$ rpki-client -vvf rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.mft File: 28byJW3eXCxGqA6yQy8lcu3FN9Y.mft (raw, json) Hash identifier: ufhB5EfyRQv7Ury8kF6t2jYWQzCQiu/FkYdxbM3tZPo= Subject key identifier: 18:7C:8E:7D:98:5D:51:CD:08:4E:A2:6C:35:6F:A6:03:6B:8B:53:B3 Authority key identifier: DB:C6:F2:25:6D:DE:5C:2C:46:A8:0E:B2:43:2F:25:72:ED:C5:37:D6 Certificate issuer: /CN=A914D0E3/serialNumber=DBC6F2256DDE5C2C46A80EB2432F2572EDC537D6 Certificate serial: 6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28byJW3eXCxGqA6yQy8lcu3FN9Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.mft Manifest number: 6C Signing time: Tue 13 May 2025 06:06:33 +0000 Manifest this update: Tue 13 May 2025 06:06:33 +0000 Manifest next update: Tue 20 May 2025 06:06:33 +0000 Files and hashes: 1: 28byJW3eXCxGqA6yQy8lcu3FN9Y.crl (hash: m9jLdwbytF3Husgs+uyZlN+qDu2zVQC66fiYpc8sjaM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.crl rsync://rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28byJW3eXCxGqA6yQy8lcu3FN9Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 06:06:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 108 (0x6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D0E3, serialNumber=DBC6F2256DDE5C2C46A80EB2432F2572EDC537D6 Validity Not Before: May 13 06:06:33 2025 GMT Not After : May 20 06:06:33 2025 GMT Subject: CN=6822e169-886c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:2b:97:03:6a:3c:6e:d0:88:f8:7f:43:2e:41: f8:ca:d1:67:df:ff:f7:2e:b3:43:f4:25:0e:3d:86: 07:13:85:36:df:07:75:b5:91:34:6e:24:8b:99:2f: 85:48:35:2b:63:02:fb:7b:1a:ad:db:fd:1f:7c:16: b1:38:e4:19:6b:e0:ac:11:15:fc:0c:16:a2:14:20: b2:6e:1c:c5:c9:d1:ec:e2:93:6c:3e:78:46:39:3e: b2:8a:e9:d2:67:90:22:41:9f:bc:a8:1a:b9:d1:9d: 9a:52:45:5b:7c:db:4c:3c:86:86:d7:d5:6c:54:27: b0:2d:5a:2f:66:97:e5:fe:69:0b:2a:d9:28:c0:55: 33:df:93:7f:d1:5a:1d:1b:9d:46:ea:73:80:ba:f7: b0:7d:18:c9:c9:59:9d:d2:72:7f:7a:ba:7c:50:0c: 3d:d0:24:71:e7:bf:a9:22:ec:5e:ae:03:bc:c6:93: d9:fa:a5:9d:eb:69:0e:cd:71:dc:9e:ae:39:d1:14: 5c:06:0d:90:52:7f:19:5b:f3:10:93:ab:32:be:7a: e5:3f:9c:08:ae:96:07:24:a3:00:c5:b7:59:2a:62: 9a:b5:04:0d:8f:06:4c:18:e3:4e:e9:52:29:bd:11: bd:24:ab:73:f0:c3:8b:e0:1a:1a:83:9d:8d:d1:3f: 14:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:7C:8E:7D:98:5D:51:CD:08:4E:A2:6C:35:6F:A6:03:6B:8B:53:B3 X509v3 Authority Key Identifier: keyid:DB:C6:F2:25:6D:DE:5C:2C:46:A8:0E:B2:43:2F:25:72:ED:C5:37:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28byJW3eXCxGqA6yQy8lcu3FN9Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:03:6b:9f:07:0c:07:99:ae:0b:71:10:a0:eb:46:60:c4:de: 25:51:56:b0:ea:a4:f2:ab:b9:e6:49:c3:71:97:09:4f:64:bf: 38:3c:de:4f:08:a5:87:45:42:f4:90:39:f8:d0:47:66:41:e2: d5:bb:f9:81:61:32:ef:70:92:4a:60:fc:b2:eb:af:77:e9:8b: 39:72:6c:37:95:75:68:94:b2:25:35:a8:32:9f:85:06:88:25: 74:82:d1:e0:f1:a4:76:a0:0e:77:e0:c5:e2:16:5d:83:00:ed: f7:f0:80:e0:a0:b1:03:fb:b7:95:e5:b8:59:86:45:25:87:40: 4a:74:57:65:78:2f:31:31:38:cf:c4:16:2c:ce:0b:ae:7a:d8: 53:e0:81:48:d5:b5:56:9d:3a:74:c4:f8:71:94:d9:83:95:2f: 63:a0:61:45:86:b2:76:e5:13:7f:56:b1:6a:51:9e:0a:59:19: 8f:21:39:23:5e:3d:07:6f:62:29:22:2c:ba:ca:6d:ff:eb:b4: e4:6d:e7:7d:26:85:cf:39:ab:54:6b:23:17:61:54:48:9c:43: f1:84:c7:93:1b:04:89:1d:0a:5e:c1:8b:6e:cf:2d:0e:f1:ca: 52:f4:29:f4:0d:11:4a:61:7a:27:e7:e3:f5:f9:5f:73:74:23: d1:9a:a8:1d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 RDBFMzExMC8GA1UEBRMoREJDNkYyMjU2RERFNUMyQzQ2QTgwRUIyNDMyRjI1NzJF REM1MzdENjAeFw0yNTA1MTMwNjA2MzNaFw0yNTA1MjAwNjA2MzNaMBgxFjAUBgNV BAMTDTY4MjJlMTY5LTg4NmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/K5cDajxu0Ij4f0MuQfjK0Wff//cus0P0JQ49hgcThTbfB3W1kTRuJIuZL4VI NStjAvt7Gq3b/R98FrE45Blr4KwRFfwMFqIUILJuHMXJ0ezik2w+eEY5PrKK6dJn kCJBn7yoGrnRnZpSRVt820w8hobX1WxUJ7AtWi9ml+X+aQsq2SjAVTPfk3/RWh0b nUbqc4C697B9GMnJWZ3Scn96unxQDD3QJHHnv6ki7F6uA7zGk9n6pZ3raQ7Ncdye rjnRFFwGDZBSfxlb8xCTqzK+euU/nAiulgckowDFt1kqYpq1BA2PBkwY407pUim9 Eb0kq3Pww4vgGhqDnY3RPxSZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUGHyOfZhd Uc0ITqJsNW+mA2uLU7MwHwYDVR0jBBgwFoAU28byJW3eXCxGqA6yQy8lcu3FN9Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTREMEUzL0IzNUFCOUZBOEM3 RTExRUY4RTkyRTcxQkM0RjlBRTAyLzI4YnlKVzNlWEN4R3FBNnlReThsY3UzRk45 WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMjhieUpXM2VYQ3hHcUE2eVF5OGxjdTNGTjlZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRE MEUzL0IzNUFCOUZBOEM3RTExRUY4RTkyRTcxQkM0RjlBRTAyLzI4YnlKVzNlWEN4 R3FBNnlReThsY3UzRk45WS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHwDa58HDAeZrgtxEKDrRmDE3iVRVrDqpPKrueZJw3GXCU9kvzg83k8I pYdFQvSQOfjQR2ZB4tW7+YFhMu9wkkpg/LLrr3fpizlybDeVdWiUsiU1qDKfhQaI JXSC0eDxpHagDnfgxeIWXYMA7ffwgOCgsQP7t5XluFmGRSWHQEp0V2V4LzExOM/E FizOC6562FPggUjVtVadOnTE+HGU2YOVL2OgYUWGsnblE39WsWpRngpZGY8hOSNe PQdvYikiLLrKbf/rtORt530mhc85q1RrIxdhVEicQ/GEx5MbBIkdCl7Bi27PLQ7x ylL0KfQNEUpheifn4/X5X3N0I9GaqB0= -----END CERTIFICATE-----Generated at Tue May 13 18:57:27 2025 by rpki-client