$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1C73/C491BA4EAC0D11EF9879926EC4F9AE02/64mHxSCv7Nwk9ByG_Gut08Fvpio.mft File: 64mHxSCv7Nwk9ByG_Gut08Fvpio.mft (raw, json) Hash identifier: IzeZj8+IhXPZhgJoYJbDmBYyHWW0JXxD27BNinx9jWo= Subject key identifier: 55:B2:70:F9:AB:91:BB:CC:D6:BE:20:41:72:BB:7C:1A:91:E3:4A:AB Authority key identifier: EB:89:87:C5:20:AF:EC:DC:24:F4:1C:86:FC:6B:AD:D3:C1:6F:A6:2A Certificate issuer: /CN=A91B1C73/serialNumber=EB8987C520AFECDC24F41C86FC6BADD3C16FA62A Certificate serial: 59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/64mHxSCv7Nwk9ByG_Gut08Fvpio.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1C73/C491BA4EAC0D11EF9879926EC4F9AE02/64mHxSCv7Nwk9ByG_Gut08Fvpio.mft Manifest number: 59 Signing time: Thu 15 May 2025 06:27:39 +0000 Manifest this update: Thu 15 May 2025 06:27:38 +0000 Manifest next update: Thu 22 May 2025 06:27:38 +0000 Files and hashes: 1: 64mHxSCv7Nwk9ByG_Gut08Fvpio.crl (hash: ZlIZ2VxxKGpqrNE+PLVE9DDzzqwYm8c993ryjwim9+g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1C73/C491BA4EAC0D11EF9879926EC4F9AE02/64mHxSCv7Nwk9ByG_Gut08Fvpio.crl rsync://rpki.apnic.net/member_repository/A91B1C73/C491BA4EAC0D11EF9879926EC4F9AE02/64mHxSCv7Nwk9ByG_Gut08Fvpio.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/64mHxSCv7Nwk9ByG_Gut08Fvpio.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 06:27:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 89 (0x59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1C73, serialNumber=EB8987C520AFECDC24F41C86FC6BADD3C16FA62A Validity Not Before: May 15 06:27:38 2025 GMT Not After : May 22 06:27:38 2025 GMT Subject: CN=6825895a-4388 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:da:bb:4b:ff:cf:4f:c7:09:52:5e:16:62:fe: b2:f7:c4:5b:b4:b5:08:83:68:96:0f:ac:b4:3a:5d: 71:eb:c9:a7:e0:3b:e4:01:f1:88:b7:0a:62:2b:44: ca:c2:89:4b:6c:37:11:08:79:ca:ab:7c:26:a5:9e: 34:bb:c8:a6:e7:7f:27:bc:34:7d:e9:35:10:9a:8a: 09:2c:4c:d0:09:18:7e:50:a4:bf:25:26:e9:6e:48: 23:63:fd:45:81:55:65:71:cb:7a:1c:8c:9c:27:79: bb:9d:3b:d2:b6:01:06:a0:e5:b3:ca:81:39:63:c1: f3:44:a3:9b:21:32:32:d6:59:cb:8c:eb:ea:ca:f4: f3:7b:83:6c:4a:a9:24:88:de:d0:e8:ff:3e:8d:c5: 56:96:11:09:62:8a:57:cf:06:5e:30:00:d0:00:e5: 48:ca:7a:a4:4c:75:e5:0a:b8:58:d7:aa:ba:c1:04: a4:35:b3:0f:03:16:09:df:36:c0:2a:65:82:de:26: 8a:7d:13:16:61:af:b3:1e:21:8e:cf:ed:4f:5a:43: 3f:49:7c:20:42:6b:39:79:cc:61:6e:69:4a:cf:70: b1:4b:b2:7b:c0:74:90:f8:0f:9c:64:89:41:26:4c: 5b:a2:b9:f3:7f:a1:86:14:14:a5:9d:dd:8a:d8:d5: af:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:B2:70:F9:AB:91:BB:CC:D6:BE:20:41:72:BB:7C:1A:91:E3:4A:AB X509v3 Authority Key Identifier: keyid:EB:89:87:C5:20:AF:EC:DC:24:F4:1C:86:FC:6B:AD:D3:C1:6F:A6:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1C73/C491BA4EAC0D11EF9879926EC4F9AE02/64mHxSCv7Nwk9ByG_Gut08Fvpio.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/64mHxSCv7Nwk9ByG_Gut08Fvpio.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1C73/C491BA4EAC0D11EF9879926EC4F9AE02/64mHxSCv7Nwk9ByG_Gut08Fvpio.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:cc:23:0f:9c:75:22:49:75:19:c6:e8:79:dd:81:54:51:07: bf:79:ae:d0:08:a1:98:5d:9a:48:1f:d9:a4:80:24:8d:4e:8b: 16:12:0b:d7:30:e6:ec:b4:1f:62:43:53:32:f8:0d:8a:f7:ff: c9:00:84:e0:b5:25:93:c7:d0:00:83:98:6c:e1:f5:54:b5:08: e0:7f:85:5c:46:6b:f3:22:bb:2a:78:b4:94:e8:91:4f:59:e3: 0e:50:18:6a:65:58:b0:b2:2b:94:ab:c8:2f:a8:37:27:06:8e: af:cf:33:5e:89:12:a4:f3:51:2d:a0:6c:5b:6d:bd:de:c6:78: c4:10:60:3f:6c:c5:8d:5b:4b:3b:c0:d6:23:e8:d4:5f:29:fa: bc:ce:d0:83:be:7a:3d:ce:12:20:ab:38:df:16:5c:8e:99:76: c8:d4:0a:37:d7:29:29:9f:17:e6:95:0d:db:43:6b:50:8b:b0: b5:2c:e2:d6:72:dd:fc:a7:df:18:a3:07:86:72:d0:90:ce:ac: a9:84:0f:d2:37:b9:1e:4f:02:ff:25:78:6e:c2:7a:63:cf:08: 53:db:9f:3f:27:83:48:9e:b7:25:c0:89:05:e4:e4:1d:1a:c3: e3:6c:da:b5:2b:08:b3:08:a9:a6:be:e9:dc:ea:94:8d:09:5a: 83:13:e9:ea -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MUM3MzExMC8GA1UEBRMoRUI4OTg3QzUyMEFGRUNEQzI0RjQxQzg2RkM2QkFERDND MTZGQTYyQTAeFw0yNTA1MTUwNjI3MzhaFw0yNTA1MjIwNjI3MzhaMBgxFjAUBgNV BAMTDTY4MjU4OTVhLTQzODgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCv2rtL/89PxwlSXhZi/rL3xFu0tQiDaJYPrLQ6XXHryafgO+QB8Yi3CmIrRMrC iUtsNxEIecqrfCalnjS7yKbnfye8NH3pNRCaigksTNAJGH5QpL8lJuluSCNj/UWB VWVxy3ocjJwnebudO9K2AQag5bPKgTljwfNEo5shMjLWWcuM6+rK9PN7g2xKqSSI 3tDo/z6NxVaWEQliilfPBl4wANAA5UjKeqRMdeUKuFjXqrrBBKQ1sw8DFgnfNsAq ZYLeJop9ExZhr7MeIY7P7U9aQz9JfCBCazl5zGFuaUrPcLFLsnvAdJD4D5xkiUEm TFuiufN/oYYUFKWd3YrY1a8ZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUVbJw+auR u8zWviBBcrt8GpHjSqswHwYDVR0jBBgwFoAU64mHxSCv7Nwk9ByG/Gut08Fvpiow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIxQzczL0M0OTFCQTRFQUMw RDExRUY5ODc5OTI2RUM0RjlBRTAyLzY0bUh4U0N2N053azlCeUdfR3V0MDhGdnBp by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNjRtSHhTQ3Y3TndrOUJ5R19HdXQwOEZ2cGlvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIx QzczL0M0OTFCQTRFQUMwRDExRUY5ODc5OTI2RUM0RjlBRTAyLzY0bUh4U0N2N053 azlCeUdfR3V0MDhGdnBpby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABHMIw+cdSJJdRnG6HndgVRRB795rtAIoZhdmkgf2aSAJI1OixYSC9cw 5uy0H2JDUzL4DYr3/8kAhOC1JZPH0ACDmGzh9VS1COB/hVxGa/Miuyp4tJTokU9Z 4w5QGGplWLCyK5SryC+oNycGjq/PM16JEqTzUS2gbFttvd7GeMQQYD9sxY1bSzvA 1iPo1F8p+rzO0IO+ej3OEiCrON8WXI6ZdsjUCjfXKSmfF+aVDdtDa1CLsLUs4tZy 3fyn3xijB4Zy0JDOrKmED9I3uR5PAv8leG7CemPPCFPbnz8ng0ietyXAiQXk5B0a w+Ns2rUrCLMIqaa+6dzqlI0JWoMT6eo= -----END CERTIFICATE-----Generated at Thu May 15 15:40:46 2025 by rpki-client