$ rpki-client -vvf rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft File: 3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft (raw, json) Hash identifier: 0nMDxImIo/SMLctXrOx4Cw48koMFzD+GdulPWPQ82UQ= Subject key identifier: 65:A4:25:9F:36:D1:BC:8C:85:C6:96:0D:06:F6:10:61:79:C7:C6:6D Authority key identifier: DC:62:20:08:A8:A1:AD:42:BE:2A:25:49:43:49:1A:FA:A8:45:49:A5 Certificate issuer: /CN=A911035A/serialNumber=DC622008A8A1AD42BE2A254943491AFAA84549A5 Certificate serial: 0A00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft Manifest number: 09EF Signing time: Thu 12 Jun 2025 19:41:30 +0000 Manifest this update: Thu 12 Jun 2025 19:41:29 +0000 Manifest next update: Thu 19 Jun 2025 19:41:29 +0000 Files and hashes: 1: 3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl (hash: HHW7BM4NVZ0znfDvKftCg5l/aH6JBJqddPpgbkzJLG8=) 2: 5B57754A026F11EDBE22EF64C4F9AE02.roa (hash: ihAIG4OoPwthC+h4NtPo2Q0pwt/cIHMn8RF1lo5PumY=) 3: 5A472FBA026F11EDBE22EF64C4F9AE02.roa (hash: vIMBF1bBAJdpKyG7NryScSCm1A4V3l1tKWGtKbJDwKU=) 4: C1B3DE082BBE11EF809E1831C4F9AE02.roa (hash: lx///Z7Da35SlsWklk353QqekT8yYXigifaMtdugzeQ=) 5: E1935B7A36DD11EFB1E53717C4F9AE02.roa (hash: H0HQ+QBIGliAyxj5H0/8pAJ49x4cCntNY4DcwIy3B3Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 19:41:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2560 (0xa00) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911035A, serialNumber=DC622008A8A1AD42BE2A254943491AFAA84549A5 Validity Not Before: Jun 12 19:41:29 2025 GMT Not After : Jun 19 19:41:29 2025 GMT Subject: CN=684b2d69-2387 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:a1:8b:89:0e:57:b5:69:bc:62:2f:b2:98:97: 62:8e:3a:74:42:5b:f1:78:78:18:a3:b0:89:a3:ba: 70:3d:75:8b:01:98:05:c3:51:0f:7f:e4:4f:98:60: a7:6e:9a:ec:29:1b:99:39:0e:a1:15:56:ef:38:c9: 6d:d1:08:54:41:5d:0c:27:7b:ab:d6:41:ba:15:a9: 72:9e:48:43:f5:1f:b0:96:49:8b:2a:ed:d6:91:a3: 4c:2e:77:10:2d:9f:e6:ab:20:27:81:28:20:27:d1: 7a:2c:7e:54:5b:b3:f0:60:57:3d:9f:78:c8:8e:07: 69:4d:46:71:dc:57:e4:51:9e:6a:0e:9d:dc:32:41: e2:e6:9c:25:ba:97:fb:20:1a:05:2b:6b:6e:2d:1d: 7b:81:13:56:f5:9b:a9:a7:95:f0:af:0f:7e:eb:6b: 61:0c:24:48:e8:f3:82:1e:be:d5:42:9c:e8:2a:0d: a1:3c:b7:3c:fc:f3:86:08:4c:41:b9:fe:72:3c:6b: c6:0a:82:b5:5a:bc:4a:e3:6d:cb:52:d4:51:07:fc: 0c:a5:a0:46:a8:f7:2c:f9:cc:51:30:31:52:87:4d: 21:c1:a2:8c:d6:9d:29:7c:15:dd:04:84:02:ac:ef: 3d:08:24:69:9d:01:b3:6b:2c:3d:61:6b:20:1d:a1: 1f:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:A4:25:9F:36:D1:BC:8C:85:C6:96:0D:06:F6:10:61:79:C7:C6:6D X509v3 Authority Key Identifier: keyid:DC:62:20:08:A8:A1:AD:42:BE:2A:25:49:43:49:1A:FA:A8:45:49:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:49:d8:f8:eb:c7:d3:e3:ec:8e:dd:3d:14:a6:ac:fb:22:6f: 1b:fe:f2:ea:d8:48:7a:21:76:90:cc:94:ba:84:6b:6d:1d:ff: 8a:68:4b:04:57:cd:a5:bb:29:42:0a:93:24:7f:62:e6:90:7e: 64:e4:3d:2a:b3:89:97:97:14:d9:b7:eb:87:3d:60:ef:e5:04: 10:96:0e:95:64:03:4f:28:f7:b4:ae:c1:43:37:04:c1:2e:2e: 4e:bd:ee:a9:dd:c8:fe:f3:61:f0:62:fd:79:11:1f:d0:b5:6a: a2:47:9d:f1:b1:a7:69:ad:57:21:ad:27:d2:54:b4:8d:9a:57: a9:df:23:47:1e:af:aa:98:2c:b4:4e:1c:29:bc:1f:d4:98:4c: 24:47:f9:71:f8:26:c4:e2:33:10:00:f8:d2:98:e3:17:80:f3: d3:75:7f:8b:36:35:08:79:74:f4:01:50:8a:c6:3e:83:3c:df: 87:bd:dd:1c:e9:96:a3:28:d0:03:dd:99:b0:06:66:c1:25:e3: 72:2b:ec:94:e3:86:0c:e0:70:37:27:99:ea:4c:5a:80:b4:e2: 0e:ce:5e:87:92:b9:44:2c:f9:50:bc:77:af:a9:0e:5d:4f:19: a4:26:69:21:27:01:33:fb:30:23:bc:36:5c:ee:3d:b2:cb:f5: 46:90:9f:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCgAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTAzNUExMTAvBgNVBAUTKERDNjIyMDA4QThBMUFENDJCRTJBMjU0OTQzNDkxQUZB QTg0NTQ5QTUwHhcNMjUwNjEyMTk0MTI5WhcNMjUwNjE5MTk0MTI5WjAYMRYwFAYD VQQDEw02ODRiMmQ2OS0yMzg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm6GLiQ5XtWm8Yi+ymJdijjp0QlvxeHgYo7CJo7pwPXWLAZgFw1EPf+RPmGCn bprsKRuZOQ6hFVbvOMlt0QhUQV0MJ3ur1kG6FalynkhD9R+wlkmLKu3WkaNMLncQ LZ/mqyAngSggJ9F6LH5UW7PwYFc9n3jIjgdpTUZx3FfkUZ5qDp3cMkHi5pwlupf7 IBoFK2tuLR17gRNW9Zupp5Xwrw9+62thDCRI6POCHr7VQpzoKg2hPLc8/POGCExB uf5yPGvGCoK1WrxK423LUtRRB/wMpaBGqPcs+cxRMDFSh00hwaKM1p0pfBXdBIQC rO89CCRpnQGzayw9YWsgHaEfPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGWkJZ82 0byMhcaWDQb2EGF5x8ZtMB8GA1UdIwQYMBaAFNxiIAiooa1CviolSUNJGvqoRUml MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDM1QS8zQzYwOUI0NDdD NjYxMUVBODA4OUYzNTFDNEY5QUUwMi8zR0lnQ0tpaHJVSy1LaVZKUTBrYS1xaEZT YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNHSWdDS2loclVLLUtpVkpRMGthLXFoRlNhVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDM1QS8zQzYwOUI0NDdDNjYxMUVBODA4OUYzNTFDNEY5QUUwMi8zR0lnQ0tpaHJV Sy1LaVZKUTBrYS1xaEZTYVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADSdj468fT4+yO3T0Upqz7Im8b/vLq2Eh6IXaQzJS6hGttHf+KaEsE V82luylCCpMkf2LmkH5k5D0qs4mXlxTZt+uHPWDv5QQQlg6VZANPKPe0rsFDNwTB Li5Ove6p3cj+82HwYv15ER/QtWqiR53xsadprVchrSfSVLSNmlep3yNHHq+qmCy0 ThwpvB/UmEwkR/lx+CbE4jMQAPjSmOMXgPPTdX+LNjUIeXT0AVCKxj6DPN+Hvd0c 6ZajKNAD3ZmwBmbBJeNyK+yU44YM4HA3J5nqTFqAtOIOzl6HkrlELPlQvHevqQ5d TxmkJmkhJwEz+zAjvDZc7j2yy/VGkJ+x -----END CERTIFICATE-----Generated at Sat Jun 14 19:34:40 2025 by rpki-client