$ rpki-client -vvf rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.mft File: D5BpKh7v5_ChrGi14awJ9wJpccw.mft (raw, json) Hash identifier: SMBX4YYMg64K9ZGQa0bujGcKKThIfLigdrhKwPUjrzc= Subject key identifier: 8D:64:94:51:D9:05:E5:EE:CA:2D:A0:98:C0:0D:5F:C2:B1:AE:18:52 Authority key identifier: 0F:90:69:2A:1E:EF:E7:F0:A1:AC:68:B5:E1:AC:09:F7:02:69:71:CC Certificate issuer: /CN=A91185B8/serialNumber=0F90692A1EEFE7F0A1AC68B5E1AC09F7026971CC Certificate serial: 01B3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D5BpKh7v5_ChrGi14awJ9wJpccw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.mft Manifest number: 01B3 Signing time: Thu 03 Jul 2025 03:13:21 +0000 Manifest this update: Thu 03 Jul 2025 03:13:20 +0000 Manifest next update: Thu 10 Jul 2025 03:13:20 +0000 Files and hashes: 1: D5BpKh7v5_ChrGi14awJ9wJpccw.crl (hash: wkp8l3A+TSN8OV6wc5iazkzMLKIPMi9XQAVzcl8kQXc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.crl rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D5BpKh7v5_ChrGi14awJ9wJpccw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:13:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 435 (0x1b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91185B8, serialNumber=0F90692A1EEFE7F0A1AC68B5E1AC09F7026971CC Validity Not Before: Jul 3 03:13:20 2025 GMT Not After : Jul 10 03:13:20 2025 GMT Subject: CN=6865f551-fcab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:1a:54:cf:22:b1:e8:7c:cd:9d:02:95:60:c9: c0:78:a3:61:2a:b9:aa:27:60:5a:8b:f5:cc:72:7f: 6b:03:8b:36:03:d4:2e:e2:f6:57:26:8c:8d:51:50: 4d:64:1c:4a:4a:5d:09:91:62:27:36:08:85:50:f1: c2:1c:b5:aa:62:e9:a5:f9:02:93:fd:f7:e6:22:92: 6f:f3:4e:51:09:2a:65:92:2f:c3:08:f5:80:ee:bc: f3:8a:5c:f5:14:b6:70:f8:1d:73:49:0e:76:13:8b: a1:78:80:2d:c7:30:b3:eb:b1:1c:ba:02:1b:75:de: e9:7d:fa:29:42:93:df:dd:de:40:db:e6:af:cd:ea: 09:4f:5f:2b:f2:84:9d:86:db:cf:96:ca:69:96:6d: d5:e6:35:fa:3d:0f:6b:27:a4:40:e5:27:61:be:a7: 87:6f:56:b6:ab:85:67:69:b4:23:75:5a:e7:89:ff: f3:6b:ca:f3:6a:b9:10:1c:4c:83:a0:12:50:c8:2b: 14:84:44:48:5a:24:81:9f:1d:37:57:31:fe:21:d8: ea:7e:f2:26:8d:94:a7:d7:8c:ca:1e:24:04:16:ed: f2:f0:66:5d:1f:0b:87:8c:15:a6:c3:5b:20:99:0c: 77:67:34:89:f8:4b:98:3d:ea:fb:ae:fa:77:0d:b6: 49:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:64:94:51:D9:05:E5:EE:CA:2D:A0:98:C0:0D:5F:C2:B1:AE:18:52 X509v3 Authority Key Identifier: keyid:0F:90:69:2A:1E:EF:E7:F0:A1:AC:68:B5:E1:AC:09:F7:02:69:71:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D5BpKh7v5_ChrGi14awJ9wJpccw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:7a:17:8e:dc:4d:47:e7:ae:20:ed:3f:e8:cc:e3:3c:c5:90: 7c:04:ec:18:4b:0c:95:ba:9e:f5:c9:1c:ca:60:e2:b9:81:f1: 58:42:64:e6:2f:1b:ea:b3:e5:53:bb:9d:0a:25:ca:e2:5b:da: c4:15:2f:c3:bb:77:b0:cf:62:cf:f5:68:b8:c8:85:22:d7:80: 04:72:d0:05:12:a4:e4:60:19:31:64:ab:de:50:2c:7e:d4:ce: 99:f5:64:8e:0e:5d:14:9c:9c:b2:9b:83:d2:b0:95:fa:bd:4f: 7c:0b:fe:98:72:ee:e4:6c:1d:d9:51:3c:e1:ba:0d:14:4e:88: 6e:42:67:a0:36:79:56:91:11:ca:8d:2d:3f:57:e3:55:ee:e0: 27:91:f7:c1:ce:0c:ed:e2:1d:b0:c1:23:dc:81:05:41:b8:bc: ce:04:34:ed:d8:61:7b:f9:d3:57:7b:f1:70:35:9b:e0:6b:7c: d7:b1:0b:cc:32:37:a7:5f:40:1c:3b:f7:6d:ed:6e:b1:d9:b7: 3b:d7:d8:6f:f4:bd:cd:00:0a:6a:8d:44:26:a0:9c:62:ca:ef: 05:50:02:c7:15:5f:d9:5c:39:22:a8:db:bd:35:69:d9:56:5e: c9:a4:0f:b9:a8:c8:04:83:fc:0a:4f:26:b0:c9:e5:8b:9f:1d: db:a2:96:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg1QjgxMTAvBgNVBAUTKDBGOTA2OTJBMUVFRkU3RjBBMUFDNjhCNUUxQUMwOUY3 MDI2OTcxQ0MwHhcNMjUwNzAzMDMxMzIwWhcNMjUwNzEwMDMxMzIwWjAYMRYwFAYD VQQDEw02ODY1ZjU1MS1mY2FiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5RpUzyKx6HzNnQKVYMnAeKNhKrmqJ2Bai/XMcn9rA4s2A9Qu4vZXJoyNUVBN ZBxKSl0JkWInNgiFUPHCHLWqYuml+QKT/ffmIpJv805RCSplki/DCPWA7rzzilz1 FLZw+B1zSQ52E4uheIAtxzCz67EcugIbdd7pffopQpPf3d5A2+avzeoJT18r8oSd htvPlspplm3V5jX6PQ9rJ6RA5SdhvqeHb1a2q4VnabQjdVrnif/za8rzarkQHEyD oBJQyCsUhERIWiSBnx03VzH+IdjqfvImjZSn14zKHiQEFu3y8GZdHwuHjBWmw1sg mQx3ZzSJ+EuYPer7rvp3DbZJ/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI1klFHZ BeXuyi2gmMANX8KxrhhSMB8GA1UdIwQYMBaAFA+QaSoe7+fwoaxoteGsCfcCaXHM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODVCOC9DRkEzNDA5QUJF MzExMUVEQjRGRjdEMzRDNEY5QUUwMi9ENUJwS2g3djVfQ2hyR2kxNGF3Sjl3SnBj Y3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0Q1QnBLaDd2NV9DaHJHaTE0YXdKOXdKcGNjdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODVCOC9DRkEzNDA5QUJFMzExMUVEQjRGRjdEMzRDNEY5QUUwMi9ENUJwS2g3djVf Q2hyR2kxNGF3Sjl3SnBjY3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC/eheO3E1H564g7T/ozOM8xZB8BOwYSwyVup71yRzKYOK5gfFYQmTm Lxvqs+VTu50KJcriW9rEFS/Du3ewz2LP9Wi4yIUi14AEctAFEqTkYBkxZKveUCx+ 1M6Z9WSODl0UnJyym4PSsJX6vU98C/6Ycu7kbB3ZUTzhug0UTohuQmegNnlWkRHK jS0/V+NV7uAnkffBzgzt4h2wwSPcgQVBuLzOBDTt2GF7+dNXe/FwNZvga3zXsQvM MjenX0AcO/dt7W6x2bc719hv9L3NAApqjUQmoJxiyu8FUALHFV/ZXDkiqNu9NWnZ Vl7JpA+5qMgEg/wKTyawyeWLnx3bopY5 -----END CERTIFICATE-----Generated at Fri Jul 4 00:59:14 2025 by rpki-client