$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.mft File: 3SNdNwiQmzPViUtMzckQXGH9Fq4.mft (raw, json) Hash identifier: dEFdG9AM6A4UE8QborM/SBz6coH4865n7HcrwjARPnY= Subject key identifier: C3:E0:24:49:35:3F:EF:5A:5F:85:17:57:DB:C5:9A:AB:FF:FC:A2:56 Authority key identifier: DD:23:5D:37:08:90:9B:33:D5:89:4B:4C:CD:C9:10:5C:61:FD:16:AE Certificate issuer: /CN=A91B8C13/serialNumber=DD235D3708909B33D5894B4CCDC9105C61FD16AE Certificate serial: 0179 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3SNdNwiQmzPViUtMzckQXGH9Fq4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.mft Manifest number: 0178 Signing time: Wed 04 Jun 2025 15:18:39 +0000 Manifest this update: Wed 04 Jun 2025 15:18:38 +0000 Manifest next update: Wed 11 Jun 2025 15:18:38 +0000 Files and hashes: 1: 3SNdNwiQmzPViUtMzckQXGH9Fq4.crl (hash: Y/dPdBR1OjJ4maATdNH9jgfe8C9OZ6QaWPRmkLE9lhA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.crl rsync://rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3SNdNwiQmzPViUtMzckQXGH9Fq4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 15:18:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 377 (0x179) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8C13, serialNumber=DD235D3708909B33D5894B4CCDC9105C61FD16AE Validity Not Before: Jun 4 15:18:38 2025 GMT Not After : Jun 11 15:18:38 2025 GMT Subject: CN=684063ce-92fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:14:ea:a4:8f:2f:fe:42:10:7b:44:76:3a:fd: eb:5d:78:df:48:7a:2f:1f:ab:83:4e:a7:11:f8:6a: 2e:ef:5f:58:d8:91:bf:23:31:96:8d:f7:92:a0:dc: e0:97:0c:eb:b6:4c:53:08:93:23:4c:e1:40:8d:a7: 42:10:51:f4:13:60:96:93:59:fa:69:2d:22:3f:00: fe:88:c9:b4:83:e5:e1:d7:6e:4a:f5:2f:e3:f3:10: 78:4e:1b:4c:c7:d0:be:e7:13:29:03:8b:0a:58:bd: 21:a0:c4:ec:52:7b:30:ad:2b:0d:4a:c7:74:87:61: a7:75:a6:1d:c2:ff:20:11:60:26:dc:29:c6:6e:6c: 38:96:61:b8:2a:3c:85:e4:49:b4:ee:74:86:3d:e1: a5:3e:52:3c:73:cc:48:a8:c9:97:e6:42:5b:cf:97: a5:30:83:be:b9:83:33:a2:ea:5b:37:8d:56:3f:02: 82:bf:04:be:83:46:e7:f4:71:c1:74:ba:ea:f6:f6: 6b:06:5f:d9:d7:5e:23:3c:12:eb:57:d6:bb:bb:19: 27:7f:bb:e1:61:1a:02:5e:ba:a3:6b:1a:cc:7c:1d: f5:af:df:cb:64:32:4b:76:7b:d5:3c:e3:aa:29:ad: 5a:e6:12:5f:de:8b:b9:71:de:e4:f0:9e:67:77:54: ab:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:E0:24:49:35:3F:EF:5A:5F:85:17:57:DB:C5:9A:AB:FF:FC:A2:56 X509v3 Authority Key Identifier: keyid:DD:23:5D:37:08:90:9B:33:D5:89:4B:4C:CD:C9:10:5C:61:FD:16:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3SNdNwiQmzPViUtMzckQXGH9Fq4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:f4:02:bf:e4:27:b5:50:8c:8c:7c:77:3c:25:5c:04:3e:f8: db:eb:83:1b:ee:4c:9a:46:93:89:53:39:94:09:d3:61:2d:89: e6:6b:42:ba:43:52:fd:54:06:a8:34:24:d4:d9:5f:7c:d6:2a: 01:20:79:34:37:e6:aa:0c:c5:65:9a:d6:09:d9:27:00:81:77: 09:4e:fd:c6:8f:6f:77:c7:bd:6b:44:c8:c4:a0:54:fa:ad:ac: 6c:03:9b:c5:e5:58:b0:63:20:b6:0f:0c:28:ad:47:6e:9a:15: 19:1a:60:5a:49:53:6a:ca:b4:2d:b5:88:df:4b:19:81:3d:4b: 5e:d0:da:63:67:c1:61:0c:99:77:5c:b2:ba:05:8d:79:96:ac: 2a:1c:4a:c6:a5:86:a2:fe:be:dd:8e:40:5b:2b:c8:a4:5c:12: 37:9c:65:92:09:6a:d5:8b:cd:10:d7:61:5a:2f:c9:13:c7:96: 20:17:51:13:1e:63:79:50:8b:b2:ce:33:32:1b:56:9a:51:38: 49:db:25:98:4d:78:88:a2:e2:62:3a:f2:ec:a7:22:17:76:ac: 24:6a:61:81:b0:46:69:74:0a:55:c6:73:8f:65:82:7e:8a:9e: f2:a0:49:4b:61:ba:ec:59:a5:c2:9c:67:47:85:95:5d:d6:e5: dd:0e:18:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhDMTMxMTAvBgNVBAUTKEREMjM1RDM3MDg5MDlCMzNENTg5NEI0Q0NEQzkxMDVD NjFGRDE2QUUwHhcNMjUwNjA0MTUxODM4WhcNMjUwNjExMTUxODM4WjAYMRYwFAYD VQQDEw02ODQwNjNjZS05MmZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAshTqpI8v/kIQe0R2Ov3rXXjfSHovH6uDTqcR+Gou719Y2JG/IzGWjfeSoNzg lwzrtkxTCJMjTOFAjadCEFH0E2CWk1n6aS0iPwD+iMm0g+Xh125K9S/j8xB4ThtM x9C+5xMpA4sKWL0hoMTsUnswrSsNSsd0h2GndaYdwv8gEWAm3CnGbmw4lmG4KjyF 5Em07nSGPeGlPlI8c8xIqMmX5kJbz5elMIO+uYMzoupbN41WPwKCvwS+g0bn9HHB dLrq9vZrBl/Z114jPBLrV9a7uxknf7vhYRoCXrqjaxrMfB31r9/LZDJLdnvVPOOq Ka1a5hJf3ou5cd7k8J5nd1SrUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMPgJEk1 P+9aX4UXV9vFmqv//KJWMB8GA1UdIwQYMBaAFN0jXTcIkJsz1YlLTM3JEFxh/Rau MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEMxMy9EMDYxMTcxNjBC MkQxMUVFODY3RTZBMTdDNEY5QUUwMi8zU05kTndpUW16UFZpVXRNemNrUVhHSDlG cTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzNTTmROd2lRbXpQVmlVdE16Y2tRWEdIOUZxNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEMxMy9EMDYxMTcxNjBCMkQxMUVFODY3RTZBMTdDNEY5QUUwMi8zU05kTndpUW16 UFZpVXRNemNrUVhHSDlGcTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCY9AK/5Ce1UIyMfHc8JVwEPvjb64Mb7kyaRpOJUzmUCdNhLYnma0K6 Q1L9VAaoNCTU2V981ioBIHk0N+aqDMVlmtYJ2ScAgXcJTv3Gj293x71rRMjEoFT6 raxsA5vF5ViwYyC2DwworUdumhUZGmBaSVNqyrQttYjfSxmBPUte0NpjZ8FhDJl3 XLK6BY15lqwqHErGpYai/r7djkBbK8ikXBI3nGWSCWrVi80Q12FaL8kTx5YgF1ET HmN5UIuyzjMyG1aaUThJ2yWYTXiIouJiOvLspyIXdqwkamGBsEZpdApVxnOPZYJ+ ip7yoElLYbrsWaXCnGdHhZVd1uXdDhgI -----END CERTIFICATE-----Generated at Thu Jun 5 18:23:18 2025 by rpki-client