$ rpki-client -vvf rpki.apnic.net/member_repository/A913E36B/7C2C6240A09111EAA9427C44C4F9AE02/3604bKySNIOAxXSS2xjyvIScUoY.mft File: 3604bKySNIOAxXSS2xjyvIScUoY.mft (raw, json) Hash identifier: xFyVLXtX161+suac39+MKgGaqydXZ7FPQfpZz2WkOow= Subject key identifier: AE:EB:F9:59:69:3A:0B:04:47:47:2F:5E:BC:1E:E4:CE:49:24:7B:E5 Authority key identifier: DF:AD:38:6C:AC:92:34:83:80:C5:74:92:DB:18:F2:BC:84:9C:52:86 Certificate issuer: /CN=A913E36B/serialNumber=DFAD386CAC92348380C57492DB18F2BC849C5286 Certificate serial: 0936 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3604bKySNIOAxXSS2xjyvIScUoY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E36B/7C2C6240A09111EAA9427C44C4F9AE02/3604bKySNIOAxXSS2xjyvIScUoY.mft Manifest number: 0928 Signing time: Fri 30 May 2025 20:58:31 +0000 Manifest this update: Fri 30 May 2025 20:58:31 +0000 Manifest next update: Fri 06 Jun 2025 20:58:31 +0000 Files and hashes: 1: 3604bKySNIOAxXSS2xjyvIScUoY.crl (hash: /HQW37b8Ew0GNzj6ShRv8KOR2RtbIUkhpe4jKG6PhBY=) 2: 649A355C5F0F11EBBDB7C113C4F9AE02.roa (hash: bw4sMGnKDiftNLfRmiZR5SdnMpNduWFQjTQlPL6jZYY=) 3: 20544B84F14511ECA1AE5F4EC4F9AE02.roa (hash: FPAklaM71rdV3Mf7CFthJcOnotN1vw1BtN7p9xcPR+g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E36B/7C2C6240A09111EAA9427C44C4F9AE02/3604bKySNIOAxXSS2xjyvIScUoY.crl rsync://rpki.apnic.net/member_repository/A913E36B/7C2C6240A09111EAA9427C44C4F9AE02/3604bKySNIOAxXSS2xjyvIScUoY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3604bKySNIOAxXSS2xjyvIScUoY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 20:58:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2358 (0x936) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E36B, serialNumber=DFAD386CAC92348380C57492DB18F2BC849C5286 Validity Not Before: May 30 20:58:31 2025 GMT Not After : Jun 6 20:58:31 2025 GMT Subject: CN=683a1bf7-6283 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:ed:24:5a:66:41:3d:5b:fa:b5:65:59:57:14: 10:0a:4b:01:11:fe:c6:e0:53:28:1e:4e:17:2e:72: 65:bb:db:b4:8a:5e:e2:9d:d2:93:04:9b:67:2f:1c: 10:d7:9d:fe:9b:78:2a:ba:2d:42:e1:a9:fc:72:ab: c9:7c:3e:f8:7f:e1:8d:62:2e:b0:16:a0:67:f5:3e: 48:3c:cc:ee:53:ac:21:eb:b1:af:fd:6a:40:39:3c: 15:9a:36:b5:d8:a3:c3:5c:1d:8f:b0:00:9d:f2:d5: 7c:09:f3:ce:93:b3:a0:d1:fc:67:fb:bd:aa:23:20: 1f:5e:14:2c:04:9f:72:74:ac:02:7d:98:fe:cb:d2: 68:10:62:6f:70:4c:14:02:67:dd:39:ad:2b:4f:9f: 21:80:c5:7e:7a:c6:73:df:cb:25:31:81:b8:72:3a: 2b:b2:70:0c:a9:44:83:60:8d:cd:b9:da:0a:87:01: 20:ac:9d:83:b8:d8:3a:81:c0:37:45:c0:fe:d9:99: c3:5c:fe:10:72:65:04:f2:ed:b7:37:4d:b5:db:28: b9:c9:f5:f5:e8:49:ec:69:50:c2:7e:9a:c4:e1:7f: 1f:72:18:d7:18:ea:1a:d5:26:33:de:d5:72:5a:53: 7b:41:5a:32:0f:94:1a:9d:e0:1c:02:09:50:c7:26: f8:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:EB:F9:59:69:3A:0B:04:47:47:2F:5E:BC:1E:E4:CE:49:24:7B:E5 X509v3 Authority Key Identifier: keyid:DF:AD:38:6C:AC:92:34:83:80:C5:74:92:DB:18:F2:BC:84:9C:52:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E36B/7C2C6240A09111EAA9427C44C4F9AE02/3604bKySNIOAxXSS2xjyvIScUoY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3604bKySNIOAxXSS2xjyvIScUoY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E36B/7C2C6240A09111EAA9427C44C4F9AE02/3604bKySNIOAxXSS2xjyvIScUoY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:52:43:cb:8d:59:86:5a:84:fa:4c:8d:5c:47:d4:f5:2c:ed: 1c:3b:98:ad:1a:11:25:3b:28:08:c5:21:6f:8d:0d:da:38:56: 86:82:ed:9c:45:19:6d:a1:41:60:6e:cb:a0:4d:79:88:b0:bc: d4:8a:21:c4:12:8f:28:60:1e:ef:c4:5c:1f:2b:5b:02:96:9b: 68:ee:52:1f:44:9b:86:bd:87:c6:94:85:57:e1:b0:4a:4a:84: cf:78:28:80:55:8e:07:d9:ac:c3:e6:3e:6b:d2:67:4a:87:37: ed:8a:e3:b7:5d:a3:38:1c:dd:21:73:20:b3:52:c1:d7:3b:30: 72:3e:d8:34:c8:c3:5d:ed:f8:e2:c7:76:0f:57:68:27:a8:bc: 11:7b:25:19:07:ae:a5:0a:b0:01:1b:6d:74:6b:71:e3:fd:74: 19:05:0f:32:6e:5f:94:7a:07:27:e3:5c:b3:cb:8f:c1:e8:56: 78:cd:0d:cd:73:cd:30:0c:89:97:52:7f:f0:17:6d:54:d5:e7: fe:aa:28:7a:18:2d:af:d4:f1:d0:5e:5a:f3:1d:a8:1b:c1:9c: d4:0d:18:04:8a:7a:ce:92:b1:a7:e2:1c:5f:ad:27:bd:de:ac: 98:07:68:5b:58:d0:34:9c:10:e2:3b:78:4f:ef:94:99:d4:2c: be:e7:ad:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCTYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0UzNkIxMTAvBgNVBAUTKERGQUQzODZDQUM5MjM0ODM4MEM1NzQ5MkRCMThGMkJD ODQ5QzUyODYwHhcNMjUwNTMwMjA1ODMxWhcNMjUwNjA2MjA1ODMxWjAYMRYwFAYD VQQDEw02ODNhMWJmNy02MjgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz+0kWmZBPVv6tWVZVxQQCksBEf7G4FMoHk4XLnJlu9u0il7indKTBJtnLxwQ 153+m3gqui1C4an8cqvJfD74f+GNYi6wFqBn9T5IPMzuU6wh67Gv/WpAOTwVmja1 2KPDXB2PsACd8tV8CfPOk7Og0fxn+72qIyAfXhQsBJ9ydKwCfZj+y9JoEGJvcEwU AmfdOa0rT58hgMV+esZz38slMYG4cjorsnAMqUSDYI3NudoKhwEgrJ2DuNg6gcA3 RcD+2ZnDXP4QcmUE8u23N0212yi5yfX16EnsaVDCfprE4X8fchjXGOoa1SYz3tVy WlN7QVoyD5QaneAcAglQxyb4LQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK7r+Vlp OgsER0cvXrwe5M5JJHvlMB8GA1UdIwQYMBaAFN+tOGyskjSDgMV0ktsY8ryEnFKG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTM2Qi83QzJDNjI0MEEw OTExMUVBQTk0MjdDNDRDNEY5QUUwMi8zNjA0Ykt5U05JT0F4WFNTMnhqeXZJU2NV b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM2MDRiS3lTTklPQXhYU1MyeGp5dklTY1VvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTM2Qi83QzJDNjI0MEEwOTExMUVBQTk0MjdDNDRDNEY5QUUwMi8zNjA0Ykt5U05J T0F4WFNTMnhqeXZJU2NVb1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKUkPLjVmGWoT6TI1cR9T1LO0cO5itGhElOygIxSFvjQ3aOFaGgu2c RRltoUFgbsugTXmIsLzUiiHEEo8oYB7vxFwfK1sClpto7lIfRJuGvYfGlIVX4bBK SoTPeCiAVY4H2azD5j5r0mdKhzftiuO3XaM4HN0hcyCzUsHXOzByPtg0yMNd7fji x3YPV2gnqLwReyUZB66lCrABG210a3Hj/XQZBQ8ybl+Uegcn41yzy4/B6FZ4zQ3N c80wDImXUn/wF21U1ef+qih6GC2v1PHQXlrzHagbwZzUDRgEinrOkrGn4hxfrSe9 3qyYB2hbWNA0nBDiO3hP75SZ1Cy+561y -----END CERTIFICATE-----Generated at Sat May 31 17:50:37 2025 by rpki-client