$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.mft File: lAiiAfAOWP6SWY7gOTkHi673d5U.mft (raw, json) Hash identifier: MAfxgxjDqHuBs01mgCwdU9xuNb42hZKPKXAQ8eOEsxQ= Subject key identifier: 4D:F3:11:F1:46:E2:4B:BF:10:E5:09:1C:77:C2:AB:34:DA:15:7E:4D Authority key identifier: 94:08:A2:01:F0:0E:58:FE:92:59:8E:E0:39:39:07:8B:AE:F7:77:95 Certificate issuer: /CN=A91A6F68/serialNumber=9408A201F00E58FE92598EE03939078BAEF77795 Certificate serial: 50 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lAiiAfAOWP6SWY7gOTkHi673d5U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.mft Manifest number: 50 Signing time: Thu 03 Jul 2025 07:30:34 +0000 Manifest this update: Thu 03 Jul 2025 07:30:33 +0000 Manifest next update: Thu 10 Jul 2025 07:30:33 +0000 Files and hashes: 1: lAiiAfAOWP6SWY7gOTkHi673d5U.crl (hash: RAehDwWOKM1TEgzi77geYttak0EP0jY/mieQSKpn34E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.crl rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lAiiAfAOWP6SWY7gOTkHi673d5U.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 80 (0x50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6F68, serialNumber=9408A201F00E58FE92598EE03939078BAEF77795 Validity Not Before: Jul 3 07:30:33 2025 GMT Not After : Jul 10 07:30:33 2025 GMT Subject: CN=68663199-59e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:f4:30:9e:dc:7a:5c:59:be:da:2c:f7:d6:bd: 27:99:22:a0:3c:7b:82:6f:8f:08:3c:14:b9:95:c1: ed:5c:c6:54:9e:10:7d:b0:8b:62:c3:ee:25:f0:7e: d4:f7:06:5f:32:23:16:5d:46:75:8e:0a:22:db:c9: 2b:14:dd:9c:45:28:79:ea:6f:45:25:9d:a1:6c:76: 9d:16:28:4d:06:9e:46:bd:b0:a9:d4:1a:30:c1:2d: bd:2f:d8:2b:af:89:04:61:c5:11:52:4c:80:4f:02: b2:a5:27:e4:b6:f4:3e:79:44:2e:a6:18:95:8d:00: c9:ce:f1:02:f3:b5:61:fa:9b:99:26:e2:f8:d0:9b: 73:b8:ff:35:6c:d5:e5:86:29:77:b4:72:56:c6:9e: 0a:bd:87:71:d7:e4:07:c9:e1:b9:a0:5d:ed:9d:62: 0f:8b:9a:7e:39:de:74:25:ef:c2:56:cd:a5:16:b0: 37:c9:e2:86:3f:92:b5:08:c0:cb:34:b2:01:60:41: dc:9c:1b:91:79:99:8c:11:6a:f5:22:28:a3:4a:9c: f2:25:66:d0:cb:c6:1e:72:2f:17:f7:fe:2e:54:e8: f3:86:25:de:6c:99:cf:37:30:b5:72:80:4c:2e:b5: 21:5d:b1:3a:7b:a5:5e:f0:fe:50:db:7f:da:50:10: f5:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:F3:11:F1:46:E2:4B:BF:10:E5:09:1C:77:C2:AB:34:DA:15:7E:4D X509v3 Authority Key Identifier: keyid:94:08:A2:01:F0:0E:58:FE:92:59:8E:E0:39:39:07:8B:AE:F7:77:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lAiiAfAOWP6SWY7gOTkHi673d5U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:a6:cc:9e:6b:96:a9:bf:f0:a0:5f:4f:1c:ad:86:22:fb:87: 17:53:23:c8:48:05:96:36:60:eb:58:4a:bf:cd:d2:e6:56:e4: 58:cc:20:2e:d0:1e:31:5b:88:b8:b4:5e:63:b0:a3:c9:20:a7: 8d:92:b5:5b:cb:c2:f7:65:e3:1c:e6:ff:bb:ed:2a:fc:3e:e4: e3:c6:7c:bc:01:55:f8:bc:91:60:b4:c5:3e:1c:2f:82:a4:ae: f8:4e:86:8d:36:86:d0:8c:a9:f3:a1:15:2d:10:f8:45:46:bd: ac:79:d1:c7:d9:07:00:35:14:9f:cb:a0:f7:7f:63:2c:ce:3e: f5:d2:6d:b0:37:ba:da:a2:82:74:ba:f8:a9:08:b8:7f:f5:a4: de:53:35:cf:71:7c:9d:94:08:5f:16:ab:f4:02:7b:a1:19:8d: 0c:c0:33:ce:88:ba:90:a3:af:21:66:e6:76:1b:bb:65:22:99: f0:0b:b2:2f:c8:71:4b:a5:50:03:6c:31:02:03:6d:fa:02:2c: 29:89:67:d4:e3:54:eb:6c:e7:77:48:68:2a:90:8c:0b:1f:d8: ff:58:5f:f6:73:84:b4:bf:1e:e6:46:52:63:02:84:09:7b:c1: 4a:e2:eb:52:30:3c:6f:3f:0d:89:89:2f:f6:c7:88:66:c7:20: 19:ff:78:42 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NkY2ODExMC8GA1UEBRMoOTQwOEEyMDFGMDBFNThGRTkyNTk4RUUwMzkzOTA3OEJB RUY3Nzc5NTAeFw0yNTA3MDMwNzMwMzNaFw0yNTA3MTAwNzMwMzNaMBgxFjAUBgNV BAMTDTY4NjYzMTk5LTU5ZTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDv9DCe3HpcWb7aLPfWvSeZIqA8e4Jvjwg8FLmVwe1cxlSeEH2wi2LD7iXwftT3 Bl8yIxZdRnWOCiLbySsU3ZxFKHnqb0UlnaFsdp0WKE0Gnka9sKnUGjDBLb0v2Cuv iQRhxRFSTIBPArKlJ+S29D55RC6mGJWNAMnO8QLztWH6m5km4vjQm3O4/zVs1eWG KXe0clbGngq9h3HX5AfJ4bmgXe2dYg+Lmn453nQl78JWzaUWsDfJ4oY/krUIwMs0 sgFgQdycG5F5mYwRavUiKKNKnPIlZtDLxh5yLxf3/i5U6POGJd5smc83MLVygEwu tSFdsTp7pV7w/lDbf9pQEPULAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUTfMR8Ubi S78Q5Qkcd8KrNNoVfk0wHwYDVR0jBBgwFoAUlAiiAfAOWP6SWY7gOTkHi673d5Uw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE2RjY4L0JBNTY1RjVDREYy MTExRUY4MzNGNEYyQ0M0RjlBRTAyL2xBaWlBZkFPV1A2U1dZN2dPVGtIaTY3M2Q1 VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvbEFpaUFmQU9XUDZTV1k3Z09Ua0hpNjczZDVVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE2 RjY4L0JBNTY1RjVDREYyMTExRUY4MzNGNEYyQ0M0RjlBRTAyL2xBaWlBZkFPV1A2 U1dZN2dPVGtIaTY3M2Q1VS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFOmzJ5rlqm/8KBfTxythiL7hxdTI8hIBZY2YOtYSr/N0uZW5FjMIC7Q HjFbiLi0XmOwo8kgp42StVvLwvdl4xzm/7vtKvw+5OPGfLwBVfi8kWC0xT4cL4Kk rvhOho02htCMqfOhFS0Q+EVGvax50cfZBwA1FJ/LoPd/YyzOPvXSbbA3utqignS6 +KkIuH/1pN5TNc9xfJ2UCF8Wq/QCe6EZjQzAM86IupCjryFm5nYbu2UimfALsi/I cUulUANsMQIDbfoCLCmJZ9TjVOts53dIaCqQjAsf2P9YX/ZzhLS/HuZGUmMChAl7 wUri61IwPG8/DYmJL/bHiGbHIBn/eEI= -----END CERTIFICATE-----Generated at Fri Jul 4 22:03:39 2025 by rpki-client