$ rpki-client -vvf rpki.apnic.net/member_repository/A915D8F3/EA45B3C2E5BA11EE9B607B47C4F9AE02/3oe2Z2l9RvRVBeqhI7r2htsiB4E.mft File: 3oe2Z2l9RvRVBeqhI7r2htsiB4E.mft (raw, json) Hash identifier: Gz5EiNNuWGqTcxGsNVdtsuKmusfrwIKCxRs/acnTe74= Subject key identifier: D4:57:79:7B:27:A2:F1:F6:26:8E:11:D4:51:95:1A:99:6B:DF:B2:5B Authority key identifier: DE:87:B6:67:69:7D:46:F4:55:05:EA:A1:23:BA:F6:86:DB:22:07:81 Certificate issuer: /CN=A915D8F3/serialNumber=DE87B667697D46F45505EAA123BAF686DB220781 Certificate serial: E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oe2Z2l9RvRVBeqhI7r2htsiB4E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D8F3/EA45B3C2E5BA11EE9B607B47C4F9AE02/3oe2Z2l9RvRVBeqhI7r2htsiB4E.mft Manifest number: E5 Signing time: Fri 13 Jun 2025 04:20:53 +0000 Manifest this update: Fri 13 Jun 2025 04:20:53 +0000 Manifest next update: Fri 20 Jun 2025 04:20:53 +0000 Files and hashes: 1: 3oe2Z2l9RvRVBeqhI7r2htsiB4E.crl (hash: NsM83nReGXEIcmZl2UHNS1cs8el581e0u8GtnvIBAjA=) 2: D47D55EEE5BB11EE8B36C249C4F9AE02.roa (hash: 8mrj6WG5h96Mu545OyQl3U5aMKI1r2gwobV+i2Zi3aE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D8F3/EA45B3C2E5BA11EE9B607B47C4F9AE02/3oe2Z2l9RvRVBeqhI7r2htsiB4E.crl rsync://rpki.apnic.net/member_repository/A915D8F3/EA45B3C2E5BA11EE9B607B47C4F9AE02/3oe2Z2l9RvRVBeqhI7r2htsiB4E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oe2Z2l9RvRVBeqhI7r2htsiB4E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 04:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 233 (0xe9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D8F3, serialNumber=DE87B667697D46F45505EAA123BAF686DB220781 Validity Not Before: Jun 13 04:20:53 2025 GMT Not After : Jun 20 04:20:53 2025 GMT Subject: CN=684ba725-28ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:49:c8:61:9a:eb:6b:b2:bb:b4:93:67:8e:5a: e4:e6:c5:85:67:4d:84:91:93:6f:33:43:93:97:50: 27:c4:76:16:f5:98:eb:e9:c9:c9:85:44:4a:14:ec: d0:cf:bc:80:86:c1:15:09:b8:32:62:6f:ae:b3:76: 3e:3f:96:20:0d:89:24:4b:b8:bc:3e:db:eb:31:71: ea:60:c7:41:9b:02:57:ae:4d:ac:2d:19:76:70:e5: f4:f3:f7:6a:91:eb:8a:cc:d3:f9:c3:82:5f:eb:f9: c3:7f:30:2f:60:c1:85:bf:76:7a:39:07:ef:7a:5d: bc:6a:cb:89:7a:ae:f6:de:2c:42:7d:00:87:8f:d2: 83:3c:71:3a:1e:6f:08:ef:cf:79:5a:06:99:80:b1: a0:c9:f9:77:c4:1e:6f:25:2d:75:2b:df:66:15:25: d1:b4:1d:f2:68:dd:8d:be:c4:d5:01:f7:0b:3f:91: 19:a5:fa:ea:e6:1e:e9:0e:fb:9b:9e:04:fe:49:5e: 3e:2c:dc:1b:20:9a:63:48:09:c4:5b:5d:61:f9:59: 47:a5:ef:cf:9a:8a:31:e1:90:6e:eb:f7:ff:5d:39: 4b:c8:42:b8:1c:49:b8:f1:73:d6:9f:b4:e7:cd:3a: e4:3a:31:a8:8e:e8:7e:99:48:3b:bb:30:5e:eb:78: 47:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:57:79:7B:27:A2:F1:F6:26:8E:11:D4:51:95:1A:99:6B:DF:B2:5B X509v3 Authority Key Identifier: keyid:DE:87:B6:67:69:7D:46:F4:55:05:EA:A1:23:BA:F6:86:DB:22:07:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D8F3/EA45B3C2E5BA11EE9B607B47C4F9AE02/3oe2Z2l9RvRVBeqhI7r2htsiB4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oe2Z2l9RvRVBeqhI7r2htsiB4E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D8F3/EA45B3C2E5BA11EE9B607B47C4F9AE02/3oe2Z2l9RvRVBeqhI7r2htsiB4E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:2b:0c:9a:0b:8a:e9:e2:24:ae:4a:48:9b:90:6e:b1:6f:c9: 3f:4e:20:82:a2:08:43:5c:90:40:d4:76:dc:df:38:d7:4c:6d: 80:64:22:10:b3:57:87:eb:7f:de:e0:51:84:1f:3b:aa:6f:ea: 2d:84:ce:2e:a6:82:03:1d:82:fb:40:81:6a:35:ae:ba:bf:33: e6:06:73:50:d8:5b:94:1d:02:2b:1d:3c:cb:78:3a:e9:b2:2d: 39:61:c5:13:5b:c3:6a:cc:dc:ac:95:d2:48:8f:8b:80:b2:12: d9:98:e4:ab:64:3c:c7:d7:ee:88:d1:22:a1:cf:82:52:0d:31: 61:e6:2a:c3:14:68:b3:34:7b:04:46:82:df:4d:07:15:69:c2: 11:7e:7d:03:8c:18:70:b5:3b:c7:94:fb:93:84:75:83:d5:7a: 02:a5:c4:3a:2c:ce:6b:d8:6f:0e:41:8d:00:cb:59:66:af:5e: 98:18:65:55:a7:0c:34:9c:7d:e2:2f:cd:d9:46:6a:e1:6c:f1: ca:c7:03:6e:9c:8d:07:e8:b0:dc:1f:4b:b7:73:b4:ca:30:89: 5f:bc:81:e1:fe:ca:ac:34:b0:e9:d6:ad:2f:0d:20:d8:ba:c2: 70:3a:56:75:a4:da:5e:36:ab:c4:9a:39:91:8d:bc:18:13:1f: f2:54:ad:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQ4RjMxMTAvBgNVBAUTKERFODdCNjY3Njk3RDQ2RjQ1NTA1RUFBMTIzQkFGNjg2 REIyMjA3ODEwHhcNMjUwNjEzMDQyMDUzWhcNMjUwNjIwMDQyMDUzWjAYMRYwFAYD VQQDEw02ODRiYTcyNS0yOGFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzknIYZrra7K7tJNnjlrk5sWFZ02EkZNvM0OTl1AnxHYW9Zjr6cnJhURKFOzQ z7yAhsEVCbgyYm+us3Y+P5YgDYkkS7i8PtvrMXHqYMdBmwJXrk2sLRl2cOX08/dq keuKzNP5w4Jf6/nDfzAvYMGFv3Z6OQfvel28asuJeq723ixCfQCHj9KDPHE6Hm8I 7895WgaZgLGgyfl3xB5vJS11K99mFSXRtB3yaN2NvsTVAfcLP5EZpfrq5h7pDvub ngT+SV4+LNwbIJpjSAnEW11h+VlHpe/Pmoox4ZBu6/f/XTlLyEK4HEm48XPWn7Tn zTrkOjGojuh+mUg7uzBe63hHpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNRXeXsn ovH2Jo4R1FGVGplr37JbMB8GA1UdIwQYMBaAFN6HtmdpfUb0VQXqoSO69obbIgeB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDhGMy9FQTQ1QjNDMkU1 QkExMUVFOUI2MDdCNDdDNEY5QUUwMi8zb2UyWjJsOVJ2UlZCZXFoSTdyMmh0c2lC NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNvZTJaMmw5UnZSVkJlcWhJN3IyaHRzaUI0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RDhGMy9FQTQ1QjNDMkU1QkExMUVFOUI2MDdCNDdDNEY5QUUwMi8zb2UyWjJsOVJ2 UlZCZXFoSTdyMmh0c2lCNEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACKwyaC4rp4iSuSkibkG6xb8k/TiCCoghDXJBA1Hbc3zjXTG2AZCIQ s1eH63/e4FGEHzuqb+othM4upoIDHYL7QIFqNa66vzPmBnNQ2FuUHQIrHTzLeDrp si05YcUTW8NqzNysldJIj4uAshLZmOSrZDzH1+6I0SKhz4JSDTFh5irDFGizNHsE RoLfTQcVacIRfn0DjBhwtTvHlPuThHWD1XoCpcQ6LM5r2G8OQY0Ay1lmr16YGGVV pww0nH3iL83ZRmrhbPHKxwNunI0H6LDcH0u3c7TKMIlfvIHh/sqsNLDp1q0vDSDY usJwOlZ1pNpeNqvEmjmRjbwYEx/yVK1j -----END CERTIFICATE-----Generated at Sat Jun 14 19:30:53 2025 by rpki-client