$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC1DE/732D69B6277911ED9D48F423C4F9AE02/j5ZyrK2aUfA9SLxDtjOpVzSY494.mft File: j5ZyrK2aUfA9SLxDtjOpVzSY494.mft (raw, json) Hash identifier: ebx/n0P/v2q1DYuxtFbthMsodhbRQAnO5Vs1ZvNDvFc= Subject key identifier: 33:84:91:61:44:79:D6:DF:62:22:1E:1E:DB:4F:30:00:9E:44:2B:53 Authority key identifier: 8F:96:72:AC:AD:9A:51:F0:3D:48:BC:43:B6:33:A9:57:34:98:E3:DE Certificate issuer: /CN=A91FC1DE/serialNumber=8F9672ACAD9A51F03D48BC43B633A9573498E3DE Certificate serial: 023C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j5ZyrK2aUfA9SLxDtjOpVzSY494.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC1DE/732D69B6277911ED9D48F423C4F9AE02/j5ZyrK2aUfA9SLxDtjOpVzSY494.mft Manifest number: 023B Signing time: Sun 15 Jun 2025 01:33:55 +0000 Manifest this update: Sun 15 Jun 2025 01:33:55 +0000 Manifest next update: Sun 22 Jun 2025 01:33:55 +0000 Files and hashes: 1: j5ZyrK2aUfA9SLxDtjOpVzSY494.crl (hash: gqU9jTd31iWXYuLz55R+x7Br17hE0R9hiHp//9pt8OE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC1DE/732D69B6277911ED9D48F423C4F9AE02/j5ZyrK2aUfA9SLxDtjOpVzSY494.crl rsync://rpki.apnic.net/member_repository/A91FC1DE/732D69B6277911ED9D48F423C4F9AE02/j5ZyrK2aUfA9SLxDtjOpVzSY494.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j5ZyrK2aUfA9SLxDtjOpVzSY494.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 01:33:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 572 (0x23c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC1DE, serialNumber=8F9672ACAD9A51F03D48BC43B633A9573498E3DE Validity Not Before: Jun 15 01:33:55 2025 GMT Not After : Jun 22 01:33:55 2025 GMT Subject: CN=684e2303-c536 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:60:01:6a:e3:d1:3f:1a:cf:99:ef:bf:90:3a: e0:ef:e2:4b:f9:02:9f:62:f9:54:e5:b5:3e:eb:f8: 2a:e2:31:af:be:3e:fa:eb:e8:9f:ba:17:82:93:aa: d6:1f:93:4a:e5:08:30:17:be:37:95:0d:1b:cc:cd: d7:36:b9:8b:6a:63:12:6e:66:c4:2a:95:5c:b1:ee: bf:06:c0:14:b4:03:01:9c:11:5f:7f:8c:fc:13:91: fa:84:fb:96:c7:29:d2:50:ae:d6:f0:fa:01:2b:b0: 1c:fd:49:34:44:ac:d3:49:2f:25:fe:ed:7b:88:b3: 8d:ab:45:79:88:98:33:ac:0f:97:17:0a:3b:c4:7f: 36:0e:2c:2e:41:d3:51:57:d8:03:70:03:de:c3:3f: 64:32:95:87:ca:5d:e4:4c:2a:10:33:f6:51:6c:15: 6c:bc:b9:69:c3:2a:f1:ea:b8:26:cf:d6:ac:7c:ba: ee:bd:09:33:91:ef:e6:db:ae:23:02:c9:c1:cf:8b: eb:d7:2b:59:f7:e9:15:2a:ed:a2:54:6c:6b:49:80: bd:a5:08:c7:9c:44:d5:99:39:32:45:cb:24:f0:ca: 79:86:9e:3c:b0:d4:aa:04:6b:c3:5a:5a:2c:3c:dc: 23:4d:40:e7:a4:af:2c:21:21:01:12:fa:d0:d0:97: df:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:84:91:61:44:79:D6:DF:62:22:1E:1E:DB:4F:30:00:9E:44:2B:53 X509v3 Authority Key Identifier: keyid:8F:96:72:AC:AD:9A:51:F0:3D:48:BC:43:B6:33:A9:57:34:98:E3:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC1DE/732D69B6277911ED9D48F423C4F9AE02/j5ZyrK2aUfA9SLxDtjOpVzSY494.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j5ZyrK2aUfA9SLxDtjOpVzSY494.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC1DE/732D69B6277911ED9D48F423C4F9AE02/j5ZyrK2aUfA9SLxDtjOpVzSY494.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:84:a2:82:e4:51:2d:e2:21:27:83:28:85:69:47:6c:fc:21: 1d:50:f8:bf:52:82:d2:9c:13:d8:1d:2b:a6:69:71:cc:14:e3: 86:58:84:e9:a6:06:64:39:c7:fe:e5:7b:fe:a2:42:a0:00:45: 37:ef:1b:22:93:b5:9d:24:ea:1d:4d:fc:b6:6a:26:f4:ac:29: 94:a8:41:b2:9f:f0:7b:a7:f4:05:f5:6b:49:97:01:ca:42:73: 74:62:49:f7:62:dd:bb:68:cd:1f:9a:05:dd:c7:a6:8d:01:e1: 84:ed:8b:29:e9:23:bc:17:f0:4b:f5:35:c7:ee:b3:a5:3b:b4: ef:bd:70:03:0d:4b:81:84:29:2e:a5:27:d9:45:85:78:0e:59: e8:94:04:9b:ed:61:80:f5:62:19:15:7b:1d:3c:65:45:ca:dd: 1d:7a:04:8a:fb:3a:fb:cd:7c:90:2f:ef:cd:c7:7a:a6:46:ac: 97:63:35:3e:00:f3:31:c4:12:b2:b2:57:de:e4:6a:49:e6:4f: ea:36:38:10:b1:17:1e:63:d2:dd:d3:43:82:38:ce:c7:26:a7: f8:7b:cb:4e:04:d5:89:45:5a:2d:47:cb:a8:c5:ed:3c:8c:1a: be:5d:cb:cc:d6:ce:06:3f:8e:f8:2f:2b:82:64:87:b4:4a:9c: 4c:f0:cc:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkMxREUxMTAvBgNVBAUTKDhGOTY3MkFDQUQ5QTUxRjAzRDQ4QkM0M0I2MzNBOTU3 MzQ5OEUzREUwHhcNMjUwNjE1MDEzMzU1WhcNMjUwNjIyMDEzMzU1WjAYMRYwFAYD VQQDEw02ODRlMjMwMy1jNTM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA52ABauPRPxrPme+/kDrg7+JL+QKfYvlU5bU+6/gq4jGvvj766+ifuheCk6rW H5NK5QgwF743lQ0bzM3XNrmLamMSbmbEKpVcse6/BsAUtAMBnBFff4z8E5H6hPuW xynSUK7W8PoBK7Ac/Uk0RKzTSS8l/u17iLONq0V5iJgzrA+XFwo7xH82DiwuQdNR V9gDcAPewz9kMpWHyl3kTCoQM/ZRbBVsvLlpwyrx6rgmz9asfLruvQkzke/m264j AsnBz4vr1ytZ9+kVKu2iVGxrSYC9pQjHnETVmTkyRcsk8Mp5hp48sNSqBGvDWlos PNwjTUDnpK8sISEBEvrQ0JffswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDOEkWFE edbfYiIeHttPMACeRCtTMB8GA1UdIwQYMBaAFI+WcqytmlHwPUi8Q7YzqVc0mOPe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzFERS83MzJENjlCNjI3 NzkxMUVEOUQ0OEY0MjNDNEY5QUUwMi9qNVp5cksyYVVmQTlTTHhEdGpPcFZ6U1k0 OTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2o1WnlySzJhVWZBOVNMeER0ak9wVnpTWTQ5NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzFERS83MzJENjlCNjI3NzkxMUVEOUQ0OEY0MjNDNEY5QUUwMi9qNVp5cksyYVVm QTlTTHhEdGpPcFZ6U1k0OTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOhKKC5FEt4iEngyiFaUds/CEdUPi/UoLSnBPYHSumaXHMFOOGWITp pgZkOcf+5Xv+okKgAEU37xsik7WdJOodTfy2aib0rCmUqEGyn/B7p/QF9WtJlwHK QnN0Ykn3Yt27aM0fmgXdx6aNAeGE7Ysp6SO8F/BL9TXH7rOlO7TvvXADDUuBhCku pSfZRYV4DlnolASb7WGA9WIZFXsdPGVFyt0degSK+zr7zXyQL+/Nx3qmRqyXYzU+ APMxxBKyslfe5GpJ5k/qNjgQsRceY9Ld00OCOM7HJqf4e8tOBNWJRVotR8uoxe08 jBq+XcvM1s4GP474LyuCZIe0SpxM8Mza -----END CERTIFICATE-----Generated at Sun Jun 15 10:16:28 2025 by rpki-client