$ rpki-client -vvf rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.mft File: rU1lO4NcTh3pjsZjdoiamoN2SwI.mft (raw, json) Hash identifier: C0Q3M85KUuqCaTf0iLdWJaKH3GLsNfMM+w9iKTdEZl4= Subject key identifier: 46:74:79:0A:5E:19:AD:F8:0B:58:76:6C:18:1B:82:C4:84:8B:8D:C1 Authority key identifier: AD:4D:65:3B:83:5C:4E:1D:E9:8E:C6:63:76:88:9A:9A:83:76:4B:02 Certificate issuer: /CN=A914B669/serialNumber=AD4D653B835C4E1DE98EC66376889A9A83764B02 Certificate serial: 3492 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rU1lO4NcTh3pjsZjdoiamoN2SwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.mft Manifest number: 3492 Signing time: Wed 02 Jul 2025 14:47:08 +0000 Manifest this update: Wed 02 Jul 2025 14:47:08 +0000 Manifest next update: Wed 09 Jul 2025 14:47:08 +0000 Files and hashes: 1: rU1lO4NcTh3pjsZjdoiamoN2SwI.crl (hash: ZLY1XpP7QAAye4Mq42z74ROpckONjyF2UNL5h8VN4Yw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.crl rsync://rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rU1lO4NcTh3pjsZjdoiamoN2SwI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 14:47:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13458 (0x3492) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B669, serialNumber=AD4D653B835C4E1DE98EC66376889A9A83764B02 Validity Not Before: Jul 2 14:47:08 2025 GMT Not After : Jul 9 14:47:08 2025 GMT Subject: CN=6865466c-e21b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:14:43:f1:b0:f4:10:0f:08:26:7c:8a:7c:44: 8f:e5:4d:fc:44:e0:c0:b1:23:12:19:e5:85:9c:ea: f0:bf:80:5f:2a:78:16:0b:5c:66:9d:c4:b5:f7:35: e0:4f:32:86:81:96:84:0d:4e:73:90:f0:9f:4d:0b: 97:13:34:c1:dc:c6:71:fd:01:45:6d:ba:0b:37:5f: 88:d9:3f:fb:d6:3a:7a:87:94:f9:60:81:34:9c:0f: 98:15:17:ab:a7:5f:8b:d6:33:25:65:87:83:ed:89: a0:f6:c2:00:90:33:e5:c7:09:e3:b1:1c:0a:c7:88: 82:60:20:04:27:5c:e7:7f:57:df:f4:f4:86:3c:2b: f5:ea:25:3a:6d:36:4b:98:00:ad:d5:87:e8:50:ee: b5:22:96:45:3a:59:cb:8d:0a:79:3d:2a:2d:9e:bf: a1:8e:2f:ad:ef:06:17:6e:9b:d7:50:0b:39:5b:96: 5b:7f:a1:8c:17:8f:60:e6:35:55:70:f0:34:61:7b: e7:87:aa:bf:50:04:01:f2:05:fd:82:25:cc:5f:f8: 8c:ae:c6:b0:29:45:57:c6:1b:53:5b:ee:c5:51:2b: 91:34:e7:83:a2:29:f3:5d:9c:06:51:47:b8:58:33: 70:9f:78:07:64:aa:6b:6a:b4:3b:12:22:a0:79:19: 5a:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:74:79:0A:5E:19:AD:F8:0B:58:76:6C:18:1B:82:C4:84:8B:8D:C1 X509v3 Authority Key Identifier: keyid:AD:4D:65:3B:83:5C:4E:1D:E9:8E:C6:63:76:88:9A:9A:83:76:4B:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rU1lO4NcTh3pjsZjdoiamoN2SwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:78:8f:6f:14:77:92:41:4d:4d:ab:e3:78:8a:45:01:19:44: dc:4b:23:7e:86:04:08:49:b9:91:a6:ce:59:0b:78:1c:76:c8: 31:91:dc:c3:e0:2e:67:5c:58:5f:e8:69:84:1f:8b:9e:5c:02: b3:30:12:ad:52:95:9b:e9:57:d0:34:c4:0d:9d:41:16:25:12: 5d:fe:8d:09:66:fc:13:31:69:48:df:00:18:a1:9c:7a:72:81: 35:0e:94:ae:8d:58:f3:e3:5c:59:fc:fb:15:7e:fb:88:e2:d7: 13:3a:bc:c2:87:0a:d2:58:8b:18:23:b5:3b:ce:cb:8d:ba:d7: a7:d6:bf:cb:4f:75:36:68:08:de:74:82:9a:96:7e:ba:4f:1f: 80:10:53:bf:a6:d9:15:c0:13:bd:df:f8:4a:d9:ba:19:a8:40: e0:31:3c:1c:96:2a:91:ad:c8:f5:87:91:1f:9f:2c:05:3a:cf: 48:04:e4:2f:b2:d0:de:5b:3c:d8:6e:e4:97:22:4b:c7:ae:c7: e5:aa:fe:2c:ee:3d:e1:a9:0e:ed:94:c6:ee:cf:e3:3d:e5:c8: 07:96:e8:c0:81:3e:dd:f8:db:79:35:f9:75:d0:30:09:56:e4: 8b:7d:73:9a:f1:e4:7d:ec:e6:88:ba:54:df:7e:75:76:e0:d0: c4:eb:44:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEI2NjkxMTAvBgNVBAUTKEFENEQ2NTNCODM1QzRFMURFOThFQzY2Mzc2ODg5QTlB ODM3NjRCMDIwHhcNMjUwNzAyMTQ0NzA4WhcNMjUwNzA5MTQ0NzA4WjAYMRYwFAYD VQQDEw02ODY1NDY2Yy1lMjFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwRRD8bD0EA8IJnyKfESP5U38RODAsSMSGeWFnOrwv4BfKngWC1xmncS19zXg TzKGgZaEDU5zkPCfTQuXEzTB3MZx/QFFbboLN1+I2T/71jp6h5T5YIE0nA+YFRer p1+L1jMlZYeD7Ymg9sIAkDPlxwnjsRwKx4iCYCAEJ1znf1ff9PSGPCv16iU6bTZL mACt1YfoUO61IpZFOlnLjQp5PSotnr+hji+t7wYXbpvXUAs5W5Zbf6GMF49g5jVV cPA0YXvnh6q/UAQB8gX9giXMX/iMrsawKUVXxhtTW+7FUSuRNOeDoinzXZwGUUe4 WDNwn3gHZKprarQ7EiKgeRlajQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEZ0eQpe Ga34C1h2bBgbgsSEi43BMB8GA1UdIwQYMBaAFK1NZTuDXE4d6Y7GY3aImpqDdksC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjY2OS85RDVCRjZGRTFE OTIxMUUyODg2RUFBRjUwOEIwMkNEMi9yVTFsTzROY1RoM3Bqc1pqZG9pYW1vTjJT d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JVMWxPNE5jVGgzcGpzWmpkb2lhbW9OMlN3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjY2OS85RDVCRjZGRTFEOTIxMUUyODg2RUFBRjUwOEIwMkNEMi9yVTFsTzROY1Ro M3Bqc1pqZG9pYW1vTjJTd0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNeI9vFHeSQU1Nq+N4ikUBGUTcSyN+hgQISbmRps5ZC3gcdsgxkdzD 4C5nXFhf6GmEH4ueXAKzMBKtUpWb6VfQNMQNnUEWJRJd/o0JZvwTMWlI3wAYoZx6 coE1DpSujVjz41xZ/PsVfvuI4tcTOrzChwrSWIsYI7U7zsuNuten1r/LT3U2aAje dIKaln66Tx+AEFO/ptkVwBO93/hK2boZqEDgMTwcliqRrcj1h5EfnywFOs9IBOQv stDeWzzYbuSXIkvHrsflqv4s7j3hqQ7tlMbuz+M95cgHlujAgT7d+Nt5Nfl10DAJ VuSLfXOa8eR97OaIulTffnV24NDE60Qk -----END CERTIFICATE-----Generated at Thu Jul 3 11:22:53 2025 by rpki-client