$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0049/7EC909760DFC11EBB2F1381BC4F9AE02/F3JfretEo_qLMf_wpjy8UVWpB9g.mft File: F3JfretEo_qLMf_wpjy8UVWpB9g.mft (raw, json) Hash identifier: aKAlk0lteUTWd5h9v/EIrgHLk7+W4Hts0GNvJybe32c= Subject key identifier: 7C:36:C7:FE:E8:92:2A:9A:10:79:53:CA:82:58:32:2C:3B:25:2C:CF Authority key identifier: 17:72:5F:AD:EB:44:A3:FA:8B:31:FF:F0:A6:3C:BC:51:55:A9:07:D8 Certificate issuer: /CN=A91B0049/serialNumber=17725FADEB44A3FA8B31FFF0A63CBC5155A907D8 Certificate serial: 0791 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F3JfretEo_qLMf_wpjy8UVWpB9g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0049/7EC909760DFC11EBB2F1381BC4F9AE02/F3JfretEo_qLMf_wpjy8UVWpB9g.mft Manifest number: 078B Signing time: Fri 30 May 2025 21:50:39 +0000 Manifest this update: Fri 30 May 2025 21:50:39 +0000 Manifest next update: Fri 06 Jun 2025 21:50:39 +0000 Files and hashes: 1: F3JfretEo_qLMf_wpjy8UVWpB9g.crl (hash: xShet2IwaxLTITQzYlD8Lzt0qgzo7hEBNVQ+rBHKU9E=) 2: C6591C620DFD11EBAD63A21CC4F9AE02.roa (hash: wiuGLfhX4Abp89BeKvQrP2ym0zYLw1999qfgLcOKlHk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0049/7EC909760DFC11EBB2F1381BC4F9AE02/F3JfretEo_qLMf_wpjy8UVWpB9g.crl rsync://rpki.apnic.net/member_repository/A91B0049/7EC909760DFC11EBB2F1381BC4F9AE02/F3JfretEo_qLMf_wpjy8UVWpB9g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F3JfretEo_qLMf_wpjy8UVWpB9g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:50:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1937 (0x791) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0049, serialNumber=17725FADEB44A3FA8B31FFF0A63CBC5155A907D8 Validity Not Before: May 30 21:50:39 2025 GMT Not After : Jun 6 21:50:39 2025 GMT Subject: CN=683a282f-f37b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:42:74:b0:d9:6b:59:21:42:3b:49:b6:43:ba: 90:15:f2:e3:99:70:cd:a7:1b:85:9c:49:49:52:66: 62:38:b3:52:cc:0f:4c:f9:de:fa:d5:d9:07:51:a4: ab:d6:39:df:b3:72:8c:67:52:83:3b:ba:a6:57:85: c6:97:57:87:31:28:07:47:e0:3d:55:ec:a9:cd:f7: 25:a3:35:3c:2b:e1:bc:8c:c4:67:f1:a8:54:8e:28: 59:2c:10:37:04:66:e4:ac:a9:9e:31:52:14:e4:ba: 2d:b6:c7:09:83:c0:0c:82:58:c3:a5:ee:5f:a4:aa: 0c:a4:63:a6:f7:de:ac:36:49:4e:7d:02:91:94:49: d0:37:5b:49:15:a3:89:6c:85:50:d0:cf:f1:ad:63: ea:17:bc:91:b9:ec:45:dc:2e:6e:4b:79:e1:50:46: 0a:e4:7c:15:41:d3:96:8d:9f:2d:37:85:a2:f6:22: d7:db:2e:c9:d4:29:60:7b:2b:cf:79:6b:60:67:0b: d1:21:0d:33:b1:ba:09:a8:49:85:18:fb:e7:ef:24: 56:ab:19:cb:e3:d8:08:61:98:da:5b:56:b4:10:5d: 3d:8a:66:77:31:ee:a9:6f:0d:29:33:5f:64:07:cb: d6:b0:3e:63:21:1b:1a:17:7e:0b:e9:e3:35:a9:b7: 3c:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:36:C7:FE:E8:92:2A:9A:10:79:53:CA:82:58:32:2C:3B:25:2C:CF X509v3 Authority Key Identifier: keyid:17:72:5F:AD:EB:44:A3:FA:8B:31:FF:F0:A6:3C:BC:51:55:A9:07:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0049/7EC909760DFC11EBB2F1381BC4F9AE02/F3JfretEo_qLMf_wpjy8UVWpB9g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F3JfretEo_qLMf_wpjy8UVWpB9g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0049/7EC909760DFC11EBB2F1381BC4F9AE02/F3JfretEo_qLMf_wpjy8UVWpB9g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:b5:a2:7d:0e:08:f5:d7:28:51:64:31:de:6c:46:8f:98:a1: 66:44:a0:7c:e5:48:bb:11:90:16:59:40:12:da:c0:59:32:6e: 6c:35:94:89:42:86:e6:d4:6a:2d:bb:d8:e7:3f:7e:4a:ff:02: 34:c5:6c:9f:4e:bc:38:2f:95:8c:cf:be:c5:0e:c2:69:9b:d6: 13:76:06:4e:34:41:93:56:4b:46:67:18:6c:b8:33:53:71:d7: ad:65:38:ab:7d:89:27:b1:dc:d4:81:f5:1a:55:69:08:07:a9: bb:9b:f3:96:f8:a2:b0:ea:c9:ec:2c:64:83:10:d9:d4:5c:e3: 55:63:d2:2f:5d:0f:e5:29:38:68:a1:a7:41:5a:88:8d:39:f2: 5e:d5:99:50:33:e6:6a:2b:61:56:b2:16:5b:d1:d7:08:4c:f9: 78:f3:f0:b2:6c:83:df:56:ac:66:af:bb:b7:a7:97:74:0c:76: 07:4d:23:de:c4:52:64:99:e0:c6:69:06:a9:8a:9f:07:82:d2: de:a7:5f:50:64:9b:ea:99:21:ec:c4:3f:ca:75:81:58:07:94: 1a:b1:e1:92:b1:56:67:8e:e6:fa:de:da:eb:2e:66:f2:4c:57: 05:ad:f4:ba:5d:3a:8f:79:c6:f2:19:02:ea:82:f2:d8:ac:35: df:38:8a:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB5EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjAwNDkxMTAvBgNVBAUTKDE3NzI1RkFERUI0NEEzRkE4QjMxRkZGMEE2M0NCQzUx NTVBOTA3RDgwHhcNMjUwNTMwMjE1MDM5WhcNMjUwNjA2MjE1MDM5WjAYMRYwFAYD VQQDEw02ODNhMjgyZi1mMzdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqUJ0sNlrWSFCO0m2Q7qQFfLjmXDNpxuFnElJUmZiOLNSzA9M+d761dkHUaSr 1jnfs3KMZ1KDO7qmV4XGl1eHMSgHR+A9VeypzfclozU8K+G8jMRn8ahUjihZLBA3 BGbkrKmeMVIU5LottscJg8AMgljDpe5fpKoMpGOm996sNklOfQKRlEnQN1tJFaOJ bIVQ0M/xrWPqF7yRuexF3C5uS3nhUEYK5HwVQdOWjZ8tN4Wi9iLX2y7J1ClgeyvP eWtgZwvRIQ0zsboJqEmFGPvn7yRWqxnL49gIYZjaW1a0EF09imZ3Me6pbw0pM19k B8vWsD5jIRsaF34L6eM1qbc86QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHw2x/7o kiqaEHlTyoJYMiw7JSzPMB8GA1UdIwQYMBaAFBdyX63rRKP6izH/8KY8vFFVqQfY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDA0OS83RUM5MDk3NjBE RkMxMUVCQjJGMTM4MUJDNEY5QUUwMi9GM0pmcmV0RW9fcUxNZl93cGp5OFVWV3BC OWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0YzSmZyZXRFb19xTE1mX3dwank4VVZXcEI5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDA0OS83RUM5MDk3NjBERkMxMUVCQjJGMTM4MUJDNEY5QUUwMi9GM0pmcmV0RW9f cUxNZl93cGp5OFVWV3BCOWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAztaJ9Dgj11yhRZDHebEaPmKFmRKB85Ui7EZAWWUAS2sBZMm5sNZSJ Qobm1Gotu9jnP35K/wI0xWyfTrw4L5WMz77FDsJpm9YTdgZONEGTVktGZxhsuDNT cdetZTirfYknsdzUgfUaVWkIB6m7m/OW+KKw6snsLGSDENnUXONVY9IvXQ/lKTho oadBWoiNOfJe1ZlQM+ZqK2FWshZb0dcITPl48/CybIPfVqxmr7u3p5d0DHYHTSPe xFJkmeDGaQapip8HgtLep19QZJvqmSHsxD/KdYFYB5QaseGSsVZnjub63trrLmby TFcFrfS6XTqPecbyGQLqgvLYrDXfOIpV -----END CERTIFICATE-----Generated at Sat May 31 17:30:14 2025 by rpki-client