$ rpki-client -vvf rpki.apnic.net/member_repository/A9115620/14A376446BA911EFA3B34684C4F9AE02/M3WpYTTFczGvVN1xTtNj2rMba9A.mft File: M3WpYTTFczGvVN1xTtNj2rMba9A.mft (raw, json) Hash identifier: a+evaikZD9na54wwjd77sZK2LKN2kYDawhFaRWzHhRE= Subject key identifier: FD:35:15:95:31:BD:A6:9C:D0:95:C2:B1:1B:EF:22:EC:52:A7:54:99 Authority key identifier: 33:75:A9:61:34:C5:73:31:AF:54:DD:71:4E:D3:63:DA:B3:1B:6B:D0 Certificate issuer: /CN=A9115620/serialNumber=3375A96134C57331AF54DD714ED363DAB31B6BD0 Certificate serial: 8B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M3WpYTTFczGvVN1xTtNj2rMba9A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9115620/14A376446BA911EFA3B34684C4F9AE02/M3WpYTTFczGvVN1xTtNj2rMba9A.mft Manifest number: 8A Signing time: Sun 01 Jun 2025 06:14:42 +0000 Manifest this update: Sun 01 Jun 2025 06:14:42 +0000 Manifest next update: Sun 08 Jun 2025 06:14:42 +0000 Files and hashes: 1: M3WpYTTFczGvVN1xTtNj2rMba9A.crl (hash: 3vcRribU4LSu1YxRj47VpJAF89aI/GlrVUINl41FXHI=) 2: 8334E4446BA911EFADEBED84C4F9AE02.roa (hash: Ur23uerjkF05UN2d4OV8Z6LvPx8JS26HE6YTaEzhleU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9115620/14A376446BA911EFA3B34684C4F9AE02/M3WpYTTFczGvVN1xTtNj2rMba9A.crl rsync://rpki.apnic.net/member_repository/A9115620/14A376446BA911EFA3B34684C4F9AE02/M3WpYTTFczGvVN1xTtNj2rMba9A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M3WpYTTFczGvVN1xTtNj2rMba9A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 06:14:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 139 (0x8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9115620, serialNumber=3375A96134C57331AF54DD714ED363DAB31B6BD0 Validity Not Before: Jun 1 06:14:42 2025 GMT Not After : Jun 8 06:14:42 2025 GMT Subject: CN=683befd2-ba13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:e4:3b:5a:6d:f5:88:dd:7c:1e:37:4e:1e:59: 69:d9:4c:ab:0b:58:c1:f5:f2:18:73:96:54:cb:37: 87:04:ee:5e:e2:07:a5:33:4d:72:7c:ef:bb:ab:d5: 77:b5:16:7f:07:d6:99:2f:ae:73:19:db:62:fe:d7: 9d:9b:b2:af:62:d5:de:ca:5c:90:6b:2c:e7:c2:79: 9e:77:7a:cb:15:a2:78:90:00:66:15:b5:a5:6f:1f: f9:82:a9:a1:40:e9:a9:92:a3:9f:d9:ab:cc:45:46: 0d:2c:88:0d:60:5a:8b:04:c4:77:7b:e3:b5:20:a0: a5:4c:1e:4c:48:98:37:5a:1a:2d:51:e8:48:3b:dd: e9:ec:e1:0f:f8:8d:60:ff:54:87:25:3f:d4:3f:f1: c8:e9:8b:f5:a8:6d:7e:c7:b9:f6:01:dc:1e:1c:3d: d5:42:9d:f0:8e:07:67:e2:23:c9:39:02:d8:af:97: a2:e3:b2:bd:03:63:bf:32:55:1b:0d:59:72:f9:f6: f7:51:a6:bf:42:72:0e:d5:70:f7:8e:c9:9b:29:4a: 3e:9e:57:42:93:27:f9:12:9c:ad:36:81:05:44:5e: 50:62:0d:4b:b2:72:16:54:9f:75:9a:93:89:5b:fa: 55:df:7e:78:f7:63:b0:ea:d3:36:d4:4a:42:da:60: cd:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:35:15:95:31:BD:A6:9C:D0:95:C2:B1:1B:EF:22:EC:52:A7:54:99 X509v3 Authority Key Identifier: keyid:33:75:A9:61:34:C5:73:31:AF:54:DD:71:4E:D3:63:DA:B3:1B:6B:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9115620/14A376446BA911EFA3B34684C4F9AE02/M3WpYTTFczGvVN1xTtNj2rMba9A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M3WpYTTFczGvVN1xTtNj2rMba9A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9115620/14A376446BA911EFA3B34684C4F9AE02/M3WpYTTFczGvVN1xTtNj2rMba9A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:31:96:74:53:7f:aa:d4:28:dc:f6:a9:01:6a:d1:7a:8a:7b: 89:76:4b:3e:4a:8d:2f:b4:d1:c4:9c:fd:c8:17:5a:27:46:0f: c1:88:84:0e:a1:d8:64:c1:02:5d:69:9e:81:26:27:70:cc:64: 44:b9:42:35:b2:d1:ec:f7:64:0c:88:0e:ef:ce:c6:4e:f3:9e: 8c:ed:70:e3:ac:83:99:92:b1:e5:ca:09:55:98:fe:c7:cc:4d: 38:52:81:87:93:40:ba:2e:8f:af:88:0f:4d:37:10:0f:5e:b2: a0:c7:6f:ea:f4:0b:b0:ed:72:0a:2b:f8:19:aa:f5:1c:50:70: b8:6d:3b:12:69:43:f8:a4:24:c1:53:e5:4d:7d:ca:12:94:a0: 31:d1:6b:a9:79:5e:28:05:ac:d7:f3:df:1d:18:eb:9c:9e:d9: 9f:48:79:d3:ab:a7:e0:fa:ed:a0:fc:df:9b:99:ff:7e:6b:f2: b2:f0:48:08:f2:72:be:5f:47:ba:65:f1:bd:2d:7c:d0:7f:53: 19:20:7d:0f:f1:40:c3:93:88:fe:7e:91:2d:79:f5:8a:92:75: 87:fd:78:be:e8:1d:f9:1e:bf:65:5c:c4:73:db:2d:82:7b:83: 75:a5:34:5d:b0:77:e3:85:eb:5f:9f:ec:a9:23:a7:d3:0d:85: f4:9f:19:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTU2MjAxMTAvBgNVBAUTKDMzNzVBOTYxMzRDNTczMzFBRjU0REQ3MTRFRDM2M0RB QjMxQjZCRDAwHhcNMjUwNjAxMDYxNDQyWhcNMjUwNjA4MDYxNDQyWjAYMRYwFAYD VQQDEw02ODNiZWZkMi1iYTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+OQ7Wm31iN18HjdOHllp2UyrC1jB9fIYc5ZUyzeHBO5e4gelM01yfO+7q9V3 tRZ/B9aZL65zGdti/tedm7KvYtXeylyQayznwnmed3rLFaJ4kABmFbWlbx/5gqmh QOmpkqOf2avMRUYNLIgNYFqLBMR3e+O1IKClTB5MSJg3WhotUehIO93p7OEP+I1g /1SHJT/UP/HI6Yv1qG1+x7n2AdweHD3VQp3wjgdn4iPJOQLYr5ei47K9A2O/MlUb DVly+fb3Uaa/QnIO1XD3jsmbKUo+nldCkyf5EpytNoEFRF5QYg1LsnIWVJ91mpOJ W/pV335492Ow6tM21EpC2mDNKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP01FZUx vaac0JXCsRvvIuxSp1SZMB8GA1UdIwQYMBaAFDN1qWE0xXMxr1TdcU7TY9qzG2vQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNTYyMC8xNEEzNzY0NDZC QTkxMUVGQTNCMzQ2ODRDNEY5QUUwMi9NM1dwWVRURmN6R3ZWTjF4VHROajJyTWJh OUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL00zV3BZVFRGY3pHdlZOMXhUdE5qMnJNYmE5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NTYyMC8xNEEzNzY0NDZCQTkxMUVGQTNCMzQ2ODRDNEY5QUUwMi9NM1dwWVRURmN6 R3ZWTjF4VHROajJyTWJhOUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACMZZ0U3+q1Cjc9qkBatF6inuJdks+So0vtNHEnP3IF1onRg/BiIQO odhkwQJdaZ6BJidwzGREuUI1stHs92QMiA7vzsZO856M7XDjrIOZkrHlyglVmP7H zE04UoGHk0C6Lo+viA9NNxAPXrKgx2/q9Auw7XIKK/gZqvUcUHC4bTsSaUP4pCTB U+VNfcoSlKAx0WupeV4oBazX898dGOucntmfSHnTq6fg+u2g/N+bmf9+a/Ky8EgI 8nK+X0e6ZfG9LXzQf1MZIH0P8UDDk4j+fpEtefWKknWH/Xi+6B35Hr9lXMRz2y2C e4N1pTRdsHfjhetfn+ypI6fTDYX0nxkP -----END CERTIFICATE-----Generated at Mon Jun 2 20:37:44 2025 by rpki-client