$ rpki-client -vvf rpki.apnic.net/member_repository/A911AA05/4DC1D926212911F0A66A4972C4F9AE02/3xhzEfoJx3m4sV2UekbU9O3MUFM.mft File: 3xhzEfoJx3m4sV2UekbU9O3MUFM.mft (raw, json) Hash identifier: 5/y4UARXg0vojgtgCOdkLHbXLawfOJgFlQ6KxZUGRV8= Subject key identifier: C0:20:2C:FF:B6:D4:EC:E7:6A:37:74:BB:AD:9F:9D:38:E5:53:2F:7C Authority key identifier: DF:18:73:11:FA:09:C7:79:B8:B1:5D:94:7A:46:D4:F4:ED:CC:50:53 Certificate issuer: /CN=A911AA05/serialNumber=DF187311FA09C779B8B15D947A46D4F4EDCC5053 Certificate serial: 1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3xhzEfoJx3m4sV2UekbU9O3MUFM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AA05/4DC1D926212911F0A66A4972C4F9AE02/3xhzEfoJx3m4sV2UekbU9O3MUFM.mft Manifest number: 19 Signing time: Fri 13 Jun 2025 06:50:12 +0000 Manifest this update: Fri 13 Jun 2025 06:50:11 +0000 Manifest next update: Fri 20 Jun 2025 06:50:11 +0000 Files and hashes: 1: 3xhzEfoJx3m4sV2UekbU9O3MUFM.crl (hash: r2Qx6j/m9VA8HnjGR+dd50dmebWVH7IrW2JVCd7rekY=) 2: F1940290212911F087425013C4F9AE02.roa (hash: MnHNxat0n45sPIepd+2k7Aeq3t/02+1KvIJP8MEpuv8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AA05/4DC1D926212911F0A66A4972C4F9AE02/3xhzEfoJx3m4sV2UekbU9O3MUFM.crl rsync://rpki.apnic.net/member_repository/A911AA05/4DC1D926212911F0A66A4972C4F9AE02/3xhzEfoJx3m4sV2UekbU9O3MUFM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3xhzEfoJx3m4sV2UekbU9O3MUFM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 06:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26 (0x1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AA05, serialNumber=DF187311FA09C779B8B15D947A46D4F4EDCC5053 Validity Not Before: Jun 13 06:50:11 2025 GMT Not After : Jun 20 06:50:11 2025 GMT Subject: CN=684bca24-bb9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:f5:08:fe:de:95:52:eb:a6:51:ed:0a:aa:77: 20:1b:73:d6:e6:a3:4e:09:2d:91:2c:6c:34:f5:aa: 4f:04:9f:e4:72:44:b8:b3:65:88:57:2b:e3:4b:fd: 68:cb:89:74:dd:b6:5f:08:e0:79:ea:a1:b2:26:90: 06:7f:79:ce:b3:e8:29:26:33:db:9b:64:e3:ad:f3: 4f:26:dd:87:3e:4c:20:65:2f:98:c0:d7:b4:73:23: 63:6a:29:e8:80:38:8f:ef:79:c9:3c:02:b6:36:2d: c6:6b:4e:60:99:b5:6d:e2:d7:58:b5:da:9e:04:25: 9e:ef:82:47:77:0a:a0:0f:b1:ec:e1:52:ea:ea:e4: 31:44:ae:78:2b:0f:b0:fe:0a:f3:07:71:79:37:65: c4:35:48:32:ce:4d:fe:e9:49:0f:c0:6f:2f:53:c4: fb:d8:2a:65:08:91:45:f7:45:ff:77:15:f3:43:2e: d2:96:a7:ee:b6:34:36:9c:05:c7:17:03:e6:62:98: 10:56:02:d2:b1:eb:8e:5c:bd:d9:87:10:01:f0:93: d9:28:75:5e:5d:2c:96:ee:f3:92:ce:9d:37:78:cf: e8:2c:74:67:17:8a:ba:a5:36:72:45:35:4a:d2:06: 93:58:5b:41:a7:55:7a:e9:95:ab:37:ea:85:03:a3: fc:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:20:2C:FF:B6:D4:EC:E7:6A:37:74:BB:AD:9F:9D:38:E5:53:2F:7C X509v3 Authority Key Identifier: keyid:DF:18:73:11:FA:09:C7:79:B8:B1:5D:94:7A:46:D4:F4:ED:CC:50:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AA05/4DC1D926212911F0A66A4972C4F9AE02/3xhzEfoJx3m4sV2UekbU9O3MUFM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3xhzEfoJx3m4sV2UekbU9O3MUFM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AA05/4DC1D926212911F0A66A4972C4F9AE02/3xhzEfoJx3m4sV2UekbU9O3MUFM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:53:f4:e5:9e:ea:a1:18:6b:36:83:f2:67:ae:2d:3d:c7:b0: 35:7a:76:0c:5b:bd:c6:c8:86:32:4b:33:c4:cf:a6:de:b7:fd: f9:34:14:41:a2:f0:70:0a:03:3a:9b:d1:4c:e7:ef:8f:7a:b8: 51:50:c8:46:e4:da:36:28:d0:14:43:fa:5b:fd:87:f9:33:94: d3:58:7d:0a:a3:87:04:0b:cd:a3:13:08:8f:52:37:e6:12:bc: 68:bb:54:05:d4:f8:de:7d:4c:a7:a9:79:16:89:78:ab:57:80: 2d:f3:b4:29:97:e0:01:9b:97:cf:64:0d:02:bd:0c:f8:08:79: e8:24:3c:00:d7:e2:be:f3:fd:ec:33:d1:2a:2b:ae:37:44:66: 50:5b:8d:f6:10:17:31:ca:99:d0:45:fa:fa:13:0b:20:db:58: 5b:fb:a3:27:dc:5f:54:a4:89:d0:64:52:25:cd:7f:26:48:a0: a4:f0:a9:cc:13:16:de:89:cd:9d:38:aa:1e:4a:65:28:90:91: 42:91:2d:3d:e0:a7:aa:e0:c3:21:a6:4a:a2:81:7a:0b:ae:5e: d0:27:ca:fe:b6:9c:56:40:d5:60:d1:96:6f:ed:3b:a0:85:28: dc:01:92:7f:2a:b9:2d:10:4e:11:1a:e1:5d:63:9c:e7:c3:2e: 6c:66:0f:7b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx QUEwNTExMC8GA1UEBRMoREYxODczMTFGQTA5Qzc3OUI4QjE1RDk0N0E0NkQ0RjRF RENDNTA1MzAeFw0yNTA2MTMwNjUwMTFaFw0yNTA2MjAwNjUwMTFaMBgxFjAUBgNV BAMTDTY4NGJjYTI0LWJiOWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCp9Qj+3pVS66ZR7QqqdyAbc9bmo04JLZEsbDT1qk8En+RyRLizZYhXK+NL/WjL iXTdtl8I4HnqobImkAZ/ec6z6CkmM9ubZOOt808m3Yc+TCBlL5jA17RzI2NqKeiA OI/veck8ArY2LcZrTmCZtW3i11i12p4EJZ7vgkd3CqAPsezhUurq5DFErngrD7D+ CvMHcXk3ZcQ1SDLOTf7pSQ/Aby9TxPvYKmUIkUX3Rf93FfNDLtKWp+62NDacBccX A+ZimBBWAtKx645cvdmHEAHwk9kodV5dLJbu85LOnTd4z+gsdGcXirqlNnJFNUrS BpNYW0GnVXrplas36oUDo/wJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUwCAs/7bU 7OdqN3S7rZ+dOOVTL3wwHwYDVR0jBBgwFoAU3xhzEfoJx3m4sV2UekbU9O3MUFMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFBQTA1LzREQzFEOTI2MjEy OTExRjBBNjZBNDk3MkM0RjlBRTAyLzN4aHpFZm9KeDNtNHNWMlVla2JVOU8zTVVG TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM3hoekVmb0p4M200c1YyVWVrYlU5TzNNVUZNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFB QTA1LzREQzFEOTI2MjEyOTExRjBBNjZBNDk3MkM0RjlBRTAyLzN4aHpFZm9KeDNt NHNWMlVla2JVOU8zTVVGTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAF5T9OWe6qEYazaD8meuLT3HsDV6dgxbvcbIhjJLM8TPpt63/fk0FEGi 8HAKAzqb0Uzn7496uFFQyEbk2jYo0BRD+lv9h/kzlNNYfQqjhwQLzaMTCI9SN+YS vGi7VAXU+N59TKepeRaJeKtXgC3ztCmX4AGbl89kDQK9DPgIeegkPADX4r7z/ewz 0SorrjdEZlBbjfYQFzHKmdBF+voTCyDbWFv7oyfcX1SkidBkUiXNfyZIoKTwqcwT Ft6JzZ04qh5KZSiQkUKRLT3gp6rgwyGmSqKBeguuXtAnyv62nFZA1WDRlm/tO6CF KNwBkn8quS0QThEa4V1jnOfDLmxmD3s= -----END CERTIFICATE-----Generated at Sat Jun 14 19:29:26 2025 by rpki-client