$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4C67/BF3FC2FA1DA111E2B3EC1F9408B02CD2/f_xaKedfnr4HnQUkfw3_DPmH8cI.mft File: f_xaKedfnr4HnQUkfw3_DPmH8cI.mft (raw, json) Hash identifier: Son0+CRuFSxogHCeYYlc5krOvepCL3e2EO11df0bsa0= Subject key identifier: 43:78:1A:0D:84:31:54:F9:79:D8:19:69:76:8B:D0:22:2D:A6:06:24 Authority key identifier: 7F:FC:5A:29:E7:5F:9E:BE:07:9D:05:24:7F:0D:FF:0C:F9:87:F1:C2 Certificate issuer: /CN=A91B4C67/serialNumber=7FFC5A29E75F9EBE079D05247F0DFF0CF987F1C2 Certificate serial: 3494 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f_xaKedfnr4HnQUkfw3_DPmH8cI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4C67/BF3FC2FA1DA111E2B3EC1F9408B02CD2/f_xaKedfnr4HnQUkfw3_DPmH8cI.mft Manifest number: 3494 Signing time: Sat 28 Jun 2025 15:02:55 +0000 Manifest this update: Sat 28 Jun 2025 15:02:55 +0000 Manifest next update: Sat 05 Jul 2025 15:02:55 +0000 Files and hashes: 1: f_xaKedfnr4HnQUkfw3_DPmH8cI.crl (hash: JN+WY1D30xrOQkLoNoc1Qq3eSmR9HGu3BDZKcaZp3Rg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4C67/BF3FC2FA1DA111E2B3EC1F9408B02CD2/f_xaKedfnr4HnQUkfw3_DPmH8cI.crl rsync://rpki.apnic.net/member_repository/A91B4C67/BF3FC2FA1DA111E2B3EC1F9408B02CD2/f_xaKedfnr4HnQUkfw3_DPmH8cI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f_xaKedfnr4HnQUkfw3_DPmH8cI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 15:02:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13460 (0x3494) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4C67, serialNumber=7FFC5A29E75F9EBE079D05247F0DFF0CF987F1C2 Validity Not Before: Jun 28 15:02:55 2025 GMT Not After : Jul 5 15:02:55 2025 GMT Subject: CN=6860041f-6d01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:63:6f:0b:07:c4:c9:b0:46:8a:51:86:59:84: da:79:8d:3d:3e:3b:78:2d:b5:90:d2:d4:af:9b:46: cf:bf:c6:47:01:25:d9:3e:39:49:cb:f4:ee:ed:26: f9:43:28:ba:0a:14:95:c8:4d:b0:04:5d:2f:93:20: 26:8a:22:53:4f:36:e1:36:15:61:7a:49:55:00:15: 4b:e8:12:da:53:d2:02:81:82:50:25:21:8e:b8:7f: 75:93:a7:fb:a8:3e:6c:28:bb:0b:f1:86:b7:b0:78: 6a:ef:dd:79:cd:c0:b7:dd:e4:91:23:7c:c6:cb:f6: 38:d9:db:07:b7:e8:52:b0:78:da:9e:dd:b0:65:1b: 6a:62:6f:42:07:81:26:78:9c:af:45:34:48:73:7a: d2:c8:0c:db:7d:45:fd:14:b4:d5:f3:b9:cf:a4:b8: d1:72:ab:ed:45:1f:97:28:76:66:4c:c4:6b:35:5e: e8:d6:87:04:2b:79:ba:ca:af:e2:31:f2:55:31:67: 75:98:54:1a:b0:93:d4:6e:cd:59:6d:b1:4e:f5:33: 6d:f4:2c:8b:09:c0:00:20:29:6f:61:53:43:97:ae: 9c:67:46:cb:97:4e:af:b4:58:d7:7a:99:da:15:99: bb:01:ed:9e:20:83:e3:60:ce:aa:58:61:a7:42:2b: 75:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:78:1A:0D:84:31:54:F9:79:D8:19:69:76:8B:D0:22:2D:A6:06:24 X509v3 Authority Key Identifier: keyid:7F:FC:5A:29:E7:5F:9E:BE:07:9D:05:24:7F:0D:FF:0C:F9:87:F1:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4C67/BF3FC2FA1DA111E2B3EC1F9408B02CD2/f_xaKedfnr4HnQUkfw3_DPmH8cI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f_xaKedfnr4HnQUkfw3_DPmH8cI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4C67/BF3FC2FA1DA111E2B3EC1F9408B02CD2/f_xaKedfnr4HnQUkfw3_DPmH8cI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d4:19:8a:ac:eb:a3:4f:da:9c:19:ba:11:d7:2d:cf:5e:b9:2d: aa:47:4c:85:ac:92:e0:69:97:48:03:f7:03:e0:54:86:81:f3: 9c:59:45:85:69:c1:f0:13:cc:fa:8a:6d:5b:3c:9c:c1:42:e7: e2:28:2b:f8:1a:be:fe:fe:a4:ae:9e:36:01:c9:03:f7:c1:dc: 9a:ec:04:91:3f:13:a7:08:d4:2b:2b:7f:b7:0f:d5:3d:ae:9d: b2:43:af:a5:8d:dc:50:fb:6d:23:9d:01:6d:29:61:ee:30:d6: b3:77:d0:d5:c5:77:5a:4d:40:3f:57:c0:5f:08:1e:04:1a:e4: 0a:f0:98:0e:f0:a7:a9:b0:33:16:48:6b:a4:e1:c4:a8:b9:d3: 32:74:1b:39:8a:7b:57:c0:9a:bb:de:77:ae:5b:e3:06:bc:f1: 73:b0:5c:2a:bf:fc:f8:23:4a:9d:6e:1e:55:c8:99:ba:56:87: 50:f0:77:0f:45:ff:a8:71:31:ef:1c:1b:db:fd:1a:3d:1d:95: 90:e7:7a:25:97:2f:f3:31:1e:79:24:23:a6:10:2c:87:cd:73: 4f:07:38:0c:41:12:0a:2b:81:d3:65:5a:62:3d:b3:fd:66:c0: 4c:33:ec:37:ec:57:9b:0a:9d:c8:7e:c7:51:6f:a8:76:f3:e8: bb:12:37:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjRDNjcxMTAvBgNVBAUTKDdGRkM1QTI5RTc1RjlFQkUwNzlEMDUyNDdGMERGRjBD Rjk4N0YxQzIwHhcNMjUwNjI4MTUwMjU1WhcNMjUwNzA1MTUwMjU1WjAYMRYwFAYD VQQDEw02ODYwMDQxZi02ZDAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvWNvCwfEybBGilGGWYTaeY09Pjt4LbWQ0tSvm0bPv8ZHASXZPjlJy/Tu7Sb5 Qyi6ChSVyE2wBF0vkyAmiiJTTzbhNhVheklVABVL6BLaU9ICgYJQJSGOuH91k6f7 qD5sKLsL8Ya3sHhq7915zcC33eSRI3zGy/Y42dsHt+hSsHjant2wZRtqYm9CB4Em eJyvRTRIc3rSyAzbfUX9FLTV87nPpLjRcqvtRR+XKHZmTMRrNV7o1ocEK3m6yq/i MfJVMWd1mFQasJPUbs1ZbbFO9TNt9CyLCcAAIClvYVNDl66cZ0bLl06vtFjXepna FZm7Ae2eIIPjYM6qWGGnQit1HQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEN4Gg2E MVT5edgZaXaL0CItpgYkMB8GA1UdIwQYMBaAFH/8WinnX56+B50FJH8N/wz5h/HC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNEM2Ny9CRjNGQzJGQTFE QTExMUUyQjNFQzFGOTQwOEIwMkNEMi9mX3hhS2VkZm5yNEhuUVVrZnczX0RQbUg4 Y0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZfeGFLZWRmbnI0SG5RVWtmdzNfRFBtSDhjSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NEM2Ny9CRjNGQzJGQTFEQTExMUUyQjNFQzFGOTQwOEIwMkNEMi9mX3hhS2VkZm5y NEhuUVVrZnczX0RQbUg4Y0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDUGYqs66NP2pwZuhHXLc9euS2qR0yFrJLgaZdIA/cD4FSGgfOcWUWF acHwE8z6im1bPJzBQufiKCv4Gr7+/qSunjYByQP3wdya7ASRPxOnCNQrK3+3D9U9 rp2yQ6+ljdxQ+20jnQFtKWHuMNazd9DVxXdaTUA/V8BfCB4EGuQK8JgO8KepsDMW SGuk4cSoudMydBs5intXwJq73neuW+MGvPFzsFwqv/z4I0qdbh5VyJm6VodQ8HcP Rf+ocTHvHBvb/Ro9HZWQ53olly/zMR55JCOmECyHzXNPBzgMQRIKK4HTZVpiPbP9 ZsBMM+w37FebCp3IfsdRb6h28+i7EjdA -----END CERTIFICATE-----Generated at Sun Jun 29 20:03:50 2025 by rpki-client