$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft File: gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft (raw, json) Hash identifier: A4UB5D7CXn6zugRE+Abmc7WL0H4JQrtGu5Vy4HxdWTM= Subject key identifier: FC:C3:4B:CE:AC:6F:C8:51:AC:1F:28:B8:02:3C:CD:E3:F5:AB:18:40 Authority key identifier: 81:1D:E1:1E:7E:DC:1C:10:76:05:59:EE:B3:9B:FD:66:D6:9A:EA:46 Certificate issuer: /CN=A91E6BEF/serialNumber=811DE11E7EDC1C10760559EEB39BFD66D69AEA46 Certificate serial: 0D96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gR3hHn7cHBB2BVnus5v9Ztaa6kY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft Manifest number: 0D8D Signing time: Fri 30 May 2025 18:06:38 +0000 Manifest this update: Fri 30 May 2025 18:06:37 +0000 Manifest next update: Fri 06 Jun 2025 18:06:37 +0000 Files and hashes: 1: gR3hHn7cHBB2BVnus5v9Ztaa6kY.crl (hash: cJFfKj66mWRpLL2vtdJnXDBmcpHfBS/pBcInQyOoGnU=) 2: FEBD6C62C4B511E9B7D53A7FC4F9AE02.roa (hash: UdehkLAzVXoFe5wUis48zru/UMqEMsZcDt54OS7NI9c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.crl rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gR3hHn7cHBB2BVnus5v9Ztaa6kY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 18:06:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3478 (0xd96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6BEF, serialNumber=811DE11E7EDC1C10760559EEB39BFD66D69AEA46 Validity Not Before: May 30 18:06:37 2025 GMT Not After : Jun 6 18:06:37 2025 GMT Subject: CN=6839f3ae-f0d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:6b:a6:db:f7:e3:75:50:d4:42:28:e2:51:c4: 64:c6:de:9d:eb:c2:c0:6a:4f:b3:5b:3c:4a:7f:e1: d6:81:64:7b:34:85:a4:5c:44:33:c6:be:e8:41:be: bf:a4:3b:9a:8b:2f:dd:1f:b0:cb:16:41:58:15:30: fb:77:22:3c:ad:50:63:36:75:d1:11:fa:87:36:4f: e2:a2:69:9c:98:38:bb:47:8e:84:3b:4b:04:2a:6d: 91:f5:bf:97:12:03:df:ee:0e:72:50:7d:41:60:a5: 92:56:9b:cb:fb:48:e3:1f:01:73:22:fb:cd:ce:19: 6d:49:13:95:14:31:22:95:c0:b6:46:b8:ee:82:4c: 64:23:2e:94:70:4d:ce:1c:39:7e:73:79:23:bd:4c: b4:f2:50:43:d4:55:7e:92:18:32:cd:86:d5:e1:47: 4f:58:a3:a8:5d:73:90:b3:53:28:01:cc:b5:af:a2: b5:d3:2e:1c:40:de:e7:3c:b3:ef:b3:63:78:c0:9f: 94:80:1e:bf:7b:7a:b0:5f:fe:0a:b9:5b:ce:3c:5d: a2:85:6a:0b:3a:51:e3:5e:73:86:d5:a6:5b:9a:cb: 65:3c:1c:79:ca:65:85:38:f3:ab:d9:1e:d4:09:73: d5:72:db:61:b2:e2:79:2b:a0:b7:3b:3e:cc:60:d1: 4d:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:C3:4B:CE:AC:6F:C8:51:AC:1F:28:B8:02:3C:CD:E3:F5:AB:18:40 X509v3 Authority Key Identifier: keyid:81:1D:E1:1E:7E:DC:1C:10:76:05:59:EE:B3:9B:FD:66:D6:9A:EA:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gR3hHn7cHBB2BVnus5v9Ztaa6kY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d2:f0:15:2a:eb:12:6b:07:4e:91:d1:03:98:a4:e6:34:8f:b4: a3:cd:74:ff:69:53:99:c9:23:54:1b:d5:05:4c:9e:ee:1c:ad: 55:02:4c:31:16:6b:6a:37:9c:f5:94:3c:9d:40:3d:d7:e2:24: 1e:6e:3a:e6:46:ee:82:86:b4:d2:d8:6c:e6:51:bb:2e:c8:26: c4:ce:13:b1:31:63:2f:f6:d9:71:be:32:74:19:b3:8d:f0:c0: c4:d8:b1:7a:09:c4:d5:11:7e:4e:2f:b9:79:85:ae:eb:ef:3d: 74:8e:ad:d3:b5:72:c9:8e:3f:64:e1:a3:04:87:ec:dc:3b:b9: 43:42:fb:61:ea:0f:7c:99:78:11:db:b2:cd:72:5d:c9:6a:41: 69:40:6a:e8:70:d9:3f:fd:b7:97:13:9f:1b:9f:31:11:a0:e0: 44:30:e3:a3:19:46:4d:c4:17:7d:4b:14:b0:08:d4:a9:26:dd: 38:42:15:2d:46:70:08:39:1d:4f:5c:d0:b7:81:1a:98:e0:2e: 6b:ae:98:85:7e:33:72:62:dc:f6:27:a2:26:fe:8f:0e:d7:9e: 41:95:8e:38:91:0b:c4:03:0c:b3:0f:b8:ac:ff:cc:74:c7:65: 17:1d:fa:38:0f:93:3f:7b:22:0a:53:30:e1:8c:4b:0f:67:41: 07:8f:d2:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDZYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZCRUYxMTAvBgNVBAUTKDgxMURFMTFFN0VEQzFDMTA3NjA1NTlFRUIzOUJGRDY2 RDY5QUVBNDYwHhcNMjUwNTMwMTgwNjM3WhcNMjUwNjA2MTgwNjM3WjAYMRYwFAYD VQQDEw02ODM5ZjNhZS1mMGQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Wum2/fjdVDUQijiUcRkxt6d68LAak+zWzxKf+HWgWR7NIWkXEQzxr7oQb6/ pDuaiy/dH7DLFkFYFTD7dyI8rVBjNnXREfqHNk/iommcmDi7R46EO0sEKm2R9b+X EgPf7g5yUH1BYKWSVpvL+0jjHwFzIvvNzhltSROVFDEilcC2RrjugkxkIy6UcE3O HDl+c3kjvUy08lBD1FV+khgyzYbV4UdPWKOoXXOQs1MoAcy1r6K10y4cQN7nPLPv s2N4wJ+UgB6/e3qwX/4KuVvOPF2ihWoLOlHjXnOG1aZbmstlPBx5ymWFOPOr2R7U CXPVctthsuJ5K6C3Oz7MYNFNGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPzDS86s b8hRrB8ouAI8zeP1qxhAMB8GA1UdIwQYMBaAFIEd4R5+3BwQdgVZ7rOb/WbWmupG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkJFRi80RUE4NjZDNEM0 NDIxMUU5OTQ3N0UyMUZDNEY5QUUwMi9nUjNoSG43Y0hCQjJCVm51czV2OVp0YWE2 a1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dSM2hIbjdjSEJCMkJWbnVzNXY5WnRhYTZrWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkJFRi80RUE4NjZDNEM0NDIxMUU5OTQ3N0UyMUZDNEY5QUUwMi9nUjNoSG43Y0hC QjJCVm51czV2OVp0YWE2a1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDS8BUq6xJrB06R0QOYpOY0j7SjzXT/aVOZySNUG9UFTJ7uHK1VAkwx FmtqN5z1lDydQD3X4iQebjrmRu6ChrTS2GzmUbsuyCbEzhOxMWMv9tlxvjJ0GbON 8MDE2LF6CcTVEX5OL7l5ha7r7z10jq3TtXLJjj9k4aMEh+zcO7lDQvth6g98mXgR 27LNcl3JakFpQGrocNk//beXE58bnzERoOBEMOOjGUZNxBd9SxSwCNSpJt04QhUt RnAIOR1PXNC3gRqY4C5rrpiFfjNyYtz2J6Im/o8O155BlY44kQvEAwyzD7is/8x0 x2UXHfo4D5M/eyIKUzDhjEsPZ0EHj9IG -----END CERTIFICATE-----Generated at Sat May 31 17:57:41 2025 by rpki-client