$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/3PVHDFyHgojWHZ6lpRXVhQ57WHM.mft File: 3PVHDFyHgojWHZ6lpRXVhQ57WHM.mft (raw, json) Hash identifier: QnZSkEbhXD0kZP5zxq8MsyVzr74vWHrjk7lQOV9FztA= Subject key identifier: E4:A0:48:AD:15:39:35:39:34:42:A6:6A:53:6D:FE:E0:4A:F4:BD:9C Authority key identifier: DC:F5:47:0C:5C:87:82:88:D6:1D:9E:A5:A5:15:D5:85:0E:7B:58:73 Certificate issuer: /CN=A91B5AAA/serialNumber=DCF5470C5C878288D61D9EA5A515D5850E7B5873 Certificate serial: 0B4C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3PVHDFyHgojWHZ6lpRXVhQ57WHM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/3PVHDFyHgojWHZ6lpRXVhQ57WHM.mft Manifest number: 3FDE Signing time: Mon 30 Jun 2025 14:53:08 +0000 Manifest this update: Mon 30 Jun 2025 14:53:07 +0000 Manifest next update: Mon 07 Jul 2025 14:53:07 +0000 Files and hashes: 1: 3PVHDFyHgojWHZ6lpRXVhQ57WHM.crl (hash: tS64/AZxFVbdDw6uJz1a/Kdh9ZEafoGd+1f0v4JMxKk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/3PVHDFyHgojWHZ6lpRXVhQ57WHM.crl rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/3PVHDFyHgojWHZ6lpRXVhQ57WHM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3PVHDFyHgojWHZ6lpRXVhQ57WHM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 14:53:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2892 (0xb4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5AAA, serialNumber=DCF5470C5C878288D61D9EA5A515D5850E7B5873 Validity Not Before: Jun 30 14:53:07 2025 GMT Not After : Jul 7 14:53:07 2025 GMT Subject: CN=6862a4d4-559b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:f0:06:f7:12:2a:1f:ce:08:09:78:2a:27:32: 79:be:f4:bd:6d:cd:54:96:d0:6c:19:28:0c:6b:dd: 91:6b:28:8e:3d:4e:85:7c:83:5d:f2:03:ab:5f:61: 00:a5:d7:7b:22:56:28:70:9d:84:1d:e5:b7:79:57: 55:15:b5:8e:28:11:85:d3:a7:58:90:48:8c:e9:c9: 03:1a:ab:a8:dd:29:29:49:10:8a:7c:ba:85:80:9f: 8a:b9:e4:59:db:13:a9:45:fe:34:cd:53:d3:64:ab: d0:34:46:b5:cb:61:5d:f5:e1:5d:b0:a0:fb:19:54: c3:5e:de:74:cc:17:d1:8b:47:74:1e:aa:e3:1c:e6: 7e:b0:60:10:a4:ac:0a:f2:22:c7:a2:18:2f:aa:17: 19:cc:de:7a:1b:48:25:76:cf:2a:bf:f6:f1:be:4b: 2e:d2:da:21:94:b2:24:8e:39:bf:dd:1c:74:85:66: 23:c7:8c:42:b4:04:57:60:90:fd:b6:9f:36:cf:de: 2b:7c:cd:60:33:c5:53:a5:8a:c3:26:6e:85:ad:b6: 72:71:ae:98:43:f0:ef:89:6c:3c:f0:3f:71:54:fb: 17:ec:9c:c6:a3:f6:8e:4e:49:a2:13:e3:86:e0:e2: cb:69:8c:d7:ed:a0:f5:5b:84:8e:7b:8f:a6:70:ff: 7d:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:A0:48:AD:15:39:35:39:34:42:A6:6A:53:6D:FE:E0:4A:F4:BD:9C X509v3 Authority Key Identifier: keyid:DC:F5:47:0C:5C:87:82:88:D6:1D:9E:A5:A5:15:D5:85:0E:7B:58:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/3PVHDFyHgojWHZ6lpRXVhQ57WHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3PVHDFyHgojWHZ6lpRXVhQ57WHM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/3PVHDFyHgojWHZ6lpRXVhQ57WHM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:aa:9a:65:91:d1:9c:d4:34:cb:48:43:fe:2b:ce:fb:9e:d7: 9e:49:a1:39:bb:c8:b3:5c:7b:f0:1e:6c:33:ca:2a:f9:5c:31: 82:88:26:07:39:40:bb:6f:05:51:ba:c5:07:0f:e2:98:99:d2: ce:4a:17:af:7c:88:ee:5e:a1:88:e5:50:3c:33:e3:b6:bd:f5: 01:55:de:41:bc:5c:59:0a:f1:83:ab:cf:df:fc:b2:48:4a:1d: b0:b7:31:bb:87:5c:1c:6d:39:47:f0:4d:62:ee:27:86:a1:06: 85:cd:31:d1:97:4e:a1:a0:28:6c:7b:39:69:93:58:73:ac:0e: 97:2d:2b:e5:36:06:1f:c3:cd:da:ff:af:8c:90:91:c4:d7:e7: 84:a3:a3:c6:57:b8:55:3f:07:27:57:73:9b:81:92:72:2b:6b: 97:37:b1:f6:2c:cc:38:04:db:66:8e:ea:6f:9c:6d:01:9b:a0: fc:58:5d:1f:cc:ad:cc:eb:13:d2:3a:47:48:13:3d:9d:91:24: 06:a4:e2:df:34:07:2e:ad:b8:8e:bd:61:4c:4e:c3:cf:f5:a2: 2c:bb:e6:6e:5f:b8:4a:56:25:c3:c4:bc:52:e6:a6:0e:fe:58: 33:54:68:06:2b:0a:9c:e8:7a:59:36:0f:6b:6b:94:d8:85:d4: e2:a7:cc:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC0wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVBQUExMTAvBgNVBAUTKERDRjU0NzBDNUM4NzgyODhENjFEOUVBNUE1MTVENTg1 MEU3QjU4NzMwHhcNMjUwNjMwMTQ1MzA3WhcNMjUwNzA3MTQ1MzA3WjAYMRYwFAYD VQQDEw02ODYyYTRkNC01NTliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuvAG9xIqH84ICXgqJzJ5vvS9bc1UltBsGSgMa92RayiOPU6FfINd8gOrX2EA pdd7IlYocJ2EHeW3eVdVFbWOKBGF06dYkEiM6ckDGquo3SkpSRCKfLqFgJ+KueRZ 2xOpRf40zVPTZKvQNEa1y2Fd9eFdsKD7GVTDXt50zBfRi0d0HqrjHOZ+sGAQpKwK 8iLHohgvqhcZzN56G0glds8qv/bxvksu0tohlLIkjjm/3Rx0hWYjx4xCtARXYJD9 tp82z94rfM1gM8VTpYrDJm6FrbZyca6YQ/DviWw88D9xVPsX7JzGo/aOTkmiE+OG 4OLLaYzX7aD1W4SOe4+mcP99QwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOSgSK0V OTU5NEKmalNt/uBK9L2cMB8GA1UdIwQYMBaAFNz1Rwxch4KI1h2epaUV1YUOe1hz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUFBQS84RjU4OTI5NDFE OTUxMUUyQTk4QTlBN0QwOEIwMkNEMi8zUFZIREZ5SGdvaldIWjZscFJYVmhRNTdX SE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNQVkhERnlIZ29qV0haNmxwUlhWaFE1N1dITS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUFBQS84RjU4OTI5NDFEOTUxMUUyQTk4QTlBN0QwOEIwMkNEMi8zUFZIREZ5SGdv aldIWjZscFJYVmhRNTdXSE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXqpplkdGc1DTLSEP+K877nteeSaE5u8izXHvwHmwzyir5XDGCiCYH OUC7bwVRusUHD+KYmdLOShevfIjuXqGI5VA8M+O2vfUBVd5BvFxZCvGDq8/f/LJI Sh2wtzG7h1wcbTlH8E1i7ieGoQaFzTHRl06hoChsezlpk1hzrA6XLSvlNgYfw83a /6+MkJHE1+eEo6PGV7hVPwcnV3ObgZJyK2uXN7H2LMw4BNtmjupvnG0Bm6D8WF0f zK3M6xPSOkdIEz2dkSQGpOLfNAcurbiOvWFMTsPP9aIsu+ZuX7hKViXDxLxS5qYO /lgzVGgGKwqc6HpZNg9ra5TYhdTip8zQ -----END CERTIFICATE-----Generated at Tue Jul 1 18:53:01 2025 by rpki-client