$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.mft File: 0S_1veXU0upxiMsALH_wFtyZTXI.mft (raw, json) Hash identifier: 88ytrcxpjrZGTcle9OJYmqCNjCz1th+fKIzxQlTriQE= Subject key identifier: D6:C3:ED:48:FB:1F:74:7D:D1:E9:BF:27:80:CC:CC:54:C5:B1:DC:E1 Authority key identifier: D1:2F:F5:BD:E5:D4:D2:EA:71:88:CB:00:2C:7F:F0:16:DC:99:4D:72 Certificate issuer: /CN=A91EA623/serialNumber=D12FF5BDE5D4D2EA7188CB002C7FF016DC994D72 Certificate serial: 0523 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0S_1veXU0upxiMsALH_wFtyZTXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.mft Manifest number: 0523 Signing time: Wed 02 Jul 2025 23:53:48 +0000 Manifest this update: Wed 02 Jul 2025 23:53:47 +0000 Manifest next update: Wed 09 Jul 2025 23:53:47 +0000 Files and hashes: 1: 0S_1veXU0upxiMsALH_wFtyZTXI.crl (hash: pilsoIzo77dc6lSYLoHB7985YgXlZxjZkr0rLHISqU8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.crl rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0S_1veXU0upxiMsALH_wFtyZTXI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 23:53:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1315 (0x523) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA623, serialNumber=D12FF5BDE5D4D2EA7188CB002C7FF016DC994D72 Validity Not Before: Jul 2 23:53:47 2025 GMT Not After : Jul 9 23:53:47 2025 GMT Subject: CN=6865c68c-01b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:4f:56:37:19:11:9c:65:d5:6f:12:bc:d4:58: 8f:42:81:76:68:56:93:da:3f:6d:4d:ad:94:4c:a4: 0c:97:34:15:a3:cb:1b:41:88:a3:93:32:0c:c1:1e: 2b:38:a6:d1:bb:9b:47:8d:b9:b2:57:e0:2f:0a:f7: 01:51:a9:f4:44:97:e2:fc:d3:71:c1:1a:d6:a7:13: c1:1e:89:39:aa:2a:1f:2e:86:96:80:e4:bb:ce:cf: 9d:64:08:eb:13:a4:49:63:6e:13:fb:ee:23:21:04: 31:af:74:4a:b7:25:34:1f:62:b6:f5:d2:9e:47:73: 30:bd:de:6d:46:7e:4e:37:19:2a:96:d5:44:bc:88: 01:31:38:1b:d5:30:5b:e7:77:86:b1:05:e5:24:fd: e4:3c:68:43:31:d7:3b:d8:3b:24:05:f9:1a:a1:41: e8:4a:55:20:f8:a7:44:72:0e:fe:f4:d6:cb:bd:01: ad:d4:96:79:68:cb:5e:7b:bb:81:b9:5f:9f:8c:97: 20:73:61:41:44:3f:cb:d5:a5:ea:58:5a:18:e6:b5: ee:95:67:ec:0d:3d:dd:65:3a:cd:35:56:c5:d4:19: 27:fc:9b:d1:a6:10:06:a3:0a:1a:e1:9d:81:36:f5: 4d:bc:b7:8d:00:42:8a:45:28:5d:05:66:f8:d7:ba: cd:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:C3:ED:48:FB:1F:74:7D:D1:E9:BF:27:80:CC:CC:54:C5:B1:DC:E1 X509v3 Authority Key Identifier: keyid:D1:2F:F5:BD:E5:D4:D2:EA:71:88:CB:00:2C:7F:F0:16:DC:99:4D:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0S_1veXU0upxiMsALH_wFtyZTXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:30:c7:50:d7:d8:59:00:84:20:ec:71:8a:3b:a5:db:af:c3: 6c:52:38:e1:22:15:10:5a:2b:a3:4e:f5:16:8b:da:54:bb:37: ab:df:43:16:00:55:44:26:75:70:cb:eb:01:74:69:5e:83:b0: d9:1e:4b:88:48:c9:55:2b:27:ac:2a:24:14:16:d1:e8:f2:d9: aa:17:4c:90:b7:86:d8:75:5a:22:4f:31:b6:ad:da:cd:e5:53: 80:65:f3:83:cd:9d:50:b5:3c:84:2b:ff:13:a0:dd:fb:93:7a: 55:fe:17:42:8f:af:0c:0d:27:3c:cf:b7:13:dc:f6:67:c3:db: 96:68:ae:fe:6e:b4:d0:56:4e:80:0b:23:32:5f:b6:b2:7e:6c: 22:9e:6c:dd:33:ca:b8:08:eb:fb:51:e6:05:d2:4a:07:2c:2d: 12:57:aa:38:ad:f9:9a:dc:4b:e7:c8:71:a4:5c:00:ba:6e:e4: e0:b3:eb:58:06:7f:f7:19:36:9e:f4:ab:2e:2a:42:9b:34:2c: 24:65:b7:2c:e3:bd:58:b4:58:23:35:82:ee:8e:c0:2b:6f:f4: 68:be:36:77:4d:9f:60:15:b3:81:48:d4:eb:e8:aa:c3:84:6d: 07:2a:b8:53:da:88:ef:21:60:bd:c7:2a:69:28:93:66:56:d5: 8d:1f:fa:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBSMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE2MjMxMTAvBgNVBAUTKEQxMkZGNUJERTVENEQyRUE3MTg4Q0IwMDJDN0ZGMDE2 REM5OTRENzIwHhcNMjUwNzAyMjM1MzQ3WhcNMjUwNzA5MjM1MzQ3WjAYMRYwFAYD VQQDEw02ODY1YzY4Yy0wMWIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvk9WNxkRnGXVbxK81FiPQoF2aFaT2j9tTa2UTKQMlzQVo8sbQYijkzIMwR4r OKbRu5tHjbmyV+AvCvcBUan0RJfi/NNxwRrWpxPBHok5qiofLoaWgOS7zs+dZAjr E6RJY24T++4jIQQxr3RKtyU0H2K29dKeR3Mwvd5tRn5ONxkqltVEvIgBMTgb1TBb 53eGsQXlJP3kPGhDMdc72DskBfkaoUHoSlUg+KdEcg7+9NbLvQGt1JZ5aMtee7uB uV+fjJcgc2FBRD/L1aXqWFoY5rXulWfsDT3dZTrNNVbF1Bkn/JvRphAGowoa4Z2B NvVNvLeNAEKKRShdBWb417rNBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNbD7Uj7 H3R90em/J4DMzFTFsdzhMB8GA1UdIwQYMBaAFNEv9b3l1NLqcYjLACx/8BbcmU1y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTYyMy9EMzE2N0YwQTA2 MEMxMUVDQUY2NzUwNDNDNEY5QUUwMi8wU18xdmVYVTB1cHhpTXNBTEhfd0Z0eVpU WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzBTXzF2ZVhVMHVweGlNc0FMSF93RnR5WlRYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTYyMy9EMzE2N0YwQTA2MEMxMUVDQUY2NzUwNDNDNEY5QUUwMi8wU18xdmVYVTB1 cHhpTXNBTEhfd0Z0eVpUWEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8MMdQ19hZAIQg7HGKO6Xbr8NsUjjhIhUQWiujTvUWi9pUuzer30MW AFVEJnVwy+sBdGleg7DZHkuISMlVKyesKiQUFtHo8tmqF0yQt4bYdVoiTzG2rdrN 5VOAZfODzZ1QtTyEK/8ToN37k3pV/hdCj68MDSc8z7cT3PZnw9uWaK7+brTQVk6A CyMyX7ayfmwinmzdM8q4COv7UeYF0koHLC0SV6o4rfma3EvnyHGkXAC6buTgs+tY Bn/3GTae9KsuKkKbNCwkZbcs471YtFgjNYLujsArb/RovjZ3TZ9gFbOBSNTr6KrD hG0HKrhT2ojvIWC9xyppKJNmVtWNH/oQ -----END CERTIFICATE-----Generated at Thu Jul 3 23:28:50 2025 by rpki-client