$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1E55/4C09862E78FA11EFA44FE586C4F9AE02/3XyND0ePm-ar9znAT1tb5NyfYfg.mft File: 3XyND0ePm-ar9znAT1tb5NyfYfg.mft (raw, json) Hash identifier: nx2wtC3i2kfNKa3EFGHbaXgVqjIq0USphYWujVEyL/I= Subject key identifier: A6:BF:8F:DA:EA:34:85:83:5D:4C:60:25:E6:D9:9F:9A:A9:30:24:48 Authority key identifier: DD:7C:8D:0F:47:8F:9B:E6:AB:F7:39:C0:4F:5B:5B:E4:DC:9F:61:F8 Certificate issuer: /CN=A91B1E55/serialNumber=DD7C8D0F478F9BE6ABF739C04F5B5BE4DC9F61F8 Certificate serial: 83 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3XyND0ePm-ar9znAT1tb5NyfYfg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1E55/4C09862E78FA11EFA44FE586C4F9AE02/3XyND0ePm-ar9znAT1tb5NyfYfg.mft Manifest number: 81 Signing time: Sun 01 Jun 2025 06:19:57 +0000 Manifest this update: Sun 01 Jun 2025 06:19:57 +0000 Manifest next update: Sun 08 Jun 2025 06:19:57 +0000 Files and hashes: 1: 3XyND0ePm-ar9znAT1tb5NyfYfg.crl (hash: T5goeA3LDROhaD0zxZSQz1DdSiTnsW2L38PORoiXWeo=) 2: EAF1E48478FA11EF9043060AC4F9AE02.roa (hash: Y94sd9E5GlcMt+lxymyuqjd3AEApdFlcMVQYEZaGYA0=) 3: EA810E6278FA11EF9043060AC4F9AE02.roa (hash: jUEy/iUbesTw/bKzIqKbuM3aQtOsfpKNSiK5hvDoL0g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1E55/4C09862E78FA11EFA44FE586C4F9AE02/3XyND0ePm-ar9znAT1tb5NyfYfg.crl rsync://rpki.apnic.net/member_repository/A91B1E55/4C09862E78FA11EFA44FE586C4F9AE02/3XyND0ePm-ar9znAT1tb5NyfYfg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3XyND0ePm-ar9znAT1tb5NyfYfg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 06:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 131 (0x83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1E55, serialNumber=DD7C8D0F478F9BE6ABF739C04F5B5BE4DC9F61F8 Validity Not Before: Jun 1 06:19:57 2025 GMT Not After : Jun 8 06:19:57 2025 GMT Subject: CN=683bf10d-b796 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:e5:42:1a:e8:47:51:08:e0:a8:12:e0:17:3a: 28:b1:64:35:0f:52:02:ca:c8:e6:c5:63:20:95:e6: 2f:5a:83:49:cd:77:8b:ec:28:1b:51:6c:f7:98:26: 47:8f:8d:45:d8:92:bf:c9:56:56:dd:5b:76:53:66: 94:6c:d8:af:ba:75:8d:8d:53:1a:97:22:59:95:c8: b0:48:d0:a3:ce:0d:5e:e7:b9:82:43:cb:41:00:8e: 0c:a1:10:5d:12:4e:30:8a:06:0b:97:94:9a:c0:59: c3:72:c3:9b:fb:f7:d3:66:f8:eb:d7:d1:94:ab:99: 06:f3:81:ed:ef:4b:a4:80:55:9f:0f:2a:20:88:e8: 6b:2b:10:f9:49:7d:dc:51:ce:4c:1a:d1:78:f0:fc: d2:07:03:75:00:0b:c5:71:ac:eb:41:80:13:66:9e: a9:2d:9a:1d:4a:45:5f:8b:c7:0f:ea:20:7e:50:c4: 71:2d:10:92:42:d0:5a:f9:e7:18:51:65:91:73:54: 38:f2:64:01:f6:b3:12:72:71:0d:81:cc:07:a1:e1: 6c:ea:4f:eb:1e:ab:21:04:44:bd:8c:ad:93:cf:48: c6:d5:70:87:01:b4:c0:87:35:9d:11:a4:f2:b1:76: ed:64:c2:68:6e:a1:cb:c2:55:2b:f1:ff:5f:50:7a: 07:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:BF:8F:DA:EA:34:85:83:5D:4C:60:25:E6:D9:9F:9A:A9:30:24:48 X509v3 Authority Key Identifier: keyid:DD:7C:8D:0F:47:8F:9B:E6:AB:F7:39:C0:4F:5B:5B:E4:DC:9F:61:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1E55/4C09862E78FA11EFA44FE586C4F9AE02/3XyND0ePm-ar9znAT1tb5NyfYfg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3XyND0ePm-ar9znAT1tb5NyfYfg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1E55/4C09862E78FA11EFA44FE586C4F9AE02/3XyND0ePm-ar9znAT1tb5NyfYfg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:4c:de:9b:4f:c8:2f:6a:05:d9:55:01:59:a4:05:0b:30:7b: 4b:e1:1c:5f:99:0d:c0:8e:27:d1:0a:51:65:6d:ce:f3:37:65: 24:59:b7:69:94:6a:71:b5:9d:ca:7a:8d:b6:c5:74:4e:e8:c7: 17:0a:62:4a:e6:8c:21:8f:74:34:aa:81:5d:75:3a:17:73:a8: 85:c4:56:86:e3:7d:9e:ec:99:fa:72:b8:63:f0:24:73:ed:31: 62:d3:c4:05:1d:4a:22:4e:ee:72:bb:7c:c7:fb:1d:5d:f9:a4: dd:46:80:dd:98:fa:77:a5:e0:fe:d5:3c:6d:a5:22:81:ab:c6: a6:02:e0:dd:8b:c5:c2:19:89:61:dd:a7:18:31:5f:8a:eb:2a: 3c:be:9f:de:93:56:9c:4a:8e:59:2c:4d:7d:01:72:e9:9c:e5: be:18:cf:aa:32:a7:14:1f:0e:a9:c5:cd:40:8b:17:41:e4:36: f5:38:f5:e0:db:ee:bc:ee:23:ef:6c:05:dc:c0:3c:a9:f6:21: cf:4b:0a:50:a9:88:cb:9e:b9:75:47:74:1b:2a:a0:fa:ca:50: 5e:58:28:45:90:11:62:e8:64:d7:a8:02:9b:53:2c:ed:3d:23: 3f:86:b3:a7:d9:1a:3a:ad:9a:a7:79:a4:d2:04:a3:17:10:4f: a8:42:89:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFFNTUxMTAvBgNVBAUTKEREN0M4RDBGNDc4RjlCRTZBQkY3MzlDMDRGNUI1QkU0 REM5RjYxRjgwHhcNMjUwNjAxMDYxOTU3WhcNMjUwNjA4MDYxOTU3WjAYMRYwFAYD VQQDEw02ODNiZjEwZC1iNzk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAweVCGuhHUQjgqBLgFzoosWQ1D1ICysjmxWMgleYvWoNJzXeL7CgbUWz3mCZH j41F2JK/yVZW3Vt2U2aUbNivunWNjVMalyJZlciwSNCjzg1e57mCQ8tBAI4MoRBd Ek4wigYLl5SawFnDcsOb+/fTZvjr19GUq5kG84Ht70ukgFWfDyogiOhrKxD5SX3c Uc5MGtF48PzSBwN1AAvFcazrQYATZp6pLZodSkVfi8cP6iB+UMRxLRCSQtBa+ecY UWWRc1Q48mQB9rMScnENgcwHoeFs6k/rHqshBES9jK2Tz0jG1XCHAbTAhzWdEaTy sXbtZMJobqHLwlUr8f9fUHoHgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKa/j9rq NIWDXUxgJebZn5qpMCRIMB8GA1UdIwQYMBaAFN18jQ9Hj5vmq/c5wE9bW+Tcn2H4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUU1NS80QzA5ODYyRTc4 RkExMUVGQTQ0RkU1ODZDNEY5QUUwMi8zWHlORDBlUG0tYXI5em5BVDF0YjVOeWZZ ZmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzNYeU5EMGVQbS1hcjl6bkFUMXRiNU55ZllmZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUU1NS80QzA5ODYyRTc4RkExMUVGQTQ0RkU1ODZDNEY5QUUwMi8zWHlORDBlUG0t YXI5em5BVDF0YjVOeWZZZmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHTN6bT8gvagXZVQFZpAULMHtL4RxfmQ3AjifRClFlbc7zN2UkWbdp lGpxtZ3Keo22xXRO6McXCmJK5owhj3Q0qoFddToXc6iFxFaG432e7Jn6crhj8CRz 7TFi08QFHUoiTu5yu3zH+x1d+aTdRoDdmPp3peD+1TxtpSKBq8amAuDdi8XCGYlh 3acYMV+K6yo8vp/ek1acSo5ZLE19AXLpnOW+GM+qMqcUHw6pxc1AixdB5Db1OPXg 2+687iPvbAXcwDyp9iHPSwpQqYjLnrl1R3QbKqD6ylBeWChFkBFi6GTXqAKbUyzt PSM/hrOn2Ro6rZqneaTSBKMXEE+oQon3 -----END CERTIFICATE-----Generated at Mon Jun 2 20:47:07 2025 by rpki-client