$ rpki-client -vvf rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft File: pm3QENok34rhcGvZCMukO9E4ljE.mft (raw, json) Hash identifier: Iajeh9NVxCHnmLW1cVsqvDnnAtos5aq2PopYrBAAdwA= Subject key identifier: 2C:D0:55:54:8A:B2:77:7A:1E:99:DC:DB:EE:BE:5D:60:66:2E:4A:DF Authority key identifier: A6:6D:D0:10:DA:24:DF:8A:E1:70:6B:D9:08:CB:A4:3B:D1:38:96:31 Certificate issuer: /CN=A9171753/serialNumber=A66DD010DA24DF8AE1706BD908CBA43BD1389631 Certificate serial: 3493 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft Manifest number: 3488 Signing time: Sat 31 May 2025 15:13:20 +0000 Manifest this update: Sat 31 May 2025 15:13:20 +0000 Manifest next update: Sat 07 Jun 2025 15:13:20 +0000 Files and hashes: 1: pm3QENok34rhcGvZCMukO9E4ljE.crl (hash: FcprajgCMnPdUl1y6ActtdJI3dcA7O62jzYjZSbHDiY=) 2: DE670A60679D11EEAFBA0A5DC4F9AE02.roa (hash: zHkGq6W1DSD5ffW+BnhDs7qnRsRpvtxDIEM0SIuuDg4=) 3: C92F5F8077A211EDAF94D63EC4F9AE02.roa (hash: /yGsH3AYsghIUdTIUcXoSyBB3f9raZ59e9j2Pg64iUI=) 4: 41623A12778111ED8F236A62C4F9AE02.roa (hash: OYhGj+v27n+SqxvC/qZ2JFeWyJlSzi9WwyujTQsPl7E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.crl rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 15:13:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13459 (0x3493) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171753, serialNumber=A66DD010DA24DF8AE1706BD908CBA43BD1389631 Validity Not Before: May 31 15:13:20 2025 GMT Not After : Jun 7 15:13:20 2025 GMT Subject: CN=683b1c90-bda7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:99:87:18:b2:a5:6c:50:91:29:a5:ee:f3:ab: d7:68:5e:82:1d:6e:f4:52:4b:79:11:48:d0:6f:52: 49:80:0b:2a:93:a9:b9:19:ab:50:3c:20:8c:2b:89: 3a:84:3e:96:66:e3:95:d2:f6:21:7a:0c:a3:40:b7: 35:e1:bd:ff:6b:ae:52:c5:7d:20:91:fa:bf:1c:17: 99:fa:45:76:b1:83:ef:e8:4e:1f:6f:24:53:e2:2a: 0c:34:ee:5b:ff:1c:61:94:23:9d:51:81:65:db:e9: f9:bd:b5:b3:d7:8b:4f:9a:c5:5d:b6:1c:4f:a8:20: 52:9f:3b:cf:b3:fd:c2:98:97:d2:b2:8b:07:f0:41: 00:58:11:92:44:a2:97:be:84:e9:e2:11:22:7c:a9: 40:d8:ae:60:cb:c9:f1:97:6f:1a:b2:b2:25:f1:a8: 96:06:23:9e:5e:63:41:e3:aa:7e:94:53:7e:30:52: 10:1f:fc:3f:83:c6:8d:21:e0:51:a4:fa:1c:ca:c8: 10:13:3f:b0:56:75:59:c4:51:bc:98:c8:08:b9:98: c8:e0:fb:6c:48:4f:c8:eb:f2:73:6c:ec:d3:67:a4: 1f:e2:23:2b:3a:d9:1f:eb:1e:85:22:18:30:f4:9e: 11:e6:53:7a:1b:a0:a3:b2:11:67:6b:08:9c:4d:58: 80:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:D0:55:54:8A:B2:77:7A:1E:99:DC:DB:EE:BE:5D:60:66:2E:4A:DF X509v3 Authority Key Identifier: keyid:A6:6D:D0:10:DA:24:DF:8A:E1:70:6B:D9:08:CB:A4:3B:D1:38:96:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:57:f2:93:d2:63:7e:e3:b9:36:e8:e8:b8:7f:88:e1:c3:32: 28:06:42:32:36:27:49:80:94:8f:f9:af:85:5d:6c:91:6a:1f: fd:98:74:f6:9d:cf:de:33:e2:64:8a:18:e7:92:a5:e1:e2:bc: 5c:34:87:d2:eb:ba:64:8f:03:51:a3:49:b3:68:45:6d:d3:f8: d9:43:0e:cf:ed:b1:91:5d:68:49:62:bd:8b:0b:dd:8e:ae:d1: ba:ef:42:ae:ff:02:f4:2e:9a:0f:c2:8e:3d:44:59:42:ae:2f: cf:7f:6b:0a:cf:7d:36:3d:55:e3:00:ea:d4:39:1d:b4:ce:4a: a4:e7:44:52:94:6d:a1:a7:9b:67:a3:55:b2:33:67:e4:10:96: 82:23:9d:7a:c5:09:d0:11:bc:e2:3b:08:7c:62:5f:6b:46:6d: 37:a0:04:96:05:1b:13:47:9a:90:8b:08:cb:8c:36:ac:69:c3: 69:f9:5d:e0:a5:3e:d3:b6:86:77:f2:8b:34:a9:24:71:b0:d8: c6:42:e3:cd:c5:e4:e1:18:d3:ca:c6:a2:61:b6:75:c7:e5:8f: 6a:9f:f5:5d:bc:91:65:7f:3d:d9:03:03:32:0a:7c:60:d0:cd: 51:f0:e9:ee:e8:24:8c:b8:0d:f9:c0:4b:8b:13:99:b9:7f:f4: 48:5b:b4:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE3NTMxMTAvBgNVBAUTKEE2NkREMDEwREEyNERGOEFFMTcwNkJEOTA4Q0JBNDNC RDEzODk2MzEwHhcNMjUwNTMxMTUxMzIwWhcNMjUwNjA3MTUxMzIwWjAYMRYwFAYD VQQDEw02ODNiMWM5MC1iZGE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwZmHGLKlbFCRKaXu86vXaF6CHW70Ukt5EUjQb1JJgAsqk6m5GatQPCCMK4k6 hD6WZuOV0vYhegyjQLc14b3/a65SxX0gkfq/HBeZ+kV2sYPv6E4fbyRT4ioMNO5b /xxhlCOdUYFl2+n5vbWz14tPmsVdthxPqCBSnzvPs/3CmJfSsosH8EEAWBGSRKKX voTp4hEifKlA2K5gy8nxl28asrIl8aiWBiOeXmNB46p+lFN+MFIQH/w/g8aNIeBR pPocysgQEz+wVnVZxFG8mMgIuZjI4PtsSE/I6/JzbOzTZ6Qf4iMrOtkf6x6FIhgw 9J4R5lN6G6CjshFnawicTViAhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCzQVVSK snd6Hpnc2+6+XWBmLkrfMB8GA1UdIwQYMBaAFKZt0BDaJN+K4XBr2QjLpDvROJYx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTc1My84MDUxNDU5MDFE QTcxMUUyQUFBOTRBQTEwOEIwMkNEMi9wbTNRRU5vazM0cmhjR3ZaQ011a085RTRs akUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BtM1FFTm9rMzRyaGNHdlpDTXVrTzlFNGxqRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTc1My84MDUxNDU5MDFEQTcxMUUyQUFBOTRBQTEwOEIwMkNEMi9wbTNRRU5vazM0 cmhjR3ZaQ011a085RTRsakUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAV/KT0mN+47k26Oi4f4jhwzIoBkIyNidJgJSP+a+FXWyRah/9mHT2 nc/eM+JkihjnkqXh4rxcNIfS67pkjwNRo0mzaEVt0/jZQw7P7bGRXWhJYr2LC92O rtG670Ku/wL0LpoPwo49RFlCri/Pf2sKz302PVXjAOrUOR20zkqk50RSlG2hp5tn o1WyM2fkEJaCI516xQnQEbziOwh8Yl9rRm03oASWBRsTR5qQiwjLjDasacNp+V3g pT7TtoZ38os0qSRxsNjGQuPNxeThGNPKxqJhtnXH5Y9qn/VdvJFlfz3ZAwMyCnxg 0M1R8Onu6CSMuA35wEuLE5m5f/RIW7R9 -----END CERTIFICATE-----Generated at Sat May 31 17:26:11 2025 by rpki-client