$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.mft File: r3mHQ9q2R4aKtmZzr3oTbC6g6ls.mft (raw, json) Hash identifier: 9HRUloK5SIqDADxIeXqsyEDdMLbp+BFkOUZtkS8Wo0Y= Subject key identifier: 6A:51:1B:B2:EC:03:1A:FF:44:B3:58:10:44:31:5B:A9:B6:2C:16:06 Authority key identifier: AF:79:87:43:DA:B6:47:86:8A:B6:66:73:AF:7A:13:6C:2E:A0:EA:5B Certificate issuer: /CN=A91F5972/serialNumber=AF798743DAB647868AB66673AF7A136C2EA0EA5B Certificate serial: 055B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.mft Manifest number: 0555 Signing time: Thu 12 Jun 2025 23:00:34 +0000 Manifest this update: Thu 12 Jun 2025 23:00:34 +0000 Manifest next update: Thu 19 Jun 2025 23:00:34 +0000 Files and hashes: 1: r3mHQ9q2R4aKtmZzr3oTbC6g6ls.crl (hash: 3oMAy0f/KUw6/6G9Q2YLMX0laajYSgZ7KaVV8m2uXEQ=) 2: B52EA19A6E0B11ECA6057963C4F9AE02.roa (hash: sRAPrM6e/yJbsGZwUamXGzz2TWejjmVOjZsdsTU0i6Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.crl rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 23:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1371 (0x55b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5972, serialNumber=AF798743DAB647868AB66673AF7A136C2EA0EA5B Validity Not Before: Jun 12 23:00:34 2025 GMT Not After : Jun 19 23:00:34 2025 GMT Subject: CN=684b5c12-2a44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:2c:7f:1d:05:3e:aa:3c:da:14:eb:f9:3d:47: 99:e1:14:7f:4f:ed:83:c3:98:9b:4a:7b:a5:02:1f: 77:a4:ed:94:eb:29:f6:fe:24:36:de:98:ae:67:b0: ae:de:66:10:43:8d:48:38:c3:ca:fe:04:ef:a3:d5: ee:eb:79:a6:5e:ee:cf:bc:08:7a:23:07:12:00:1b: 82:cd:b0:eb:b9:c4:86:a5:bb:90:e1:2c:f0:22:16: 4c:f7:d3:77:c9:ca:33:9b:6f:6b:14:4a:f3:db:16: 4a:16:28:49:ea:42:b1:cc:7e:26:34:81:c8:58:85: ab:59:7b:f7:c6:6a:bd:59:80:dc:00:a3:0b:f7:14: 2c:4c:83:82:0d:f7:e3:e2:1c:a6:84:4d:55:84:8d: 48:88:f2:bc:d8:3c:82:52:cf:51:3a:5c:14:23:65: 52:83:c6:aa:14:f4:10:28:28:5c:18:bd:1a:7c:5b: db:26:b8:c7:d8:e9:40:c3:81:39:7f:bb:ea:61:e0: e1:0b:c8:9f:ff:c1:9b:0f:30:39:11:b8:4c:49:7c: 41:8b:d5:1d:c4:65:e3:cf:23:dd:34:ef:7a:28:80: 73:dc:00:5b:3b:ea:28:a8:8c:1f:ae:f8:59:47:ba: 50:c6:e9:97:57:e2:7b:1b:4c:9d:b7:ed:4d:98:69: b8:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:51:1B:B2:EC:03:1A:FF:44:B3:58:10:44:31:5B:A9:B6:2C:16:06 X509v3 Authority Key Identifier: keyid:AF:79:87:43:DA:B6:47:86:8A:B6:66:73:AF:7A:13:6C:2E:A0:EA:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:d0:89:a4:87:ac:16:3b:75:e2:c9:53:3c:4f:3d:bc:73:e8: 24:69:45:a9:ef:ac:f6:87:cc:dd:2e:2b:7b:09:9d:a6:cc:75: 25:9a:78:4c:4e:33:ef:3b:64:03:d2:e9:f0:3d:bc:61:a6:36: 38:d0:2c:f1:72:0e:bd:7d:a4:28:ba:5d:fc:ff:85:fd:d2:a2: 96:af:ef:1a:8a:d3:9d:28:ab:a1:da:46:c4:e7:0c:de:1b:8e: 55:4b:19:ed:95:e1:14:ba:59:6b:de:2f:52:36:f3:92:f1:f1: b3:10:55:5a:04:ad:b9:1d:9f:3f:06:22:5b:1b:fa:af:77:a2: d5:d0:f0:81:fc:e3:61:fe:4e:cc:3d:29:3c:50:19:05:c4:59: f1:e8:bf:91:8a:c5:2e:55:e3:25:1f:77:ea:91:1f:be:16:ef: 07:77:17:32:59:17:ad:7a:d0:c5:66:09:9d:97:71:89:c2:12: e6:78:02:68:1a:20:b7:8d:04:5c:c6:ff:1d:f8:e1:72:d9:15: 9b:a2:13:a0:ce:e9:f0:ba:b7:ed:a0:96:3b:e6:07:ff:d6:12: 17:06:40:79:e6:95:c4:fc:43:69:f2:be:51:91:b7:4d:28:e3: bb:0a:77:b4:e4:bd:25:48:f9:fc:63:05:9f:c0:6c:6d:d9:af: 6e:a3:62:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBVswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU5NzIxMTAvBgNVBAUTKEFGNzk4NzQzREFCNjQ3ODY4QUI2NjY3M0FGN0ExMzZD MkVBMEVBNUIwHhcNMjUwNjEyMjMwMDM0WhcNMjUwNjE5MjMwMDM0WjAYMRYwFAYD VQQDEw02ODRiNWMxMi0yYTQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAryx/HQU+qjzaFOv5PUeZ4RR/T+2Dw5ibSnulAh93pO2U6yn2/iQ23piuZ7Cu 3mYQQ41IOMPK/gTvo9Xu63mmXu7PvAh6IwcSABuCzbDrucSGpbuQ4SzwIhZM99N3 ycozm29rFErz2xZKFihJ6kKxzH4mNIHIWIWrWXv3xmq9WYDcAKML9xQsTIOCDffj 4hymhE1VhI1IiPK82DyCUs9ROlwUI2VSg8aqFPQQKChcGL0afFvbJrjH2OlAw4E5 f7vqYeDhC8if/8GbDzA5EbhMSXxBi9UdxGXjzyPdNO96KIBz3ABbO+ooqIwfrvhZ R7pQxumXV+J7G0ydt+1NmGm4RwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGpRG7Ls Axr/RLNYEEQxW6m2LBYGMB8GA1UdIwQYMBaAFK95h0PatkeGirZmc696E2wuoOpb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTk3Mi85QkY2QzQ0RUYw MzExMUVCOTVGNzY3NDhDNEY5QUUwMi9yM21IUTlxMlI0YUt0bVp6cjNvVGJDNmc2 bHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3IzbUhROXEyUjRhS3RtWnpyM29UYkM2ZzZscy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTk3Mi85QkY2QzQ0RUYwMzExMUVCOTVGNzY3NDhDNEY5QUUwMi9yM21IUTlxMlI0 YUt0bVp6cjNvVGJDNmc2bHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAM0Imkh6wWO3XiyVM8Tz28c+gkaUWp76z2h8zdLit7CZ2mzHUlmnhM TjPvO2QD0unwPbxhpjY40Czxcg69faQoul38/4X90qKWr+8aitOdKKuh2kbE5wze G45VSxntleEUullr3i9SNvOS8fGzEFVaBK25HZ8/BiJbG/qvd6LV0PCB/ONh/k7M PSk8UBkFxFnx6L+RisUuVeMlH3fqkR++Fu8HdxcyWRetetDFZgmdl3GJwhLmeAJo GiC3jQRcxv8d+OFy2RWbohOgzunwurftoJY75gf/1hIXBkB55pXE/ENp8r5RkbdN KOO7Cne05L0lSPn8YwWfwGxt2a9uo2I9 -----END CERTIFICATE-----Generated at Sat Jun 14 06:48:45 2025 by rpki-client