$ rpki-client -vvf rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/3AMsXdBC7T6N4qcQ-yaBipVzQmY.mft File: 3AMsXdBC7T6N4qcQ-yaBipVzQmY.mft (raw, json) Hash identifier: oAdPcGQ1wcyvxeqGLwvr8AKLwW+xJKbsto/i35MNrjc= Subject key identifier: 1F:29:97:6E:7B:3A:02:49:B4:31:88:03:C8:97:41:50:1B:31:ED:60 Authority key identifier: DC:03:2C:5D:D0:42:ED:3E:8D:E2:A7:10:FB:26:81:8A:95:73:42:66 Certificate issuer: /CN=A911C8B7/serialNumber=DC032C5DD042ED3E8DE2A710FB26818A95734266 Certificate serial: 0BFD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3AMsXdBC7T6N4qcQ-yaBipVzQmY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/3AMsXdBC7T6N4qcQ-yaBipVzQmY.mft Manifest number: 0BF1 Signing time: Thu 12 Jun 2025 18:36:10 +0000 Manifest this update: Thu 12 Jun 2025 18:36:10 +0000 Manifest next update: Thu 19 Jun 2025 18:36:10 +0000 Files and hashes: 1: 3AMsXdBC7T6N4qcQ-yaBipVzQmY.crl (hash: eatSC7t7AQPTJNsebLTB6BBZvegxsHf7xKWbKSyIj7s=) 2: F66D3E4C175911EA9D8EF44FC4F9AE02.roa (hash: QTmQ+b0TWigH3ktAvPS5L4JGC6TmpCstJJc/am/VnB0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/3AMsXdBC7T6N4qcQ-yaBipVzQmY.crl rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/3AMsXdBC7T6N4qcQ-yaBipVzQmY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3AMsXdBC7T6N4qcQ-yaBipVzQmY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 18:36:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3069 (0xbfd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C8B7, serialNumber=DC032C5DD042ED3E8DE2A710FB26818A95734266 Validity Not Before: Jun 12 18:36:10 2025 GMT Not After : Jun 19 18:36:10 2025 GMT Subject: CN=684b1e1a-eef6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:63:bd:4d:f9:b6:bf:78:59:7f:8e:83:a8:0e: ce:a7:da:25:63:19:7e:35:7f:1d:04:21:af:9b:4c: c4:33:0e:f9:f6:a8:a2:95:58:0a:24:b3:a8:41:c9: 51:0a:82:7e:de:fb:6b:8c:a9:f2:0f:f2:74:0c:95: 5b:8c:ff:d0:e3:34:c7:ba:fe:e3:19:fd:9e:3d:1a: fb:cd:ca:fc:3b:d5:46:de:b5:8d:90:56:af:dd:04: 05:7f:10:5f:fd:d5:3d:26:23:57:83:76:97:9c:fe: 8d:dd:81:88:a4:17:6f:50:8b:02:bd:36:0b:78:6f: b3:7d:de:b2:a1:f3:62:dd:d2:d3:72:ca:79:99:b9: e2:b3:28:b6:7b:29:03:56:eb:73:50:ea:30:d5:91: 88:8a:05:2a:b6:6a:ca:34:7d:72:d9:d5:4f:e6:a3: 77:da:c5:44:3a:7e:57:73:17:ee:e5:ad:27:b1:5c: c9:55:3b:f3:24:92:20:71:c6:ed:81:97:6c:5f:95: 86:9f:06:8e:e6:36:d5:f5:f4:ae:cb:6b:0a:cb:d5: bf:25:eb:5a:6d:4c:fe:eb:38:69:4f:fc:ff:7b:f4: ae:7f:83:02:9d:da:2b:31:bb:4e:f1:86:30:70:2e: 82:af:c7:76:c1:94:81:71:06:48:f7:84:a5:51:d2: 0b:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:29:97:6E:7B:3A:02:49:B4:31:88:03:C8:97:41:50:1B:31:ED:60 X509v3 Authority Key Identifier: keyid:DC:03:2C:5D:D0:42:ED:3E:8D:E2:A7:10:FB:26:81:8A:95:73:42:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/3AMsXdBC7T6N4qcQ-yaBipVzQmY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3AMsXdBC7T6N4qcQ-yaBipVzQmY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/3AMsXdBC7T6N4qcQ-yaBipVzQmY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:40:b0:ac:17:83:db:27:13:2d:4a:43:3c:e6:99:78:e5:e4: 04:29:f6:48:c4:36:84:a0:cf:ec:56:4b:5d:d8:43:5e:74:1d: 88:4f:a7:72:bb:f0:db:7a:e6:6c:88:57:12:fa:18:21:5d:0c: cb:4c:6d:cb:13:75:e9:02:74:5f:2d:c5:f4:fe:63:9c:fb:25: f0:62:c9:1c:e4:ed:0a:28:3a:f8:66:45:3a:e2:d1:ca:16:ee: 18:4b:3a:73:a0:2f:32:bf:22:f3:53:4a:df:01:22:d6:fe:9b: 0d:dc:78:c2:fd:c3:ea:3e:20:a5:eb:37:d2:bc:ae:82:42:cb: 92:12:8b:f5:5f:4a:6d:01:d5:04:e6:7b:50:a8:c0:25:fb:96: 29:a8:cc:33:4e:08:53:81:28:ad:a1:d8:85:ac:24:ec:53:43: 8f:ac:23:d7:de:ab:e4:19:b7:55:68:76:82:13:92:22:db:ba: 28:6a:c2:66:12:22:c9:7b:7c:92:38:11:88:3b:6c:db:0c:e5: 5e:2f:5d:f0:9c:e6:aa:e6:73:2a:42:1c:17:18:a7:9d:5e:9b: c2:69:5b:e3:df:96:1d:b9:79:92:aa:99:99:a2:1e:da:f5:5b: 83:ca:d7:7c:c5:ce:47:9f:70:c3:13:36:46:43:bb:15:96:59: 1b:fe:2f:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC/0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM4QjcxMTAvBgNVBAUTKERDMDMyQzVERDA0MkVEM0U4REUyQTcxMEZCMjY4MThB OTU3MzQyNjYwHhcNMjUwNjEyMTgzNjEwWhcNMjUwNjE5MTgzNjEwWjAYMRYwFAYD VQQDEw02ODRiMWUxYS1lZWY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyWO9Tfm2v3hZf46DqA7Op9olYxl+NX8dBCGvm0zEMw759qiilVgKJLOoQclR CoJ+3vtrjKnyD/J0DJVbjP/Q4zTHuv7jGf2ePRr7zcr8O9VG3rWNkFav3QQFfxBf /dU9JiNXg3aXnP6N3YGIpBdvUIsCvTYLeG+zfd6yofNi3dLTcsp5mbnisyi2eykD VutzUOow1ZGIigUqtmrKNH1y2dVP5qN32sVEOn5Xcxfu5a0nsVzJVTvzJJIgccbt gZdsX5WGnwaO5jbV9fSuy2sKy9W/JetabUz+6zhpT/z/e/Suf4MCndorMbtO8YYw cC6Cr8d2wZSBcQZI94SlUdILnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB8pl257 OgJJtDGIA8iXQVAbMe1gMB8GA1UdIwQYMBaAFNwDLF3QQu0+jeKnEPsmgYqVc0Jm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzhCNy82NjlCNDU1MjE3 NTkxMUVBOEI0QTgwNEZDNEY5QUUwMi8zQU1zWGRCQzdUNk40cWNRLXlhQmlwVnpR bVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNBTXNYZEJDN1Q2TjRxY1EteWFCaXBWelFtWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzhCNy82NjlCNDU1MjE3NTkxMUVBOEI0QTgwNEZDNEY5QUUwMi8zQU1zWGRCQzdU Nk40cWNRLXlhQmlwVnpRbVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClQLCsF4PbJxMtSkM85pl45eQEKfZIxDaEoM/sVktd2ENedB2IT6dy u/DbeuZsiFcS+hghXQzLTG3LE3XpAnRfLcX0/mOc+yXwYskc5O0KKDr4ZkU64tHK Fu4YSzpzoC8yvyLzU0rfASLW/psN3HjC/cPqPiCl6zfSvK6CQsuSEov1X0ptAdUE 5ntQqMAl+5YpqMwzTghTgSitodiFrCTsU0OPrCPX3qvkGbdVaHaCE5Ii27ooasJm EiLJe3ySOBGIO2zbDOVeL13wnOaq5nMqQhwXGKedXpvCaVvj35YduXmSqpmZoh7a 9VuDytd8xc5Hn3DDEzZGQ7sVllkb/i8+ -----END CERTIFICATE-----Generated at Sat Jun 14 19:38:41 2025 by rpki-client