$ rpki-client -vvf rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/3dU_UiXtL42o0J56rZgsgLbOrag.mft File: 3dU_UiXtL42o0J56rZgsgLbOrag.mft (raw, json) Hash identifier: tpgSk5n9BRHHyuW7qcdgYJQyGCOW2Isjsfz6ETRkuik= Subject key identifier: FF:36:29:B2:19:BB:17:5A:2A:B3:F4:C0:EA:0B:F5:48:C2:E1:ED:A7 Authority key identifier: DD:D5:3F:52:25:ED:2F:8D:A8:D0:9E:7A:AD:98:2C:80:B6:CE:AD:A8 Certificate issuer: /CN=A91658EF/serialNumber=DDD53F5225ED2F8DA8D09E7AAD982C80B6CEADA8 Certificate serial: 0795 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3dU_UiXtL42o0J56rZgsgLbOrag.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/3dU_UiXtL42o0J56rZgsgLbOrag.mft Manifest number: 2B90 Signing time: Mon 02 Jun 2025 17:00:41 +0000 Manifest this update: Mon 02 Jun 2025 17:00:41 +0000 Manifest next update: Mon 09 Jun 2025 17:00:41 +0000 Files and hashes: 1: 3dU_UiXtL42o0J56rZgsgLbOrag.crl (hash: MrTG7rrhQaxkaZg6TvlIqbq/jERJWE9hKP+EL6WoJ2E=) 2: A20F3364D9CD11EF93ACA765C4F9AE02.roa (hash: GlYsHzeq/9zAsgZDgmAiaFOhydbYqGstJVX7MNbtJFs=) 3: CD0ACC3AD9CE11EFA393BC6AC4F9AE02.roa (hash: zPBNAdtnIGt+ra2FI390H36UQCaUhQl2E2/fPAphoFM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/3dU_UiXtL42o0J56rZgsgLbOrag.crl rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/3dU_UiXtL42o0J56rZgsgLbOrag.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3dU_UiXtL42o0J56rZgsgLbOrag.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 17:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1941 (0x795) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91658EF, serialNumber=DDD53F5225ED2F8DA8D09E7AAD982C80B6CEADA8 Validity Not Before: Jun 2 17:00:41 2025 GMT Not After : Jun 9 17:00:41 2025 GMT Subject: CN=683dd8b9-fa99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ab:77:46:cd:fd:88:42:4d:8d:87:4f:77:2c: 8c:ea:04:85:15:c2:0d:2b:de:3c:ab:38:ff:ae:65: 4e:96:f3:0d:54:0c:86:4e:1e:1e:35:e8:97:76:60: 71:19:43:71:a4:23:26:30:d6:e1:4f:01:50:54:f1: 7d:b0:b6:54:d7:8c:06:aa:a6:c3:dd:65:bf:b9:db: 04:94:b1:db:ac:4b:60:5a:65:48:be:98:6c:e2:df: e2:c8:34:ab:31:4a:48:91:a5:7e:a6:3b:f9:62:64: 76:6d:2b:c4:ac:47:2f:7a:52:f9:d4:ff:2a:a1:62: 25:91:d3:a9:bb:50:3b:fd:5c:1b:36:0a:1f:b0:2f: 1a:04:62:bf:34:b5:64:92:ba:44:cd:74:a9:73:eb: e0:d1:98:02:db:fb:e6:d7:88:1e:b1:ed:0d:7d:e1: ca:b1:cd:7a:c4:00:1c:1f:98:3f:86:20:81:bd:42: ae:a0:ab:fa:a2:3c:11:76:5f:13:5e:38:e9:d7:22: 71:c4:db:dc:cb:c3:f9:30:fb:16:c0:ae:96:2d:03: 4e:cf:74:5c:5b:1c:f0:ed:46:64:d5:84:35:3e:a7: 1e:ab:22:4a:3d:0f:d6:32:8c:35:fb:51:20:a4:ca: 8f:ad:96:6b:10:ec:84:a1:4a:09:39:d0:e6:be:2a: 8b:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:36:29:B2:19:BB:17:5A:2A:B3:F4:C0:EA:0B:F5:48:C2:E1:ED:A7 X509v3 Authority Key Identifier: keyid:DD:D5:3F:52:25:ED:2F:8D:A8:D0:9E:7A:AD:98:2C:80:B6:CE:AD:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/3dU_UiXtL42o0J56rZgsgLbOrag.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3dU_UiXtL42o0J56rZgsgLbOrag.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/3dU_UiXtL42o0J56rZgsgLbOrag.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:3d:8d:2f:71:05:b6:99:e0:ab:66:ab:75:e5:65:7e:f0:13: 4e:a9:34:b2:27:eb:55:70:4d:22:d8:25:7c:ca:72:43:c2:04: e9:a3:a9:3e:bd:b0:66:bb:20:21:31:8f:e1:a9:ef:7b:50:8c: 1d:e4:fd:c8:49:af:4c:75:98:43:97:9b:44:15:89:40:a4:e9: 83:f7:3a:fa:e6:65:3d:3f:ec:95:41:1e:2d:91:8b:37:1e:14: 87:76:cc:46:3c:fb:cb:06:a3:f8:49:80:89:cc:da:c2:bc:99: a3:ec:ec:c4:80:fd:2b:80:95:1c:df:80:c1:f5:f2:79:21:1a: 4c:1d:fa:ee:93:53:67:f0:6b:61:db:ca:10:4a:60:91:34:99: 81:08:a9:e1:db:86:10:47:05:f2:c5:7d:31:b9:a1:92:25:a2: 98:48:56:24:d8:57:28:d7:e5:0d:59:f3:ba:24:c3:b3:58:0e: 88:2a:7e:e5:1a:20:fc:f6:aa:0c:16:7f:81:64:c9:f3:a2:75: bb:70:28:57:6e:b2:6f:1c:40:44:52:73:d3:a7:ae:c6:3c:ab: e0:bb:fb:ca:40:47:82:ac:47:af:3e:34:d8:9d:3c:1b:ea:8e: bd:7c:22:04:7e:9f:70:05:8f:92:8c:24:2d:1a:2b:53:29:51: d8:27:e6:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB5UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU4RUYxMTAvBgNVBAUTKERERDUzRjUyMjVFRDJGOERBOEQwOUU3QUFEOTgyQzgw QjZDRUFEQTgwHhcNMjUwNjAyMTcwMDQxWhcNMjUwNjA5MTcwMDQxWjAYMRYwFAYD VQQDEw02ODNkZDhiOS1mYTk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv6t3Rs39iEJNjYdPdyyM6gSFFcINK948qzj/rmVOlvMNVAyGTh4eNeiXdmBx GUNxpCMmMNbhTwFQVPF9sLZU14wGqqbD3WW/udsElLHbrEtgWmVIvphs4t/iyDSr MUpIkaV+pjv5YmR2bSvErEcvelL51P8qoWIlkdOpu1A7/VwbNgofsC8aBGK/NLVk krpEzXSpc+vg0ZgC2/vm14gese0NfeHKsc16xAAcH5g/hiCBvUKuoKv6ojwRdl8T Xjjp1yJxxNvcy8P5MPsWwK6WLQNOz3RcWxzw7UZk1YQ1PqceqyJKPQ/WMow1+1Eg pMqPrZZrEOyEoUoJOdDmviqLXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP82KbIZ uxdaKrP0wOoL9UjC4e2nMB8GA1UdIwQYMBaAFN3VP1Il7S+NqNCeeq2YLIC2zq2o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NThFRi9EMjQzMzc5NjRB RUMxMUU4ODQxN0YzNEFDNEY5QUUwMi8zZFVfVWlYdEw0Mm8wSjU2clpnc2dMYk9y YWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNkVV9VaVh0TDQybzBKNTZyWmdzZ0xiT3JhZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NThFRi9EMjQzMzc5NjRBRUMxMUU4ODQxN0YzNEFDNEY5QUUwMi8zZFVfVWlYdEw0 Mm8wSjU2clpnc2dMYk9yYWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVPY0vcQW2meCrZqt15WV+8BNOqTSyJ+tVcE0i2CV8ynJDwgTpo6k+ vbBmuyAhMY/hqe97UIwd5P3ISa9MdZhDl5tEFYlApOmD9zr65mU9P+yVQR4tkYs3 HhSHdsxGPPvLBqP4SYCJzNrCvJmj7OzEgP0rgJUc34DB9fJ5IRpMHfruk1Nn8Gth 28oQSmCRNJmBCKnh24YQRwXyxX0xuaGSJaKYSFYk2Fco1+UNWfO6JMOzWA6IKn7l GiD89qoMFn+BZMnzonW7cChXbrJvHEBEUnPTp67GPKvgu/vKQEeCrEevPjTYnTwb 6o69fCIEfp9wBY+SjCQtGitTKVHYJ+Y3 -----END CERTIFICATE-----Generated at Wed Jun 4 00:03:37 2025 by rpki-client