$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.mft File: kIDbUP8LdD_6MredDdXDGQIdbiQ.mft (raw, json) Hash identifier: 2Ljvm0vsKuWsk6+IIkHv0vhNnXtj1jVsQ/GD51zHsp4= Subject key identifier: 4A:0C:E7:1F:67:40:57:F1:67:C5:E2:55:8C:BA:99:36:62:12:73:94 Authority key identifier: 90:80:DB:50:FF:0B:74:3F:FA:32:B7:9D:0D:D5:C3:19:02:1D:6E:24 Certificate issuer: /CN=A91B5377/serialNumber=9080DB50FF0B743FFA32B79D0DD5C319021D6E24 Certificate serial: 5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIDbUP8LdD_6MredDdXDGQIdbiQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.mft Manifest number: 5C Signing time: Thu 03 Jul 2025 07:21:08 +0000 Manifest this update: Thu 03 Jul 2025 07:21:07 +0000 Manifest next update: Thu 10 Jul 2025 07:21:07 +0000 Files and hashes: 1: kIDbUP8LdD_6MredDdXDGQIdbiQ.crl (hash: I/i+m/qzl8z0nyyIzeMZUrr3lStwOxiZ0FRxoJYxXAQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.crl rsync://rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIDbUP8LdD_6MredDdXDGQIdbiQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 92 (0x5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5377, serialNumber=9080DB50FF0B743FFA32B79D0DD5C319021D6E24 Validity Not Before: Jul 3 07:21:07 2025 GMT Not After : Jul 10 07:21:07 2025 GMT Subject: CN=68662f63-fbc8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:07:ec:82:ed:a9:e5:eb:0f:56:44:01:46:c2: 28:4d:2d:4d:db:a0:6d:a4:81:1d:65:ff:cc:f3:21: f6:4e:8b:df:16:a7:82:8c:1b:eb:63:53:4b:a4:02: ea:f2:f7:48:9e:8e:40:20:ba:5e:df:54:53:57:33: ab:26:76:c1:df:ec:1c:c5:4e:26:3b:cb:fb:9f:b7: 7a:4e:62:31:7e:37:18:66:18:79:22:bf:a9:c4:0d: c9:49:cd:79:28:2c:67:42:bd:e9:0f:34:8c:fc:9a: c3:01:18:13:f3:bb:f3:e2:da:3f:ee:14:b1:b8:14: 67:30:5e:71:88:7d:14:9d:6c:3d:d6:cc:4e:65:0e: 38:66:0f:0c:1b:c0:b5:ac:96:d3:7f:32:0e:6a:7a: 28:9f:89:7d:bd:8b:56:6c:32:2f:88:88:28:ed:04: 56:2d:72:f5:4a:88:2a:08:7e:fe:39:56:bf:58:d4: cd:80:bc:cd:be:cf:3a:f8:9f:76:06:63:6f:7f:b3: a7:91:df:6a:b1:58:d5:6e:c5:09:38:5a:06:b8:41: bb:8c:03:b2:ce:47:32:09:6e:6c:68:d1:8e:e8:8f: 01:1d:5b:10:7d:1d:4c:0f:44:31:9c:63:10:58:b1: 88:29:23:d0:d2:80:37:f3:d7:41:f3:9e:2a:96:23: f0:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:0C:E7:1F:67:40:57:F1:67:C5:E2:55:8C:BA:99:36:62:12:73:94 X509v3 Authority Key Identifier: keyid:90:80:DB:50:FF:0B:74:3F:FA:32:B7:9D:0D:D5:C3:19:02:1D:6E:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIDbUP8LdD_6MredDdXDGQIdbiQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:97:eb:00:6b:39:8d:b0:a4:53:ea:ff:07:9d:30:a2:71:9c: 16:69:6f:c0:99:bc:7a:74:bf:35:85:14:9f:50:ac:c3:ff:c0: 86:34:1d:75:22:5a:9b:a4:c6:c7:3b:a9:0f:c0:ae:e3:69:24: 86:ec:9b:92:b3:48:67:ba:ea:1d:f1:48:20:ee:16:a2:2e:ff: 48:03:9d:65:f1:d8:df:6c:0a:66:56:c1:33:9c:97:48:22:bd: 3e:c4:44:64:42:0d:33:14:3e:a2:ce:68:66:17:a5:98:f5:90: 61:fc:25:3d:f3:e1:ab:8f:20:94:b2:e1:d6:c4:74:d1:0e:5a: 7d:54:97:a3:cd:27:77:0b:e9:9a:f4:1c:ef:dd:77:52:56:5d: f3:9f:3e:ec:f2:f0:88:42:7a:de:f3:e2:3a:c0:d7:95:dd:81: 5e:3a:f4:a9:2d:1a:77:34:73:19:7d:51:76:8f:d0:52:1c:47: 85:59:3f:99:b1:e3:a3:38:53:75:34:9b:05:29:08:cf:a6:20: db:d1:f2:2b:4d:58:e3:6b:23:93:c3:fe:79:0e:e5:35:e9:25: bb:72:1b:55:eb:f4:2f:f7:de:27:73:21:4a:80:d4:54:66:9e: 45:a0:b4:ad:a6:d5:95:9b:51:c9:5c:49:95:6c:9d:35:48:a2: aa:1e:a7:2a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NTM3NzExMC8GA1UEBRMoOTA4MERCNTBGRjBCNzQzRkZBMzJCNzlEMERENUMzMTkw MjFENkUyNDAeFw0yNTA3MDMwNzIxMDdaFw0yNTA3MTAwNzIxMDdaMBgxFjAUBgNV BAMTDTY4NjYyZjYzLWZiYzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGB+yC7anl6w9WRAFGwihNLU3boG2kgR1l/8zzIfZOi98Wp4KMG+tjU0ukAury 90iejkAgul7fVFNXM6smdsHf7BzFTiY7y/uft3pOYjF+NxhmGHkiv6nEDclJzXko LGdCvekPNIz8msMBGBPzu/Pi2j/uFLG4FGcwXnGIfRSdbD3WzE5lDjhmDwwbwLWs ltN/Mg5qeiifiX29i1ZsMi+IiCjtBFYtcvVKiCoIfv45Vr9Y1M2AvM2+zzr4n3YG Y29/s6eR32qxWNVuxQk4Wga4QbuMA7LORzIJbmxo0Y7ojwEdWxB9HUwPRDGcYxBY sYgpI9DSgDfz10HzniqWI/DbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUSgznH2dA V/FnxeJVjLqZNmISc5QwHwYDVR0jBBgwFoAUkIDbUP8LdD/6MredDdXDGQIdbiQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI1Mzc3L0YzQzQ0QTc4Q0M1 ODExRUY5OTk4NUQ4NkM0RjlBRTAyL2tJRGJVUDhMZERfNk1yZWREZFhER1FJZGJp US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIva0lEYlVQOExkRF82TXJlZERkWERHUUlkYmlRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI1 Mzc3L0YzQzQ0QTc4Q0M1ODExRUY5OTk4NUQ4NkM0RjlBRTAyL2tJRGJVUDhMZERf Nk1yZWREZFhER1FJZGJpUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABWX6wBrOY2wpFPq/wedMKJxnBZpb8CZvHp0vzWFFJ9QrMP/wIY0HXUi Wpukxsc7qQ/AruNpJIbsm5KzSGe66h3xSCDuFqIu/0gDnWXx2N9sCmZWwTOcl0gi vT7ERGRCDTMUPqLOaGYXpZj1kGH8JT3z4auPIJSy4dbEdNEOWn1Ul6PNJ3cL6Zr0 HO/dd1JWXfOfPuzy8IhCet7z4jrA15XdgV469KktGnc0cxl9UXaP0FIcR4VZP5mx 46M4U3U0mwUpCM+mINvR8itNWONrI5PD/nkO5TXpJbtyG1Xr9C/33idzIUqA1FRm nkWgtK2m1ZWbUclcSZVsnTVIoqoepyo= -----END CERTIFICATE-----Generated at Fri Jul 4 07:07:01 2025 by rpki-client