$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.mft File: 3xHpJo0GrlO6-3QTvTT_OHjk7tA.mft (raw, json) Hash identifier: QgUeRv7d6MkM/stGuHBocFR+96nPTOR9jTpYRwk6wJU= Subject key identifier: D7:CB:63:13:58:87:53:3E:29:B7:79:54:16:39:01:87:56:DA:E5:30 Authority key identifier: DF:11:E9:26:8D:06:AE:53:BA:FB:74:13:BD:34:FF:38:78:E4:EE:D0 Certificate issuer: /CN=A91BC64D/serialNumber=DF11E9268D06AE53BAFB7413BD34FF3878E4EED0 Certificate serial: 063F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3xHpJo0GrlO6-3QTvTT_OHjk7tA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.mft Manifest number: 0634 Signing time: Fri 30 May 2025 22:54:12 +0000 Manifest this update: Fri 30 May 2025 22:54:12 +0000 Manifest next update: Fri 06 Jun 2025 22:54:12 +0000 Files and hashes: 1: 3xHpJo0GrlO6-3QTvTT_OHjk7tA.crl (hash: 11lizJxPqDdbN4vuK2BxB6YmmLET2z+yvw0xfE12mUc=) 2: FC583AC6CC8511EC8D238672C4F9AE02.roa (hash: 4nQWYZbXWSJ3PqE4ZBiXzBzUwOjlbjDx0Oq7v5W8vCQ=) 3: FD987A54CC8511EC8D238672C4F9AE02.roa (hash: MzEQJvzOJlRcf4tMcorSrwSuzHCC7BZBlDirsliZQdI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.crl rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3xHpJo0GrlO6-3QTvTT_OHjk7tA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:54:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1599 (0x63f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC64D, serialNumber=DF11E9268D06AE53BAFB7413BD34FF3878E4EED0 Validity Not Before: May 30 22:54:12 2025 GMT Not After : Jun 6 22:54:12 2025 GMT Subject: CN=683a3714-21a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fd:33:5f:ad:f6:b8:ea:e3:f2:95:34:71:0e:d5: 85:d9:c3:71:27:4a:06:d1:d5:1c:10:b0:b7:ec:57: 5b:14:d9:86:ea:3c:df:ee:77:81:d8:4a:90:8d:09: c2:09:6c:19:36:b3:04:23:4f:4e:1f:09:75:8d:f4: c9:cd:1d:02:3c:d6:81:37:fa:e3:f4:e4:19:91:a8: 63:97:e8:b4:f1:06:28:09:ed:91:8b:04:8e:69:d7: 1d:69:aa:b1:b0:a7:d7:14:6f:c2:4f:b9:49:21:5e: a9:8d:2d:4a:8b:14:71:1f:04:42:00:68:f0:41:86: e7:b4:19:09:41:da:6a:4e:79:5d:5d:f7:41:d5:e3: 9d:75:2c:28:a5:67:7c:e8:2b:5d:b2:b3:0b:5d:f1: b6:ab:cf:c4:a5:10:1c:05:40:5a:3e:5b:01:36:68: 09:c0:34:ba:32:02:ec:41:42:ed:6f:24:e7:ef:90: 07:42:a3:c7:29:d3:92:73:9b:67:61:2b:d9:b1:aa: b4:5d:de:cf:35:8b:12:76:2f:82:b7:9c:34:ac:4b: ac:f2:c6:3b:86:53:cf:c2:9a:25:6b:e2:ab:22:5c: 3e:e2:ec:26:d9:2e:fb:1d:a7:5b:33:c7:57:b0:71: 87:22:7c:6b:7a:a6:08:2e:2d:d0:ef:1f:ff:79:a0: 55:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:CB:63:13:58:87:53:3E:29:B7:79:54:16:39:01:87:56:DA:E5:30 X509v3 Authority Key Identifier: keyid:DF:11:E9:26:8D:06:AE:53:BA:FB:74:13:BD:34:FF:38:78:E4:EE:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3xHpJo0GrlO6-3QTvTT_OHjk7tA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption dd:3b:1a:a4:5a:a0:e7:75:5b:00:fb:17:c7:9c:7f:88:b5:7b: e3:0f:e6:9a:0b:1c:9a:9d:a7:ba:c3:94:10:fe:6c:83:2c:24: 5a:19:0a:66:c7:df:86:00:7e:c5:4f:2d:74:09:a6:b2:89:0c: c6:62:e3:e7:de:a7:c9:74:ae:82:3c:5c:c4:98:17:4b:d7:13: 58:90:23:fc:b6:14:1e:cc:d5:f3:77:45:6b:54:23:59:12:21: ac:79:63:bf:09:0b:1d:e3:1d:25:e8:55:f3:63:be:69:f7:cb: 0d:39:5f:00:6f:4e:fb:fc:5f:28:6a:97:da:5d:83:d1:4e:0c: 3d:a4:2d:de:02:0f:e6:91:9d:3d:29:18:8e:4f:19:d6:7c:a9: 6d:d9:87:1f:a9:7d:ab:1f:68:1c:06:8d:26:f4:38:1d:e6:8c: 15:e9:cb:d2:50:2d:04:0d:06:d4:32:17:8d:a3:1a:67:4f:d3: 33:29:15:c8:ec:6d:34:52:ef:40:2c:8f:58:80:10:22:47:0c: 4b:b4:20:ab:35:16:12:a1:32:ca:13:d3:09:fe:57:02:82:70: 61:a5:67:62:72:c5:fc:6d:fa:4f:0e:07:29:d5:2a:e0:80:04: 77:2b:a9:25:27:54:cb:33:b5:1b:10:dd:d0:53:41:d0:8e:16: 04:aa:38:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBj8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkM2NEQxMTAvBgNVBAUTKERGMTFFOTI2OEQwNkFFNTNCQUZCNzQxM0JEMzRGRjM4 NzhFNEVFRDAwHhcNMjUwNTMwMjI1NDEyWhcNMjUwNjA2MjI1NDEyWjAYMRYwFAYD VQQDEw02ODNhMzcxNC0yMWE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/TNfrfa46uPylTRxDtWF2cNxJ0oG0dUcELC37FdbFNmG6jzf7neB2EqQjQnC CWwZNrMEI09OHwl1jfTJzR0CPNaBN/rj9OQZkahjl+i08QYoCe2RiwSOadcdaaqx sKfXFG/CT7lJIV6pjS1KixRxHwRCAGjwQYbntBkJQdpqTnldXfdB1eOddSwopWd8 6CtdsrMLXfG2q8/EpRAcBUBaPlsBNmgJwDS6MgLsQULtbyTn75AHQqPHKdOSc5tn YSvZsaq0Xd7PNYsSdi+Ct5w0rEus8sY7hlPPwpola+KrIlw+4uwm2S77HadbM8dX sHGHInxreqYILi3Q7x//eaBVfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNfLYxNY h1M+Kbd5VBY5AYdW2uUwMB8GA1UdIwQYMBaAFN8R6SaNBq5Tuvt0E700/zh45O7Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzY0RC9CMkVGM0UzNDk1 RDYxMUVCOTgyMTVDMThDNEY5QUUwMi8zeEhwSm8wR3JsTzYtM1FUdlRUX09Iams3 dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzN4SHBKbzBHcmxPNi0zUVR2VFRfT0hqazd0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QzY0RC9CMkVGM0UzNDk1RDYxMUVCOTgyMTVDMThDNEY5QUUwMi8zeEhwSm8wR3Js TzYtM1FUdlRUX09Iams3dEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDdOxqkWqDndVsA+xfHnH+ItXvjD+aaCxyanae6w5QQ/myDLCRaGQpm x9+GAH7FTy10CaayiQzGYuPn3qfJdK6CPFzEmBdL1xNYkCP8thQezNXzd0VrVCNZ EiGseWO/CQsd4x0l6FXzY75p98sNOV8Ab077/F8oapfaXYPRTgw9pC3eAg/mkZ09 KRiOTxnWfKlt2YcfqX2rH2gcBo0m9Dgd5owV6cvSUC0EDQbUMheNoxpnT9MzKRXI 7G00Uu9ALI9YgBAiRwxLtCCrNRYSoTLKE9MJ/lcCgnBhpWdicsX8bfpPDgcp1Srg gAR3K6klJ1TLM7UbEN3QU0HQjhYEqjip -----END CERTIFICATE-----Generated at Sat May 31 17:53:14 2025 by rpki-client