$ rpki-client -vvf rpki.apnic.net/member_repository/A91C799C/A2DFB336135711EB8D13B215C4F9AE02/3CH4ZzeyOX3SsmCej7QGhuPI92E.mft File: 3CH4ZzeyOX3SsmCej7QGhuPI92E.mft (raw, json) Hash identifier: peW11KIMHANLI6EO87Zvzhn+Wm0yuz2Fg2lGdty0sCg= Subject key identifier: 47:16:03:72:27:4B:30:FD:71:8D:3B:40:C0:09:59:C1:67:89:35:C6 Authority key identifier: DC:21:F8:67:37:B2:39:7D:D2:B2:60:9E:8F:B4:06:86:E3:C8:F7:61 Certificate issuer: /CN=A91C799C/serialNumber=DC21F86737B2397DD2B2609E8FB40686E3C8F761 Certificate serial: 077F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3CH4ZzeyOX3SsmCej7QGhuPI92E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C799C/A2DFB336135711EB8D13B215C4F9AE02/3CH4ZzeyOX3SsmCej7QGhuPI92E.mft Manifest number: 077A Signing time: Fri 30 May 2025 21:40:45 +0000 Manifest this update: Fri 30 May 2025 21:40:45 +0000 Manifest next update: Fri 06 Jun 2025 21:40:45 +0000 Files and hashes: 1: 3CH4ZzeyOX3SsmCej7QGhuPI92E.crl (hash: Tq3rwVhakex9/Gwaja/LVok686xiNiEjlPsTZ3UsRKM=) 2: 9F5F0EC6135911EBBC97C718C4F9AE02.roa (hash: SiUJ7SYlbA21+yPfD2uZbgHjH4MPfQViyjJFRbUxFiY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C799C/A2DFB336135711EB8D13B215C4F9AE02/3CH4ZzeyOX3SsmCej7QGhuPI92E.crl rsync://rpki.apnic.net/member_repository/A91C799C/A2DFB336135711EB8D13B215C4F9AE02/3CH4ZzeyOX3SsmCej7QGhuPI92E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3CH4ZzeyOX3SsmCej7QGhuPI92E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:40:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1919 (0x77f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C799C, serialNumber=DC21F86737B2397DD2B2609E8FB40686E3C8F761 Validity Not Before: May 30 21:40:45 2025 GMT Not After : Jun 6 21:40:45 2025 GMT Subject: CN=683a25dd-afd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:a4:8b:9f:d7:f6:ca:f2:1c:80:3b:7a:31:76: 4c:8b:18:5b:2a:98:16:58:33:29:5a:05:68:75:60: bf:fd:b8:5f:6d:8d:48:55:29:eb:99:19:a0:57:a9: 67:0e:dd:f0:49:72:e8:96:ee:b8:85:9a:2f:83:d7: ee:17:fa:89:72:91:42:2f:79:70:1a:72:fd:56:2f: 81:f8:e7:9d:1d:98:2f:02:f6:14:b7:36:ed:5a:ab: e7:17:3d:a7:b5:a8:90:c9:2e:68:25:1a:b0:08:4e: 5b:1d:c0:70:de:c1:9e:48:bd:94:92:dc:28:53:6b: 5d:c3:a1:b4:99:50:2c:ee:9a:9e:2e:f3:ef:33:ae: d0:0a:72:45:79:3e:fc:50:72:4d:75:19:4b:86:ed: 16:c6:7b:7e:a5:cc:ce:0b:41:a2:c6:06:0c:06:73: 54:58:7f:66:57:2d:57:6b:39:9d:34:16:52:1f:98: 66:53:f8:c3:17:cf:79:1a:ff:3d:aa:54:04:c2:4c: 7a:70:99:25:68:07:8a:8d:1f:91:c2:e7:53:00:0f: 07:ef:c2:14:55:71:d3:ac:b1:c4:c7:ed:98:d0:96: ef:87:ce:44:c4:55:6a:73:8a:12:04:3e:4c:cd:c3: e7:e7:2c:1e:e3:23:cc:c8:bb:cf:0f:cf:51:dc:71: 60:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:16:03:72:27:4B:30:FD:71:8D:3B:40:C0:09:59:C1:67:89:35:C6 X509v3 Authority Key Identifier: keyid:DC:21:F8:67:37:B2:39:7D:D2:B2:60:9E:8F:B4:06:86:E3:C8:F7:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C799C/A2DFB336135711EB8D13B215C4F9AE02/3CH4ZzeyOX3SsmCej7QGhuPI92E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3CH4ZzeyOX3SsmCej7QGhuPI92E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C799C/A2DFB336135711EB8D13B215C4F9AE02/3CH4ZzeyOX3SsmCej7QGhuPI92E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:33:af:6b:a6:29:80:38:63:c7:aa:78:5a:a1:52:40:22:cf: 7f:f7:7b:a4:5e:30:59:11:aa:f7:73:8f:fe:d4:c3:e2:5b:8d: fc:05:9e:07:e4:8b:9a:65:48:81:55:22:80:c3:8e:06:91:4c: 36:d6:a6:69:b3:88:da:91:20:af:cb:a9:cc:32:4b:38:1c:39: fa:3a:cc:ad:f4:50:23:35:1e:72:df:01:08:1b:ba:46:a3:88: a5:9d:f1:63:f0:dc:bb:9d:10:f2:2f:af:43:b0:38:4f:d3:39: 54:b2:a1:38:a6:ae:22:af:ec:9a:fc:9a:35:1c:24:bc:5f:97: 6f:02:d5:7f:47:f7:16:38:6d:ef:97:e9:73:d8:00:d7:c6:1d: 23:b6:94:c1:21:9b:b2:5a:f7:ff:94:cd:ae:b9:b1:2d:4a:e8: 33:49:3b:67:a4:13:f4:fc:f2:98:36:ac:6f:f4:b0:23:4a:8e: b4:c1:4c:c1:3f:52:57:19:d0:ab:68:ed:3f:e0:85:f3:3c:1c: a1:84:f2:3f:87:54:65:6b:e8:d9:cc:36:13:79:83:cb:5f:23: 45:5e:4f:e1:7b:da:55:aa:b4:f6:d8:7e:ec:41:47:b6:c3:21: fc:41:8e:02:06:b2:a0:11:76:05:fb:d4:64:cd:f4:8f:95:65: c5:e5:86:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB38wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc5OUMxMTAvBgNVBAUTKERDMjFGODY3MzdCMjM5N0REMkIyNjA5RThGQjQwNjg2 RTNDOEY3NjEwHhcNMjUwNTMwMjE0MDQ1WhcNMjUwNjA2MjE0MDQ1WjAYMRYwFAYD VQQDEw02ODNhMjVkZC1hZmQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArKSLn9f2yvIcgDt6MXZMixhbKpgWWDMpWgVodWC//bhfbY1IVSnrmRmgV6ln Dt3wSXLolu64hZovg9fuF/qJcpFCL3lwGnL9Vi+B+OedHZgvAvYUtzbtWqvnFz2n taiQyS5oJRqwCE5bHcBw3sGeSL2UktwoU2tdw6G0mVAs7pqeLvPvM67QCnJFeT78 UHJNdRlLhu0Wxnt+pczOC0GixgYMBnNUWH9mVy1XazmdNBZSH5hmU/jDF895Gv89 qlQEwkx6cJklaAeKjR+RwudTAA8H78IUVXHTrLHEx+2Y0Jbvh85ExFVqc4oSBD5M zcPn5ywe4yPMyLvPD89R3HFglQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEcWA3In SzD9cY07QMAJWcFniTXGMB8GA1UdIwQYMBaAFNwh+Gc3sjl90rJgno+0BobjyPdh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzk5Qy9BMkRGQjMzNjEz NTcxMUVCOEQxM0IyMTVDNEY5QUUwMi8zQ0g0WnpleU9YM1NzbUNlajdRR2h1UEk5 MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNDSDRaemV5T1gzU3NtQ2VqN1FHaHVQSTkyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Nzk5Qy9BMkRGQjMzNjEzNTcxMUVCOEQxM0IyMTVDNEY5QUUwMi8zQ0g0WnpleU9Y M1NzbUNlajdRR2h1UEk5MkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCeM69rpimAOGPHqnhaoVJAIs9/93ukXjBZEar3c4/+1MPiW438BZ4H 5IuaZUiBVSKAw44GkUw21qZps4jakSCvy6nMMks4HDn6Osyt9FAjNR5y3wEIG7pG o4ilnfFj8Ny7nRDyL69DsDhP0zlUsqE4pq4ir+ya/Jo1HCS8X5dvAtV/R/cWOG3v l+lz2ADXxh0jtpTBIZuyWvf/lM2uubEtSugzSTtnpBP0/PKYNqxv9LAjSo60wUzB P1JXGdCraO0/4IXzPByhhPI/h1Rla+jZzDYTeYPLXyNFXk/he9pVqrT22H7sQUe2 wyH8QY4CBrKgEXYF+9RkzfSPlWXF5YYo -----END CERTIFICATE-----Generated at Sat May 31 16:46:58 2025 by rpki-client