$ rpki-client -vvf rpki.apnic.net/member_repository/A918B936/4075121AF0CD11E5A4432E74C4F9AE02/cEWnGLvrKJ8Y0fkw-jMtYzLZVV4.mft File: cEWnGLvrKJ8Y0fkw-jMtYzLZVV4.mft (raw, json) Hash identifier: UJ2GyE89ypUmS15yQnHY7lYtNBwdTw3MzpirKzsD7RA= Subject key identifier: 68:04:34:16:45:59:4C:28:3A:A8:3B:52:26:7C:34:33:98:CB:96:05 Authority key identifier: 70:45:A7:18:BB:EB:28:9F:18:D1:F9:30:FA:33:2D:63:32:D9:55:5E Certificate issuer: /CN=A918B936/serialNumber=7045A718BBEB289F18D1F930FA332D6332D9555E Certificate serial: 20FB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cEWnGLvrKJ8Y0fkw-jMtYzLZVV4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B936/4075121AF0CD11E5A4432E74C4F9AE02/cEWnGLvrKJ8Y0fkw-jMtYzLZVV4.mft Manifest number: 20FB Signing time: Mon 12 May 2025 15:54:26 +0000 Manifest this update: Mon 12 May 2025 15:54:26 +0000 Manifest next update: Mon 19 May 2025 15:54:26 +0000 Files and hashes: 1: cEWnGLvrKJ8Y0fkw-jMtYzLZVV4.crl (hash: 2tuEfm7LcyiTGG4jV6CcI/2XOEge30TlDUNrHjz07Nc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B936/4075121AF0CD11E5A4432E74C4F9AE02/cEWnGLvrKJ8Y0fkw-jMtYzLZVV4.crl rsync://rpki.apnic.net/member_repository/A918B936/4075121AF0CD11E5A4432E74C4F9AE02/cEWnGLvrKJ8Y0fkw-jMtYzLZVV4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cEWnGLvrKJ8Y0fkw-jMtYzLZVV4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 15:54:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8443 (0x20fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B936, serialNumber=7045A718BBEB289F18D1F930FA332D6332D9555E Validity Not Before: May 12 15:54:26 2025 GMT Not After : May 19 15:54:26 2025 GMT Subject: CN=682219b2-8a3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:d5:e4:4c:65:16:00:01:4d:f6:8e:c3:f1:be: cb:56:75:62:40:24:76:d9:9e:f8:54:40:d5:c0:0c: bb:1e:e7:71:37:a4:ca:79:5c:ab:cf:82:30:26:7d: 49:da:ac:e8:d5:37:e1:12:65:ea:93:c7:90:59:16: d9:98:6e:55:5c:5a:d6:17:c7:9d:94:b0:fe:0a:76: 9e:23:15:5a:b6:50:d8:85:7b:49:93:ec:b8:1f:cb: f2:b6:32:6c:31:34:45:41:f7:13:0c:b1:41:e1:1d: 7c:f2:f4:b6:63:eb:0f:b9:7f:99:9a:30:f5:ed:5e: cd:13:e6:2d:d6:96:80:75:4d:95:62:81:61:f1:dc: 51:b7:3d:95:aa:c2:07:c8:6b:5c:85:1b:7f:3b:e2: 53:ac:24:c9:07:95:b7:f9:21:f0:c3:3f:66:2e:28: 77:6c:31:3d:f8:93:41:0b:31:77:57:5b:5b:36:28: 3b:d9:37:23:bb:eb:2e:cf:71:34:8f:b8:c2:f7:12: 07:cd:98:04:50:ae:38:ff:65:43:d6:67:f5:fb:6c: 8b:2d:13:cc:f3:71:cb:8f:be:ab:68:78:c4:5b:b0: 1e:7c:85:f7:5b:dd:1e:13:66:bd:0e:dd:43:e9:af: 99:ce:38:57:ed:e0:19:08:2c:61:6f:9b:cf:05:a8: b8:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:04:34:16:45:59:4C:28:3A:A8:3B:52:26:7C:34:33:98:CB:96:05 X509v3 Authority Key Identifier: keyid:70:45:A7:18:BB:EB:28:9F:18:D1:F9:30:FA:33:2D:63:32:D9:55:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B936/4075121AF0CD11E5A4432E74C4F9AE02/cEWnGLvrKJ8Y0fkw-jMtYzLZVV4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cEWnGLvrKJ8Y0fkw-jMtYzLZVV4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B936/4075121AF0CD11E5A4432E74C4F9AE02/cEWnGLvrKJ8Y0fkw-jMtYzLZVV4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:62:c1:18:66:9d:59:a2:c8:ab:03:13:f3:15:33:c8:80:30: ee:91:58:ff:72:44:c5:08:05:a7:8d:6c:9e:3e:61:f6:cd:75: 62:b8:e6:45:f7:d8:7a:41:df:7e:bf:83:22:e0:bc:6a:e8:d3: 5c:8e:4e:a9:8a:16:60:81:23:d5:90:89:65:8b:55:18:78:d5: 20:28:56:ee:ce:c3:cf:47:e2:bb:53:6e:e4:01:63:c3:6f:37: 8a:69:fe:75:9d:b0:ca:66:16:f2:83:17:57:2e:ff:49:ce:f4: 06:2c:c1:ff:ff:d4:7e:3b:31:ca:75:71:f4:2a:63:e5:d2:fe: 90:16:03:8f:ab:b4:32:4c:e6:6a:c3:1e:ea:88:56:84:e4:88: 82:98:5c:73:ef:41:45:4f:e9:c8:39:10:68:6a:5b:bc:cb:47: b1:8e:04:5d:d2:a8:c3:e9:2a:9e:8a:57:bf:d3:72:a5:e0:e4: 17:c9:7c:1e:64:e3:2a:57:c2:13:e8:58:db:1c:36:fb:24:83: 09:1e:e9:04:7b:10:84:0f:95:13:14:87:15:1e:88:37:9f:eb: eb:89:06:18:05:e1:e5:e1:f5:97:7a:05:ea:5d:d4:f8:36:4f: f5:86:76:ff:73:38:1a:f5:f7:f0:ba:f5:16:6a:33:41:a1:1b: 90:65:a2:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIPswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEI5MzYxMTAvBgNVBAUTKDcwNDVBNzE4QkJFQjI4OUYxOEQxRjkzMEZBMzMyRDYz MzJEOTU1NUUwHhcNMjUwNTEyMTU1NDI2WhcNMjUwNTE5MTU1NDI2WjAYMRYwFAYD VQQDEw02ODIyMTliMi04YTNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3dXkTGUWAAFN9o7D8b7LVnViQCR22Z74VEDVwAy7HudxN6TKeVyrz4IwJn1J 2qzo1TfhEmXqk8eQWRbZmG5VXFrWF8edlLD+CnaeIxVatlDYhXtJk+y4H8vytjJs MTRFQfcTDLFB4R188vS2Y+sPuX+ZmjD17V7NE+Yt1paAdU2VYoFh8dxRtz2VqsIH yGtchRt/O+JTrCTJB5W3+SHwwz9mLih3bDE9+JNBCzF3V1tbNig72Tcju+suz3E0 j7jC9xIHzZgEUK44/2VD1mf1+2yLLRPM83HLj76raHjEW7AefIX3W90eE2a9Dt1D 6a+ZzjhX7eAZCCxhb5vPBai4iwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGgENBZF WUwoOqg7UiZ8NDOYy5YFMB8GA1UdIwQYMBaAFHBFpxi76yifGNH5MPozLWMy2VVe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjkzNi80MDc1MTIxQUYw Q0QxMUU1QTQ0MzJFNzRDNEY5QUUwMi9jRVduR0x2cktKOFkwZmt3LWpNdFl6TFpW VjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2NFV25HTHZyS0o4WTBma3ctak10WXpMWlZWNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QjkzNi80MDc1MTIxQUYwQ0QxMUU1QTQ0MzJFNzRDNEY5QUUwMi9jRVduR0x2cktK OFkwZmt3LWpNdFl6TFpWVjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFYsEYZp1ZosirAxPzFTPIgDDukVj/ckTFCAWnjWyePmH2zXViuOZF 99h6Qd9+v4Mi4Lxq6NNcjk6pihZggSPVkIlli1UYeNUgKFbuzsPPR+K7U27kAWPD bzeKaf51nbDKZhbygxdXLv9JzvQGLMH//9R+OzHKdXH0KmPl0v6QFgOPq7QyTOZq wx7qiFaE5IiCmFxz70FFT+nIORBoalu8y0exjgRd0qjD6Sqeile/03Kl4OQXyXwe ZOMqV8IT6FjbHDb7JIMJHukEexCED5UTFIcVHog3n+vriQYYBeHl4fWXegXqXdT4 Nk/1hnb/czga9ffwuvUWajNBoRuQZaKA -----END CERTIFICATE-----Generated at Mon May 12 22:47:30 2025 by rpki-client