$ rpki-client -vvf rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.mft File: 3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.mft (raw, json) Hash identifier: 7CKC5d8Mf/EfFvx8R6wxYCAId8aSM2wVYjK9cV4UOPA= Subject key identifier: A4:4D:F6:48:4E:EB:E4:4F:94:CB:43:FE:28:B7:12:A1:2B:E2:37:09 Authority key identifier: DC:B8:39:31:9F:D5:2E:AD:9F:CB:97:78:29:84:FD:1F:D4:49:2C:17 Certificate issuer: /CN=A91B569E/serialNumber=DCB839319FD52EAD9FCB97782984FD1FD4492C17 Certificate serial: 01FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.mft Manifest number: 01F6 Signing time: Sat 31 May 2025 02:18:02 +0000 Manifest this update: Sat 31 May 2025 02:18:02 +0000 Manifest next update: Sat 07 Jun 2025 02:18:02 +0000 Files and hashes: 1: 3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.crl (hash: e/KhNo8yc08PjhBX9LKHCNHykzts1w227L6qImA/w0Y=) 2: 0CDAA8EEE86611EFA5152A24C4F9AE02.roa (hash: lUMcuws+kkSP+r54F6XS/v0f47726g1ZKxyTfmh7RHY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.crl rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:18:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 510 (0x1fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B569E, serialNumber=DCB839319FD52EAD9FCB97782984FD1FD4492C17 Validity Not Before: May 31 02:18:02 2025 GMT Not After : Jun 7 02:18:02 2025 GMT Subject: CN=683a66da-40b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:0d:b6:34:30:9c:59:34:ef:9d:55:de:52:84: 80:5f:87:87:c9:a1:12:33:27:4b:80:3d:05:70:c9: 79:8c:eb:04:9c:fc:ee:7d:92:c1:62:31:20:ce:cf: b0:e1:3e:c0:ad:8a:1d:8f:37:fc:3e:c1:a5:d4:d7: be:d1:f3:31:05:88:81:9d:01:1c:ef:c5:95:d8:8d: af:7e:75:7c:94:31:2c:ef:0f:0c:75:9c:78:32:ee: 75:f2:72:f1:20:1b:2c:11:5b:7f:aa:01:09:74:94: 63:51:84:8f:dd:5e:30:b7:2b:23:06:f3:89:15:4b: ad:d2:d9:9b:fb:ac:64:dd:d5:e1:c0:5a:8c:3a:22: ee:16:d4:3e:2f:e6:13:09:99:4c:2c:d8:1c:bf:d9: 5b:c5:37:66:b2:f9:1f:3e:d0:37:aa:80:6e:88:97: dd:20:d4:f6:fb:64:f0:47:c3:3d:3f:2d:89:8c:68: 97:50:58:49:7c:b4:65:76:92:7b:18:9c:a5:7b:c9: bf:4e:41:83:28:bc:6c:e6:10:4f:2f:32:26:c4:eb: 46:33:11:75:08:10:40:b0:49:2a:0b:cf:ae:61:32: f0:f5:fa:36:12:a7:07:be:93:71:87:65:7c:37:9f: 45:95:67:c8:a5:10:e5:27:c3:a5:40:67:02:a5:d2: d0:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:4D:F6:48:4E:EB:E4:4F:94:CB:43:FE:28:B7:12:A1:2B:E2:37:09 X509v3 Authority Key Identifier: keyid:DC:B8:39:31:9F:D5:2E:AD:9F:CB:97:78:29:84:FD:1F:D4:49:2C:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:3c:80:3d:d1:f7:63:0a:da:fa:63:9e:22:c5:53:8b:03:b3: 19:07:89:5c:ee:aa:3c:a2:47:ad:7f:70:e9:f2:2e:7b:b5:db: 8f:e4:05:54:61:cc:26:1e:64:88:40:e7:c3:4d:35:df:28:2e: af:5c:4c:83:5e:2a:3a:8e:27:d1:61:55:c8:b5:0b:23:d8:e5: d4:00:19:b7:fe:46:1a:b4:dd:72:a2:74:5b:38:cf:c6:ca:39: 73:a3:f0:d1:db:7f:af:75:1c:c0:44:a9:79:44:b1:b8:20:92: c6:e8:60:7f:92:81:cc:46:b3:8d:0c:45:9d:78:e4:a0:fc:ad: a2:12:d1:7f:93:63:e1:f3:54:22:4f:0f:84:13:56:4d:b7:96: cc:c4:d9:59:76:a8:b3:c2:15:d9:01:be:a2:a5:6a:5c:95:50: ec:02:30:ee:56:dc:eb:c8:e2:37:3c:1e:fd:39:db:0e:cc:75: 6e:61:a1:80:a1:24:ab:49:b4:69:7d:55:64:6e:a1:94:fa:43: 7a:c5:8e:eb:7d:8f:8a:fa:aa:48:76:a4:8a:7d:c7:13:b6:b7: 8c:3c:57:72:b9:58:b8:e9:21:34:9d:20:44:ab:1d:d7:c6:39: b3:d1:e0:cb:83:e1:0d:5a:df:a7:6a:7c:3e:e7:7f:c1:21:c7: eb:23:63:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAf4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU2OUUxMTAvBgNVBAUTKERDQjgzOTMxOUZENTJFQUQ5RkNCOTc3ODI5ODRGRDFG RDQ0OTJDMTcwHhcNMjUwNTMxMDIxODAyWhcNMjUwNjA3MDIxODAyWjAYMRYwFAYD VQQDEw02ODNhNjZkYS00MGIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvg22NDCcWTTvnVXeUoSAX4eHyaESMydLgD0FcMl5jOsEnPzufZLBYjEgzs+w 4T7ArYodjzf8PsGl1Ne+0fMxBYiBnQEc78WV2I2vfnV8lDEs7w8MdZx4Mu518nLx IBssEVt/qgEJdJRjUYSP3V4wtysjBvOJFUut0tmb+6xk3dXhwFqMOiLuFtQ+L+YT CZlMLNgcv9lbxTdmsvkfPtA3qoBuiJfdINT2+2TwR8M9Py2JjGiXUFhJfLRldpJ7 GJyle8m/TkGDKLxs5hBPLzImxOtGMxF1CBBAsEkqC8+uYTLw9fo2EqcHvpNxh2V8 N59FlWfIpRDlJ8OlQGcCpdLQOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKRN9khO 6+RPlMtD/ii3EqEr4jcJMB8GA1UdIwQYMBaAFNy4OTGf1S6tn8uXeCmE/R/USSwX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTY5RS8yNTI1QzdDODRE MjUxMUVEQTZEREQyMkVDNEY5QUUwMi8zTGc1TVpfVkxxMmZ5NWQ0S1lUOUg5UkpM QmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNMZzVNWl9WTHEyZnk1ZDRLWVQ5SDlSSkxCYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTY5RS8yNTI1QzdDODREMjUxMUVEQTZEREQyMkVDNEY5QUUwMi8zTGc1TVpfVkxx MmZ5NWQ0S1lUOUg5UkpMQmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATPIA90fdjCtr6Y54ixVOLA7MZB4lc7qo8oketf3Dp8i57tduP5AVU YcwmHmSIQOfDTTXfKC6vXEyDXio6jifRYVXItQsj2OXUABm3/kYatN1yonRbOM/G yjlzo/DR23+vdRzARKl5RLG4IJLG6GB/koHMRrONDEWdeOSg/K2iEtF/k2Ph81Qi Tw+EE1ZNt5bMxNlZdqizwhXZAb6ipWpclVDsAjDuVtzryOI3PB79OdsOzHVuYaGA oSSrSbRpfVVkbqGU+kN6xY7rfY+K+qpIdqSKfccTtreMPFdyuVi46SE0nSBEqx3X xjmz0eDLg+ENWt+nanw+53/BIcfrI2N8 -----END CERTIFICATE-----Generated at Sat May 31 16:28:40 2025 by rpki-client