$ rpki-client -vvf rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.mft File: 28byJW3eXCxGqA6yQy8lcu3FN9Y.mft (raw, json) Hash identifier: 4uVACa7yKu/saJsFHkFsxZFS8IjZCbSnfu9+HYhyOf4= Subject key identifier: 64:2C:64:01:54:23:CF:E7:94:4D:A2:27:0E:9A:41:D7:43:49:A7:F2 Authority key identifier: DB:C6:F2:25:6D:DE:5C:2C:46:A8:0E:B2:43:2F:25:72:ED:C5:37:D6 Certificate issuer: /CN=A914D0E3/serialNumber=DBC6F2256DDE5C2C46A80EB2432F2572EDC537D6 Certificate serial: 85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28byJW3eXCxGqA6yQy8lcu3FN9Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.mft Manifest number: 85 Signing time: Thu 03 Jul 2025 06:48:10 +0000 Manifest this update: Thu 03 Jul 2025 06:48:10 +0000 Manifest next update: Thu 10 Jul 2025 06:48:09 +0000 Files and hashes: 1: 28byJW3eXCxGqA6yQy8lcu3FN9Y.crl (hash: RTj4i9B0EqZXJevh+mmu0Uqo2kPyi7AcSdxZh4qm3Oo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.crl rsync://rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28byJW3eXCxGqA6yQy8lcu3FN9Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 133 (0x85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D0E3, serialNumber=DBC6F2256DDE5C2C46A80EB2432F2572EDC537D6 Validity Not Before: Jul 3 06:48:10 2025 GMT Not After : Jul 10 06:48:09 2025 GMT Subject: CN=686627aa-9fc4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:bf:40:07:1a:8b:7e:d8:34:78:b7:5e:94:61: a9:8a:bd:69:89:78:56:0c:a6:af:43:bb:cb:af:24: d9:66:3c:5c:c0:ff:36:10:ac:be:0e:66:da:0a:b4: 81:1e:5c:f9:f7:f5:74:1d:9d:3e:a2:44:49:0e:f9: b9:fd:94:61:69:92:0d:f1:03:e3:60:30:e5:95:97: 99:de:54:4d:af:ea:e7:cc:e5:44:fd:20:cd:09:0f: de:9f:37:91:78:f5:a2:0b:69:30:3a:6c:1b:9a:0c: 0d:07:c5:97:c4:b0:ee:9a:65:71:01:e4:44:95:af: 92:24:69:e2:40:7b:9e:a5:9d:2c:07:b2:0e:b0:50: f0:0e:7b:86:43:92:7a:22:14:c0:35:32:00:0a:53: 67:3c:d6:0e:3d:8c:8d:99:7e:80:f9:d7:ed:8f:73: 59:65:1d:9b:82:73:30:4d:06:2a:02:12:80:92:6d: c1:0b:4f:d2:d5:03:32:7a:eb:c3:f8:17:23:55:5c: 3f:68:c7:65:23:b5:fb:60:f1:27:2a:8f:ba:a1:7a: ef:92:17:4e:dc:c3:bc:6f:1f:63:42:1e:37:43:78: 5f:63:23:55:96:6f:cd:45:30:5f:eb:bf:2b:5c:fd: e2:7c:48:37:63:0e:be:eb:03:2e:aa:de:03:b1:38: 82:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:2C:64:01:54:23:CF:E7:94:4D:A2:27:0E:9A:41:D7:43:49:A7:F2 X509v3 Authority Key Identifier: keyid:DB:C6:F2:25:6D:DE:5C:2C:46:A8:0E:B2:43:2F:25:72:ED:C5:37:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28byJW3eXCxGqA6yQy8lcu3FN9Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:f0:67:62:59:cb:e9:19:96:a8:54:81:80:b9:aa:bd:f9:47: ea:69:33:c6:32:c8:4d:81:a9:98:21:03:d2:21:51:7f:23:54: d8:11:69:ea:86:6a:b9:9d:94:26:dd:ef:19:56:88:7d:06:fc: 9e:01:1e:fd:51:b3:0f:df:4f:56:80:d4:cb:ab:6f:27:ce:37: 78:e1:28:1c:3f:d5:9f:6b:2b:b0:b7:74:4b:74:74:02:37:09: 4d:dd:f0:2f:67:0d:e3:98:b0:49:b1:14:75:d3:ae:c0:4d:3f: 58:54:ee:2e:05:70:36:2a:76:d9:4f:c5:a6:07:01:3e:cb:b7: 62:b1:d8:2d:1a:47:d5:38:b9:bb:44:ec:98:d5:0f:f5:ef:63: 66:7c:55:4a:94:90:e9:4d:c7:0e:62:53:6b:ad:c5:08:45:0d: 20:8d:51:e2:5c:b5:aa:dd:8f:32:7a:43:ae:2a:94:cf:c7:99: 5d:27:81:cf:a2:0f:5e:c1:4f:a4:c3:e2:3b:ab:e7:fc:41:f1: 42:96:42:f2:30:67:5a:34:91:36:98:f6:bf:b7:ae:86:c2:eb: 0d:82:f8:9a:55:65:2f:f2:47:85:c6:dd:52:fd:69:ce:5e:cf: f0:ea:95:56:3c:76:77:22:30:12:17:33:07:73:cf:d1:f1:90: 2e:e2:ae:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQwRTMxMTAvBgNVBAUTKERCQzZGMjI1NkRERTVDMkM0NkE4MEVCMjQzMkYyNTcy RURDNTM3RDYwHhcNMjUwNzAzMDY0ODEwWhcNMjUwNzEwMDY0ODA5WjAYMRYwFAYD VQQDEw02ODY2MjdhYS05ZmM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtb9ABxqLftg0eLdelGGpir1piXhWDKavQ7vLryTZZjxcwP82EKy+DmbaCrSB Hlz59/V0HZ0+okRJDvm5/ZRhaZIN8QPjYDDllZeZ3lRNr+rnzOVE/SDNCQ/enzeR ePWiC2kwOmwbmgwNB8WXxLDummVxAeREla+SJGniQHuepZ0sB7IOsFDwDnuGQ5J6 IhTANTIAClNnPNYOPYyNmX6A+dftj3NZZR2bgnMwTQYqAhKAkm3BC0/S1QMyeuvD +BcjVVw/aMdlI7X7YPEnKo+6oXrvkhdO3MO8bx9jQh43Q3hfYyNVlm/NRTBf678r XP3ifEg3Yw6+6wMuqt4DsTiCPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGQsZAFU I8/nlE2iJw6aQddDSafyMB8GA1UdIwQYMBaAFNvG8iVt3lwsRqgOskMvJXLtxTfW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDBFMy9CMzVBQjlGQThD N0UxMUVGOEU5MkU3MUJDNEY5QUUwMi8yOGJ5SlczZVhDeEdxQTZ5UXk4bGN1M0ZO OVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzI4YnlKVzNlWEN4R3FBNnlReThsY3UzRk45WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDBFMy9CMzVBQjlGQThDN0UxMUVGOEU5MkU3MUJDNEY5QUUwMi8yOGJ5SlczZVhD eEdxQTZ5UXk4bGN1M0ZOOVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCN8GdiWcvpGZaoVIGAuaq9+UfqaTPGMshNgamYIQPSIVF/I1TYEWnq hmq5nZQm3e8ZVoh9BvyeAR79UbMP309WgNTLq28nzjd44SgcP9Wfayuwt3RLdHQC NwlN3fAvZw3jmLBJsRR1067ATT9YVO4uBXA2KnbZT8WmBwE+y7disdgtGkfVOLm7 ROyY1Q/172NmfFVKlJDpTccOYlNrrcUIRQ0gjVHiXLWq3Y8yekOuKpTPx5ldJ4HP og9ewU+kw+I7q+f8QfFClkLyMGdaNJE2mPa/t66GwusNgviaVWUv8keFxt1S/WnO Xs/w6pVWPHZ3IjASFzMHc8/R8ZAu4q6S -----END CERTIFICATE-----Generated at Sat Jul 5 05:20:23 2025 by rpki-client