$ rpki-client -vvf rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.mft File: X3A2SNc_YGlFARjbom-WaC1a5so.mft (raw, json) Hash identifier: TInB3vcfzLT4IDvuproSD5HOJ5gqhvE+UOAb0AUnZVY= Subject key identifier: 6E:42:2A:36:01:37:EB:0D:AE:A3:E6:16:5C:A1:B1:E5:D1:EA:47:80 Authority key identifier: 5F:70:36:48:D7:3F:60:69:45:01:18:DB:A2:6F:96:68:2D:5A:E6:CA Certificate issuer: /CN=A91508BB/serialNumber=5F703648D73F6069450118DBA26F96682D5AE6CA Certificate serial: 348D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X3A2SNc_YGlFARjbom-WaC1a5so.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.mft Manifest number: 348D Signing time: Mon 16 Jun 2025 14:39:43 +0000 Manifest this update: Mon 16 Jun 2025 14:39:42 +0000 Manifest next update: Mon 23 Jun 2025 14:39:42 +0000 Files and hashes: 1: X3A2SNc_YGlFARjbom-WaC1a5so.crl (hash: f5owxS2m8W7FdFGWjunVuORkYB9WxpFLj0LL7F8dAIY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.crl rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X3A2SNc_YGlFARjbom-WaC1a5so.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 14:39:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13453 (0x348d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91508BB, serialNumber=5F703648D73F6069450118DBA26F96682D5AE6CA Validity Not Before: Jun 16 14:39:42 2025 GMT Not After : Jun 23 14:39:42 2025 GMT Subject: CN=68502cae-b543 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:75:7d:3b:aa:0b:98:78:3f:39:e8:e7:2e:07: 7c:88:f5:b2:22:de:4c:17:fd:80:b9:20:85:ce:08: a2:53:c6:65:eb:3e:d3:d8:64:a3:ba:37:4b:23:14: 73:62:b3:51:88:e3:6e:98:87:92:cb:ec:48:89:e7: 1c:35:6d:87:84:b4:4d:bd:3c:54:2e:eb:4a:f1:f2: 91:4d:7a:20:01:24:83:3e:27:35:70:b6:2d:7b:27: 3b:60:95:06:aa:0f:7a:8a:e3:20:80:04:e7:94:d7: 49:59:a5:ce:1a:c0:95:93:7c:39:8e:42:ff:a4:5f: a2:5a:a7:6b:33:e2:25:e0:52:ba:2a:b1:ef:27:f0: 37:4e:e8:d7:0c:94:d5:57:99:df:3a:9a:57:32:2b: df:82:50:40:b2:23:cf:58:09:46:e3:ef:f6:14:0b: ef:97:fa:75:39:1a:8f:17:d5:04:a7:ac:21:00:24: 88:a9:c6:05:51:19:f9:f8:bc:0c:07:a8:a8:cf:d1: 00:59:24:9f:a2:6b:01:9f:d9:84:f4:41:b7:6c:7a: 0f:9c:98:c7:d2:da:8c:2a:c6:15:41:f4:2f:a2:a5: b0:43:4c:d1:7f:99:ac:60:d5:21:1e:72:4e:a1:d8: 4d:a3:c1:b1:e4:db:67:dd:31:4c:73:3d:11:b9:87: 6f:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:42:2A:36:01:37:EB:0D:AE:A3:E6:16:5C:A1:B1:E5:D1:EA:47:80 X509v3 Authority Key Identifier: keyid:5F:70:36:48:D7:3F:60:69:45:01:18:DB:A2:6F:96:68:2D:5A:E6:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X3A2SNc_YGlFARjbom-WaC1a5so.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:79:14:f0:6f:38:7f:22:2d:0a:6b:44:c9:2f:96:c2:3b:8c: 7d:b2:bf:e6:3e:2c:de:43:d9:55:15:08:1b:a5:6e:f7:b0:35: f6:92:e5:56:25:06:40:81:28:1b:2d:1a:8e:93:37:83:a3:cd: e0:3f:8b:57:93:5f:62:1d:37:56:1c:68:62:48:2f:25:d9:2b: 83:89:18:e5:a2:a3:94:3e:bc:94:5b:3c:c6:32:72:6b:7e:6e: 5f:ad:cd:5e:6f:d9:55:a9:41:47:ce:a7:14:2b:2f:c9:64:36: 72:6f:7b:2d:3a:7e:e8:76:18:b7:0c:1f:e6:b1:2e:72:ed:25: 5b:f1:d1:41:46:ae:29:ad:9c:a4:3a:76:f2:a6:a4:26:17:c6: f4:72:78:05:ef:64:79:c9:5c:04:96:28:4a:48:ff:05:6d:87: 28:eb:d6:18:d9:27:06:50:08:34:b7:9c:8c:4e:0c:7a:d7:2f: 43:88:33:8a:5e:73:51:73:a2:71:75:b3:3a:f6:b9:06:5c:20: 61:1a:bb:00:04:24:21:13:14:12:38:1a:14:af:84:b2:ac:b8: ef:4e:7a:31:fc:78:46:ff:8f:be:60:6c:34:f6:78:54:29:2f: 25:48:b9:f6:0f:5f:05:6a:6c:ad:89:a0:25:60:97:5f:bf:e7: fe:de:48:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTA4QkIxMTAvBgNVBAUTKDVGNzAzNjQ4RDczRjYwNjk0NTAxMThEQkEyNkY5NjY4 MkQ1QUU2Q0EwHhcNMjUwNjE2MTQzOTQyWhcNMjUwNjIzMTQzOTQyWjAYMRYwFAYD VQQDEw02ODUwMmNhZS1iNTQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtXV9O6oLmHg/OejnLgd8iPWyIt5MF/2AuSCFzgiiU8Zl6z7T2GSjujdLIxRz YrNRiONumIeSy+xIieccNW2HhLRNvTxULutK8fKRTXogASSDPic1cLYteyc7YJUG qg96iuMggATnlNdJWaXOGsCVk3w5jkL/pF+iWqdrM+Il4FK6KrHvJ/A3TujXDJTV V5nfOppXMivfglBAsiPPWAlG4+/2FAvvl/p1ORqPF9UEp6whACSIqcYFURn5+LwM B6ioz9EAWSSfomsBn9mE9EG3bHoPnJjH0tqMKsYVQfQvoqWwQ0zRf5msYNUhHnJO odhNo8Gx5Ntn3TFMcz0RuYdvnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG5CKjYB N+sNrqPmFlyhseXR6keAMB8GA1UdIwQYMBaAFF9wNkjXP2BpRQEY26JvlmgtWubK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDhCQi81QTBEOTU4ODFE OEQxMUUyQTlENjA3RUIwOEIwMkNEMi9YM0EyU05jX1lHbEZBUmpib20tV2FDMWE1 c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gzQTJTTmNfWUdsRkFSamJvbS1XYUMxYTVzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDhCQi81QTBEOTU4ODFEOEQxMUUyQTlENjA3RUIwOEIwMkNEMi9YM0EyU05jX1lH bEZBUmpib20tV2FDMWE1c28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACeRTwbzh/Ii0Ka0TJL5bCO4x9sr/mPizeQ9lVFQgbpW73sDX2kuVW JQZAgSgbLRqOkzeDo83gP4tXk19iHTdWHGhiSC8l2SuDiRjloqOUPryUWzzGMnJr fm5frc1eb9lVqUFHzqcUKy/JZDZyb3stOn7odhi3DB/msS5y7SVb8dFBRq4prZyk OnbypqQmF8b0cngF72R5yVwElihKSP8FbYco69YY2ScGUAg0t5yMTgx61y9DiDOK XnNRc6JxdbM69rkGXCBhGrsABCQhExQSOBoUr4SyrLjvTnox/HhG/4++YGw09nhU KS8lSLn2D18FamytiaAlYJdfv+f+3ki7 -----END CERTIFICATE-----Generated at Mon Jun 16 22:14:05 2025 by rpki-client