$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.mft File: REhMnzpz9xlXK4vIoaH9nln6hPY.mft (raw, json) Hash identifier: EJRelAhUW7DjEHDOyyMo0CKn3b8MG1rKbEmElnxoEQs= Subject key identifier: 8B:7D:A0:28:97:8F:60:81:4E:19:04:8D:A4:06:16:B6:FF:25:A2:0F Authority key identifier: 44:48:4C:9F:3A:73:F7:19:57:2B:8B:C8:A1:A1:FD:9E:59:FA:84:F6 Certificate issuer: /CN=A91BD73B/serialNumber=44484C9F3A73F719572B8BC8A1A1FD9E59FA84F6 Certificate serial: 347B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/REhMnzpz9xlXK4vIoaH9nln6hPY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.mft Manifest number: 347B Signing time: Fri 16 May 2025 15:25:43 +0000 Manifest this update: Fri 16 May 2025 15:25:42 +0000 Manifest next update: Fri 23 May 2025 15:25:42 +0000 Files and hashes: 1: REhMnzpz9xlXK4vIoaH9nln6hPY.crl (hash: 3BslroY4gbEwZwRqNMRFadDuSIMQYbobFSB+AYJW2SY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.crl rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/REhMnzpz9xlXK4vIoaH9nln6hPY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 15:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13435 (0x347b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD73B, serialNumber=44484C9F3A73F719572B8BC8A1A1FD9E59FA84F6 Validity Not Before: May 16 15:25:42 2025 GMT Not After : May 23 15:25:42 2025 GMT Subject: CN=682758f7-4800 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:62:8a:1f:84:ca:da:05:c8:b1:ce:6a:11:9d: c4:9d:7a:1f:0c:7b:e3:f0:d7:df:16:5c:43:e4:bc: c7:a0:e9:0a:2b:7a:0e:1a:d5:c0:e8:82:21:14:c3: 08:9a:13:4a:f2:66:38:54:ef:41:1b:0e:72:a7:35: ee:6c:15:1f:44:88:0d:99:59:b0:c7:83:cf:8a:ec: 12:a5:1d:e0:48:fe:67:57:45:b8:70:df:68:9a:53: 04:38:1b:b3:b6:06:00:73:5c:cc:fb:62:eb:d2:38: 0c:60:62:03:cc:b4:47:db:36:40:db:55:b7:23:8e: 23:a8:e2:f5:6a:b3:a0:0f:13:4b:12:9a:30:eb:66: 1a:82:cb:30:29:40:d6:a4:74:54:3b:d1:ab:dc:cd: 32:5b:99:be:de:87:e5:d6:a7:6d:91:e7:3b:23:c5: 7e:a1:2e:eb:e9:18:7e:6d:60:50:5d:d9:3e:eb:8e: f1:24:1d:7e:e7:ae:be:2c:fd:7a:87:19:a6:91:f3: 37:3c:fc:14:58:d6:4a:d9:61:4d:9f:48:58:15:97: 41:16:28:bd:e7:d9:14:a7:35:86:14:b9:42:b6:6d: 7f:6e:2f:56:69:e8:cf:c4:29:7a:6a:c2:aa:35:f4: 08:22:5f:71:b8:b7:a7:f9:c8:ce:ba:fa:c4:0d:91: cf:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:7D:A0:28:97:8F:60:81:4E:19:04:8D:A4:06:16:B6:FF:25:A2:0F X509v3 Authority Key Identifier: keyid:44:48:4C:9F:3A:73:F7:19:57:2B:8B:C8:A1:A1:FD:9E:59:FA:84:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/REhMnzpz9xlXK4vIoaH9nln6hPY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:a6:1c:bf:8c:61:e7:e5:9c:30:b2:9c:4e:b2:54:88:39:aa: 3e:27:d1:0f:fa:f9:e0:4e:f0:46:9e:08:5d:cd:ed:55:9f:41: c6:5d:9e:3e:ff:ab:9c:00:53:66:e2:36:94:9f:6d:7f:fa:d9: d4:ae:a5:d8:7b:3e:bb:e5:b1:c6:28:51:85:e7:e2:3d:5d:4b: df:39:da:38:1e:88:dc:2e:45:26:e7:2d:b6:db:45:ef:5f:ab: dd:a8:02:e7:52:f6:c5:d5:46:11:33:49:4e:06:97:2a:35:91: ec:1d:c0:6d:d5:65:08:c1:e1:0b:ca:a1:6a:a0:ab:6a:4c:9e: 91:94:43:84:3d:5a:a6:ff:9e:31:08:ae:4a:45:9a:3d:d2:61: 05:19:47:c3:35:35:0a:e1:8b:c3:d4:d5:c1:77:2b:8a:ef:b0: dd:5b:4b:8e:5c:36:8d:a2:1f:e5:2e:d9:f0:40:eb:02:df:6c: 23:c0:b2:91:b5:ef:1c:ce:d2:86:cf:3e:2b:8b:30:3f:90:05: 5a:1c:a8:3f:3c:57:5a:77:a8:a5:d2:0e:75:ea:72:a9:1e:88: 0b:61:f9:b9:05:9f:b9:62:a0:d2:52:05:bd:5d:1d:38:a9:f5: 1d:7f:e1:75:a5:97:17:7d:d9:68:2f:45:23:97:13:3b:af:46: 51:f4:7f:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNHswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkQ3M0IxMTAvBgNVBAUTKDQ0NDg0QzlGM0E3M0Y3MTk1NzJCOEJDOEExQTFGRDlF NTlGQTg0RjYwHhcNMjUwNTE2MTUyNTQyWhcNMjUwNTIzMTUyNTQyWjAYMRYwFAYD VQQDEw02ODI3NThmNy00ODAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvWKKH4TK2gXIsc5qEZ3EnXofDHvj8NffFlxD5LzHoOkKK3oOGtXA6IIhFMMI mhNK8mY4VO9BGw5ypzXubBUfRIgNmVmwx4PPiuwSpR3gSP5nV0W4cN9omlMEOBuz tgYAc1zM+2Lr0jgMYGIDzLRH2zZA21W3I44jqOL1arOgDxNLEpow62YagsswKUDW pHRUO9Gr3M0yW5m+3ofl1qdtkec7I8V+oS7r6Rh+bWBQXdk+647xJB1+566+LP16 hxmmkfM3PPwUWNZK2WFNn0hYFZdBFii959kUpzWGFLlCtm1/bi9WaejPxCl6asKq NfQIIl9xuLen+cjOuvrEDZHPoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIt9oCiX j2CBThkEjaQGFrb/JaIPMB8GA1UdIwQYMBaAFERITJ86c/cZVyuLyKGh/Z5Z+oT2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRDczQi8yNkJERjMyQzFE QUExMUUyQkUyNUE2QTUwOEIwMkNEMi9SRWhNbnpwejl4bFhLNHZJb2FIOW5sbjZo UFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JFaE1uenB6OXhsWEs0dklvYUg5bmxuNmhQWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RDczQi8yNkJERjMyQzFEQUExMUUyQkUyNUE2QTUwOEIwMkNEMi9SRWhNbnpwejl4 bFhLNHZJb2FIOW5sbjZoUFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPphy/jGHn5ZwwspxOslSIOao+J9EP+vngTvBGnghdze1Vn0HGXZ4+ /6ucAFNm4jaUn21/+tnUrqXYez675bHGKFGF5+I9XUvfOdo4HojcLkUm5y2220Xv X6vdqALnUvbF1UYRM0lOBpcqNZHsHcBt1WUIweELyqFqoKtqTJ6RlEOEPVqm/54x CK5KRZo90mEFGUfDNTUK4YvD1NXBdyuK77DdW0uOXDaNoh/lLtnwQOsC32wjwLKR te8cztKGzz4rizA/kAVaHKg/PFdad6il0g516nKpHogLYfm5BZ+5YqDSUgW9XR04 qfUdf+F1pZcXfdloL0UjlxM7r0ZR9H+R -----END CERTIFICATE-----Generated at Fri May 16 21:44:27 2025 by rpki-client