$ rpki-client -vvf rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.mft File: 3K6HG3xct5vH7PZ5s7LTyVan2eM.mft (raw, json) Hash identifier: LPfcOIgZSOxjf3TL9B6YtQDBDDibrSJ+8nfq7+8SNRM= Subject key identifier: E1:AE:0C:9A:F7:40:42:ED:43:47:89:AD:88:C8:3A:9F:D6:3D:20:A7 Authority key identifier: DC:AE:87:1B:7C:5C:B7:9B:C7:EC:F6:79:B3:B2:D3:C9:56:A7:D9:E3 Certificate issuer: /CN=A91604AC/serialNumber=DCAE871B7C5CB79BC7ECF679B3B2D3C956A7D9E3 Certificate serial: 065D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3K6HG3xct5vH7PZ5s7LTyVan2eM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.mft Manifest number: 0652 Signing time: Fri 28 Mar 2025 22:49:09 +0000 Manifest this update: Fri 28 Mar 2025 22:49:08 +0000 Manifest next update: Fri 04 Apr 2025 22:49:08 +0000 Files and hashes: 1: 3K6HG3xct5vH7PZ5s7LTyVan2eM.crl (hash: G0V/Eh0TYjCI9172uTgO/iVauEyAdOYb5uXWZVKvthM=) 2: 0081F3D6F22111EE8EEC070EC4F9AE02.roa (hash: O0WToewD6QdFMbl6xT5t2Q3rykz6toPpLMo5BA08OvY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.crl rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3K6HG3xct5vH7PZ5s7LTyVan2eM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 22:49:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1629 (0x65d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91604AC Validity Not Before: Mar 28 22:49:08 2025 GMT Not After : Apr 4 22:49:08 2025 GMT Subject: CN=67e72764-7fa3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:43:93:b0:c8:5b:ef:38:71:8d:f2:18:0d:16: 1e:31:16:6e:85:de:92:34:48:f3:f8:89:36:95:83: bf:3a:50:28:85:b1:c7:12:d1:17:91:c5:5d:34:87: 7b:4a:c6:a2:00:f8:25:6f:96:7e:cc:f7:52:59:92: fa:3b:a6:c5:05:98:dd:14:02:35:ec:2f:f0:2f:22: 3e:3d:1d:6c:9e:80:1b:82:6b:f4:9f:42:f3:31:52: dd:7b:65:d3:c9:c6:f0:8c:65:48:36:b5:6f:33:0b: 22:d6:44:1b:31:16:17:42:e4:6a:df:86:d0:5f:88: 4b:bb:f3:ca:e0:79:e6:ef:3c:69:a1:39:07:8b:56: 58:f7:44:88:e8:52:93:94:be:0f:ee:3a:20:a0:c1: a5:1e:aa:fc:13:05:8b:33:91:de:bc:e6:3c:a0:ca: 1f:42:32:0b:9f:3b:72:ae:19:9f:97:82:ae:ae:7b: f3:82:6e:d1:89:6e:d2:5e:7e:04:bd:b3:4d:2a:81: 7d:24:24:72:dd:05:f5:ed:af:b5:b1:d0:81:b0:1c: 91:ed:f7:a4:78:92:40:fd:6b:20:57:90:5c:0d:c7: b7:06:9d:1c:21:59:1b:06:5a:be:3f:7c:6f:29:26: 7a:84:d5:c6:93:94:e1:7e:11:ed:06:07:d2:1a:00: 35:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:AE:0C:9A:F7:40:42:ED:43:47:89:AD:88:C8:3A:9F:D6:3D:20:A7 X509v3 Authority Key Identifier: keyid:DC:AE:87:1B:7C:5C:B7:9B:C7:EC:F6:79:B3:B2:D3:C9:56:A7:D9:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3K6HG3xct5vH7PZ5s7LTyVan2eM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:6b:06:5d:af:e8:64:86:79:94:2c:e7:64:75:38:15:80:b7: 2a:d5:2b:c6:25:02:cd:ba:43:1b:6d:7f:52:86:a9:43:5c:8a: 50:30:4d:f4:aa:97:57:47:36:e1:64:3b:8c:bc:20:d2:09:85: 9f:17:85:b0:5a:76:50:2b:67:eb:73:1e:54:a9:9a:c7:42:e0: 41:d9:5c:69:4f:25:5b:2d:cc:4f:ca:c5:73:45:b6:7d:26:79: 14:89:04:20:56:90:3a:be:02:56:ad:50:58:6e:a7:7e:2f:b2: 6d:6b:2a:44:bb:ac:15:b2:59:8a:92:33:88:2b:f7:8e:b2:f0: 66:08:7d:11:a6:e4:3b:cf:d6:86:13:2e:3e:48:1b:9b:2d:4a: f3:ed:cf:e4:ce:e5:6d:70:51:87:fe:4a:f2:28:c5:7b:3c:0d: 28:66:93:2e:66:ec:2e:5d:93:88:79:da:09:99:54:2d:2a:72: 9a:82:6d:1d:c1:08:05:de:0c:0f:06:2a:98:9f:aa:43:13:e3: 89:d4:52:db:9f:8d:0d:20:69:67:30:ff:a2:f6:f7:0e:ec:c1: 0b:56:74:30:81:25:0c:d7:8f:9e:a4:4c:ee:c0:5c:b5:05:63: b7:51:f9:3a:c4:3e:2d:d6:71:b6:5b:ac:ad:54:ce:98:78:0b: dc:03:84:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBl0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA0QUMxMTAvBgNVBAUTKERDQUU4NzFCN0M1Q0I3OUJDN0VDRjY3OUIzQjJEM0M5 NTZBN0Q5RTMwHhcNMjUwMzI4MjI0OTA4WhcNMjUwNDA0MjI0OTA4WjAYMRYwFAYD VQQDEw02N2U3Mjc2NC03ZmEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6UOTsMhb7zhxjfIYDRYeMRZuhd6SNEjz+Ik2lYO/OlAohbHHEtEXkcVdNId7 SsaiAPglb5Z+zPdSWZL6O6bFBZjdFAI17C/wLyI+PR1snoAbgmv0n0LzMVLde2XT ycbwjGVINrVvMwsi1kQbMRYXQuRq34bQX4hLu/PK4Hnm7zxpoTkHi1ZY90SI6FKT lL4P7jogoMGlHqr8EwWLM5HevOY8oMofQjILnztyrhmfl4Kurnvzgm7RiW7SXn4E vbNNKoF9JCRy3QX17a+1sdCBsByR7fekeJJA/WsgV5BcDce3Bp0cIVkbBlq+P3xv KSZ6hNXGk5ThfhHtBgfSGgA1nwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOGuDJr3 QELtQ0eJrYjIOp/WPSCnMB8GA1UdIwQYMBaAFNyuhxt8XLebx+z2ebOy08lWp9nj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDRBQy80OTcyMDk5Njgx NDUxMUVCQjJERDVENEJDNEY5QUUwMi8zSzZIRzN4Y3Q1dkg3UFo1czdMVHlWYW4y ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNLNkhHM3hjdDV2SDdQWjVzN0xUeVZhbjJlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDRBQy80OTcyMDk5NjgxNDUxMUVCQjJERDVENEJDNEY5QUUwMi8zSzZIRzN4Y3Q1 dkg3UFo1czdMVHlWYW4yZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0awZdr+hkhnmULOdkdTgVgLcq1SvGJQLNukMbbX9ShqlDXIpQME30 qpdXRzbhZDuMvCDSCYWfF4WwWnZQK2frcx5UqZrHQuBB2VxpTyVbLcxPysVzRbZ9 JnkUiQQgVpA6vgJWrVBYbqd+L7JtaypEu6wVslmKkjOIK/eOsvBmCH0RpuQ7z9aG Ey4+SBubLUrz7c/kzuVtcFGH/kryKMV7PA0oZpMuZuwuXZOIedoJmVQtKnKagm0d wQgF3gwPBiqYn6pDE+OJ1FLbn40NIGlnMP+i9vcO7MELVnQwgSUM14+epEzuwFy1 BWO3Ufk6xD4t1nG2W6ytVM6YeAvcA4Tg -----END CERTIFICATE-----Generated at Fri Apr 4 22:37:04 2025 by rpki-client