$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft File: 3rTAuQf6yhxdN3a9SUb0uqjKazA.mft (raw, json) Hash identifier: HSIqqDZ3WMf4ErTa8LAWEWmE7BSvDCmaO/q6R9Hgd/8= Subject key identifier: CD:D7:97:80:F9:D7:E3:58:24:A5:87:05:4A:46:DD:1F:A6:38:C8:62 Authority key identifier: DE:B4:C0:B9:07:FA:CA:1C:5D:37:76:BD:49:46:F4:BA:A8:CA:6B:30 Certificate issuer: /CN=A91F3B5F/serialNumber=DEB4C0B907FACA1C5D3776BD4946F4BAA8CA6B30 Certificate serial: 1E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3rTAuQf6yhxdN3a9SUb0uqjKazA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft Manifest number: 1D Signing time: Sun 01 Jun 2025 07:37:12 +0000 Manifest this update: Sun 01 Jun 2025 07:37:11 +0000 Manifest next update: Sun 08 Jun 2025 07:37:11 +0000 Files and hashes: 1: 3rTAuQf6yhxdN3a9SUb0uqjKazA.crl (hash: hI9EsKP5Nt9Vmfo0PmiF9MZc2YLbhdTtgYpsQNaUbuc=) 2: 0B65C980136D11F09F542C81C4F9AE02.roa (hash: VBqh2E7rkd2+euZfBVuvn8Wuy6ZridPl7cQmEbFqT/k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.crl rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3rTAuQf6yhxdN3a9SUb0uqjKazA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 07:37:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30 (0x1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3B5F, serialNumber=DEB4C0B907FACA1C5D3776BD4946F4BAA8CA6B30 Validity Not Before: Jun 1 07:37:11 2025 GMT Not After : Jun 8 07:37:11 2025 GMT Subject: CN=683c0327-5c4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:b2:2b:b2:59:5c:80:b9:67:de:d0:f5:46:cc: 15:d5:4d:d5:dd:81:04:37:64:cd:a9:7c:8d:8b:50: 14:2c:2b:dc:fe:14:26:46:e0:3e:5c:c8:b6:54:c1: a8:d2:84:25:e1:0b:5f:e1:08:e2:87:47:42:87:2c: e2:89:e7:04:df:ed:d1:d4:44:dd:fa:49:c3:38:9b: ba:16:4a:62:85:c4:0f:87:48:36:80:78:2c:83:aa: c2:dd:94:00:77:b5:3a:f2:bf:f7:dc:f3:d2:94:6a: ec:03:18:d7:4f:20:4f:2b:fe:6f:a3:f3:b1:bd:95: a9:f5:8f:81:bb:28:22:bb:9d:9f:5d:eb:1d:0a:5f: e4:c4:28:df:91:cf:72:a1:14:75:d5:12:f5:af:98: 76:5a:da:98:86:1d:46:74:3f:db:c5:21:58:dc:d1: 39:4f:d7:3e:4e:dd:73:3f:84:b6:06:3e:b4:92:13: f7:a8:50:50:c3:63:81:8f:1d:09:08:13:0a:b4:f0: 36:13:01:56:85:af:38:11:21:47:cc:4a:43:20:74: 49:f7:fe:58:1a:cb:d2:a9:d1:d8:22:82:68:50:63: df:86:55:15:e4:36:30:08:4e:b9:c1:d4:c1:88:dc: 58:4a:36:8b:e6:da:2b:1f:75:3e:01:43:d6:70:4b: 1c:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:D7:97:80:F9:D7:E3:58:24:A5:87:05:4A:46:DD:1F:A6:38:C8:62 X509v3 Authority Key Identifier: keyid:DE:B4:C0:B9:07:FA:CA:1C:5D:37:76:BD:49:46:F4:BA:A8:CA:6B:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3rTAuQf6yhxdN3a9SUb0uqjKazA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:0b:4b:c6:96:7a:e3:3b:bc:2b:5b:d7:7c:02:81:7a:ea:3f: f1:ae:21:4b:20:49:a6:9b:d7:21:41:6a:f7:dd:99:8f:d8:b5: 32:ee:0a:60:e5:2f:9a:1d:d8:fc:d5:24:47:9f:8d:d2:a6:94: 1b:ae:6f:70:d8:70:2b:b0:15:c9:10:18:7a:6a:80:b1:12:81: 4b:79:1e:71:27:16:af:92:27:4f:b1:df:61:85:95:85:af:9d: 4f:8b:63:4a:97:66:54:0e:6f:44:58:51:7b:9b:9f:6c:49:8b: ab:a2:b4:34:33:d4:a8:27:fa:6e:91:c1:d0:c4:3e:95:f9:ae: 82:b2:73:07:1d:c8:76:fd:46:63:b1:66:8a:b2:fb:fe:24:29: b6:35:af:c8:fb:85:a6:02:3b:d3:2e:fa:36:61:b0:51:d9:8a: 9d:7d:04:50:cc:89:a7:94:19:f3:d8:93:b9:cb:62:36:5a:11: 82:f5:bd:b7:7b:65:5e:29:7f:d9:c4:10:a8:57:2b:16:5d:b2: e2:78:b6:c7:d9:79:3c:d2:f3:7d:01:55:73:a2:11:4d:a5:d3: 79:c8:3a:9e:8d:d8:1a:70:a9:19:14:ee:65:93:2b:f4:8f:9c: 71:8b:89:54:ac:40:a6:b3:b4:33:4f:bf:8c:2d:87:ae:dd:c3: 82:cf:58:24 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG M0I1RjExMC8GA1UEBRMoREVCNEMwQjkwN0ZBQ0ExQzVEMzc3NkJENDk0NkY0QkFB OENBNkIzMDAeFw0yNTA2MDEwNzM3MTFaFw0yNTA2MDgwNzM3MTFaMBgxFjAUBgNV BAMTDTY4M2MwMzI3LTVjNGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDQsiuyWVyAuWfe0PVGzBXVTdXdgQQ3ZM2pfI2LUBQsK9z+FCZG4D5cyLZUwajS hCXhC1/hCOKHR0KHLOKJ5wTf7dHURN36ScM4m7oWSmKFxA+HSDaAeCyDqsLdlAB3 tTryv/fc89KUauwDGNdPIE8r/m+j87G9lan1j4G7KCK7nZ9d6x0KX+TEKN+Rz3Kh FHXVEvWvmHZa2piGHUZ0P9vFIVjc0TlP1z5O3XM/hLYGPrSSE/eoUFDDY4GPHQkI Ewq08DYTAVaFrzgRIUfMSkMgdEn3/lgay9Kp0dgigmhQY9+GVRXkNjAITrnB1MGI 3FhKNovm2isfdT4BQ9ZwSxxFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUzdeXgPnX 41gkpYcFSkbdH6Y4yGIwHwYDVR0jBBgwFoAU3rTAuQf6yhxdN3a9SUb0uqjKazAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYzQjVGL0IxNzBDOTEyMTM2 NjExRjA4MkUzQzUwREM0RjlBRTAyLzNyVEF1UWY2eWh4ZE4zYTlTVWIwdXFqS2F6 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvM3JUQXVRZjZ5aHhkTjNhOVNVYjB1cWpLYXpBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYz QjVGL0IxNzBDOTEyMTM2NjExRjA4MkUzQzUwREM0RjlBRTAyLzNyVEF1UWY2eWh4 ZE4zYTlTVWIwdXFqS2F6QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEoLS8aWeuM7vCtb13wCgXrqP/GuIUsgSaab1yFBavfdmY/YtTLuCmDl L5od2PzVJEefjdKmlBuub3DYcCuwFckQGHpqgLESgUt5HnEnFq+SJ0+x32GFlYWv nU+LY0qXZlQOb0RYUXubn2xJi6uitDQz1Kgn+m6RwdDEPpX5roKycwcdyHb9RmOx Zoqy+/4kKbY1r8j7haYCO9Mu+jZhsFHZip19BFDMiaeUGfPYk7nLYjZaEYL1vbd7 ZV4pf9nEEKhXKxZdsuJ4tsfZeTzS830BVXOiEU2l03nIOp6N2BpwqRkU7mWTK/SP nHGLiVSsQKaztDNPv4wth67dw4LPWCQ= -----END CERTIFICATE-----Generated at Mon Jun 2 21:45:30 2025 by rpki-client