$ rpki-client -vvf rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft File: 57DhU8QU0ThUitp16M0FzWk2cgY.mft (raw, json) Hash identifier: /IWR78XGFAo1+uh71c459myXS7FOUCtZ4Qn+twB8XDc= Subject key identifier: F1:89:1C:31:72:25:06:06:79:62:F3:DF:5B:E6:8D:F1:E7:C8:87:05 Authority key identifier: E7:B0:E1:53:C4:14:D1:38:54:8A:DA:75:E8:CD:05:CD:69:36:72:06 Certificate issuer: /CN=A91B42CA/serialNumber=E7B0E153C414D138548ADA75E8CD05CD69367206 Certificate serial: 3497 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57DhU8QU0ThUitp16M0FzWk2cgY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft Manifest number: 52B4 Signing time: Wed 02 Jul 2025 15:09:06 +0000 Manifest this update: Wed 02 Jul 2025 15:09:05 +0000 Manifest next update: Wed 09 Jul 2025 15:09:05 +0000 Files and hashes: 1: 57DhU8QU0ThUitp16M0FzWk2cgY.crl (hash: pWwVrMZ8kR8g+XjgJ+TnzMpfgRR/JUf0iYFj19N9ZfU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.crl rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57DhU8QU0ThUitp16M0FzWk2cgY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 15:09:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13463 (0x3497) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B42CA, serialNumber=E7B0E153C414D138548ADA75E8CD05CD69367206 Validity Not Before: Jul 2 15:09:05 2025 GMT Not After : Jul 9 15:09:05 2025 GMT Subject: CN=68654b91-18dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:58:7e:a6:5a:9d:2a:46:ff:5e:ac:ec:83:85: 9f:d2:0c:4a:95:b4:ab:06:88:3b:e1:82:4f:5a:19: 67:6c:21:4e:24:19:78:ec:2f:4b:eb:40:61:7b:46: 2c:a0:39:ac:03:2b:93:d0:ca:4c:31:16:4b:34:6a: 9c:00:a8:f0:85:e4:42:03:c5:2a:91:5a:8c:92:aa: b0:55:e4:f0:af:7c:91:c9:69:63:3e:4d:3b:26:f4: 64:7b:7c:3d:d7:6d:79:3c:b4:6d:64:65:07:3b:1e: fe:b8:4a:e3:e5:f1:00:4a:8b:14:c4:d7:49:fa:5f: 30:9c:21:d8:5e:41:1b:60:68:75:7e:ee:31:ab:a8: ef:25:17:aa:b5:46:94:e2:58:04:15:39:d4:ce:50: f0:51:21:4e:d1:6a:ed:e5:ce:66:ae:fb:1d:87:c2: 0d:fa:c7:4e:a8:a6:72:dd:c7:8b:6d:fa:00:20:92: 25:d1:83:fd:a6:fb:8d:15:d6:97:0f:1b:9e:a1:5f: cf:11:54:83:09:8e:b2:cd:22:29:91:bd:71:fd:51: fe:2a:e1:4e:50:d8:96:7f:24:98:e5:f7:2e:82:62: e7:14:c0:f4:9c:2e:9b:b2:18:82:fa:7a:a6:c4:c1: 9a:65:88:0b:b0:50:c0:ad:ef:68:a6:a1:ca:84:79: 8d:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:89:1C:31:72:25:06:06:79:62:F3:DF:5B:E6:8D:F1:E7:C8:87:05 X509v3 Authority Key Identifier: keyid:E7:B0:E1:53:C4:14:D1:38:54:8A:DA:75:E8:CD:05:CD:69:36:72:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57DhU8QU0ThUitp16M0FzWk2cgY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:78:7d:6e:ae:9a:7b:ef:cb:77:f4:bf:04:50:a6:ca:90:fd: c6:aa:66:af:4f:ff:0b:19:a0:9d:4a:63:ee:7a:24:da:70:d6: 3d:24:c0:92:89:0d:64:57:c4:e5:80:9c:ee:5e:20:e5:03:48: 6b:3d:3e:46:78:cc:7f:9d:8d:95:ff:46:ea:93:a6:f3:cf:29: 63:b7:01:11:1a:67:98:29:52:34:a2:8c:ca:0c:b1:2f:00:32: 45:76:08:74:ea:17:fb:46:3e:18:be:90:cc:10:a3:76:d0:e8: 41:15:23:60:90:c7:91:f5:71:d7:3e:43:ba:26:83:42:05:4d: d9:0b:e2:1a:20:9d:0c:ed:ad:26:7a:13:49:52:30:e7:33:36: 06:4d:86:79:61:f9:13:81:74:1a:17:8d:1d:b4:cd:51:48:72: 7b:97:09:0b:7d:6a:94:ad:04:42:e0:4b:37:11:16:64:0a:ff: 74:6a:99:77:e3:b0:51:6e:fb:32:f2:1c:f6:d1:27:46:fe:35: 4d:7f:52:9a:2b:a6:8f:f8:c6:86:a8:ff:c8:42:a6:b7:4d:03: 74:d1:9e:6b:22:eb:5e:22:e5:01:15:f1:65:9f:db:31:e2:b7: a0:ff:86:50:ca:a2:37:e0:02:53:cc:cf:cd:87:22:47:d0:c7: 42:da:05:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQyQ0ExMTAvBgNVBAUTKEU3QjBFMTUzQzQxNEQxMzg1NDhBREE3NUU4Q0QwNUNE NjkzNjcyMDYwHhcNMjUwNzAyMTUwOTA1WhcNMjUwNzA5MTUwOTA1WjAYMRYwFAYD VQQDEw02ODY1NGI5MS0xOGRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq1h+plqdKkb/Xqzsg4Wf0gxKlbSrBog74YJPWhlnbCFOJBl47C9L60Bhe0Ys oDmsAyuT0MpMMRZLNGqcAKjwheRCA8UqkVqMkqqwVeTwr3yRyWljPk07JvRke3w9 1215PLRtZGUHOx7+uErj5fEASosUxNdJ+l8wnCHYXkEbYGh1fu4xq6jvJReqtUaU 4lgEFTnUzlDwUSFO0Wrt5c5mrvsdh8IN+sdOqKZy3ceLbfoAIJIl0YP9pvuNFdaX DxueoV/PEVSDCY6yzSIpkb1x/VH+KuFOUNiWfySY5fcugmLnFMD0nC6bshiC+nqm xMGaZYgLsFDAre9opqHKhHmNwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPGJHDFy JQYGeWLz31vmjfHnyIcFMB8GA1UdIwQYMBaAFOew4VPEFNE4VIradejNBc1pNnIG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDJDQS9EMzREQjk3RTFE QTAxMUUyODNBMTYxOTIwOEIwMkNEMi81N0RoVThRVTBUaFVpdHAxNk0wRnpXazJj Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzU3RGhVOFFVMFRoVWl0cDE2TTBGeldrMmNnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDJDQS9EMzREQjk3RTFEQTAxMUUyODNBMTYxOTIwOEIwMkNEMi81N0RoVThRVTBU aFVpdHAxNk0wRnpXazJjZ1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbeH1urpp778t39L8EUKbKkP3GqmavT/8LGaCdSmPueiTacNY9JMCS iQ1kV8TlgJzuXiDlA0hrPT5GeMx/nY2V/0bqk6bzzyljtwERGmeYKVI0oozKDLEv ADJFdgh06hf7Rj4YvpDMEKN20OhBFSNgkMeR9XHXPkO6JoNCBU3ZC+IaIJ0M7a0m ehNJUjDnMzYGTYZ5YfkTgXQaF40dtM1RSHJ7lwkLfWqUrQRC4Es3ERZkCv90apl3 47BRbvsy8hz20SdG/jVNf1KaK6aP+MaGqP/IQqa3TQN00Z5rIuteIuUBFfFln9sx 4reg/4ZQyqI34AJTzM/NhyJH0MdC2gU5 -----END CERTIFICATE-----Generated at Wed Jul 2 22:43:59 2025 by rpki-client