$ rpki-client -vvf rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft File: A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft (raw, json) Hash identifier: 5e5e9ok49YOQHLpdnf/aV57xwfg+f7x0YF5GlTcnNjk= Subject key identifier: 6B:9F:D6:38:DB:D5:52:65:E9:EE:7B:7B:BF:45:E8:DF:9D:EF:47:76 Authority key identifier: 03:77:B9:3C:91:FD:AF:46:9A:59:1B:4C:52:D2:4C:B1:55:5D:2B:D4 Certificate issuer: /CN=A91822BF/serialNumber=0377B93C91FDAF469A591B4C52D24CB1555D2BD4 Certificate serial: 0BD9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft Manifest number: 0BD2 Signing time: Fri 06 Jun 2025 18:52:24 +0000 Manifest this update: Fri 06 Jun 2025 18:52:24 +0000 Manifest next update: Fri 13 Jun 2025 18:52:24 +0000 Files and hashes: 1: A3e5PJH9r0aaWRtMUtJMsVVdK9Q.crl (hash: FIafBndhHYYVcqMWIP7AyFclILJ0Hr2wu7n3P2jlh94=) 2: 37EA3E261ADC11EA8EB46F37C4F9AE02.roa (hash: 3kGetLo0/1T2TeuK7e4cz2fvy6XLEBwpuyaFMSSdmUI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.crl rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Jun 2025 18:52:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3033 (0xbd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91822BF, serialNumber=0377B93C91FDAF469A591B4C52D24CB1555D2BD4 Validity Not Before: Jun 6 18:52:24 2025 GMT Not After : Jun 13 18:52:24 2025 GMT Subject: CN=684338e8-c818 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:83:ff:ed:16:33:9d:66:6e:2a:da:41:fb:2d: 41:4e:bc:66:05:c4:23:b9:09:ba:89:dc:19:82:c6: b1:d3:1c:9b:ab:13:71:20:86:61:d2:ad:c2:55:4e: 5a:32:50:51:f3:a0:7f:e9:95:d4:14:2a:c9:ee:04: e9:4e:78:0e:c6:d6:06:1f:45:15:b4:31:92:c9:05: 88:7f:b6:35:51:4f:99:74:a4:73:0f:16:b0:1a:cd: 51:f0:e8:8f:f1:4e:d9:c0:8d:58:f5:21:79:93:53: 3b:9b:bd:b5:0e:41:cf:4b:97:8f:33:6c:5a:8f:d0: f5:ee:cc:e2:6d:8c:b2:84:8a:fa:d4:60:15:73:5d: b5:bd:5c:05:b5:c4:6a:8f:4b:47:f5:50:18:6e:bf: 35:2d:d8:bf:a6:36:f7:0f:66:35:45:a9:d8:38:32: 36:8e:ed:9a:ff:77:44:00:c1:b3:cd:bf:1f:1a:74: 9b:85:86:ca:31:87:53:df:5b:a4:1f:51:e2:2c:24: 90:64:71:1f:3e:b9:f1:df:bc:60:ae:a2:97:46:a6: 06:29:ec:55:df:64:1d:2b:9f:ef:56:98:79:25:7e: 20:e8:ec:f7:a8:aa:db:cf:cd:0e:10:21:96:e5:ad: 0d:b5:ad:d2:50:ec:ab:bc:34:86:e2:66:2f:5c:84: 92:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:9F:D6:38:DB:D5:52:65:E9:EE:7B:7B:BF:45:E8:DF:9D:EF:47:76 X509v3 Authority Key Identifier: keyid:03:77:B9:3C:91:FD:AF:46:9A:59:1B:4C:52:D2:4C:B1:55:5D:2B:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:7f:a4:e0:fd:1d:bc:14:d8:a3:92:50:f0:bd:02:3f:e7:58: a5:fa:fd:32:a5:59:fd:bc:0a:f4:cd:aa:07:bf:68:ca:05:a0: e4:bd:60:fd:d9:99:01:aa:67:9d:59:eb:00:89:81:27:66:10: f9:4e:f4:6d:f9:36:36:bd:1f:0d:cd:3a:eb:3c:75:19:8f:34: f2:e1:e4:f7:99:b0:93:2d:c9:ec:b7:a7:36:50:ba:b9:eb:d0: ae:e6:54:b0:50:23:6e:83:75:48:5e:6e:f2:c6:76:cb:69:66: d2:9d:17:97:92:aa:f8:3a:42:05:3c:1f:77:3c:2f:03:81:88: 35:22:d9:72:6c:70:e0:c3:d1:9a:7e:9e:a3:30:64:0d:8d:d4: cd:e4:4f:78:78:15:d9:cb:dd:30:a0:f6:83:5a:e1:79:a9:b3: 69:89:59:87:0e:59:64:b2:b2:f4:e4:6b:ea:8f:2a:92:52:74: 35:b0:ba:67:a3:d9:d6:6b:52:34:2f:56:77:86:e0:e1:04:9b: 20:36:e1:8e:97:e6:21:16:cb:3b:69:e6:48:18:64:b8:47:1c: b1:19:51:5b:04:44:e3:3e:2d:aa:31:51:a0:c8:35:43:19:5a: b3:bc:d6:d5:ac:72:d2:ac:9b:04:d2:63:03:cd:68:e8:00:ad: 12:52:db:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC9kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODIyQkYxMTAvBgNVBAUTKDAzNzdCOTNDOTFGREFGNDY5QTU5MUI0QzUyRDI0Q0Ix NTU1RDJCRDQwHhcNMjUwNjA2MTg1MjI0WhcNMjUwNjEzMTg1MjI0WjAYMRYwFAYD VQQDEw02ODQzMzhlOC1jODE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvYP/7RYznWZuKtpB+y1BTrxmBcQjuQm6idwZgsax0xybqxNxIIZh0q3CVU5a MlBR86B/6ZXUFCrJ7gTpTngOxtYGH0UVtDGSyQWIf7Y1UU+ZdKRzDxawGs1R8OiP 8U7ZwI1Y9SF5k1M7m721DkHPS5ePM2xaj9D17szibYyyhIr61GAVc121vVwFtcRq j0tH9VAYbr81Ldi/pjb3D2Y1RanYODI2ju2a/3dEAMGzzb8fGnSbhYbKMYdT31uk H1HiLCSQZHEfPrnx37xgrqKXRqYGKexV32QdK5/vVph5JX4g6Oz3qKrbz80OECGW 5a0Nta3SUOyrvDSG4mYvXISSpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGuf1jjb 1VJl6e57e79F6N+d70d2MB8GA1UdIwQYMBaAFAN3uTyR/a9GmlkbTFLSTLFVXSvU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjJCRi8xMDM5QkM0MDFB REIxMUVBQUEzQTgyMzVDNEY5QUUwMi9BM2U1UEpIOXIwYWFXUnRNVXRKTXNWVmRL OVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EzZTVQSkg5cjBhYVdSdE1VdEpNc1ZWZEs5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjJCRi8xMDM5QkM0MDFBREIxMUVBQUEzQTgyMzVDNEY5QUUwMi9BM2U1UEpIOXIw YWFXUnRNVXRKTXNWVmRLOVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPf6Tg/R28FNijklDwvQI/51il+v0ypVn9vAr0zaoHv2jKBaDkvWD9 2ZkBqmedWesAiYEnZhD5TvRt+TY2vR8NzTrrPHUZjzTy4eT3mbCTLcnst6c2ULq5 69Cu5lSwUCNug3VIXm7yxnbLaWbSnReXkqr4OkIFPB93PC8DgYg1ItlybHDgw9Ga fp6jMGQNjdTN5E94eBXZy90woPaDWuF5qbNpiVmHDllksrL05GvqjyqSUnQ1sLpn o9nWa1I0L1Z3huDhBJsgNuGOl+YhFss7aeZIGGS4RxyxGVFbBETjPi2qMVGgyDVD GVqzvNbVrHLSrJsE0mMDzWjoAK0SUtvC -----END CERTIFICATE-----Generated at Sat Jun 7 12:30:40 2025 by rpki-client