$ rpki-client -vvf rpki.apnic.net/member_repository/A913C34F/35FBF5D48A0411E2B8821D093292B5E8/1l59EGxXG0LrbOL4iHLeery6-7g.mft File: 1l59EGxXG0LrbOL4iHLeery6-7g.mft (raw, json) Hash identifier: nEsvA+Apvo/ax/ht7sSy5fOIMXkvmKmLyxDKyXEH9/s= Subject key identifier: 67:07:EB:28:E3:22:04:01:EB:C1:2E:0C:30:EE:81:02:AC:54:55:59 Authority key identifier: D6:5E:7D:10:6C:57:1B:42:EB:6C:E2:F8:88:72:DE:7A:BC:BA:FB:B8 Certificate issuer: /CN=A913C34F/serialNumber=D65E7D106C571B42EB6CE2F88872DE7ABCBAFBB8 Certificate serial: 3251 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1l59EGxXG0LrbOL4iHLeery6-7g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C34F/35FBF5D48A0411E2B8821D093292B5E8/1l59EGxXG0LrbOL4iHLeery6-7g.mft Manifest number: 3251 Signing time: Mon 12 May 2025 15:24:29 +0000 Manifest this update: Mon 12 May 2025 15:24:28 +0000 Manifest next update: Mon 19 May 2025 15:24:28 +0000 Files and hashes: 1: 1l59EGxXG0LrbOL4iHLeery6-7g.crl (hash: CH5eaT4Yisb6RIx5HZZ8KHz//hfRk2jxl+0LUQELso8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C34F/35FBF5D48A0411E2B8821D093292B5E8/1l59EGxXG0LrbOL4iHLeery6-7g.crl rsync://rpki.apnic.net/member_repository/A913C34F/35FBF5D48A0411E2B8821D093292B5E8/1l59EGxXG0LrbOL4iHLeery6-7g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1l59EGxXG0LrbOL4iHLeery6-7g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 15:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12881 (0x3251) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C34F, serialNumber=D65E7D106C571B42EB6CE2F88872DE7ABCBAFBB8 Validity Not Before: May 12 15:24:28 2025 GMT Not After : May 19 15:24:28 2025 GMT Subject: CN=682212ac-c44c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:50:77:80:d9:a7:c5:d6:ee:30:be:95:bf:a9: 96:b7:45:bb:01:83:3e:c9:61:89:f5:fd:da:c3:24: 14:01:76:9f:49:95:0e:ed:be:02:2f:74:e0:9c:3d: 24:3e:e4:8d:fa:ec:76:6f:d6:c8:68:51:b6:73:ca: 7b:e3:fc:37:29:ba:f2:3c:97:f0:74:41:90:1d:bd: f2:1f:86:ab:a2:c4:1d:12:48:6b:8c:51:f5:dc:25: 8a:93:c3:bc:ce:a3:01:3f:98:2b:94:5c:5a:75:0d: 44:ee:4c:40:78:ec:40:ca:2f:03:fd:3a:90:b6:49: c0:0b:48:cf:74:98:51:13:d5:3b:26:18:96:1c:12: 48:e7:73:6e:45:c4:10:84:f2:ef:44:3b:d5:a7:a1: 73:16:56:eb:fa:23:48:ad:5e:68:3e:20:75:e1:e0: 41:2a:97:ac:d6:b9:94:47:20:24:be:7a:a4:b8:5d: bb:f9:cf:a3:ca:60:81:05:82:2d:89:14:0c:ec:50: c7:ad:3d:6a:80:b7:6c:fb:45:3d:f2:a6:27:35:3c: 55:ac:42:b9:a7:0c:87:cd:c4:d3:90:d7:8d:3e:22: e9:6a:b0:ff:3e:4a:39:64:fa:02:4b:61:17:e1:07: a2:26:12:ac:ba:23:79:ab:7e:a7:f6:e5:a3:9d:e0: be:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:07:EB:28:E3:22:04:01:EB:C1:2E:0C:30:EE:81:02:AC:54:55:59 X509v3 Authority Key Identifier: keyid:D6:5E:7D:10:6C:57:1B:42:EB:6C:E2:F8:88:72:DE:7A:BC:BA:FB:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C34F/35FBF5D48A0411E2B8821D093292B5E8/1l59EGxXG0LrbOL4iHLeery6-7g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1l59EGxXG0LrbOL4iHLeery6-7g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C34F/35FBF5D48A0411E2B8821D093292B5E8/1l59EGxXG0LrbOL4iHLeery6-7g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:dd:53:9d:51:fe:76:48:3a:88:30:65:05:0e:fc:03:cc:e4: 61:b0:49:12:84:ef:db:51:55:a4:d2:38:c2:d6:13:f0:be:3b: 70:b0:d3:d8:b4:d2:d6:4b:e9:4e:cc:c8:a9:ec:95:bd:f1:bb: 16:55:1b:c1:3e:c3:47:9d:cf:60:ee:37:74:f8:ef:d9:34:92: a1:8d:ec:16:c7:25:f5:2f:39:71:49:2e:dd:1b:08:fd:ee:7e: c2:b9:07:26:68:a6:76:c4:56:87:23:46:81:42:37:0e:a2:74: e1:7f:9c:77:0a:58:60:b9:65:f5:15:f3:e2:dc:f9:2e:cb:02: cf:31:63:50:4c:06:0a:b5:e5:dd:e2:8e:3c:c2:b5:90:6b:ad: 1a:35:02:ab:51:85:50:5c:0f:05:8f:a4:fb:b0:1c:73:2f:74: f8:c4:c3:96:f7:ff:10:49:66:c6:0b:99:44:82:44:9a:2f:1f: c7:51:02:b5:cc:f4:71:d4:eb:ad:70:8e:e6:25:2a:66:db:f2: 12:48:11:db:03:0a:5c:f7:9e:51:5c:30:51:d4:5e:45:fd:08: cf:f7:97:2b:28:92:90:f2:6b:2d:90:09:b4:98:47:23:8d:68: b7:2c:df:ba:3b:0a:3d:24:b5:e7:95:4a:6a:3b:b0:cd:a8:71: 4b:be:03:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMlEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0MzNEYxMTAvBgNVBAUTKEQ2NUU3RDEwNkM1NzFCNDJFQjZDRTJGODg4NzJERTdB QkNCQUZCQjgwHhcNMjUwNTEyMTUyNDI4WhcNMjUwNTE5MTUyNDI4WjAYMRYwFAYD VQQDEw02ODIyMTJhYy1jNDRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0VB3gNmnxdbuML6Vv6mWt0W7AYM+yWGJ9f3awyQUAXafSZUO7b4CL3TgnD0k PuSN+ux2b9bIaFG2c8p74/w3KbryPJfwdEGQHb3yH4arosQdEkhrjFH13CWKk8O8 zqMBP5grlFxadQ1E7kxAeOxAyi8D/TqQtknAC0jPdJhRE9U7JhiWHBJI53NuRcQQ hPLvRDvVp6FzFlbr+iNIrV5oPiB14eBBKpes1rmURyAkvnqkuF27+c+jymCBBYIt iRQM7FDHrT1qgLds+0U98qYnNTxVrEK5pwyHzcTTkNeNPiLparD/Pko5ZPoCS2EX 4QeiJhKsuiN5q36n9uWjneC+bwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGcH6yjj IgQB68EuDDDugQKsVFVZMB8GA1UdIwQYMBaAFNZefRBsVxtC62zi+Ihy3nq8uvu4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzM0Ri8zNUZCRjVENDhB MDQxMUUyQjg4MjFEMDkzMjkyQjVFOC8xbDU5RUd4WEcwTHJiT0w0aUhMZWVyeTYt N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFsNTlFR3hYRzBMcmJPTDRpSExlZXJ5Ni03Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QzM0Ri8zNUZCRjVENDhBMDQxMUUyQjg4MjFEMDkzMjkyQjVFOC8xbDU5RUd4WEcw THJiT0w0aUhMZWVyeTYtN2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBt3VOdUf52SDqIMGUFDvwDzORhsEkShO/bUVWk0jjC1hPwvjtwsNPY tNLWS+lOzMip7JW98bsWVRvBPsNHnc9g7jd0+O/ZNJKhjewWxyX1LzlxSS7dGwj9 7n7CuQcmaKZ2xFaHI0aBQjcOonThf5x3ClhguWX1FfPi3PkuywLPMWNQTAYKteXd 4o48wrWQa60aNQKrUYVQXA8Fj6T7sBxzL3T4xMOW9/8QSWbGC5lEgkSaLx/HUQK1 zPRx1OutcI7mJSpm2/ISSBHbAwpc955RXDBR1F5F/QjP95crKJKQ8mstkAm0mEcj jWi3LN+6Owo9JLXnlUpqO7DNqHFLvgPc -----END CERTIFICATE-----Generated at Tue May 13 22:01:32 2025 by rpki-client