$ rpki-client -vvf rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft File: 3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft (raw, json) Hash identifier: 2hFzUgOJG/BveEVlBugHwh+b3UcA3ybVcVi8MJcIdUs= Subject key identifier: 77:DF:16:F4:BE:D0:A8:95:A8:40:2F:15:3F:BD:E7:FB:BB:25:9D:EC Authority key identifier: DF:25:34:84:DC:E5:2C:41:37:CB:D1:C8:ED:44:D9:CB:25:57:F4:3F Certificate issuer: /CN=A9158568/serialNumber=DF253484DCE52C4137CBD1C8ED44D9CB2557F43F Certificate serial: 0C0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yU0hNzlLEE3y9HI7UTZyyVX9D8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft Manifest number: 0BF2 Signing time: Thu 12 Jun 2025 18:37:11 +0000 Manifest this update: Thu 12 Jun 2025 18:37:11 +0000 Manifest next update: Thu 19 Jun 2025 18:37:11 +0000 Files and hashes: 1: 3yU0hNzlLEE3y9HI7UTZyyVX9D8.crl (hash: +AfCEkbhkgvSoeym1FhW8IzVkXzdD+n/scrfpkvZhb0=) 2: 3A5A84F8CB7111EBA9EEF440C4F9AE02.roa (hash: LcxIbKxK3jutvAgu3ThkdTt7YT68VEQAWEq5z0WaOxY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.crl rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yU0hNzlLEE3y9HI7UTZyyVX9D8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 18:37:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3084 (0xc0c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158568, serialNumber=DF253484DCE52C4137CBD1C8ED44D9CB2557F43F Validity Not Before: Jun 12 18:37:11 2025 GMT Not After : Jun 19 18:37:11 2025 GMT Subject: CN=684b1e57-5179 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:76:1e:47:d4:8d:13:9e:65:c3:d7:8f:cf:c9: 31:81:31:e4:4d:12:17:e0:13:51:b2:fc:fe:91:03: de:e8:b8:37:ad:29:45:bc:de:79:6e:e7:cb:76:e1: fd:b1:55:b4:07:32:e2:53:e0:97:15:ad:b5:c7:7b: 53:b0:3e:91:85:3c:1f:db:14:6e:9f:26:43:3c:51: eb:6e:00:0d:1f:81:da:7f:34:f4:2e:52:06:bf:25: 4b:b3:bd:60:2d:ee:da:d2:cb:6c:5c:b4:94:0b:e8: d3:65:06:6a:93:35:6a:a9:87:53:6a:a2:d9:10:59: bd:2e:9d:27:91:87:24:ad:21:0c:59:5a:b1:86:9f: 8a:bb:fb:78:63:50:f1:3e:4f:cf:76:df:ed:e7:b8: 40:f2:22:90:d0:a7:1c:e4:92:05:f4:79:7b:73:b1: 42:9f:6b:45:5e:13:1a:59:4f:38:66:85:fd:28:58: 1b:a5:d1:0b:c1:75:d7:2e:e7:11:e3:fa:85:c0:9f: e7:23:a5:9a:9f:46:95:37:11:bc:21:28:68:31:57: 32:f5:12:b8:af:6c:1e:d7:49:4b:97:ee:8d:c0:b3: d2:a6:74:c9:e5:95:79:6e:4f:a1:41:5d:1b:3b:b0: 33:7d:b7:17:41:b0:a0:31:40:5d:59:1b:7d:56:c9: f7:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:DF:16:F4:BE:D0:A8:95:A8:40:2F:15:3F:BD:E7:FB:BB:25:9D:EC X509v3 Authority Key Identifier: keyid:DF:25:34:84:DC:E5:2C:41:37:CB:D1:C8:ED:44:D9:CB:25:57:F4:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yU0hNzlLEE3y9HI7UTZyyVX9D8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:e6:74:51:43:e8:0b:e7:2c:e2:a9:0b:1d:ae:79:72:8f:78: 96:c5:9a:bb:b4:05:87:14:6e:2c:ae:e5:3b:3b:bd:31:02:f9: c7:de:ea:e9:fb:34:36:38:15:91:1c:ac:5e:bb:3b:e8:9a:3b: b5:58:3b:cf:08:33:2a:ef:d5:04:fd:cb:f7:3f:6e:72:56:c5: f5:a8:83:83:af:81:8d:96:37:01:ce:a7:a0:20:73:58:8c:60: 50:28:b9:7c:07:c1:03:d3:17:c5:79:e7:f3:c5:bf:72:51:69: a0:63:0a:f7:b7:06:84:f1:87:a7:be:12:13:15:b9:e0:37:d8: 8a:7e:1f:0a:20:1c:0e:b6:25:94:53:da:7a:fa:57:6d:23:1a: 04:b0:2b:1b:47:ba:75:28:5a:a0:ee:ec:ac:a9:c9:28:40:92: 1e:02:66:42:a2:74:73:3d:7b:82:ad:cf:fd:9d:ba:40:68:95: 7f:70:0e:50:45:b5:8e:2d:6c:91:af:6a:5e:8f:e7:23:f8:b5: 37:5a:d7:05:7c:13:e8:46:83:a6:8a:d0:39:81:60:f8:c7:5e: c9:3e:75:7d:a9:28:77:d3:61:61:2a:83:44:53:cb:2b:f1:a5: 46:e9:83:f3:51:2a:6a:55:05:b8:02:4a:3b:90:5e:df:42:c3: b0:9c:7a:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDAwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg1NjgxMTAvBgNVBAUTKERGMjUzNDg0RENFNTJDNDEzN0NCRDFDOEVENDREOUNC MjU1N0Y0M0YwHhcNMjUwNjEyMTgzNzExWhcNMjUwNjE5MTgzNzExWjAYMRYwFAYD VQQDEw02ODRiMWU1Ny01MTc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA63YeR9SNE55lw9ePz8kxgTHkTRIX4BNRsvz+kQPe6Lg3rSlFvN55bufLduH9 sVW0BzLiU+CXFa21x3tTsD6RhTwf2xRunyZDPFHrbgANH4HafzT0LlIGvyVLs71g Le7a0stsXLSUC+jTZQZqkzVqqYdTaqLZEFm9Lp0nkYckrSEMWVqxhp+Ku/t4Y1Dx Pk/Pdt/t57hA8iKQ0Kcc5JIF9Hl7c7FCn2tFXhMaWU84ZoX9KFgbpdELwXXXLucR 4/qFwJ/nI6Wan0aVNxG8IShoMVcy9RK4r2we10lLl+6NwLPSpnTJ5ZV5bk+hQV0b O7AzfbcXQbCgMUBdWRt9Vsn36wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHffFvS+ 0KiVqEAvFT+95/u7JZ3sMB8GA1UdIwQYMBaAFN8lNITc5SxBN8vRyO1E2cslV/Q/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODU2OC9EMzEzMDY3NjE4 NTcxMUVBOTg2MzQxNUVDNEY5QUUwMi8zeVUwaE56bExFRTN5OUhJN1VUWnl5Vlg5 RDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzN5VTBoTnpsTEVFM3k5SEk3VVRaeXlWWDlEOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODU2OC9EMzEzMDY3NjE4NTcxMUVBOTg2MzQxNUVDNEY5QUUwMi8zeVUwaE56bExF RTN5OUhJN1VUWnl5Vlg5RDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCR5nRRQ+gL5yziqQsdrnlyj3iWxZq7tAWHFG4sruU7O70xAvnH3urp +zQ2OBWRHKxeuzvomju1WDvPCDMq79UE/cv3P25yVsX1qIODr4GNljcBzqegIHNY jGBQKLl8B8ED0xfFeefzxb9yUWmgYwr3twaE8YenvhITFbngN9iKfh8KIBwOtiWU U9p6+ldtIxoEsCsbR7p1KFqg7uysqckoQJIeAmZConRzPXuCrc/9nbpAaJV/cA5Q RbWOLWyRr2pej+cj+LU3WtcFfBPoRoOmitA5gWD4x17JPnV9qSh302FhKoNEU8sr 8aVG6YPzUSpqVQW4Ako7kF7fQsOwnHp9 -----END CERTIFICATE-----Generated at Sat Jun 14 19:38:00 2025 by rpki-client