$ rpki-client -vvf rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.mft File: g3GOntShsiknnjylVdRNbh_KjMU.mft (raw, json) Hash identifier: xx7kLV1Q+du+pwNCQBYv2RZPYA+RU107JFXA9kNcliI= Subject key identifier: 13:A6:D7:F6:31:BF:3E:8B:40:1C:69:D8:74:6C:56:0D:E4:5B:14:5F Authority key identifier: 83:71:8E:9E:D4:A1:B2:29:27:9E:3C:A5:55:D4:4D:6E:1F:CA:8C:C5 Certificate issuer: /CN=A917A17B/serialNumber=83718E9ED4A1B229279E3CA555D44D6E1FCA8CC5 Certificate serial: 0C4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3GOntShsiknnjylVdRNbh_KjMU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.mft Manifest number: 0C44 Signing time: Fri 30 May 2025 18:41:48 +0000 Manifest this update: Fri 30 May 2025 18:41:47 +0000 Manifest next update: Fri 06 Jun 2025 18:41:47 +0000 Files and hashes: 1: g3GOntShsiknnjylVdRNbh_KjMU.crl (hash: icuAvt/pbPdRdoXPk0omIIQKnv1/owlMXGmy2U0VYLw=) 2: A473C9A008F311EE98719810C4F9AE02.roa (hash: I+dyDrUC3DvMgCPW4jStqejUHX8a7vo0aXHEIsgKIwo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.crl rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3GOntShsiknnjylVdRNbh_KjMU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 18:41:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3151 (0xc4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A17B, serialNumber=83718E9ED4A1B229279E3CA555D44D6E1FCA8CC5 Validity Not Before: May 30 18:41:47 2025 GMT Not After : Jun 6 18:41:47 2025 GMT Subject: CN=6839fbec-6c7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:0c:2c:b6:46:15:da:0c:41:5f:f9:b2:3c:b1: 2b:59:94:78:d9:26:db:e2:2e:65:ab:15:35:12:ff: 7c:81:7e:17:ba:64:8d:02:af:b9:75:c7:c3:68:18: d4:b1:f4:40:79:09:27:d6:70:9d:c1:4e:40:0b:ba: 27:b7:71:85:1f:77:db:9e:db:83:72:c9:a5:5e:c8: f8:f9:a9:7c:e0:02:bd:1d:29:09:92:a1:97:c7:c8: e6:0e:5c:9a:e5:5a:c9:49:94:43:cb:68:72:13:18: 72:8b:32:f4:d4:26:d7:24:98:d9:b5:ac:1f:9f:b1: 39:2d:58:6e:f9:ac:0b:36:64:6d:dd:ba:6e:ee:e1: 5f:ee:58:7f:5a:98:42:58:f3:6a:94:b1:fe:25:1d: d1:70:1d:e4:3c:b3:3c:76:47:96:e4:a3:13:fd:b6: 70:09:b5:b3:56:74:c9:31:b7:ca:54:b8:a1:dc:de: 2f:c3:9d:a9:cc:58:4a:72:41:87:f2:9d:f8:99:94: d3:d9:51:2d:58:28:40:95:4d:6b:af:42:1f:aa:ee: 59:c3:25:60:89:bf:d6:b4:1c:6f:a2:92:7a:74:e8: 45:51:7f:a8:a5:88:bf:39:4d:6d:ca:6f:ff:cf:9b: 6a:61:b7:5a:6f:54:a1:1f:22:d4:28:34:90:8c:fc: f6:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:A6:D7:F6:31:BF:3E:8B:40:1C:69:D8:74:6C:56:0D:E4:5B:14:5F X509v3 Authority Key Identifier: keyid:83:71:8E:9E:D4:A1:B2:29:27:9E:3C:A5:55:D4:4D:6E:1F:CA:8C:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3GOntShsiknnjylVdRNbh_KjMU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:66:e7:b7:90:b4:4b:66:63:10:a4:d7:90:5b:9a:b1:c7:cb: cd:b7:7a:7a:15:87:a0:f3:7e:49:85:84:64:85:08:d9:bb:e0: d9:40:37:0a:93:5f:b5:d1:3e:59:51:cf:c1:55:e7:fd:1c:74: 49:e1:af:cb:35:5d:06:4a:6b:a3:46:65:79:e3:51:f8:f7:5e: f0:7b:da:cb:74:0e:7d:66:9a:5c:d8:5f:f5:7b:90:6f:0c:65: 89:66:9e:09:91:cd:41:70:cb:9b:2e:56:5a:1e:18:11:10:5b: 64:fc:5a:3e:3c:64:11:53:2c:be:51:e7:5d:d3:89:c7:c9:83: 4a:9f:15:90:aa:75:a2:d0:9b:81:de:c5:70:97:67:b3:4e:0c: ac:71:b3:9c:e6:ed:36:34:41:ce:0f:ba:e8:6d:77:af:fd:93: 01:f3:8f:a4:a5:a5:32:6e:f4:ef:3b:28:48:79:4b:c1:b9:19: ef:d6:b7:1b:17:e6:70:2b:4c:7f:ed:04:a0:70:8f:d2:84:51: ec:58:70:f3:ff:3d:ad:f4:2f:f8:45:43:40:43:a3:a0:18:e9: 73:51:cb:cb:3c:50:1d:22:39:12:d3:c2:aa:6c:6c:88:ed:6c: 1e:de:73:04:c7:02:e5:bd:38:5e:95:f7:ee:28:ed:5d:bf:8e: 92:44:98:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDE8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0ExN0IxMTAvBgNVBAUTKDgzNzE4RTlFRDRBMUIyMjkyNzlFM0NBNTU1RDQ0RDZF MUZDQThDQzUwHhcNMjUwNTMwMTg0MTQ3WhcNMjUwNjA2MTg0MTQ3WjAYMRYwFAYD VQQDEw02ODM5ZmJlYy02YzdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApQwstkYV2gxBX/myPLErWZR42Sbb4i5lqxU1Ev98gX4XumSNAq+5dcfDaBjU sfRAeQkn1nCdwU5AC7ont3GFH3fbntuDcsmlXsj4+al84AK9HSkJkqGXx8jmDlya 5VrJSZRDy2hyExhyizL01CbXJJjZtawfn7E5LVhu+awLNmRt3bpu7uFf7lh/WphC WPNqlLH+JR3RcB3kPLM8dkeW5KMT/bZwCbWzVnTJMbfKVLih3N4vw52pzFhKckGH 8p34mZTT2VEtWChAlU1rr0Ifqu5ZwyVgib/WtBxvopJ6dOhFUX+opYi/OU1tym// z5tqYbdab1ShHyLUKDSQjPz2fwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBOm1/Yx vz6LQBxp2HRsVg3kWxRfMB8GA1UdIwQYMBaAFINxjp7UobIpJ548pVXUTW4fyozF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTE3Qi84NTM5NUQ2RTA2 RDMxMUVBQkE1RDVBNDlDNEY5QUUwMi9nM0dPbnRTaHNpa25uanlsVmRSTmJoX0tq TVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2czR09udFNoc2lrbm5qeWxWZFJOYmhfS2pNVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTE3Qi84NTM5NUQ2RTA2RDMxMUVBQkE1RDVBNDlDNEY5QUUwMi9nM0dPbnRTaHNp a25uanlsVmRSTmJoX0tqTVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANZue3kLRLZmMQpNeQW5qxx8vNt3p6FYeg835JhYRkhQjZu+DZQDcK k1+10T5ZUc/BVef9HHRJ4a/LNV0GSmujRmV541H4917we9rLdA59Zppc2F/1e5Bv DGWJZp4Jkc1BcMubLlZaHhgREFtk/Fo+PGQRUyy+Uedd04nHyYNKnxWQqnWi0JuB 3sVwl2ezTgyscbOc5u02NEHOD7robXev/ZMB84+kpaUybvTvOyhIeUvBuRnv1rcb F+ZwK0x/7QSgcI/ShFHsWHDz/z2t9C/4RUNAQ6OgGOlzUcvLPFAdIjkS08KqbGyI 7Wwe3nMExwLlvThelffuKO1dv46SRJjW -----END CERTIFICATE-----Generated at Sat May 31 17:40:58 2025 by rpki-client