$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8BE3/EEEF7FEABF9C11EF9DA88282C4F9AE02/VU9dfGbsUOhKiru6mWgXfkcp02Y.mft File: VU9dfGbsUOhKiru6mWgXfkcp02Y.mft (raw, json) Hash identifier: Mf3CXtfJttapxDk1hOC/bccTuHqZ66n8HF5MthH1dYY= Subject key identifier: 78:BB:9F:85:36:8C:70:36:24:C8:C5:DC:25:01:F1:3F:8B:D7:B2:95 Authority key identifier: 55:4F:5D:7C:66:EC:50:E8:4A:8A:BB:BA:99:68:17:7E:47:29:D3:66 Certificate issuer: /CN=A91E8BE3/serialNumber=554F5D7C66EC50E84A8ABBBA9968177E4729D366 Certificate serial: 5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VU9dfGbsUOhKiru6mWgXfkcp02Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8BE3/EEEF7FEABF9C11EF9DA88282C4F9AE02/VU9dfGbsUOhKiru6mWgXfkcp02Y.mft Manifest number: 5B Signing time: Fri 13 Jun 2025 06:03:21 +0000 Manifest this update: Fri 13 Jun 2025 06:03:20 +0000 Manifest next update: Fri 20 Jun 2025 06:03:20 +0000 Files and hashes: 1: VU9dfGbsUOhKiru6mWgXfkcp02Y.crl (hash: MLuiJiksNh1HgWTSsZBxt1ttgFWN6AAfzwh7gktVlEA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8BE3/EEEF7FEABF9C11EF9DA88282C4F9AE02/VU9dfGbsUOhKiru6mWgXfkcp02Y.crl rsync://rpki.apnic.net/member_repository/A91E8BE3/EEEF7FEABF9C11EF9DA88282C4F9AE02/VU9dfGbsUOhKiru6mWgXfkcp02Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VU9dfGbsUOhKiru6mWgXfkcp02Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 06:03:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 91 (0x5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8BE3, serialNumber=554F5D7C66EC50E84A8ABBBA9968177E4729D366 Validity Not Before: Jun 13 06:03:20 2025 GMT Not After : Jun 20 06:03:20 2025 GMT Subject: CN=684bbf28-66b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:9a:0c:08:7d:b8:93:b5:87:b0:40:1c:4a:20: 38:a5:15:12:b9:62:34:0f:3e:e1:2f:1d:b5:e4:29: 4f:e9:97:b2:36:d0:4f:6f:5b:ce:49:b9:fc:d2:7f: 2d:7e:23:03:83:cb:8a:b6:c1:a1:6d:c2:f6:1b:e8: a7:24:4f:07:f3:af:1a:4a:5e:77:b2:39:29:e9:2f: 06:63:9b:44:a2:a0:aa:d3:f3:00:72:85:19:ff:87: 7e:0d:ce:a0:a1:e5:73:7e:9c:72:69:cd:ea:74:39: ee:e3:28:ca:f4:ff:6f:94:e5:3c:c0:80:9b:34:d6: b9:cf:38:67:74:bf:9c:f6:fa:0e:97:d2:44:4b:f0: be:ae:e2:1f:dd:1f:69:e1:de:b7:a2:06:99:b7:22: 78:f9:62:43:04:62:23:56:44:b4:1e:69:ab:12:eb: 44:33:78:72:6c:af:cd:63:16:20:58:3b:76:dd:0e: 44:9b:a0:b7:01:c2:db:e0:a7:6a:82:77:77:ef:ef: 7a:c2:e9:f6:36:86:12:ac:db:72:94:c0:2d:f3:e3: 0e:c8:09:98:97:68:7e:c4:5b:6c:82:be:34:35:a6: 80:d4:94:bc:88:1a:07:70:7a:3c:1b:91:98:d0:00: 2d:a9:24:bb:a5:7d:32:cf:da:be:8c:72:e0:98:21: 02:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:BB:9F:85:36:8C:70:36:24:C8:C5:DC:25:01:F1:3F:8B:D7:B2:95 X509v3 Authority Key Identifier: keyid:55:4F:5D:7C:66:EC:50:E8:4A:8A:BB:BA:99:68:17:7E:47:29:D3:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8BE3/EEEF7FEABF9C11EF9DA88282C4F9AE02/VU9dfGbsUOhKiru6mWgXfkcp02Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VU9dfGbsUOhKiru6mWgXfkcp02Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8BE3/EEEF7FEABF9C11EF9DA88282C4F9AE02/VU9dfGbsUOhKiru6mWgXfkcp02Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:be:5a:ff:e0:49:54:2b:4e:db:a7:2e:04:87:66:8f:82:2f: ea:22:06:53:53:e8:81:e9:86:e7:f4:dc:3d:da:bb:85:7a:ae: 8f:23:62:97:41:44:6d:77:d4:85:02:c8:46:14:8c:3f:ce:ba: 13:c6:19:e5:60:58:33:9a:ed:d8:2a:e4:32:6a:97:7a:1d:91: d4:58:87:9a:d2:29:9d:3f:08:ca:25:10:50:48:77:1d:53:e1: 2b:68:5a:08:cd:a5:57:bf:18:d1:68:0f:d3:84:11:a9:41:c0: e9:e3:7f:37:ac:43:c8:79:df:cb:90:f3:51:2e:02:c2:89:91: 78:d6:1a:2c:16:3d:9e:96:0d:4b:4c:03:33:7e:e8:06:44:4e: 87:d1:77:ad:b5:a0:22:d9:b0:8e:12:8b:d3:39:0e:bf:b7:ce: b9:1e:07:a8:58:07:a0:28:4b:a7:64:d2:00:92:9b:91:5d:ea: 03:01:8a:2d:9c:6a:96:04:33:75:31:b5:66:1a:8b:5b:80:c6: 37:67:e6:27:06:97:f0:80:6a:d1:83:7d:16:e4:ef:01:bd:5a: e5:5d:49:ae:49:da:90:29:7f:c0:46:1f:45:e0:2b:ac:28:15: e3:3a:8f:d9:e5:eb:3c:8e:b2:26:22:a6:a4:3f:fb:84:b1:bf: 20:e2:ad:c5 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF OEJFMzExMC8GA1UEBRMoNTU0RjVEN0M2NkVDNTBFODRBOEFCQkJBOTk2ODE3N0U0 NzI5RDM2NjAeFw0yNTA2MTMwNjAzMjBaFw0yNTA2MjAwNjAzMjBaMBgxFjAUBgNV BAMTDTY4NGJiZjI4LTY2YjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDTmgwIfbiTtYewQBxKIDilFRK5YjQPPuEvHbXkKU/pl7I20E9vW85JufzSfy1+ IwODy4q2waFtwvYb6KckTwfzrxpKXneyOSnpLwZjm0SioKrT8wByhRn/h34NzqCh 5XN+nHJpzep0Oe7jKMr0/2+U5TzAgJs01rnPOGd0v5z2+g6X0kRL8L6u4h/dH2nh 3reiBpm3Inj5YkMEYiNWRLQeaasS60QzeHJsr81jFiBYO3bdDkSboLcBwtvgp2qC d3fv73rC6fY2hhKs23KUwC3z4w7ICZiXaH7EW2yCvjQ1poDUlLyIGgdwejwbkZjQ AC2pJLulfTLP2r6McuCYIQIjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUeLufhTaM cDYkyMXcJQHxP4vXspUwHwYDVR0jBBgwFoAUVU9dfGbsUOhKiru6mWgXfkcp02Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4QkUzL0VFRUY3RkVBQkY5 QzExRUY5REE4ODI4MkM0RjlBRTAyL1ZVOWRmR2JzVU9oS2lydTZtV2dYZmtjcDAy WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVlU5ZGZHYnNVT2hLaXJ1Nm1XZ1hma2NwMDJZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4 QkUzL0VFRUY3RkVBQkY5QzExRUY5REE4ODI4MkM0RjlBRTAyL1ZVOWRmR2JzVU9o S2lydTZtV2dYZmtjcDAyWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADW+Wv/gSVQrTtunLgSHZo+CL+oiBlNT6IHphuf03D3au4V6ro8jYpdB RG131IUCyEYUjD/OuhPGGeVgWDOa7dgq5DJql3odkdRYh5rSKZ0/CMolEFBIdx1T 4StoWgjNpVe/GNFoD9OEEalBwOnjfzesQ8h538uQ81EuAsKJkXjWGiwWPZ6WDUtM AzN+6AZETofRd621oCLZsI4Si9M5Dr+3zrkeB6hYB6AoS6dk0gCSm5Fd6gMBii2c apYEM3UxtWYai1uAxjdn5icGl/CAatGDfRbk7wG9WuVdSa5J2pApf8BGH0XgK6wo FeM6j9nl6zyOsiYipqQ/+4SxvyDircU= -----END CERTIFICATE-----Generated at Sun Jun 15 08:42:09 2025 by rpki-client