$ rpki-client -vvf rpki.apnic.net/member_repository/A911945B/3ACF70C017FD11EF8C083063C4F9AE02/6zLfknQ0rG06hoR937o9LoEAETE.mft File: 6zLfknQ0rG06hoR937o9LoEAETE.mft (raw, json) Hash identifier: J53ujELtSO0M2Gbcculg/3iE851g8qUwvuMDWXtCNms= Subject key identifier: 30:CF:CE:A9:C6:97:9A:51:97:99:BF:90:DE:B4:E3:1D:C5:8B:2A:90 Authority key identifier: EB:32:DF:92:74:34:AC:6D:3A:86:84:7D:DF:BA:3D:2E:81:00:11:31 Certificate issuer: /CN=A911945B/serialNumber=EB32DF927434AC6D3A86847DDFBA3D2E81001131 Certificate serial: C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zLfknQ0rG06hoR937o9LoEAETE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911945B/3ACF70C017FD11EF8C083063C4F9AE02/6zLfknQ0rG06hoR937o9LoEAETE.mft Manifest number: C3 Signing time: Sat 31 May 2025 05:25:26 +0000 Manifest this update: Sat 31 May 2025 05:25:25 +0000 Manifest next update: Sat 07 Jun 2025 05:25:25 +0000 Files and hashes: 1: 6zLfknQ0rG06hoR937o9LoEAETE.crl (hash: AiaVAfg1Lm75l1Nf0AYscMBQOg9hi2OtG+t/QRyg+0g=) 2: C562775017FD11EF9A320864C4F9AE02.roa (hash: mT/xhxJVAPolN6BiWxF1pYh0qrq0TTClAYLDrh0UW5A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911945B/3ACF70C017FD11EF8C083063C4F9AE02/6zLfknQ0rG06hoR937o9LoEAETE.crl rsync://rpki.apnic.net/member_repository/A911945B/3ACF70C017FD11EF8C083063C4F9AE02/6zLfknQ0rG06hoR937o9LoEAETE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zLfknQ0rG06hoR937o9LoEAETE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:25:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 198 (0xc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911945B, serialNumber=EB32DF927434AC6D3A86847DDFBA3D2E81001131 Validity Not Before: May 31 05:25:25 2025 GMT Not After : Jun 7 05:25:25 2025 GMT Subject: CN=683a92c5-96c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:aa:93:c6:1f:de:8d:fa:1b:2e:88:b2:10:85: 04:32:28:5d:57:8a:f6:40:65:00:25:ed:0f:8c:34: 56:26:7b:17:d9:42:cf:69:a5:3b:ff:7d:e2:1e:4f: 3a:e4:7a:3e:df:5e:c5:d1:39:b2:21:3b:21:c4:92: 0d:09:36:82:0a:cf:82:63:aa:2c:18:6e:e1:1b:bc: 6b:82:56:ed:c5:35:04:0d:42:f2:b2:3e:b0:2b:b5: 47:c0:7e:58:f9:f4:8b:80:9f:a6:0a:d5:99:2a:37: 4f:a1:e1:32:ae:93:0f:68:09:1e:96:58:82:09:af: 06:03:4f:4d:da:bb:b2:b6:cc:87:9e:9a:74:40:b9: f8:f1:45:cd:63:fc:46:2a:64:e8:c5:7e:ed:9f:c0: 1f:60:f1:88:93:86:d0:87:82:ff:10:b8:67:ed:36: 5c:28:ce:8f:ab:88:90:53:81:17:3d:71:0e:b5:9b: dc:21:59:c4:ff:22:6c:6e:90:49:0e:6e:de:b2:4d: 0f:44:4b:8e:23:20:fd:99:16:71:e7:d7:ae:b6:09: 9d:1d:66:7c:ab:2a:3f:d2:20:59:a3:40:b3:83:30: b7:9c:ba:e7:bd:19:f4:24:23:32:2e:73:89:8b:24: 94:0c:20:42:65:64:a3:2c:0a:2e:28:55:b6:20:9d: 74:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:CF:CE:A9:C6:97:9A:51:97:99:BF:90:DE:B4:E3:1D:C5:8B:2A:90 X509v3 Authority Key Identifier: keyid:EB:32:DF:92:74:34:AC:6D:3A:86:84:7D:DF:BA:3D:2E:81:00:11:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911945B/3ACF70C017FD11EF8C083063C4F9AE02/6zLfknQ0rG06hoR937o9LoEAETE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zLfknQ0rG06hoR937o9LoEAETE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911945B/3ACF70C017FD11EF8C083063C4F9AE02/6zLfknQ0rG06hoR937o9LoEAETE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:ff:9f:23:84:e1:f4:9a:95:d7:60:f9:76:6c:9e:72:9c:3e: bb:fe:6a:bf:82:5a:8d:60:20:99:3f:7c:91:c5:a4:e2:fd:29: 7f:e7:10:dd:20:26:e5:77:90:8d:e7:3f:1f:68:7f:66:5b:01: 3d:1a:1d:a1:87:92:44:21:04:7d:05:d1:ea:e4:d5:13:29:96: d1:d6:14:a1:dd:84:32:93:c1:cd:8b:60:43:3f:a8:e5:65:8a: 6c:76:b6:9c:d2:3e:fa:01:cb:a7:7e:7f:89:25:71:aa:6b:c1: 76:01:20:3d:98:cf:1f:f9:58:d8:80:fa:da:03:85:85:56:a0: 29:18:c0:64:ab:96:f1:7f:c1:3c:7c:2b:b1:15:82:7a:06:91: 4c:3c:09:85:f7:e0:42:44:69:2c:c9:ab:a8:23:b7:76:a2:98: 22:ae:eb:b3:8d:cd:6f:cc:b2:5c:ef:2a:11:fa:e6:0f:b8:e0: 91:2d:94:3c:b6:01:90:24:53:b6:9d:43:07:05:f6:85:03:c6: 55:4d:c0:9f:07:bb:ec:38:f9:a7:b4:a1:8b:6b:6c:46:5d:1e: c7:44:4a:b1:36:ac:d7:78:2d:2d:19:92:42:0c:f5:4b:9c:86: ae:5b:6b:ba:66:65:04:12:e6:03:df:ed:cf:39:4b:8a:dd:87: 27:fd:7a:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk0NUIxMTAvBgNVBAUTKEVCMzJERjkyNzQzNEFDNkQzQTg2ODQ3RERGQkEzRDJF ODEwMDExMzEwHhcNMjUwNTMxMDUyNTI1WhcNMjUwNjA3MDUyNTI1WjAYMRYwFAYD VQQDEw02ODNhOTJjNS05NmM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8KqTxh/ejfobLoiyEIUEMihdV4r2QGUAJe0PjDRWJnsX2ULPaaU7/33iHk86 5Ho+317F0TmyITshxJINCTaCCs+CY6osGG7hG7xrglbtxTUEDULysj6wK7VHwH5Y +fSLgJ+mCtWZKjdPoeEyrpMPaAkelliCCa8GA09N2ruytsyHnpp0QLn48UXNY/xG KmToxX7tn8AfYPGIk4bQh4L/ELhn7TZcKM6Pq4iQU4EXPXEOtZvcIVnE/yJsbpBJ Dm7esk0PREuOIyD9mRZx59eutgmdHWZ8qyo/0iBZo0CzgzC3nLrnvRn0JCMyLnOJ iySUDCBCZWSjLAouKFW2IJ106QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDDPzqnG l5pRl5m/kN604x3FiyqQMB8GA1UdIwQYMBaAFOsy35J0NKxtOoaEfd+6PS6BABEx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTQ1Qi8zQUNGNzBDMDE3 RkQxMUVGOEMwODMwNjNDNEY5QUUwMi82ekxma25RMHJHMDZob1I5MzdvOUxvRUFF VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZ6TGZrblEwckcwNmhvUjkzN285TG9FQUVURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTQ1Qi8zQUNGNzBDMDE3RkQxMUVGOEMwODMwNjNDNEY5QUUwMi82ekxma25RMHJH MDZob1I5MzdvOUxvRUFFVEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB//58jhOH0mpXXYPl2bJ5ynD67/mq/glqNYCCZP3yRxaTi/Sl/5xDd ICbld5CN5z8faH9mWwE9Gh2hh5JEIQR9BdHq5NUTKZbR1hSh3YQyk8HNi2BDP6jl ZYpsdrac0j76Acunfn+JJXGqa8F2ASA9mM8f+VjYgPraA4WFVqApGMBkq5bxf8E8 fCuxFYJ6BpFMPAmF9+BCRGksyauoI7d2opgiruuzjc1vzLJc7yoR+uYPuOCRLZQ8 tgGQJFO2nUMHBfaFA8ZVTcCfB7vsOPmntKGLa2xGXR7HREqxNqzXeC0tGZJCDPVL nIauW2u6ZmUEEuYD3+3POUuK3Ycn/Xqi -----END CERTIFICATE-----Generated at Sat May 31 16:41:59 2025 by rpki-client