$ rpki-client -vvf rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.mft File: 3Y89lj-o0fItV_Tfspq9cNJVjjc.mft (raw, json) Hash identifier: Z0woYsvpchAv7EFk5D1Qa78W4gzfd8aYcKt8ZRUpf58= Subject key identifier: CA:7D:9B:83:42:2C:66:28:3F:B6:EC:D9:B8:11:32:DC:21:50:DA:51 Authority key identifier: DD:8F:3D:96:3F:A8:D1:F2:2D:57:F4:DF:B2:9A:BD:70:D2:55:8E:37 Certificate issuer: /CN=A91D506C/serialNumber=DD8F3D963FA8D1F22D57F4DFB29ABD70D2558E37 Certificate serial: 02BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Y89lj-o0fItV_Tfspq9cNJVjjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.mft Manifest number: 02B7 Signing time: Sat 31 May 2025 01:38:12 +0000 Manifest this update: Sat 31 May 2025 01:38:12 +0000 Manifest next update: Sat 07 Jun 2025 01:38:12 +0000 Files and hashes: 1: 3Y89lj-o0fItV_Tfspq9cNJVjjc.crl (hash: sSB3D6osEA3wrBTrz8JkcinYn9B7IipoO/qVtPn+XeI=) 2: 76C5241CF47311EC8721C33DC4F9AE02.roa (hash: g19FhTBXCPfsej+IJgF1Do8UhJTPPb20EhKNCmaxyOU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.crl rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Y89lj-o0fItV_Tfspq9cNJVjjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:38:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 698 (0x2ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D506C, serialNumber=DD8F3D963FA8D1F22D57F4DFB29ABD70D2558E37 Validity Not Before: May 31 01:38:12 2025 GMT Not After : Jun 7 01:38:12 2025 GMT Subject: CN=683a5d84-a8cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:df:10:3f:c7:8f:6a:da:f8:2c:19:2f:12:a1: 94:3b:e6:31:99:f2:45:71:6f:c8:83:16:02:62:67: 31:ab:e3:63:8c:42:bd:8d:a6:4d:69:ac:58:8c:9a: 87:04:dc:0c:41:81:3d:87:67:d1:be:42:68:07:d7: f4:13:fa:77:c3:51:00:90:63:eb:92:1b:b6:ce:e7: 5d:b2:7e:38:27:f5:91:da:3c:70:ec:7a:00:61:aa: 8d:85:99:2d:53:2c:08:5f:a2:7a:fe:33:b1:bd:3c: 29:c0:c7:2d:2c:74:7c:1b:71:7d:a8:8a:fa:12:81: ef:79:2a:d1:80:5d:97:f2:ad:bd:a1:51:ab:84:63: d1:d6:1f:41:bc:f3:c9:56:b5:2b:f1:19:0a:bd:e4: fe:77:6a:3b:aa:74:ff:83:c5:c3:52:ab:3c:56:15: 06:e6:78:aa:7e:84:e6:67:2b:05:93:6c:b4:35:77: 80:6b:e1:f9:15:78:50:75:7a:d1:17:11:8b:df:7f: d0:c0:07:59:ce:7e:f9:18:f5:21:de:77:76:6c:40: a8:4a:19:b4:3e:18:62:3c:b4:16:f1:8d:1b:64:5a: d6:ed:d8:81:87:db:ef:9e:cd:4a:e6:18:1f:17:1f: 47:a3:d6:99:dd:99:a8:96:25:be:18:73:14:0c:e0: ea:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:7D:9B:83:42:2C:66:28:3F:B6:EC:D9:B8:11:32:DC:21:50:DA:51 X509v3 Authority Key Identifier: keyid:DD:8F:3D:96:3F:A8:D1:F2:2D:57:F4:DF:B2:9A:BD:70:D2:55:8E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Y89lj-o0fItV_Tfspq9cNJVjjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:85:32:f9:fd:dd:12:a7:8c:f8:de:ee:c8:9e:3b:b7:cc:cf: 84:a6:7b:e4:0a:21:4f:9b:16:b1:c5:1a:11:33:21:ff:89:bb: 17:57:e1:1e:f0:76:9f:8f:83:50:fa:a7:e2:a3:bf:17:c7:17: 55:e6:59:bd:7f:3d:d5:60:56:bc:ed:fd:4e:e8:e6:64:0a:ab: b4:0d:c6:1b:d8:a3:e6:ae:0d:cf:fc:e1:24:76:d3:f9:b8:16: 9a:99:78:4b:23:20:b9:37:c6:a0:a8:65:06:f0:c0:43:a0:73: 22:a6:e7:82:a3:7f:dc:f3:a2:89:f3:f2:38:fc:cf:ff:9d:49: 20:c1:da:f1:4f:ef:ab:47:c3:b3:a9:ac:51:53:63:bf:b8:63: 13:c9:69:c2:29:54:33:ce:01:70:b9:82:06:fa:c3:ff:40:1b: 39:42:3c:5b:82:00:b2:47:fc:9a:82:18:d4:14:9a:90:3a:dc: bc:8c:3a:79:15:ec:b7:6d:ff:05:6f:2b:95:f6:e6:9a:e6:13: 84:32:54:f8:5f:b8:1d:fa:b6:09:af:b3:56:18:94:77:ff:b4: 01:12:d7:64:8a:2f:1d:6c:8c:91:ca:8a:05:1d:12:83:54:c3: 61:f0:c8:05:54:ee:c3:65:70:14:09:cf:be:02:ff:3f:8f:99: 7f:c5:af:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUwNkMxMTAvBgNVBAUTKEREOEYzRDk2M0ZBOEQxRjIyRDU3RjRERkIyOUFCRDcw RDI1NThFMzcwHhcNMjUwNTMxMDEzODEyWhcNMjUwNjA3MDEzODEyWjAYMRYwFAYD VQQDEw02ODNhNWQ4NC1hOGNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn98QP8ePatr4LBkvEqGUO+YxmfJFcW/IgxYCYmcxq+NjjEK9jaZNaaxYjJqH BNwMQYE9h2fRvkJoB9f0E/p3w1EAkGPrkhu2zuddsn44J/WR2jxw7HoAYaqNhZkt UywIX6J6/jOxvTwpwMctLHR8G3F9qIr6EoHveSrRgF2X8q29oVGrhGPR1h9BvPPJ VrUr8RkKveT+d2o7qnT/g8XDUqs8VhUG5niqfoTmZysFk2y0NXeAa+H5FXhQdXrR FxGL33/QwAdZzn75GPUh3nd2bECoShm0PhhiPLQW8Y0bZFrW7diBh9vvns1K5hgf Fx9Ho9aZ3ZmoliW+GHMUDODqLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMp9m4NC LGYoP7bs2bgRMtwhUNpRMB8GA1UdIwQYMBaAFN2PPZY/qNHyLVf037KavXDSVY43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTA2Qy80NjYxOEIxQ0Y0 NkUxMUVDOEM2MDcwMEZDNEY5QUUwMi8zWTg5bGotbzBmSXRWX1Rmc3BxOWNOSlZq amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNZODlsai1vMGZJdFZfVGZzcHE5Y05KVmpqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTA2Qy80NjYxOEIxQ0Y0NkUxMUVDOEM2MDcwMEZDNEY5QUUwMi8zWTg5bGotbzBm SXRWX1Rmc3BxOWNOSlZqamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7hTL5/d0Sp4z43u7Inju3zM+EpnvkCiFPmxaxxRoRMyH/ibsXV+Ee 8Hafj4NQ+qfio78XxxdV5lm9fz3VYFa87f1O6OZkCqu0DcYb2KPmrg3P/OEkdtP5 uBaamXhLIyC5N8agqGUG8MBDoHMipueCo3/c86KJ8/I4/M//nUkgwdrxT++rR8Oz qaxRU2O/uGMTyWnCKVQzzgFwuYIG+sP/QBs5QjxbggCyR/yaghjUFJqQOty8jDp5 Fey3bf8FbyuV9uaa5hOEMlT4X7gd+rYJr7NWGJR3/7QBEtdkii8dbIyRyooFHRKD VMNh8MgFVO7DZXAUCc++Av8/j5l/xa+a -----END CERTIFICATE-----Generated at Sat May 31 16:57:49 2025 by rpki-client