBx96Y6HMlxYB6t/37mxCOgDtzYvVAXfQ2lS36 RF/t/fX7MV7c94QsyvqTBWNqH9CS75r7dOtWfDWl8Ib1Lwgj4XGAbil25mJXneQ9 1l4PBOGDIBLr0gW4Z19UWlQiZtGANNC1 -----END CERTIFICATE-----Generated at Sat Jun 14 19:34:35 2025 by rpki-client