$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/9R3GadtZYYTQv5SqHkHl3hWejaU.mft File: 9R3GadtZYYTQv5SqHkHl3hWejaU.mft (raw, json) Hash identifier: MgzGFnLlxzNAU3ElXK9F10DzYJMM6JaczqA/7YwSb8A= Subject key identifier: F6:AE:C3:DC:A1:0A:68:A0:E5:BB:F8:61:55:80:39:8A:FA:9B:A5:25 Authority key identifier: F5:1D:C6:69:DB:59:61:84:D0:BF:94:AA:1E:41:E5:DE:15:9E:8D:A5 Certificate issuer: /CN=A91D3D50/serialNumber=F51DC669DB596184D0BF94AA1E41E5DE159E8DA5 Certificate serial: 0C5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9R3GadtZYYTQv5SqHkHl3hWejaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/9R3GadtZYYTQv5SqHkHl3hWejaU.mft Manifest number: 0C51 Signing time: Tue 10 Jun 2025 18:19:51 +0000 Manifest this update: Tue 10 Jun 2025 18:19:51 +0000 Manifest next update: Tue 17 Jun 2025 18:19:51 +0000 Files and hashes: 1: 9R3GadtZYYTQv5SqHkHl3hWejaU.crl (hash: 2dT6hib86GrP93MV9paryGmzeIIakRQm+btlu244GD8=) 2: 2DE1069C050311EA93648E33C4F9AE02.roa (hash: lPRimtAIP991qjg2zYQ9MB+u2MSznOVIg7X2f5y/SnM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/9R3GadtZYYTQv5SqHkHl3hWejaU.crl rsync://rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/9R3GadtZYYTQv5SqHkHl3hWejaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9R3GadtZYYTQv5SqHkHl3hWejaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Jun 2025 18:19:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3163 (0xc5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3D50, serialNumber=F51DC669DB596184D0BF94AA1E41E5DE159E8DA5 Validity Not Before: Jun 10 18:19:51 2025 GMT Not After : Jun 17 18:19:51 2025 GMT Subject: CN=68487747-acfa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:35:21:c3:62:e7:57:d7:cb:10:b1:18:06:4c: ff:a2:8d:d6:eb:9e:c2:f6:7a:82:0b:b7:37:1e:b3: 5b:6e:c8:4a:b3:ae:c0:4d:70:e4:8a:a7:0c:fe:4e: e7:11:6d:5b:6a:60:ef:61:e8:ea:1b:55:7d:d6:22: b7:62:85:e4:43:8c:5c:87:56:82:67:ab:b2:ec:c4: ed:93:a0:90:3f:bd:b5:df:72:94:8b:52:65:c8:15: f6:20:e0:1f:b2:d6:f7:25:77:5f:46:2c:6f:e5:88: 38:50:fa:e1:93:48:f8:ed:e4:45:0f:e3:60:49:5e: 4a:d1:8e:1f:f3:70:b7:f7:2f:65:2d:1a:4e:7b:dd: 2b:29:c5:e5:ea:4d:4f:db:9e:c9:54:81:d0:a1:29: a1:52:26:1c:c0:79:c3:58:44:2a:28:95:85:db:5e: 59:0b:79:3a:f5:eb:cd:47:61:2e:bb:0e:8d:d3:aa: ed:73:0c:88:04:64:17:bf:7b:01:67:24:a6:c8:0e: 39:f7:18:bd:4d:b1:28:fd:23:c6:1e:79:0e:9d:1b: 1c:77:50:60:94:4e:93:63:e5:41:20:d0:8c:84:db: e2:34:6d:a2:ae:84:8f:58:6a:9e:dd:49:7b:d3:64: a6:b5:11:78:36:34:b0:d5:15:d6:9b:95:17:d1:18: 1a:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:AE:C3:DC:A1:0A:68:A0:E5:BB:F8:61:55:80:39:8A:FA:9B:A5:25 X509v3 Authority Key Identifier: keyid:F5:1D:C6:69:DB:59:61:84:D0:BF:94:AA:1E:41:E5:DE:15:9E:8D:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/9R3GadtZYYTQv5SqHkHl3hWejaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9R3GadtZYYTQv5SqHkHl3hWejaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/9R3GadtZYYTQv5SqHkHl3hWejaU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:c6:ef:34:40:f9:5d:26:23:fc:c1:aa:09:0e:cd:9e:53:9e: 0e:88:e9:ea:44:e6:b6:2b:39:49:7d:e7:8a:a0:93:48:24:73: 55:3f:04:8c:b3:de:c3:9d:78:36:86:eb:24:fa:0c:58:af:9f: c4:24:fc:aa:40:4c:29:0d:cf:a7:28:d9:e6:ea:cd:25:64:31: 67:ee:d6:62:17:f4:41:90:ee:80:5e:f3:3c:63:d8:2d:fe:34: c6:c4:11:b0:68:78:7f:e1:7d:da:05:c6:1b:70:63:cc:fe:53: 8b:be:e6:59:ff:f2:d3:3a:87:fa:af:ab:6a:d4:80:55:4f:94: 48:4f:4b:30:fe:c7:5e:87:a4:3f:c1:a1:40:61:56:9d:07:b9: 5c:c2:3d:9e:ca:3b:78:04:b6:e5:70:f8:1e:3a:db:4d:07:bc: 6a:91:ee:09:1e:e4:c0:ba:b9:31:68:5a:26:d6:fc:64:ff:cb: 40:5d:be:65:54:05:23:60:ab:9e:b4:dd:28:d2:b3:cc:c4:38: a0:1c:50:05:1e:00:6b:60:2b:b5:42:cd:ec:98:b7:9b:8e:df: dc:fa:b9:04:cf:99:9f:46:b7:e2:52:52:8c:3c:07:6f:8a:31: 45:95:a4:20:09:a2:d3:53:d9:c7:36:01:fb:3b:cb:29:56:fc: 87:18:28:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDNENTAxMTAvBgNVBAUTKEY1MURDNjY5REI1OTYxODREMEJGOTRBQTFFNDFFNURF MTU5RThEQTUwHhcNMjUwNjEwMTgxOTUxWhcNMjUwNjE3MTgxOTUxWjAYMRYwFAYD VQQDEw02ODQ4Nzc0Ny1hY2ZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnTUhw2LnV9fLELEYBkz/oo3W657C9nqCC7c3HrNbbshKs67ATXDkiqcM/k7n EW1bamDvYejqG1V91iK3YoXkQ4xch1aCZ6uy7MTtk6CQP72133KUi1JlyBX2IOAf stb3JXdfRixv5Yg4UPrhk0j47eRFD+NgSV5K0Y4f83C39y9lLRpOe90rKcXl6k1P 257JVIHQoSmhUiYcwHnDWEQqKJWF215ZC3k69evNR2Euuw6N06rtcwyIBGQXv3sB ZySmyA459xi9TbEo/SPGHnkOnRscd1BglE6TY+VBINCMhNviNG2iroSPWGqe3Ul7 02SmtRF4NjSw1RXWm5UX0RgawQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPauw9yh Cmig5bv4YVWAOYr6m6UlMB8GA1UdIwQYMBaAFPUdxmnbWWGE0L+Uqh5B5d4Vno2l MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEM0Q1MC8xNTQ2NEZENjA1 MDExMUVBQUQ5NzI1MkNDNEY5QUUwMi85UjNHYWR0WllZVFF2NVNxSGtIbDNoV2Vq YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlSM0dhZHRaWVlUUXY1U3FIa0hsM2hXZWphVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE M0Q1MC8xNTQ2NEZENjA1MDExMUVBQUQ5NzI1MkNDNEY5QUUwMi85UjNHYWR0WllZ VFF2NVNxSGtIbDNoV2VqYVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbxu80QPldJiP8waoJDs2eU54OiOnqROa2KzlJfeeKoJNIJHNVPwSM s97DnXg2husk+gxYr5/EJPyqQEwpDc+nKNnm6s0lZDFn7tZiF/RBkO6AXvM8Y9gt /jTGxBGwaHh/4X3aBcYbcGPM/lOLvuZZ//LTOof6r6tq1IBVT5RIT0sw/sdeh6Q/ waFAYVadB7lcwj2eyjt4BLblcPgeOttNB7xqke4JHuTAurkxaFom1vxk/8tAXb5l VAUjYKuetN0o0rPMxDigHFAFHgBrYCu1Qs3smLebjt/c+rkEz5mfRrfiUlKMPAdv ijFFlaQgCaLTU9nHNgH7O8spVvyHGCiU -----END CERTIFICATE-----Generated at Wed Jun 11 12:33:34 2025 by rpki-client