$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft File: MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft (raw, json) Hash identifier: LnJ585vAY8n9ZvLk2RPP2XgVa55ZeurxPB/oKZkrlwI= Subject key identifier: C6:C4:56:27:7A:95:B4:78:95:C7:77:5A:BE:55:E1:69:23:58:28:1F Authority key identifier: 32:70:F3:AC:D9:71:EE:DF:84:61:75:48:F7:2E:51:E2:2A:50:3C:F8 Certificate issuer: /CN=A91DA023/serialNumber=3270F3ACD971EEDF84617548F72E51E22A503CF8 Certificate serial: 3476 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft Manifest number: 3476 Signing time: Sat 10 May 2025 15:02:17 +0000 Manifest this update: Sat 10 May 2025 15:02:16 +0000 Manifest next update: Sat 17 May 2025 15:02:16 +0000 Files and hashes: 1: MnDzrNlx7t-EYXVI9y5R4ipQPPg.crl (hash: 1TsYaXhQTh8J99DsinHf4J/L6LVyykam8Bku6w4eXKI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.crl rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 15:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13430 (0x3476) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA023, serialNumber=3270F3ACD971EEDF84617548F72E51E22A503CF8 Validity Not Before: May 10 15:02:16 2025 GMT Not After : May 17 15:02:16 2025 GMT Subject: CN=681f6a78-24f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:90:35:53:4b:8f:b7:95:30:84:a7:6d:a0:d9: 4a:63:bc:44:15:7a:59:e5:92:ca:e4:fc:77:ea:02: 31:95:8c:57:3a:20:52:cb:1a:63:37:22:16:53:36: ba:41:28:fa:1e:6e:9d:aa:45:23:14:8d:b5:17:af: 69:ac:1b:66:06:45:ec:18:c6:57:f3:eb:b1:4b:a6: b5:43:41:22:8d:d5:03:b1:56:dd:6f:6d:73:50:8f: 5f:a0:c2:b2:26:06:bf:5c:9d:35:b0:df:aa:82:bd: 5d:71:c4:e9:a7:c2:49:4a:83:11:e8:0d:d3:21:8d: 9f:94:5d:f9:6f:8e:b9:4f:8a:58:d6:46:b3:dc:e7: b1:71:01:1e:c4:ce:b0:d9:d0:13:22:4f:e8:b3:04: fb:03:9c:48:1f:c2:33:92:2b:c8:47:ec:1e:ea:75: 37:38:ed:a4:ca:53:21:2f:f7:1b:33:24:a3:85:89: a3:74:0b:c7:cf:0e:61:08:22:3f:bd:aa:e3:f4:02: 6b:0e:71:2e:f1:9c:db:c5:ed:cb:a2:c1:c2:d8:e7: 6f:10:56:dc:5a:38:18:bc:13:2d:db:3a:0c:dd:92: 78:81:d8:6d:ba:f1:08:0f:c9:2c:8f:fc:1f:8a:55: 4b:9c:51:43:fa:eb:06:e8:47:d4:de:7a:d7:5a:ca: 42:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:C4:56:27:7A:95:B4:78:95:C7:77:5A:BE:55:E1:69:23:58:28:1F X509v3 Authority Key Identifier: keyid:32:70:F3:AC:D9:71:EE:DF:84:61:75:48:F7:2E:51:E2:2A:50:3C:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:fa:36:55:9c:54:01:31:0d:f4:b7:5e:ad:67:a7:92:be:c2: 9a:2f:03:38:c0:e7:42:3d:e3:7e:6e:f0:7b:bb:b2:3c:50:b8: f2:65:ae:82:59:a1:5a:63:35:80:71:07:dd:bb:24:fa:51:1a: 45:b2:cf:2f:76:32:1f:71:2a:bc:6b:01:45:8c:77:60:39:fd: 18:dc:32:90:89:c7:1d:cc:1f:b7:23:f7:50:3a:fc:fc:bb:21: 37:b4:01:ee:b4:66:88:a7:84:d0:32:13:c8:3e:d4:bd:1f:82: e6:fc:d2:8a:3e:94:74:71:12:b6:f6:48:dc:b3:38:5e:19:b0: 29:0d:e2:55:9d:55:d0:76:35:5e:d5:e4:17:c5:0a:49:21:bf: de:f7:cc:f9:dd:d2:2e:84:ed:79:25:4a:60:ff:c4:93:96:ea: 48:e7:05:9a:19:ac:4f:13:0c:c5:22:a3:89:b6:f0:bd:7a:9b: d3:9c:91:17:67:64:3e:82:96:3b:2c:7d:af:47:79:83:1b:87: 3b:8f:e4:80:a7:76:3b:47:6c:ad:1e:19:24:6c:9f:d4:e0:7b: 7d:c9:78:e9:b1:79:91:c7:2a:c1:67:2b:52:d6:7b:d8:6f:72: a7:fb:b3:4c:f0:44:16:33:46:96:d2:d8:2b:d3:8e:78:02:c9: bc:f0:a1:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNHYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEwMjMxMTAvBgNVBAUTKDMyNzBGM0FDRDk3MUVFREY4NDYxNzU0OEY3MkU1MUUy MkE1MDNDRjgwHhcNMjUwNTEwMTUwMjE2WhcNMjUwNTE3MTUwMjE2WjAYMRYwFAYD VQQDEw02ODFmNmE3OC0yNGY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6JA1U0uPt5UwhKdtoNlKY7xEFXpZ5ZLK5Px36gIxlYxXOiBSyxpjNyIWUza6 QSj6Hm6dqkUjFI21F69prBtmBkXsGMZX8+uxS6a1Q0EijdUDsVbdb21zUI9foMKy Jga/XJ01sN+qgr1dccTpp8JJSoMR6A3TIY2flF35b465T4pY1kaz3OexcQEexM6w 2dATIk/oswT7A5xIH8IzkivIR+we6nU3OO2kylMhL/cbMySjhYmjdAvHzw5hCCI/ varj9AJrDnEu8Zzbxe3LosHC2OdvEFbcWjgYvBMt2zoM3ZJ4gdhtuvEID8ksj/wf ilVLnFFD+usG6EfU3nrXWspCZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMbEVid6 lbR4lcd3Wr5V4WkjWCgfMB8GA1UdIwQYMBaAFDJw86zZce7fhGF1SPcuUeIqUDz4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTAyMy82RjE3MkRGMDFE QTAxMUUyQTFDM0E2OTEwOEIwMkNEMi9NbkR6ck5seDd0LUVZWFZJOXk1UjRpcFFQ UGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01uRHpyTmx4N3QtRVlYVkk5eTVSNGlwUVBQZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTAyMy82RjE3MkRGMDFEQTAxMUUyQTFDM0E2OTEwOEIwMkNEMi9NbkR6ck5seDd0 LUVZWFZJOXk1UjRpcFFQUGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCo+jZVnFQBMQ30t16tZ6eSvsKaLwM4wOdCPeN+bvB7u7I8ULjyZa6C WaFaYzWAcQfduyT6URpFss8vdjIfcSq8awFFjHdgOf0Y3DKQiccdzB+3I/dQOvz8 uyE3tAHutGaIp4TQMhPIPtS9H4Lm/NKKPpR0cRK29kjcszheGbApDeJVnVXQdjVe 1eQXxQpJIb/e98z53dIuhO15JUpg/8STlupI5wWaGaxPEwzFIqOJtvC9epvTnJEX Z2Q+gpY7LH2vR3mDG4c7j+SAp3Y7R2ytHhkkbJ/U4Ht9yXjpsXmRxyrBZytS1nvY b3Kn+7NM8EQWM0aW0tgr0454Asm88KE7 -----END CERTIFICATE-----Generated at Mon May 12 15:40:23 2025 by rpki-client