$ rpki-client -vvf rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.mft File: rU1lO4NcTh3pjsZjdoiamoN2SwI.mft (raw, json) Hash identifier: vwBYhAd5Y/QhyLpfKyDnrDTcRD8Y2vuDw5OsY9SIp/c= Subject key identifier: B4:1E:76:49:01:A5:50:A2:87:64:F8:04:D9:C8:A9:D1:EB:C0:71:02 Authority key identifier: AD:4D:65:3B:83:5C:4E:1D:E9:8E:C6:63:76:88:9A:9A:83:76:4B:02 Certificate issuer: /CN=A914B669/serialNumber=AD4D653B835C4E1DE98EC66376889A9A83764B02 Certificate serial: 347A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rU1lO4NcTh3pjsZjdoiamoN2SwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.mft Manifest number: 347A Signing time: Fri 16 May 2025 14:47:17 +0000 Manifest this update: Fri 16 May 2025 14:47:16 +0000 Manifest next update: Fri 23 May 2025 14:47:16 +0000 Files and hashes: 1: rU1lO4NcTh3pjsZjdoiamoN2SwI.crl (hash: /s6XVWoFhoLZREVgUcBoFzTVv5hsmtG9GnPOf3K+e8U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.crl rsync://rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rU1lO4NcTh3pjsZjdoiamoN2SwI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 14:47:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13434 (0x347a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B669, serialNumber=AD4D653B835C4E1DE98EC66376889A9A83764B02 Validity Not Before: May 16 14:47:16 2025 GMT Not After : May 23 14:47:16 2025 GMT Subject: CN=68274ff4-98c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:62:3c:68:df:d8:0b:fa:63:19:37:15:5b:22: 54:41:a0:57:ef:19:c6:8b:1a:bd:67:25:c6:00:d6: 95:14:d9:69:ff:75:f7:12:06:44:f8:56:65:3f:d5: 16:0a:29:db:1c:27:50:39:9a:56:e5:b2:81:64:e8: cf:55:5a:2b:bf:62:09:ac:26:53:81:72:7d:92:80: fb:e9:1a:c9:83:6a:f1:8e:aa:bf:02:5b:d9:6d:3d: 48:dc:b5:77:21:a3:c1:63:44:47:e0:40:cf:73:1a: e9:1e:79:7e:9b:41:42:9d:41:12:d6:be:c5:bc:5c: 57:d6:7c:14:cb:57:23:9f:77:0e:ec:f2:25:a7:df: dd:7f:5f:c3:56:13:89:e7:3e:7c:e8:d7:d7:04:ac: db:07:a3:4a:4a:e8:f9:42:62:e8:5d:36:30:6c:8f: a1:bb:ae:fa:f2:4e:49:79:35:9f:5f:1e:ad:ac:ce: 7d:15:9c:70:aa:84:c2:bc:60:ac:9b:0c:f8:d8:c8: 28:cc:47:e1:f7:2f:57:b2:ee:5c:24:ec:bc:8c:26: c3:9b:7b:c4:e8:57:3a:2a:2c:6c:da:d9:10:f1:d4: 47:65:2a:d8:3b:90:c8:83:72:ae:af:b4:9f:f4:3f: 29:e1:d7:a6:eb:cf:d9:d9:5a:37:54:28:c4:e4:68: bc:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:1E:76:49:01:A5:50:A2:87:64:F8:04:D9:C8:A9:D1:EB:C0:71:02 X509v3 Authority Key Identifier: keyid:AD:4D:65:3B:83:5C:4E:1D:E9:8E:C6:63:76:88:9A:9A:83:76:4B:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rU1lO4NcTh3pjsZjdoiamoN2SwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:e6:9a:fe:a1:3f:a4:28:68:8e:4d:95:5f:77:bc:ec:aa:b9: e3:78:19:14:23:34:b1:99:7e:80:fb:62:44:31:94:a8:dd:f7: 45:5e:0c:e5:c2:80:fc:01:2e:0a:1a:40:3d:b9:19:fa:aa:f0: ae:18:8a:48:53:22:04:b0:06:9d:b2:93:00:3b:17:78:91:a3: 96:22:c7:e2:fa:16:ac:25:22:7c:1b:ae:37:52:e7:9b:b1:2f: 8b:c3:8c:08:28:11:3a:2a:4e:3d:0e:b8:88:28:db:39:e7:ab: b1:4b:44:3c:a7:ab:80:c3:cf:a9:38:38:1a:10:b6:38:df:e0: 28:28:f8:6c:be:f5:b5:99:bb:c6:5b:65:90:18:06:86:2f:23: 6a:7a:31:07:42:3d:ae:78:4b:8d:88:4b:2b:2f:6b:54:bd:e3: 07:ea:e1:d1:df:67:f1:61:7d:9c:03:9a:73:c1:9b:33:a2:4b: 42:b3:1a:53:b1:15:d7:29:03:64:4a:b6:fd:9c:82:10:96:68: 12:84:62:bf:9e:2d:eb:49:11:a0:fd:54:9f:80:bb:03:63:47: 72:ef:16:99:b6:8d:4a:3f:3e:b1:05:53:ad:16:d3:52:94:e6: e0:45:f0:6c:c9:aa:f6:8c:a4:e2:ea:0f:3f:98:e9:15:86:0a: d9:72:c2:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNHowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEI2NjkxMTAvBgNVBAUTKEFENEQ2NTNCODM1QzRFMURFOThFQzY2Mzc2ODg5QTlB ODM3NjRCMDIwHhcNMjUwNTE2MTQ0NzE2WhcNMjUwNTIzMTQ0NzE2WjAYMRYwFAYD VQQDEw02ODI3NGZmNC05OGM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+WI8aN/YC/pjGTcVWyJUQaBX7xnGixq9ZyXGANaVFNlp/3X3EgZE+FZlP9UW CinbHCdQOZpW5bKBZOjPVVorv2IJrCZTgXJ9koD76RrJg2rxjqq/AlvZbT1I3LV3 IaPBY0RH4EDPcxrpHnl+m0FCnUES1r7FvFxX1nwUy1cjn3cO7PIlp9/df1/DVhOJ 5z586NfXBKzbB6NKSuj5QmLoXTYwbI+hu6768k5JeTWfXx6trM59FZxwqoTCvGCs mwz42MgozEfh9y9Xsu5cJOy8jCbDm3vE6Fc6Kixs2tkQ8dRHZSrYO5DIg3Kur7Sf 9D8p4dem68/Z2Vo3VCjE5Gi8zwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLQedkkB pVCih2T4BNnIqdHrwHECMB8GA1UdIwQYMBaAFK1NZTuDXE4d6Y7GY3aImpqDdksC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjY2OS85RDVCRjZGRTFE OTIxMUUyODg2RUFBRjUwOEIwMkNEMi9yVTFsTzROY1RoM3Bqc1pqZG9pYW1vTjJT d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JVMWxPNE5jVGgzcGpzWmpkb2lhbW9OMlN3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjY2OS85RDVCRjZGRTFEOTIxMUUyODg2RUFBRjUwOEIwMkNEMi9yVTFsTzROY1Ro M3Bqc1pqZG9pYW1vTjJTd0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBj5pr+oT+kKGiOTZVfd7zsqrnjeBkUIzSxmX6A+2JEMZSo3fdFXgzl woD8AS4KGkA9uRn6qvCuGIpIUyIEsAadspMAOxd4kaOWIsfi+hasJSJ8G643Uueb sS+Lw4wIKBE6Kk49DriIKNs556uxS0Q8p6uAw8+pODgaELY43+AoKPhsvvW1mbvG W2WQGAaGLyNqejEHQj2ueEuNiEsrL2tUveMH6uHR32fxYX2cA5pzwZszoktCsxpT sRXXKQNkSrb9nIIQlmgShGK/ni3rSRGg/VSfgLsDY0dy7xaZto1KPz6xBVOtFtNS lObgRfBsyar2jKTi6g8/mOkVhgrZcsI9 -----END CERTIFICATE-----Generated at Sat May 17 00:52:26 2025 by rpki-client