$ rpki-client -vvf rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft File: 3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft (raw, json) Hash identifier: 3OqFpppEOqnyjYRfKTIA16qzHzefhJOE+ZfhPg2SkFw= Subject key identifier: 81:04:A3:57:45:0C:40:AD:9C:0A:42:95:2C:FD:F2:9E:11:E8:10:4F Authority key identifier: DD:F8:84:91:1A:D3:F2:8C:C9:D9:6A:8C:24:A9:39:A6:5F:8B:25:76 Certificate issuer: /CN=A912BAAD/serialNumber=DDF884911AD3F28CC9D96A8C24A939A65F8B2576 Certificate serial: 0C03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft Manifest number: 0BF4 Signing time: Thu 12 Jun 2025 18:36:59 +0000 Manifest this update: Thu 12 Jun 2025 18:36:58 +0000 Manifest next update: Thu 19 Jun 2025 18:36:58 +0000 Files and hashes: 1: 3fiEkRrT8ozJ2WqMJKk5pl-LJXY.crl (hash: wnJ4x/ds+w28mNxeHiBfqI1S18wEjaP33hXpReZCxb8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.crl rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 18:36:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3075 (0xc03) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BAAD, serialNumber=DDF884911AD3F28CC9D96A8C24A939A65F8B2576 Validity Not Before: Jun 12 18:36:58 2025 GMT Not After : Jun 19 18:36:58 2025 GMT Subject: CN=684b1e4a-ea34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:f8:4d:9f:b9:7c:3e:82:99:41:7e:39:4b:3f: 71:7e:ba:ef:8b:65:47:f9:45:61:70:dd:f6:a1:20: 32:32:c3:74:6a:89:35:a1:57:90:07:cb:94:4a:fe: 10:d7:7c:98:20:c8:53:3f:ed:d4:7e:72:f9:46:44: ab:77:c8:37:f0:ac:e9:27:70:43:75:64:7b:6e:09: 41:04:3a:7f:6f:d2:50:2d:6c:98:bb:ba:6c:83:7a: a8:69:d8:40:fd:95:65:a1:ac:0f:be:5d:60:97:67: 44:3f:b5:b8:90:88:ec:1c:ec:54:ac:40:85:4b:87: 44:89:80:1a:77:ed:13:0c:1d:ae:80:b0:4d:f1:65: 75:4d:9f:27:d1:61:42:50:51:34:fd:7a:7e:af:f3: 3e:3d:ba:da:e1:00:ab:86:59:2f:c0:91:a9:60:38: 3a:44:c6:2b:41:45:77:b5:d7:99:b5:ee:3a:b1:1f: 07:7e:38:16:7a:ad:bd:f3:1d:47:85:be:e9:02:c9: bf:4e:48:32:1f:68:9a:c1:a0:5c:f0:72:0b:b2:91: 40:28:2e:53:04:ca:cf:a1:9d:7e:2c:7d:38:ac:e2: 3e:73:20:51:ea:d3:43:17:bd:80:ec:16:09:23:b1: fd:13:e7:b5:0c:8f:1a:d0:06:6e:ec:0a:70:14:ce: e5:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:04:A3:57:45:0C:40:AD:9C:0A:42:95:2C:FD:F2:9E:11:E8:10:4F X509v3 Authority Key Identifier: keyid:DD:F8:84:91:1A:D3:F2:8C:C9:D9:6A:8C:24:A9:39:A6:5F:8B:25:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:ea:a3:cd:bc:0a:03:7c:cb:a0:16:b4:93:5b:b6:52:69:43: b4:f1:b1:93:42:57:37:cc:0b:e6:86:1f:fa:1a:44:25:75:6c: fe:ae:76:65:cb:4f:a9:78:d7:bb:17:08:db:2b:3f:91:bf:c8: ea:10:50:36:b7:d9:e4:f4:9e:27:34:98:22:0a:13:4c:fe:0c: c0:57:3e:b3:62:29:3a:c1:fc:14:d3:69:83:44:a9:79:20:8f: ae:77:14:54:0a:1a:c2:3c:cf:13:ba:ad:2d:4d:33:4e:e5:33: 35:74:7e:80:00:ab:ff:be:bd:74:52:da:ff:84:54:94:aa:5c: 07:30:fc:bd:d0:c6:76:dd:d2:3a:07:3b:dc:fb:25:44:e3:4a: 2c:01:ce:c6:a6:a6:12:00:bb:91:b4:11:22:75:ff:f2:99:97: 75:91:33:c8:77:e3:51:24:7b:0a:17:b5:97:d8:cf:a3:4e:0b: 62:aa:c8:0f:61:df:52:a2:0c:5b:80:98:8f:0d:4c:4a:71:3a: 77:c8:f7:e4:f8:94:90:21:75:6f:b9:5b:98:64:31:8d:48:05: e6:0a:42:e9:40:ab:6e:fc:4a:b8:28:c7:8a:47:46:ae:2a:9d: 42:a1:2e:88:79:f6:71:e1:fa:9d:ef:3e:b9:d1:be:46:07:1b: 76:27:0d:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDAMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJBQUQxMTAvBgNVBAUTKERERjg4NDkxMUFEM0YyOENDOUQ5NkE4QzI0QTkzOUE2 NUY4QjI1NzYwHhcNMjUwNjEyMTgzNjU4WhcNMjUwNjE5MTgzNjU4WjAYMRYwFAYD VQQDEw02ODRiMWU0YS1lYTM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx/hNn7l8PoKZQX45Sz9xfrrvi2VH+UVhcN32oSAyMsN0aok1oVeQB8uUSv4Q 13yYIMhTP+3UfnL5RkSrd8g38KzpJ3BDdWR7bglBBDp/b9JQLWyYu7psg3qoadhA /ZVloawPvl1gl2dEP7W4kIjsHOxUrECFS4dEiYAad+0TDB2ugLBN8WV1TZ8n0WFC UFE0/Xp+r/M+Pbra4QCrhlkvwJGpYDg6RMYrQUV3tdeZte46sR8HfjgWeq298x1H hb7pAsm/TkgyH2iawaBc8HILspFAKC5TBMrPoZ1+LH04rOI+cyBR6tNDF72A7BYJ I7H9E+e1DI8a0AZu7ApwFM7lbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIEEo1dF DECtnApClSz98p4R6BBPMB8GA1UdIwQYMBaAFN34hJEa0/KMydlqjCSpOaZfiyV2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkFBRC81MjFBRERDODE4 NDgxMUVBOTA3ODU2MkJDNEY5QUUwMi8zZmlFa1JyVDhvekoyV3FNSktrNXBsLUxK WFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNmaUVrUnJUOG96SjJXcU1KS2s1cGwtTEpYWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkFBRC81MjFBRERDODE4NDgxMUVBOTA3ODU2MkJDNEY5QUUwMi8zZmlFa1JyVDhv ekoyV3FNSktrNXBsLUxKWFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAz6qPNvAoDfMugFrSTW7ZSaUO08bGTQlc3zAvmhh/6GkQldWz+rnZl y0+peNe7FwjbKz+Rv8jqEFA2t9nk9J4nNJgiChNM/gzAVz6zYik6wfwU02mDRKl5 II+udxRUChrCPM8Tuq0tTTNO5TM1dH6AAKv/vr10Utr/hFSUqlwHMPy90MZ23dI6 Bzvc+yVE40osAc7GpqYSALuRtBEidf/ymZd1kTPId+NRJHsKF7WX2M+jTgtiqsgP Yd9SogxbgJiPDUxKcTp3yPfk+JSQIXVvuVuYZDGNSAXmCkLpQKtu/Eq4KMeKR0au Kp1CoS6IefZx4fqd7z650b5GBxt2Jw3Q -----END CERTIFICATE-----Generated at Sat Jun 14 19:08:36 2025 by rpki-client