$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.mft File: r3mHQ9q2R4aKtmZzr3oTbC6g6ls.mft (raw, json) Hash identifier: ZXYJkWsSMzcjdpkAkJ/MMd6cVbxSMMLjYHKZ33ss7c4= Subject key identifier: 77:07:E7:30:29:26:7D:DD:B3:B0:F2:40:F5:0C:01:54:1A:64:5E:66 Authority key identifier: AF:79:87:43:DA:B6:47:86:8A:B6:66:73:AF:7A:13:6C:2E:A0:EA:5B Certificate issuer: /CN=A91F5972/serialNumber=AF798743DAB647868AB66673AF7A136C2EA0EA5B Certificate serial: 0559 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.mft Manifest number: 0553 Signing time: Sun 08 Jun 2025 23:01:23 +0000 Manifest this update: Sun 08 Jun 2025 23:01:22 +0000 Manifest next update: Sun 15 Jun 2025 23:01:22 +0000 Files and hashes: 1: r3mHQ9q2R4aKtmZzr3oTbC6g6ls.crl (hash: 9AJ3x385oXwRaCUZrH1izYn8Xrn3ZTc2AMXdjtykHRk=) 2: B52EA19A6E0B11ECA6057963C4F9AE02.roa (hash: sRAPrM6e/yJbsGZwUamXGzz2TWejjmVOjZsdsTU0i6Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.crl rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 15 Jun 2025 23:01:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1369 (0x559) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5972, serialNumber=AF798743DAB647868AB66673AF7A136C2EA0EA5B Validity Not Before: Jun 8 23:01:22 2025 GMT Not After : Jun 15 23:01:22 2025 GMT Subject: CN=68461642-0d62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:d6:3d:11:a9:b3:63:96:e7:6e:a8:d3:dd:5b: 7f:bf:c6:1a:43:aa:de:c9:5d:be:18:2e:40:46:4d: dd:3b:b6:90:d1:2f:e8:e9:4f:c5:89:d2:2f:a1:75: 64:e8:a8:da:43:5b:8e:85:ff:2a:ac:66:89:1c:49: 2b:28:9b:8e:fe:26:db:c3:0e:ce:ca:d9:5f:44:40: cd:35:36:2a:98:2b:58:f5:41:ec:ad:b0:d4:f1:a2: 4b:98:0e:7f:58:41:52:4d:f8:4c:25:07:d4:49:92: 82:3f:f8:f3:5b:2f:61:e4:00:d5:48:5c:83:f3:1e: 8d:49:51:ad:a3:53:66:ab:94:04:8d:8b:f8:dc:09: fa:85:71:c8:85:0c:43:6c:11:db:56:4c:61:cf:70: b0:ce:6c:e7:d8:86:44:65:cd:1b:7f:dc:92:f1:53: 3e:72:2c:e5:78:e8:e3:72:bc:54:bd:17:25:16:96: cd:0d:be:17:1e:0b:f0:aa:39:2b:3a:ce:9e:38:fa: 6b:b7:e9:a3:3a:b8:9c:cd:26:79:76:e1:d8:2b:8a: 7c:c8:f0:84:1f:87:b2:d9:71:d1:4c:3b:c9:98:98: 94:46:62:59:bf:7f:7d:84:78:bb:7b:50:c2:73:5b: bb:05:c3:f5:fc:4f:3b:60:fe:f8:dd:64:c5:50:ed: 8a:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:07:E7:30:29:26:7D:DD:B3:B0:F2:40:F5:0C:01:54:1A:64:5E:66 X509v3 Authority Key Identifier: keyid:AF:79:87:43:DA:B6:47:86:8A:B6:66:73:AF:7A:13:6C:2E:A0:EA:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:49:5f:74:c8:a4:d2:a4:d4:0b:c7:22:b2:e9:40:ea:ac:82: f5:da:c2:50:20:74:d3:44:81:b2:bd:c6:ca:f8:74:13:e6:a1: dd:65:19:3a:a5:a0:24:42:de:3d:6e:2a:b5:f7:13:3b:b9:47: 2e:57:3a:84:95:6a:f1:53:a7:36:87:77:42:b3:c2:bd:e2:6d: 0d:7f:51:35:be:37:43:d6:36:a0:9e:0e:03:88:3d:6c:42:4a: a5:7a:6f:d8:1b:21:8d:d2:44:59:0d:f1:12:ee:0a:54:ba:63: 1d:e2:3b:ca:6b:f2:ce:f8:56:d0:98:8c:7d:cf:14:f3:13:49: 18:e7:9c:e8:30:e8:6a:a6:96:05:35:bc:90:79:12:3b:94:83: 0f:40:05:45:05:76:2f:46:c4:68:4c:5d:48:b8:cf:90:96:fd: 8c:61:96:b7:7f:c5:e2:8d:b7:04:56:5c:63:46:4b:1e:a1:71: 04:8d:25:8f:50:c5:e4:1d:43:e3:aa:01:48:44:c6:cf:ed:e2: 21:e5:f4:3b:24:5d:e7:25:8d:2d:16:3a:94:cc:80:2b:1d:7a: dd:5b:ff:85:9d:7d:d5:80:42:00:f4:93:68:7a:a2:84:d4:1d: dc:6a:c4:a4:e4:dc:c8:0f:07:aa:e3:22:b4:e3:b8:c1:84:bf: e6:96:51:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBVkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU5NzIxMTAvBgNVBAUTKEFGNzk4NzQzREFCNjQ3ODY4QUI2NjY3M0FGN0ExMzZD MkVBMEVBNUIwHhcNMjUwNjA4MjMwMTIyWhcNMjUwNjE1MjMwMTIyWjAYMRYwFAYD VQQDEw02ODQ2MTY0Mi0wZDYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4tY9EamzY5bnbqjT3Vt/v8YaQ6reyV2+GC5ARk3dO7aQ0S/o6U/FidIvoXVk 6KjaQ1uOhf8qrGaJHEkrKJuO/ibbww7OytlfREDNNTYqmCtY9UHsrbDU8aJLmA5/ WEFSTfhMJQfUSZKCP/jzWy9h5ADVSFyD8x6NSVGto1Nmq5QEjYv43An6hXHIhQxD bBHbVkxhz3Cwzmzn2IZEZc0bf9yS8VM+cizleOjjcrxUvRclFpbNDb4XHgvwqjkr Os6eOPprt+mjOriczSZ5duHYK4p8yPCEH4ey2XHRTDvJmJiURmJZv399hHi7e1DC c1u7BcP1/E87YP743WTFUO2KBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHcH5zAp Jn3ds7DyQPUMAVQaZF5mMB8GA1UdIwQYMBaAFK95h0PatkeGirZmc696E2wuoOpb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTk3Mi85QkY2QzQ0RUYw MzExMUVCOTVGNzY3NDhDNEY5QUUwMi9yM21IUTlxMlI0YUt0bVp6cjNvVGJDNmc2 bHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3IzbUhROXEyUjRhS3RtWnpyM29UYkM2ZzZscy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTk3Mi85QkY2QzQ0RUYwMzExMUVCOTVGNzY3NDhDNEY5QUUwMi9yM21IUTlxMlI0 YUt0bVp6cjNvVGJDNmc2bHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGSV90yKTSpNQLxyKy6UDqrIL12sJQIHTTRIGyvcbK+HQT5qHdZRk6 paAkQt49biq19xM7uUcuVzqElWrxU6c2h3dCs8K94m0Nf1E1vjdD1jagng4DiD1s Qkqlem/YGyGN0kRZDfES7gpUumMd4jvKa/LO+FbQmIx9zxTzE0kY55zoMOhqppYF NbyQeRI7lIMPQAVFBXYvRsRoTF1IuM+Qlv2MYZa3f8XijbcEVlxjRkseoXEEjSWP UMXkHUPjqgFIRMbP7eIh5fQ7JF3nJY0tFjqUzIArHXrdW/+FnX3VgEIA9JNoeqKE 1B3casSk5NzIDweq4yK047jBhL/mllHa -----END CERTIFICATE-----Generated at Tue Jun 10 13:08:18 2025 by rpki-client