$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6DB3/53AA1BD4C60811EC9B31446DC4F9AE02/A3JG1RS4I0Dt4GKJvxvIxFnb_OU.mft File: A3JG1RS4I0Dt4GKJvxvIxFnb_OU.mft (raw, json) Hash identifier: nxJSLQRscsw4JMCdzU+UitL1SpZzlwR1/TZFavanxkQ= Subject key identifier: 90:50:F7:E6:34:DA:B3:13:E2:0C:71:A8:D4:AA:AE:80:38:D2:4B:BF Authority key identifier: 03:72:46:D5:14:B8:23:40:ED:E0:62:89:BF:1B:C8:C4:59:DB:FC:E5 Certificate issuer: /CN=A91E6DB3/serialNumber=037246D514B82340EDE06289BF1BC8C459DBFCE5 Certificate serial: 0354 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3JG1RS4I0Dt4GKJvxvIxFnb_OU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6DB3/53AA1BD4C60811EC9B31446DC4F9AE02/A3JG1RS4I0Dt4GKJvxvIxFnb_OU.mft Manifest number: 034C Signing time: Mon 21 Jul 2025 01:18:15 +0000 Manifest this update: Mon 21 Jul 2025 01:18:14 +0000 Manifest next update: Mon 28 Jul 2025 01:18:14 +0000 Files and hashes: 1: A3JG1RS4I0Dt4GKJvxvIxFnb_OU.crl (hash: CZ5OASAjEXA/roNRh2BPxEA6HJKdTj5CCK2vyCWb6gc=) 2: 67A55414D56911EFB3E08134C4F9AE02.roa (hash: rSusYrdxwzMZ/h0NAAbSd/+Fpawy/2pH16Z/11B0adc=) 3: 671C31AAC6C811ECA5A9AB33C4F9AE02.roa (hash: 0dwKgZ8jlIMiRytgvBci6vNzPpvAs9BdKSq60BEmluY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6DB3/53AA1BD4C60811EC9B31446DC4F9AE02/A3JG1RS4I0Dt4GKJvxvIxFnb_OU.crl rsync://rpki.apnic.net/member_repository/A91E6DB3/53AA1BD4C60811EC9B31446DC4F9AE02/A3JG1RS4I0Dt4GKJvxvIxFnb_OU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3JG1RS4I0Dt4GKJvxvIxFnb_OU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 01:18:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 852 (0x354) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6DB3, serialNumber=037246D514B82340EDE06289BF1BC8C459DBFCE5 Validity Not Before: Jul 21 01:18:14 2025 GMT Not After : Jul 28 01:18:14 2025 GMT Subject: CN=687d9557-02a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:77:9f:21:64:9b:d8:43:84:00:1c:bf:fa:1f: bc:3d:53:89:3c:c0:c5:66:5e:76:3a:2b:0d:43:96: f6:5e:6d:b5:5b:5e:af:dc:03:fb:07:ba:85:cd:ac: 60:bc:77:c2:fc:f3:b6:92:3e:f4:b7:11:93:00:fa: 79:9d:69:b2:3e:10:2d:ff:2f:7a:bc:69:9d:d1:15: 6e:58:b9:38:d0:dc:e7:7f:37:fa:e2:c0:f3:20:ff: ef:0f:2b:e2:f0:fd:d8:4f:44:9b:fc:ce:33:18:c9: 55:b3:a2:c4:72:0c:ca:c4:32:d0:ef:96:35:b1:64: ac:43:90:89:a7:1a:bd:16:35:70:74:0e:10:95:c4: a0:36:82:90:db:ba:74:60:c0:d4:6d:9d:1a:9a:ac: d3:f6:8f:0b:77:39:e0:ae:9c:07:bf:bb:3f:83:8c: cb:43:2e:20:08:cf:c2:fa:6c:be:a2:75:9a:47:1e: f8:6e:2a:18:bf:f4:be:49:99:d8:3f:0c:32:e3:10: ba:49:75:8d:7c:74:d2:34:76:52:45:46:a7:5c:09: 01:b0:99:a1:7f:c3:32:18:84:60:d8:1e:e0:56:4b: 94:9f:f6:38:d5:34:57:72:be:d7:86:8b:7d:25:9e: cd:3c:4b:86:a7:c5:c8:43:34:11:92:a6:59:ef:c0: 9f:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:50:F7:E6:34:DA:B3:13:E2:0C:71:A8:D4:AA:AE:80:38:D2:4B:BF X509v3 Authority Key Identifier: keyid:03:72:46:D5:14:B8:23:40:ED:E0:62:89:BF:1B:C8:C4:59:DB:FC:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6DB3/53AA1BD4C60811EC9B31446DC4F9AE02/A3JG1RS4I0Dt4GKJvxvIxFnb_OU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3JG1RS4I0Dt4GKJvxvIxFnb_OU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6DB3/53AA1BD4C60811EC9B31446DC4F9AE02/A3JG1RS4I0Dt4GKJvxvIxFnb_OU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:76:08:a7:80:0e:b7:b7:56:a2:27:5d:38:77:9e:8b:62:a9: 35:83:fa:46:ce:71:e6:8c:48:47:ea:76:5f:2f:c0:e5:2a:9a: aa:b3:3a:af:5c:0f:98:3a:3c:b4:25:4d:f3:01:a1:77:86:83: 28:99:06:8e:f5:70:01:09:02:ec:af:48:b7:c8:23:99:25:b6: 75:dc:58:15:7d:84:dc:bd:1e:9e:73:40:61:2f:4d:83:25:67: 2f:91:11:b6:2f:9b:b8:93:46:e6:ca:0f:cd:f9:ba:a7:02:d4: c7:a4:3e:08:07:ff:0d:55:f9:3b:5c:2d:91:ee:5e:90:9b:00: 72:c2:d2:1c:89:4d:fd:1a:b6:20:08:d5:44:91:69:61:6a:4c: c0:88:a1:d9:c7:6b:24:d4:e0:0a:95:f5:c6:e4:f8:66:b6:83: b1:86:e3:b4:08:9b:d3:db:fe:ba:94:48:37:9e:6b:1a:b7:18: 73:01:82:3b:c5:82:ec:bb:78:ac:69:73:5a:af:1e:8c:5b:f4: ee:86:93:58:34:7e:0a:51:98:ec:4b:ae:4e:b5:e7:4b:a7:2b: 7a:60:b1:4f:af:1c:3d:21:a0:d4:2f:80:d0:17:ae:bf:11:e2: 4a:59:c4:89:85:d4:40:26:ae:6f:d8:a5:40:1b:75:8e:d1:63: 1c:e5:90:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA1QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZEQjMxMTAvBgNVBAUTKDAzNzI0NkQ1MTRCODIzNDBFREUwNjI4OUJGMUJDOEM0 NTlEQkZDRTUwHhcNMjUwNzIxMDExODE0WhcNMjUwNzI4MDExODE0WjAYMRYwFAYD VQQDEw02ODdkOTU1Ny0wMmEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzHefIWSb2EOEABy/+h+8PVOJPMDFZl52OisNQ5b2Xm21W16v3AP7B7qFzaxg vHfC/PO2kj70txGTAPp5nWmyPhAt/y96vGmd0RVuWLk40Nznfzf64sDzIP/vDyvi 8P3YT0Sb/M4zGMlVs6LEcgzKxDLQ75Y1sWSsQ5CJpxq9FjVwdA4QlcSgNoKQ27p0 YMDUbZ0amqzT9o8LdzngrpwHv7s/g4zLQy4gCM/C+my+onWaRx74bioYv/S+SZnY Pwwy4xC6SXWNfHTSNHZSRUanXAkBsJmhf8MyGIRg2B7gVkuUn/Y41TRXcr7Xhot9 JZ7NPEuGp8XIQzQRkqZZ78CfvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJBQ9+Y0 2rMT4gxxqNSqroA40ku/MB8GA1UdIwQYMBaAFANyRtUUuCNA7eBiib8byMRZ2/zl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkRCMy81M0FBMUJENEM2 MDgxMUVDOUIzMTQ0NkRDNEY5QUUwMi9BM0pHMVJTNEkwRHQ0R0tKdnh2SXhGbmJf T1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EzSkcxUlM0STBEdDRHS0p2eHZJeEZuYl9PVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkRCMy81M0FBMUJENEM2MDgxMUVDOUIzMTQ0NkRDNEY5QUUwMi9BM0pHMVJTNEkw RHQ0R0tKdnh2SXhGbmJfT1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCidgingA63t1aiJ104d56LYqk1g/pGznHmjEhH6nZfL8DlKpqqszqv XA+YOjy0JU3zAaF3hoMomQaO9XABCQLsr0i3yCOZJbZ13FgVfYTcvR6ec0BhL02D JWcvkRG2L5u4k0bmyg/N+bqnAtTHpD4IB/8NVfk7XC2R7l6QmwBywtIciU39GrYg CNVEkWlhakzAiKHZx2sk1OAKlfXG5PhmtoOxhuO0CJvT2/66lEg3nmsatxhzAYI7 xYLsu3isaXNarx6MW/TuhpNYNH4KUZjsS65OtedLpyt6YLFPrxw9IaDUL4DQF66/ EeJKWcSJhdRAJq5v2KVAG3WO0WMc5ZD5 -----END CERTIFICATE-----Generated at Mon Jul 21 12:41:43 2025 by rpki-client