$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft File: lQfxHRNjrFs5Lzb17zgixc_NaPk.mft (raw, json) Hash identifier: veNHzOfeJ+H1WWRLWbTRFCAfCJkhjx6qaB7rJVyxAwY= Subject key identifier: 5E:60:C7:1F:B8:60:3F:43:D7:DC:04:FD:BA:21:CA:4D:67:48:E8:DC Authority key identifier: 95:07:F1:1D:13:63:AC:5B:39:2F:36:F5:EF:38:22:C5:CF:CD:68:F9 Certificate issuer: /CN=A91EE8AC/serialNumber=9507F11D1363AC5B392F36F5EF3822C5CFCD68F9 Certificate serial: 01D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQfxHRNjrFs5Lzb17zgixc_NaPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft Manifest number: 02BA Signing time: Fri 13 Jun 2025 01:55:18 +0000 Manifest this update: Fri 13 Jun 2025 01:55:18 +0000 Manifest next update: Fri 20 Jun 2025 01:55:18 +0000 Files and hashes: 1: lQfxHRNjrFs5Lzb17zgixc_NaPk.crl (hash: bj9p5v2p2GmR27O/wEYdbh/gQWjbnIqaQropXzdvE8w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.crl rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQfxHRNjrFs5Lzb17zgixc_NaPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 01:55:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 473 (0x1d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE8AC, serialNumber=9507F11D1363AC5B392F36F5EF3822C5CFCD68F9 Validity Not Before: Jun 13 01:55:18 2025 GMT Not After : Jun 20 01:55:18 2025 GMT Subject: CN=684b8506-80a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:36:15:01:ba:31:57:19:8d:3c:e5:a6:de:b9: 33:0b:b4:0e:30:dd:1e:a4:c9:02:c6:36:64:c2:d7: 5f:5e:4f:43:79:19:63:f2:66:fa:6e:0b:57:9d:52: 74:f6:f3:82:7e:7d:2e:ca:df:b6:fc:bf:2e:a2:9f: 44:e5:67:ea:95:e4:89:0c:be:a6:8c:31:5a:bf:e3: ab:b8:3f:da:43:c5:2e:75:a7:ea:41:69:f6:f7:88: 95:6c:6b:d7:e0:3d:ae:26:22:fc:f5:73:e4:3d:79: 9a:f2:8f:5e:64:62:6e:e5:21:07:ac:44:28:59:eb: 9c:b5:f9:43:fa:05:3b:86:8b:e0:3c:6f:69:0d:c0: d5:7c:a9:80:05:9a:ee:92:76:b7:ab:fc:7d:70:9f: 94:eb:fe:85:97:a7:ec:fa:78:19:76:3c:0b:24:81: b9:c1:84:35:b4:1b:74:6d:01:1b:21:f1:5c:e2:9b: f1:cd:25:bf:35:36:d3:5b:0a:6a:53:b1:7d:f6:00: 24:dc:ca:80:b2:49:ac:10:bd:35:7a:fb:b1:e2:99: 9a:64:bd:c1:b4:df:b8:32:ab:4b:21:a2:cb:12:73: b0:d9:0b:87:dc:7f:ba:44:c4:ec:e6:17:d5:20:9f: 65:bc:87:f9:c2:80:73:af:6d:24:08:c6:db:9b:2b: df:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:60:C7:1F:B8:60:3F:43:D7:DC:04:FD:BA:21:CA:4D:67:48:E8:DC X509v3 Authority Key Identifier: keyid:95:07:F1:1D:13:63:AC:5B:39:2F:36:F5:EF:38:22:C5:CF:CD:68:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQfxHRNjrFs5Lzb17zgixc_NaPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:4e:97:75:f9:f2:0c:42:dd:af:11:dc:86:30:eb:32:2a:4d: 42:4b:48:b2:8e:69:fa:3d:fe:b2:a5:5c:42:10:e0:26:81:99: a9:bf:42:da:51:68:5b:af:aa:5d:e6:97:74:4c:be:db:6c:32: a8:94:b0:0e:63:29:2c:70:85:14:37:07:6e:3f:f4:f7:18:8c: 5c:96:ca:94:59:34:81:c9:49:14:8d:38:a4:98:d7:45:83:03: dc:17:11:ca:20:f8:a7:d0:17:43:14:c4:de:56:73:b6:7a:90: 69:cc:69:97:eb:df:f3:98:94:6f:d1:11:35:a2:cc:96:52:8e: cc:56:5d:e4:0c:74:5d:d2:a4:42:ae:3e:39:6d:d7:85:8a:03: 09:ec:36:73:b9:ee:93:d4:35:2d:2d:9d:69:24:91:a3:5b:cb: 1c:01:ed:a4:36:13:14:8f:16:f3:94:f0:09:e5:dc:a3:05:e3: 97:df:d9:2a:80:71:3f:3e:d1:bf:a1:64:57:f6:a5:0f:1d:b4: 76:c2:59:b5:d9:27:76:8b:1f:97:db:0d:1e:29:7f:6a:ac:8f: 0c:5f:5e:e8:e0:e3:48:25:61:80:ca:6a:c2:f2:57:cf:89:4d: 35:7a:5f:1e:ca:a2:f9:38:4a:1b:f0:2a:b8:c3:18:fe:d9:e2: 91:22:da:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUU4QUMxMTAvBgNVBAUTKDk1MDdGMTFEMTM2M0FDNUIzOTJGMzZGNUVGMzgyMkM1 Q0ZDRDY4RjkwHhcNMjUwNjEzMDE1NTE4WhcNMjUwNjIwMDE1NTE4WjAYMRYwFAYD VQQDEw02ODRiODUwNi04MGExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAujYVAboxVxmNPOWm3rkzC7QOMN0epMkCxjZkwtdfXk9DeRlj8mb6bgtXnVJ0 9vOCfn0uyt+2/L8uop9E5WfqleSJDL6mjDFav+OruD/aQ8UudafqQWn294iVbGvX 4D2uJiL89XPkPXma8o9eZGJu5SEHrEQoWeuctflD+gU7hovgPG9pDcDVfKmABZru kna3q/x9cJ+U6/6Fl6fs+ngZdjwLJIG5wYQ1tBt0bQEbIfFc4pvxzSW/NTbTWwpq U7F99gAk3MqAskmsEL01evux4pmaZL3BtN+4MqtLIaLLEnOw2QuH3H+6RMTs5hfV IJ9lvIf5woBzr20kCMbbmyvfpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF5gxx+4 YD9D19wE/bohyk1nSOjcMB8GA1UdIwQYMBaAFJUH8R0TY6xbOS829e84IsXPzWj5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRThBQy81MDM4RUM4QzdE RUIxMUVEQTdDQTRBN0VDNEY5QUUwMi9sUWZ4SFJOanJGczVMemIxN3pnaXhjX05h UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xRZnhIUk5qckZzNUx6YjE3emdpeGNfTmFQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RThBQy81MDM4RUM4QzdERUIxMUVEQTdDQTRBN0VDNEY5QUUwMi9sUWZ4SFJOanJG czVMemIxN3pnaXhjX05hUGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKTpd1+fIMQt2vEdyGMOsyKk1CS0iyjmn6Pf6ypVxCEOAmgZmpv0La UWhbr6pd5pd0TL7bbDKolLAOYykscIUUNwduP/T3GIxclsqUWTSByUkUjTikmNdF gwPcFxHKIPin0BdDFMTeVnO2epBpzGmX69/zmJRv0RE1osyWUo7MVl3kDHRd0qRC rj45bdeFigMJ7DZzue6T1DUtLZ1pJJGjW8scAe2kNhMUjxbzlPAJ5dyjBeOX39kq gHE/PtG/oWRX9qUPHbR2wlm12Sd2ix+X2w0eKX9qrI8MX17o4ONIJWGAymrC8lfP iU01el8eyqL5OEob8Cq4wxj+2eKRIto9 -----END CERTIFICATE-----Generated at Sat Jun 14 18:50:38 2025 by rpki-client