$ rpki-client -vvf rpki.apnic.net/member_repository/A913C34F/35FBF5D48A0411E2B8821D093292B5E8/1l59EGxXG0LrbOL4iHLeery6-7g.mft File: 1l59EGxXG0LrbOL4iHLeery6-7g.mft (raw, json) Hash identifier: 96KIEHzbjEiRGfGNabvwdTZtE1TnF10sIBYLSSdROAo= Subject key identifier: 27:C4:90:DF:D5:A4:B2:E7:63:AD:14:8F:A2:D9:57:5D:0F:B3:57:0E Authority key identifier: D6:5E:7D:10:6C:57:1B:42:EB:6C:E2:F8:88:72:DE:7A:BC:BA:FB:B8 Certificate issuer: /CN=A913C34F/serialNumber=D65E7D106C571B42EB6CE2F88872DE7ABCBAFBB8 Certificate serial: 326B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1l59EGxXG0LrbOL4iHLeery6-7g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C34F/35FBF5D48A0411E2B8821D093292B5E8/1l59EGxXG0LrbOL4iHLeery6-7g.mft Manifest number: 326B Signing time: Wed 02 Jul 2025 15:31:32 +0000 Manifest this update: Wed 02 Jul 2025 15:31:32 +0000 Manifest next update: Wed 09 Jul 2025 15:31:32 +0000 Files and hashes: 1: 1l59EGxXG0LrbOL4iHLeery6-7g.crl (hash: jy1b8bLbauDPhfogxEXWxa+r+rtTjiFBzwIj5dxZ/4w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C34F/35FBF5D48A0411E2B8821D093292B5E8/1l59EGxXG0LrbOL4iHLeery6-7g.crl rsync://rpki.apnic.net/member_repository/A913C34F/35FBF5D48A0411E2B8821D093292B5E8/1l59EGxXG0LrbOL4iHLeery6-7g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1l59EGxXG0LrbOL4iHLeery6-7g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 15:31:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12907 (0x326b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C34F, serialNumber=D65E7D106C571B42EB6CE2F88872DE7ABCBAFBB8 Validity Not Before: Jul 2 15:31:32 2025 GMT Not After : Jul 9 15:31:32 2025 GMT Subject: CN=686550d4-e61f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:c3:f0:3f:bb:07:c4:9b:7a:a2:fa:d1:fd:21: 0e:bf:98:80:26:ce:eb:b5:ed:db:2d:a5:3f:23:f6: c1:cd:de:17:95:52:0c:d3:22:96:ae:6d:b8:a7:97: 92:4c:7b:26:30:7b:4f:b0:73:97:e9:e0:8d:13:4e: a7:c8:8d:ae:b5:c9:0a:9c:bd:71:55:1a:36:a3:2a: c7:42:f9:19:5a:5c:ef:ff:ef:ed:ff:df:c8:5a:ff: 1c:db:66:73:f4:0b:0c:c1:21:bd:c3:85:84:50:b2: 9b:90:65:f4:10:86:19:c4:e0:c5:6c:92:04:55:c6: ca:33:d5:1b:a9:2d:29:0a:e6:52:c3:83:6e:1d:05: 7f:96:90:86:69:a0:63:6e:07:d2:76:a5:c5:63:4b: c9:30:0e:aa:fc:bb:dc:e0:c9:9b:7e:fa:48:11:7d: d3:91:2e:7b:ab:fd:e0:b5:18:af:f0:42:65:71:2f: 42:8a:b9:9a:8a:21:b4:eb:d9:20:5e:fe:0a:a9:15: df:c5:66:7c:58:3d:18:ee:a7:f4:d9:5c:e4:cf:38: 76:5e:70:05:68:17:3e:85:ed:b7:d0:ff:c5:5c:e4: ac:72:a8:bd:45:62:ea:6c:b9:2d:05:00:5c:b6:10: 25:04:f9:82:12:14:23:d7:81:39:16:01:90:9c:6d: a7:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:C4:90:DF:D5:A4:B2:E7:63:AD:14:8F:A2:D9:57:5D:0F:B3:57:0E X509v3 Authority Key Identifier: keyid:D6:5E:7D:10:6C:57:1B:42:EB:6C:E2:F8:88:72:DE:7A:BC:BA:FB:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C34F/35FBF5D48A0411E2B8821D093292B5E8/1l59EGxXG0LrbOL4iHLeery6-7g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1l59EGxXG0LrbOL4iHLeery6-7g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C34F/35FBF5D48A0411E2B8821D093292B5E8/1l59EGxXG0LrbOL4iHLeery6-7g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:f2:ae:b3:82:6c:76:8d:5d:75:0b:3e:6d:89:65:95:c4:a1: 64:75:97:64:02:8b:f7:aa:f8:f9:70:38:f2:a7:34:4e:47:9f: 98:6f:41:91:20:a1:b9:49:a3:08:e5:e1:61:48:07:0e:5a:6f: 49:56:6b:39:11:0a:7a:26:e1:43:1a:cb:89:70:ca:4c:b6:30: 83:3e:5d:9b:f8:8d:06:5c:7d:f1:0e:c0:c9:85:88:9b:80:83: 79:71:26:63:b3:60:13:10:24:39:cf:bd:77:a0:0e:c6:1f:3d: 11:f9:0f:93:72:11:61:ac:f8:8f:50:15:30:c5:eb:dc:e3:08: fa:3e:76:ab:2b:60:87:44:7b:42:cf:3a:95:b0:38:53:a9:f9: d5:b6:a1:7f:dd:dd:37:64:41:bb:26:cf:a8:9d:cd:8a:92:6d: 31:53:49:90:73:ca:12:56:81:e4:48:96:9b:3c:03:f5:8f:ff: 2d:55:c1:4b:92:f2:54:5d:91:a8:2d:73:5e:16:8b:e2:84:6e: 72:7d:a9:4f:b4:e7:4c:85:9d:4f:68:93:cb:00:a7:1e:28:3f: 4d:b7:58:6d:e8:4a:89:bf:0a:00:bb:5a:23:e3:22:3a:f7:7c: e0:c8:db:73:b9:58:a5:0e:be:b7:82:6c:fb:12:3b:93:76:9b: a4:22:e5:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMmswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0MzNEYxMTAvBgNVBAUTKEQ2NUU3RDEwNkM1NzFCNDJFQjZDRTJGODg4NzJERTdB QkNCQUZCQjgwHhcNMjUwNzAyMTUzMTMyWhcNMjUwNzA5MTUzMTMyWjAYMRYwFAYD VQQDEw02ODY1NTBkNC1lNjFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp8PwP7sHxJt6ovrR/SEOv5iAJs7rte3bLaU/I/bBzd4XlVIM0yKWrm24p5eS THsmMHtPsHOX6eCNE06nyI2utckKnL1xVRo2oyrHQvkZWlzv/+/t/9/IWv8c22Zz 9AsMwSG9w4WEULKbkGX0EIYZxODFbJIEVcbKM9UbqS0pCuZSw4NuHQV/lpCGaaBj bgfSdqXFY0vJMA6q/Lvc4MmbfvpIEX3TkS57q/3gtRiv8EJlcS9CirmaiiG069kg Xv4KqRXfxWZ8WD0Y7qf02Vzkzzh2XnAFaBc+he230P/FXOSscqi9RWLqbLktBQBc thAlBPmCEhQj14E5FgGQnG2nNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCfEkN/V pLLnY60Uj6LZV10Ps1cOMB8GA1UdIwQYMBaAFNZefRBsVxtC62zi+Ihy3nq8uvu4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzM0Ri8zNUZCRjVENDhB MDQxMUUyQjg4MjFEMDkzMjkyQjVFOC8xbDU5RUd4WEcwTHJiT0w0aUhMZWVyeTYt N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFsNTlFR3hYRzBMcmJPTDRpSExlZXJ5Ni03Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QzM0Ri8zNUZCRjVENDhBMDQxMUUyQjg4MjFEMDkzMjkyQjVFOC8xbDU5RUd4WEcw THJiT0w0aUhMZWVyeTYtN2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAY8q6zgmx2jV11Cz5tiWWVxKFkdZdkAov3qvj5cDjypzROR5+Yb0GR IKG5SaMI5eFhSAcOWm9JVms5EQp6JuFDGsuJcMpMtjCDPl2b+I0GXH3xDsDJhYib gIN5cSZjs2ATECQ5z713oA7GHz0R+Q+TchFhrPiPUBUwxevc4wj6PnarK2CHRHtC zzqVsDhTqfnVtqF/3d03ZEG7Js+onc2Kkm0xU0mQc8oSVoHkSJabPAP1j/8tVcFL kvJUXZGoLXNeFovihG5yfalPtOdMhZ1PaJPLAKceKD9Nt1ht6EqJvwoAu1oj4yI6 93zgyNtzuVilDr63gmz7EjuTdpukIuXC -----END CERTIFICATE-----Generated at Thu Jul 3 10:20:39 2025 by rpki-client