$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.mft File: REhMnzpz9xlXK4vIoaH9nln6hPY.mft (raw, json) Hash identifier: 6X6Mbspd6bsCjUNJRI8AliYWzYlriW2AbZyp1S+2Kiw= Subject key identifier: CF:E0:2F:06:0C:80:84:C6:A8:EC:1A:69:1A:6D:4D:7E:ED:A8:96:9E Authority key identifier: 44:48:4C:9F:3A:73:F7:19:57:2B:8B:C8:A1:A1:FD:9E:59:FA:84:F6 Certificate issuer: /CN=A91BD73B/serialNumber=44484C9F3A73F719572B8BC8A1A1FD9E59FA84F6 Certificate serial: 3493 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/REhMnzpz9xlXK4vIoaH9nln6hPY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.mft Manifest number: 3493 Signing time: Wed 02 Jul 2025 15:22:14 +0000 Manifest this update: Wed 02 Jul 2025 15:22:13 +0000 Manifest next update: Wed 09 Jul 2025 15:22:13 +0000 Files and hashes: 1: REhMnzpz9xlXK4vIoaH9nln6hPY.crl (hash: aBsEHogoo0mK73bR5HsC535RtXcF5iMST7tPNBeoDFI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.crl rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/REhMnzpz9xlXK4vIoaH9nln6hPY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 15:22:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13459 (0x3493) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD73B, serialNumber=44484C9F3A73F719572B8BC8A1A1FD9E59FA84F6 Validity Not Before: Jul 2 15:22:13 2025 GMT Not After : Jul 9 15:22:13 2025 GMT Subject: CN=68654ea6-d81b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:c3:2f:a6:43:be:27:ed:2b:2a:e8:03:a9:1c: ee:75:72:83:4f:5b:31:8b:8b:e1:64:c5:f5:b5:df: 1a:17:b9:95:95:20:f8:a2:0e:fe:ed:97:5c:7a:f1: 60:e8:23:f5:79:c0:71:ea:e7:3a:68:83:02:a4:d7: 29:c3:56:c6:15:b7:a7:8c:25:1d:e6:38:c0:02:42: 25:83:2c:8a:f2:db:6c:48:49:7b:5c:92:fa:39:16: 6b:ce:3d:7d:d3:1c:72:ae:90:3e:21:c5:89:c4:5d: 0b:35:33:e2:99:ae:9d:ec:60:d7:74:16:79:84:ab: 7e:cf:b3:9e:66:b8:a8:a1:44:2a:70:d5:b1:23:1a: 0b:77:b1:31:d9:3e:32:16:94:6b:1b:a5:eb:25:7d: 61:c6:1a:66:a7:1b:ae:bc:f9:ed:94:7b:b5:f7:e9: 0c:33:02:b7:6b:88:11:c9:5a:47:cd:66:98:1d:4f: 7d:dd:b1:9c:ce:69:80:8f:53:73:9d:e6:41:94:8a: 9c:74:ba:db:2d:fc:45:c8:25:a0:5b:6b:7b:52:49: b7:a9:23:13:1e:cf:93:c9:19:0d:1d:02:c1:bf:b8: c4:0e:86:43:23:f8:58:55:c0:bc:4e:15:7d:bd:7c: 26:c5:b8:50:12:60:94:da:c3:1b:cb:a1:59:17:1b: d0:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:E0:2F:06:0C:80:84:C6:A8:EC:1A:69:1A:6D:4D:7E:ED:A8:96:9E X509v3 Authority Key Identifier: keyid:44:48:4C:9F:3A:73:F7:19:57:2B:8B:C8:A1:A1:FD:9E:59:FA:84:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/REhMnzpz9xlXK4vIoaH9nln6hPY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:47:df:4f:60:9b:83:64:7f:8e:9e:b7:99:9c:16:a0:c9:06: f4:2e:c5:b8:8a:6e:78:d3:5e:59:6b:58:c0:52:84:01:9d:e1: 13:91:b0:50:f0:e1:ed:cd:c4:a6:52:a8:4f:b6:98:d3:08:75: fb:91:8f:d2:b7:98:fb:e9:94:75:ed:e6:a1:f6:c0:78:c2:55: 73:64:d1:48:67:84:01:f9:5b:8c:32:ef:40:bc:c3:71:5b:86: be:6f:5b:24:50:80:98:11:2c:b6:b7:7a:88:ae:1b:ad:58:e9: b4:24:19:6e:df:03:74:d6:53:31:fa:36:cf:9b:35:0d:d3:63: 0c:3d:cc:43:a0:a8:fd:1d:9b:aa:e5:32:00:88:ce:72:45:08: 7f:5b:ea:b9:35:63:3f:0b:8a:a4:14:6d:cb:66:6b:c9:b3:5c: ca:98:00:47:d5:be:8b:63:9c:04:40:0c:ec:0d:27:5f:70:cc: 7f:83:4f:27:35:b0:e2:70:83:9d:61:b1:a7:42:14:44:2b:22: fa:66:a8:e9:01:68:dc:c1:79:c7:c3:2f:4e:d4:fe:72:57:00: 43:cb:5a:f0:41:70:dc:f6:0e:aa:94:60:db:f4:6d:a5:ab:c9: d4:0f:69:86:28:fc:18:5b:26:0a:3e:99:9f:d1:51:51:a0:b2: a3:cf:b7:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkQ3M0IxMTAvBgNVBAUTKDQ0NDg0QzlGM0E3M0Y3MTk1NzJCOEJDOEExQTFGRDlF NTlGQTg0RjYwHhcNMjUwNzAyMTUyMjEzWhcNMjUwNzA5MTUyMjEzWjAYMRYwFAYD VQQDEw02ODY1NGVhNi1kODFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsMMvpkO+J+0rKugDqRzudXKDT1sxi4vhZMX1td8aF7mVlSD4og7+7ZdcevFg 6CP1ecBx6uc6aIMCpNcpw1bGFbenjCUd5jjAAkIlgyyK8ttsSEl7XJL6ORZrzj19 0xxyrpA+IcWJxF0LNTPima6d7GDXdBZ5hKt+z7OeZriooUQqcNWxIxoLd7Ex2T4y FpRrG6XrJX1hxhpmpxuuvPntlHu19+kMMwK3a4gRyVpHzWaYHU993bGczmmAj1Nz neZBlIqcdLrbLfxFyCWgW2t7Ukm3qSMTHs+TyRkNHQLBv7jEDoZDI/hYVcC8ThV9 vXwmxbhQEmCU2sMby6FZFxvQ1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM/gLwYM gITGqOwaaRptTX7tqJaeMB8GA1UdIwQYMBaAFERITJ86c/cZVyuLyKGh/Z5Z+oT2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRDczQi8yNkJERjMyQzFE QUExMUUyQkUyNUE2QTUwOEIwMkNEMi9SRWhNbnpwejl4bFhLNHZJb2FIOW5sbjZo UFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JFaE1uenB6OXhsWEs0dklvYUg5bmxuNmhQWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RDczQi8yNkJERjMyQzFEQUExMUUyQkUyNUE2QTUwOEIwMkNEMi9SRWhNbnpwejl4 bFhLNHZJb2FIOW5sbjZoUFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7R99PYJuDZH+OnreZnBagyQb0LsW4im54015Za1jAUoQBneETkbBQ 8OHtzcSmUqhPtpjTCHX7kY/St5j76ZR17eah9sB4wlVzZNFIZ4QB+VuMMu9AvMNx W4a+b1skUICYESy2t3qIrhutWOm0JBlu3wN01lMx+jbPmzUN02MMPcxDoKj9HZuq 5TIAiM5yRQh/W+q5NWM/C4qkFG3LZmvJs1zKmABH1b6LY5wEQAzsDSdfcMx/g08n NbDicIOdYbGnQhREKyL6ZqjpAWjcwXnHwy9O1P5yVwBDy1rwQXDc9g6qlGDb9G2l q8nUD2mGKPwYWyYKPpmf0VFRoLKjz7c8 -----END CERTIFICATE-----Generated at Fri Jul 4 00:57:29 2025 by rpki-client