$ rpki-client -vvf rpki.apnic.net/member_repository/A913D125/FE778EC8CC1011EF87396A6EC4F9AE02/Ae2EH7lRqvolkYDvkpnk02_ffD0.mft File: Ae2EH7lRqvolkYDvkpnk02_ffD0.mft (raw, json) Hash identifier: qdQQkv2OvEnCuyP8VniNFjQAqFibSG0A4w6e1hJIJ8o= Subject key identifier: 19:72:55:A0:2E:AD:22:9F:09:35:0D:6E:80:24:CF:07:D0:95:85:1D Authority key identifier: 01:ED:84:1F:B9:51:AA:FA:25:91:80:EF:92:99:E4:D3:6F:DF:7C:3D Certificate issuer: /CN=A913D125/serialNumber=01ED841FB951AAFA259180EF9299E4D36FDF7C3D Certificate serial: 5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae2EH7lRqvolkYDvkpnk02_ffD0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D125/FE778EC8CC1011EF87396A6EC4F9AE02/Ae2EH7lRqvolkYDvkpnk02_ffD0.mft Manifest number: 5B Signing time: Tue 01 Jul 2025 07:53:23 +0000 Manifest this update: Tue 01 Jul 2025 07:53:22 +0000 Manifest next update: Tue 08 Jul 2025 07:53:22 +0000 Files and hashes: 1: Ae2EH7lRqvolkYDvkpnk02_ffD0.crl (hash: yIZ5svUhMHH0svqSiOfC+CMTrIpRW0W7DawEg3dVLl4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D125/FE778EC8CC1011EF87396A6EC4F9AE02/Ae2EH7lRqvolkYDvkpnk02_ffD0.crl rsync://rpki.apnic.net/member_repository/A913D125/FE778EC8CC1011EF87396A6EC4F9AE02/Ae2EH7lRqvolkYDvkpnk02_ffD0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae2EH7lRqvolkYDvkpnk02_ffD0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 07:53:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 91 (0x5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D125, serialNumber=01ED841FB951AAFA259180EF9299E4D36FDF7C3D Validity Not Before: Jul 1 07:53:22 2025 GMT Not After : Jul 8 07:53:22 2025 GMT Subject: CN=686393f2-31ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:13:35:1b:79:5c:27:a4:63:e3:6d:b5:fb:2f: 71:89:46:ff:b1:83:90:92:72:e2:a7:83:2d:9f:a2: 6b:b8:ca:bf:e9:2d:86:30:42:52:b6:af:7e:eb:9d: e9:ba:5c:c8:a2:ac:3b:05:5a:1b:a7:d6:52:db:aa: 6f:1e:cc:16:69:3f:a3:38:12:ad:85:fb:ba:a3:e4: d6:42:ab:7d:3b:12:da:ba:c9:f1:75:57:77:be:80: 03:39:a1:d0:e1:72:6d:04:9c:a9:67:d0:c7:ab:c1: ce:65:55:ce:0d:d2:a9:74:31:3c:51:3d:82:81:10: f3:88:67:62:4a:5a:d7:b8:33:61:61:59:6f:a9:c8: 0a:15:65:27:f7:93:98:19:56:0e:56:67:ac:7f:27: af:8f:2d:cb:e3:a9:d9:a1:85:1f:1f:3f:da:ba:bd: 6c:9a:38:74:fb:12:a3:97:3a:f5:41:fb:6c:6d:79: 95:63:56:5a:57:74:c6:b3:e0:e0:35:ba:8e:56:0f: bf:bc:1a:28:b5:7c:62:68:0a:6d:5b:c1:2e:31:1c: c8:26:fc:22:a7:ad:00:be:d3:53:d0:4b:bb:16:0d: f1:af:11:1a:f1:30:8f:2b:21:2a:34:59:64:b8:f3: 69:e1:0a:7b:34:3e:14:80:a7:74:a5:5a:33:d7:db: e1:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:72:55:A0:2E:AD:22:9F:09:35:0D:6E:80:24:CF:07:D0:95:85:1D X509v3 Authority Key Identifier: keyid:01:ED:84:1F:B9:51:AA:FA:25:91:80:EF:92:99:E4:D3:6F:DF:7C:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D125/FE778EC8CC1011EF87396A6EC4F9AE02/Ae2EH7lRqvolkYDvkpnk02_ffD0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae2EH7lRqvolkYDvkpnk02_ffD0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D125/FE778EC8CC1011EF87396A6EC4F9AE02/Ae2EH7lRqvolkYDvkpnk02_ffD0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:ea:c9:28:73:71:16:0b:c7:98:f0:16:31:54:37:ef:35:fe: 43:ef:44:b1:f1:4d:e9:1c:30:3b:f5:02:00:26:6b:4e:ea:27: ce:fd:45:7d:c3:2a:55:d6:82:06:3a:e8:13:52:92:ab:ab:77: 11:e8:d0:a2:04:28:d2:45:e7:22:46:ea:d0:80:df:0b:df:12: 98:48:26:a5:b0:5b:ce:5f:5d:13:84:05:6a:ba:b2:42:b0:4d: bd:3f:dd:23:06:08:16:51:30:3a:17:12:62:dc:83:64:df:f8: dd:4d:e2:0a:85:38:53:52:96:c0:6d:9c:30:2d:b4:23:26:1e: c4:5f:6c:c5:31:ad:ce:3d:e2:51:df:8d:6b:dc:6d:84:80:59: 36:3f:30:76:18:12:33:3e:2a:37:30:1c:fd:dd:91:1d:3c:87: 65:6c:5e:33:06:d1:15:d6:70:58:72:5b:3c:c4:93:41:ed:76: 9c:7a:fb:0e:f5:a5:57:11:22:76:ad:3e:b7:95:fe:a0:11:fd: 4c:49:d8:04:11:9e:58:49:9e:3f:9c:81:10:cd:80:60:ad:db: 1d:00:ad:94:86:47:57:87:f5:06:58:aa:e0:f4:35:a8:25:a0: ad:2b:36:59:10:43:1a:a0:43:b5:58:33:9a:de:71:28:a1:17: 21:fc:f6:9a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz RDEyNTExMC8GA1UEBRMoMDFFRDg0MUZCOTUxQUFGQTI1OTE4MEVGOTI5OUU0RDM2 RkRGN0MzRDAeFw0yNTA3MDEwNzUzMjJaFw0yNTA3MDgwNzUzMjJaMBgxFjAUBgNV BAMTDTY4NjM5M2YyLTMxZWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDbEzUbeVwnpGPjbbX7L3GJRv+xg5CScuKngy2fomu4yr/pLYYwQlK2r37rnem6 XMiirDsFWhun1lLbqm8ezBZpP6M4Eq2F+7qj5NZCq307Etq6yfF1V3e+gAM5odDh cm0EnKln0Merwc5lVc4N0ql0MTxRPYKBEPOIZ2JKWte4M2FhWW+pyAoVZSf3k5gZ Vg5WZ6x/J6+PLcvjqdmhhR8fP9q6vWyaOHT7EqOXOvVB+2xteZVjVlpXdMaz4OA1 uo5WD7+8Gii1fGJoCm1bwS4xHMgm/CKnrQC+01PQS7sWDfGvERrxMI8rISo0WWS4 82nhCns0PhSAp3SlWjPX2+GJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUGXJVoC6t Ip8JNQ1ugCTPB9CVhR0wHwYDVR0jBBgwFoAUAe2EH7lRqvolkYDvkpnk02/ffD0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNEMTI1L0ZFNzc4RUM4Q0Mx MDExRUY4NzM5NkE2RUM0RjlBRTAyL0FlMkVIN2xScXZvbGtZRHZrcG5rMDJfZmZE MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQWUyRUg3bFJxdm9sa1lEdmtwbmswMl9mZkQwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNE MTI1L0ZFNzc4RUM4Q0MxMDExRUY4NzM5NkE2RUM0RjlBRTAyL0FlMkVIN2xScXZv bGtZRHZrcG5rMDJfZmZEMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACjqyShzcRYLx5jwFjFUN+81/kPvRLHxTekcMDv1AgAma07qJ879RX3D KlXWggY66BNSkqurdxHo0KIEKNJF5yJG6tCA3wvfEphIJqWwW85fXROEBWq6skKw Tb0/3SMGCBZRMDoXEmLcg2Tf+N1N4gqFOFNSlsBtnDAttCMmHsRfbMUxrc494lHf jWvcbYSAWTY/MHYYEjM+KjcwHP3dkR08h2VsXjMG0RXWcFhyWzzEk0Htdpx6+w71 pVcRInatPreV/qAR/UxJ2AQRnlhJnj+cgRDNgGCt2x0ArZSGR1eH9QZYquD0Nagl oK0rNlkQQxqgQ7VYM5recSihFyH89po= -----END CERTIFICATE-----Generated at Wed Jul 2 10:18:25 2025 by rpki-client