$ rpki-client -vvf rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.mft File: fT3bIK_-cUyPNUllHB7oD1VgEbg.mft (raw, json) Hash identifier: CyuFPwxiI+DfJ5269p5tl64lkDNuIJXNFe3mGOl7LaY= Subject key identifier: 54:02:8B:84:05:8B:1F:6E:36:A6:BD:40:8C:96:19:AA:26:A1:47:E9 Authority key identifier: 7D:3D:DB:20:AF:FE:71:4C:8F:35:49:65:1C:1E:E8:0F:55:60:11:B8 Certificate issuer: /CN=A91319EA/serialNumber=7D3DDB20AFFE714C8F3549651C1EE80F556011B8 Certificate serial: 02B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fT3bIK_-cUyPNUllHB7oD1VgEbg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.mft Manifest number: 02B1 Signing time: Fri 13 Jun 2025 00:58:37 +0000 Manifest this update: Fri 13 Jun 2025 00:58:36 +0000 Manifest next update: Fri 20 Jun 2025 00:58:36 +0000 Files and hashes: 1: fT3bIK_-cUyPNUllHB7oD1VgEbg.crl (hash: OXBvfmsWRL5rbbJQX63yNIB9p8qSIfHI/jUUJhpWK3Q=) 2: BFD5E8EAF8EB11EC9C39C677C4F9AE02.roa (hash: 81tZME9FAwzO2UIk/WDugs2sSYBMwRpnwSHq/X3xc/Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.crl rsync://rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fT3bIK_-cUyPNUllHB7oD1VgEbg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 00:58:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 692 (0x2b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91319EA, serialNumber=7D3DDB20AFFE714C8F3549651C1EE80F556011B8 Validity Not Before: Jun 13 00:58:36 2025 GMT Not After : Jun 20 00:58:36 2025 GMT Subject: CN=684b77bc-394b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:bd:6d:7c:35:f7:c1:42:1f:d2:2a:99:d1:98: d4:70:ae:b5:5b:83:29:dd:f0:97:96:b1:fa:3e:53: a2:c6:69:9a:c1:e1:b5:43:ea:31:f7:75:ed:76:12: 6e:3b:af:46:5b:02:2a:62:f8:f9:d5:f7:6f:20:d2: b9:0e:2b:a3:50:3a:94:12:b3:ba:59:36:ca:19:0d: 5a:d0:57:11:8d:0d:e0:c0:96:b5:91:b0:6c:0e:cd: ae:4e:27:b4:ef:a9:d2:c1:6a:fa:4e:e8:52:5f:4d: 0f:f3:cf:f5:f5:d6:c4:b3:e7:8c:ae:97:30:07:bf: 8a:05:b2:5e:c4:d4:6d:1f:b6:d3:52:0a:14:1e:fa: 3d:ce:03:3c:87:5d:e9:db:98:39:05:ef:9a:7d:20: 8b:e0:d9:37:de:37:d5:6f:a8:93:b9:01:84:5a:98: de:ff:86:00:0f:a4:c6:ac:e2:c2:64:60:37:07:d5: 6e:dc:67:81:38:a8:cd:8e:ec:d9:fa:d9:43:02:c3: 3e:6f:7f:1e:1f:c0:f9:ef:79:f1:d6:40:b9:8a:d8: 33:18:5a:96:56:b9:73:c4:a2:ea:01:d3:21:ae:aa: e5:9a:18:e7:1b:2d:65:54:79:9c:2c:cc:8a:a8:7d: 32:cb:46:5a:db:81:96:9d:be:77:3a:dc:bf:36:95: 9c:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:02:8B:84:05:8B:1F:6E:36:A6:BD:40:8C:96:19:AA:26:A1:47:E9 X509v3 Authority Key Identifier: keyid:7D:3D:DB:20:AF:FE:71:4C:8F:35:49:65:1C:1E:E8:0F:55:60:11:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fT3bIK_-cUyPNUllHB7oD1VgEbg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:07:2d:b1:63:cc:83:b1:11:00:cf:db:41:9d:bf:a0:30:f4: 14:d4:c3:1e:0a:3a:18:b3:77:e5:c8:b0:49:f8:dc:cc:40:26: 4a:ab:d5:37:18:4f:22:9b:83:0d:64:76:30:34:db:3e:31:b2: 62:bb:d2:cb:6d:ba:3e:c1:98:54:29:c5:d5:95:dc:9d:ce:82: 2f:4b:c8:c4:a1:b4:64:ec:11:d3:7d:fd:2d:93:be:6d:06:7c: 03:d5:fc:a8:4e:09:79:fa:3c:fb:35:0e:22:1f:e8:b7:d6:c0: f6:e4:d3:37:7c:be:94:ab:49:b1:80:40:88:6a:9b:f3:ee:ed: 15:ec:ec:69:96:df:fc:bb:cd:7f:42:a2:93:60:7d:21:48:a8: 69:c8:eb:bc:ca:c9:74:f0:df:5b:7f:2d:e7:e6:6a:48:31:c3: bf:67:2a:d5:58:0d:2b:0a:b6:51:e2:9f:1e:56:42:37:13:20: da:4a:ce:2f:24:11:84:80:99:52:6d:ac:91:b0:8e:b7:3e:97: 8e:6b:8b:62:e5:97:72:8e:44:6e:e2:97:ab:0e:6d:25:50:fe: ef:6d:cf:86:81:fb:4c:87:95:b4:fb:69:db:70:c6:b2:4c:2c: d3:52:1f:3f:6a:54:b6:9f:b1:11:6a:a6:d8:c9:78:7b:a7:f0: 7e:9c:cb:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE5RUExMTAvBgNVBAUTKDdEM0REQjIwQUZGRTcxNEM4RjM1NDk2NTFDMUVFODBG NTU2MDExQjgwHhcNMjUwNjEzMDA1ODM2WhcNMjUwNjIwMDA1ODM2WjAYMRYwFAYD VQQDEw02ODRiNzdiYy0zOTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0b1tfDX3wUIf0iqZ0ZjUcK61W4Mp3fCXlrH6PlOixmmaweG1Q+ox93XtdhJu O69GWwIqYvj51fdvINK5DiujUDqUErO6WTbKGQ1a0FcRjQ3gwJa1kbBsDs2uTie0 76nSwWr6TuhSX00P88/19dbEs+eMrpcwB7+KBbJexNRtH7bTUgoUHvo9zgM8h13p 25g5Be+afSCL4Nk33jfVb6iTuQGEWpje/4YAD6TGrOLCZGA3B9Vu3GeBOKjNjuzZ +tlDAsM+b38eH8D573nx1kC5itgzGFqWVrlzxKLqAdMhrqrlmhjnGy1lVHmcLMyK qH0yy0Za24GWnb53Oty/NpWc8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFQCi4QF ix9uNqa9QIyWGaomoUfpMB8GA1UdIwQYMBaAFH092yCv/nFMjzVJZRwe6A9VYBG4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTlFQS9EMjZDNDEyOEY4 RTgxMUVDOEI1NzcyNzFDNEY5QUUwMi9mVDNiSUtfLWNVeVBOVWxsSEI3b0QxVmdF YmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZUM2JJS18tY1V5UE5VbGxIQjdvRDFWZ0ViZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTlFQS9EMjZDNDEyOEY4RTgxMUVDOEI1NzcyNzFDNEY5QUUwMi9mVDNiSUtfLWNV eVBOVWxsSEI3b0QxVmdFYmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWBy2xY8yDsREAz9tBnb+gMPQU1MMeCjoYs3flyLBJ+NzMQCZKq9U3 GE8im4MNZHYwNNs+MbJiu9LLbbo+wZhUKcXVldydzoIvS8jEobRk7BHTff0tk75t BnwD1fyoTgl5+jz7NQ4iH+i31sD25NM3fL6Uq0mxgECIapvz7u0V7Oxplt/8u81/ QqKTYH0hSKhpyOu8ysl08N9bfy3n5mpIMcO/ZyrVWA0rCrZR4p8eVkI3EyDaSs4v JBGEgJlSbayRsI63PpeOa4ti5ZdyjkRu4perDm0lUP7vbc+GgftMh5W0+2nbcMay TCzTUh8/alS2n7ERaqbYyXh7p/B+nMu4 -----END CERTIFICATE-----Generated at Sat Jun 14 19:39:52 2025 by rpki-client