$ rpki-client -vvf rpki.apnic.net/member_repository/A91A840E/DA10FF6662EE11E3AAD99F835911EA32/f3UA8ZRiBwd03Is7S5avThubtUU.mft File: f3UA8ZRiBwd03Is7S5avThubtUU.mft (raw, json) Hash identifier: GmLpY/a3MYCXhIe4H5q94Y/oJDbsyMoaf+Q1OZB3wa0= Subject key identifier: 22:7E:FC:C0:CB:BE:E9:DC:FC:64:89:5A:09:87:99:89:E0:9C:4E:C9 Authority key identifier: 7F:75:00:F1:94:62:07:07:74:DC:8B:3B:4B:96:AF:4E:1B:9B:B5:45 Certificate issuer: /CN=A91A840E/serialNumber=7F7500F19462070774DC8B3B4B96AF4E1B9BB545 Certificate serial: 2E0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f3UA8ZRiBwd03Is7S5avThubtUU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A840E/DA10FF6662EE11E3AAD99F835911EA32/f3UA8ZRiBwd03Is7S5avThubtUU.mft Manifest number: 2E0D Signing time: Sat 31 May 2025 15:28:23 +0000 Manifest this update: Sat 31 May 2025 15:28:22 +0000 Manifest next update: Sat 07 Jun 2025 15:28:22 +0000 Files and hashes: 1: f3UA8ZRiBwd03Is7S5avThubtUU.crl (hash: 79lPTvteY1KKQ388cxnUpYke3xPFDD8hdU6jAoLy34w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A840E/DA10FF6662EE11E3AAD99F835911EA32/f3UA8ZRiBwd03Is7S5avThubtUU.crl rsync://rpki.apnic.net/member_repository/A91A840E/DA10FF6662EE11E3AAD99F835911EA32/f3UA8ZRiBwd03Is7S5avThubtUU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f3UA8ZRiBwd03Is7S5avThubtUU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 15:23:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11789 (0x2e0d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A840E, serialNumber=7F7500F19462070774DC8B3B4B96AF4E1B9BB545 Validity Not Before: May 31 15:28:22 2025 GMT Not After : Jun 7 15:28:22 2025 GMT Subject: CN=683b2016-abf6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:29:47:46:8e:d9:03:62:d1:69:bf:3e:c6:b4: 22:96:64:8c:4b:53:9c:fd:66:3b:69:a2:0f:4e:f2: 8a:e9:53:2e:35:68:af:eb:c5:ae:61:16:5e:ce:cb: 1b:fe:de:e2:67:ce:94:bf:21:93:53:a9:61:08:53: 6c:a5:3e:fa:66:70:4a:bd:7f:e3:41:a0:27:9d:bf: b0:12:b8:30:d7:e3:a1:8c:7a:b6:11:c5:1f:63:20: b6:56:ad:e1:b5:07:86:a1:f3:e9:99:aa:ba:0c:11: 42:72:54:55:95:1f:1b:32:15:e9:cf:2b:ea:e1:f1: 5b:68:c3:46:16:be:e5:0a:81:17:aa:13:16:52:57: ac:a7:57:3a:cc:83:3b:4b:9f:aa:40:dd:f7:3e:bb: ca:ba:af:0a:0e:bf:a6:63:7b:79:8e:f5:19:bc:7f: 5e:01:39:73:1e:2c:4c:7b:53:e0:e7:80:84:5c:e6: a8:36:30:02:15:3b:9f:df:1c:82:28:d0:74:72:15: 8b:95:24:cb:cb:39:d0:8b:2b:74:4b:9b:15:a9:01: 24:70:cc:e8:da:c6:df:48:ac:54:dd:ba:f6:82:1c: 3a:1b:55:b3:c4:46:13:9f:74:16:ca:0a:b9:cf:92: 10:69:83:28:88:dd:7e:85:1c:4a:83:25:26:1d:67: d9:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:7E:FC:C0:CB:BE:E9:DC:FC:64:89:5A:09:87:99:89:E0:9C:4E:C9 X509v3 Authority Key Identifier: keyid:7F:75:00:F1:94:62:07:07:74:DC:8B:3B:4B:96:AF:4E:1B:9B:B5:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A840E/DA10FF6662EE11E3AAD99F835911EA32/f3UA8ZRiBwd03Is7S5avThubtUU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f3UA8ZRiBwd03Is7S5avThubtUU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A840E/DA10FF6662EE11E3AAD99F835911EA32/f3UA8ZRiBwd03Is7S5avThubtUU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:7a:fa:20:e5:25:11:ae:40:33:4b:91:77:e3:93:c5:93:6e: 69:a1:51:d6:b6:44:b8:86:34:a0:82:22:a0:01:7d:3b:ea:5b: cf:4f:eb:66:e3:20:00:43:cc:bd:8d:e0:d1:77:bb:b7:71:44: 3c:42:74:37:35:be:43:86:fa:08:f5:be:fb:51:d6:fb:33:f1: 34:16:16:12:8f:11:bc:fe:2c:7e:d9:b1:2f:0e:d7:d6:96:4d: c1:43:b1:b6:f9:11:fa:51:97:d1:d8:88:ef:55:08:38:8b:ce: 8d:63:28:b6:09:4c:d3:a9:51:7d:bd:9e:b6:ed:70:24:43:80: b2:24:8c:ca:46:79:8c:c8:ad:e4:18:87:5e:36:80:ea:1e:73: 57:e1:e5:72:ef:d5:0f:ec:9e:59:96:39:d8:a9:9d:7c:73:91: 48:c0:4e:94:54:29:15:81:e7:f6:cc:06:3c:0d:5e:af:4e:2a: 9f:b5:d3:cd:20:c1:7c:bb:46:a4:04:3f:b4:06:ec:8b:77:88: fc:95:f8:bd:6e:b3:12:f8:ff:e8:9e:14:fb:85:0e:6b:27:b5: 2c:68:01:9a:aa:18:67:12:d9:26:8a:d2:92:9a:49:e2:e3:5a: 62:5a:1b:92:c6:d4:35:b4:77:18:06:20:0a:da:5b:46:01:11: 7c:c2:c9:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLg0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTg0MEUxMTAvBgNVBAUTKDdGNzUwMEYxOTQ2MjA3MDc3NERDOEIzQjRCOTZBRjRF MUI5QkI1NDUwHhcNMjUwNTMxMTUyODIyWhcNMjUwNjA3MTUyODIyWjAYMRYwFAYD VQQDEw02ODNiMjAxNi1hYmY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzilHRo7ZA2LRab8+xrQilmSMS1Oc/WY7aaIPTvKK6VMuNWiv68WuYRZezssb /t7iZ86UvyGTU6lhCFNspT76ZnBKvX/jQaAnnb+wErgw1+OhjHq2EcUfYyC2Vq3h tQeGofPpmaq6DBFCclRVlR8bMhXpzyvq4fFbaMNGFr7lCoEXqhMWUlesp1c6zIM7 S5+qQN33PrvKuq8KDr+mY3t5jvUZvH9eATlzHixMe1Pg54CEXOaoNjACFTuf3xyC KNB0chWLlSTLyznQiyt0S5sVqQEkcMzo2sbfSKxU3br2ghw6G1WzxEYTn3QWygq5 z5IQaYMoiN1+hRxKgyUmHWfZfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCJ+/MDL vunc/GSJWgmHmYngnE7JMB8GA1UdIwQYMBaAFH91APGUYgcHdNyLO0uWr04bm7VF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODQwRS9EQTEwRkY2NjYy RUUxMUUzQUFEOTlGODM1OTExRUEzMi9mM1VBOFpSaUJ3ZDAzSXM3UzVhdlRodWJ0 VVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2YzVUE4WlJpQndkMDNJczdTNWF2VGh1YnRVVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODQwRS9EQTEwRkY2NjYyRUUxMUUzQUFEOTlGODM1OTExRUEzMi9mM1VBOFpSaUJ3 ZDAzSXM3UzVhdlRodWJ0VVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABevog5SURrkAzS5F345PFk25poVHWtkS4hjSggiKgAX076lvPT+tm 4yAAQ8y9jeDRd7u3cUQ8QnQ3Nb5DhvoI9b77Udb7M/E0FhYSjxG8/ix+2bEvDtfW lk3BQ7G2+RH6UZfR2IjvVQg4i86NYyi2CUzTqVF9vZ627XAkQ4CyJIzKRnmMyK3k GIdeNoDqHnNX4eVy79UP7J5ZljnYqZ18c5FIwE6UVCkVgef2zAY8DV6vTiqftdPN IMF8u0akBD+0BuyLd4j8lfi9brMS+P/onhT7hQ5rJ7UsaAGaqhhnEtkmitKSmkni 41piWhuSxtQ1tHcYBiAK2ltGARF8wsmm -----END CERTIFICATE-----Generated at Sat May 31 17:23:39 2025 by rpki-client