$ rpki-client -vvf rpki.apnic.net/member_repository/A915FD1D/8ADE33FC412E11EB9A974C16C4F9AE02/P3MTY_5HQEYaWciPp2e9ijbsDfY.mft File: P3MTY_5HQEYaWciPp2e9ijbsDfY.mft (raw, json) Hash identifier: VCcQqbXo8USUJPQmm7Vx4xumaoGZc3ItgBPbXAHKWFY= Subject key identifier: B5:4F:65:5F:DA:E0:E8:BE:E0:A3:68:8D:01:ED:89:15:D4:5B:13:D3 Authority key identifier: 3F:73:13:63:FE:47:40:46:1A:59:C8:8F:A7:67:BD:8A:36:EC:0D:F6 Certificate issuer: /CN=A915FD1D/serialNumber=3F731363FE4740461A59C88FA767BD8A36EC0DF6 Certificate serial: 071F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P3MTY_5HQEYaWciPp2e9ijbsDfY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FD1D/8ADE33FC412E11EB9A974C16C4F9AE02/P3MTY_5HQEYaWciPp2e9ijbsDfY.mft Manifest number: 0716 Signing time: Sat 14 Jun 2025 21:38:14 +0000 Manifest this update: Sat 14 Jun 2025 21:38:13 +0000 Manifest next update: Sat 21 Jun 2025 21:38:13 +0000 Files and hashes: 1: P3MTY_5HQEYaWciPp2e9ijbsDfY.crl (hash: l2Nw0+VJ/aIV2nB8VRDY802/dcdXdY8DNeoCm4awos8=) 2: 7D3B257298C411EC97E3503CC4F9AE02.roa (hash: 6grT2T2iSHeWzKw66g5XN9FJCWiwh1LX3u2dZ5E6lG0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FD1D/8ADE33FC412E11EB9A974C16C4F9AE02/P3MTY_5HQEYaWciPp2e9ijbsDfY.crl rsync://rpki.apnic.net/member_repository/A915FD1D/8ADE33FC412E11EB9A974C16C4F9AE02/P3MTY_5HQEYaWciPp2e9ijbsDfY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P3MTY_5HQEYaWciPp2e9ijbsDfY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 21:38:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1823 (0x71f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FD1D, serialNumber=3F731363FE4740461A59C88FA767BD8A36EC0DF6 Validity Not Before: Jun 14 21:38:13 2025 GMT Not After : Jun 21 21:38:13 2025 GMT Subject: CN=684debc6-82a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:52:ec:d9:a8:6c:33:0b:36:72:2f:5d:bd:dc: e9:c9:3e:a6:19:03:2b:1d:82:c5:d1:5e:08:f1:3b: 99:ca:b6:28:90:5e:5e:28:f7:51:77:83:a3:5b:28: 54:17:e6:bc:e0:c3:96:f1:06:d2:4b:3f:79:5f:fd: a6:f5:ba:b6:42:5e:ce:43:8f:f8:c0:bb:b8:1a:61: 1e:eb:3c:54:89:aa:86:aa:d0:0f:45:3a:c9:3e:74: 41:e3:7c:29:62:9a:17:c1:7d:ae:86:8c:39:59:b4: db:2f:ac:a0:41:86:0a:ed:15:1d:a8:b9:8c:57:a2: f5:d6:57:f8:df:41:17:64:3e:45:52:be:40:00:74: 40:94:9e:0e:be:5b:f8:3c:68:f1:7d:2e:cd:d5:20: 3b:12:5f:37:81:6e:a3:56:74:1e:e8:ac:c3:6a:04: ef:c7:18:f7:62:ac:35:6e:ab:c7:d0:e0:72:6a:1c: 9c:cd:99:9c:d0:6e:7f:30:b1:1a:3c:a3:59:08:6c: 79:72:db:d5:1c:34:9e:cf:1f:62:7e:e8:be:81:6d: 81:10:f5:d1:5d:46:26:52:9b:0f:10:7e:83:63:75: da:42:ee:24:98:b1:b5:10:e0:1c:37:ff:7f:40:ad: 6d:61:0f:91:b0:6a:7a:ce:91:0c:09:82:82:2b:bc: a4:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:4F:65:5F:DA:E0:E8:BE:E0:A3:68:8D:01:ED:89:15:D4:5B:13:D3 X509v3 Authority Key Identifier: keyid:3F:73:13:63:FE:47:40:46:1A:59:C8:8F:A7:67:BD:8A:36:EC:0D:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FD1D/8ADE33FC412E11EB9A974C16C4F9AE02/P3MTY_5HQEYaWciPp2e9ijbsDfY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P3MTY_5HQEYaWciPp2e9ijbsDfY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FD1D/8ADE33FC412E11EB9A974C16C4F9AE02/P3MTY_5HQEYaWciPp2e9ijbsDfY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:21:05:8c:33:3b:00:7f:95:dd:db:4e:01:7a:f3:c4:f5:71: ef:8f:6a:be:4f:c5:8f:04:5b:4a:ab:18:86:97:43:a4:9b:a8: 1f:00:a2:d8:26:65:6f:12:5b:6a:a0:d4:ef:82:e0:ba:ae:da: a3:02:4e:5a:bb:e6:82:a9:a5:01:51:cb:3d:3f:6c:24:71:55: b0:a9:fc:5f:e0:0d:84:46:98:b9:88:95:10:65:cf:8f:3c:48: 9a:17:21:71:10:b5:d0:e5:0d:b4:0e:42:02:30:2b:cc:ae:c4: 3a:cc:46:2a:ad:5b:32:c0:64:88:83:ac:d9:84:a6:fa:b5:c5: 42:c4:4b:17:db:ec:fa:ef:ac:e0:5a:1b:bc:f1:88:0d:0d:46: e5:d1:2f:fe:f9:2a:b4:a1:19:39:6f:88:a8:c4:fe:85:d2:7b: 04:2b:d4:b4:eb:4b:91:c7:24:05:38:3c:86:ec:0e:68:06:f1: 62:47:e9:be:0a:db:0c:1a:4f:7a:89:78:aa:9e:45:9d:6b:fa: 29:0b:7f:b1:fc:30:2b:03:88:51:4f:9d:33:e1:1e:b5:a6:8c: 53:69:08:df:44:02:cb:8b:61:f3:4f:37:96:82:0e:dc:c8:f4: fe:af:8c:24:8a:48:6e:e8:0b:69:32:89:ae:5f:3d:50:75:1d: b1:f2:fb:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBx8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZEMUQxMTAvBgNVBAUTKDNGNzMxMzYzRkU0NzQwNDYxQTU5Qzg4RkE3NjdCRDhB MzZFQzBERjYwHhcNMjUwNjE0MjEzODEzWhcNMjUwNjIxMjEzODEzWjAYMRYwFAYD VQQDEw02ODRkZWJjNi04MmEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtVLs2ahsMws2ci9dvdzpyT6mGQMrHYLF0V4I8TuZyrYokF5eKPdRd4OjWyhU F+a84MOW8QbSSz95X/2m9bq2Ql7OQ4/4wLu4GmEe6zxUiaqGqtAPRTrJPnRB43wp YpoXwX2uhow5WbTbL6ygQYYK7RUdqLmMV6L11lf430EXZD5FUr5AAHRAlJ4Ovlv4 PGjxfS7N1SA7El83gW6jVnQe6KzDagTvxxj3Yqw1bqvH0OByahyczZmc0G5/MLEa PKNZCGx5ctvVHDSezx9ifui+gW2BEPXRXUYmUpsPEH6DY3XaQu4kmLG1EOAcN/9/ QK1tYQ+RsGp6zpEMCYKCK7ykrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLVPZV/a 4Oi+4KNojQHtiRXUWxPTMB8GA1UdIwQYMBaAFD9zE2P+R0BGGlnIj6dnvYo27A32 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkQxRC84QURFMzNGQzQx MkUxMUVCOUE5NzRDMTZDNEY5QUUwMi9QM01UWV81SFFFWWFXY2lQcDJlOWlqYnNE ZlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1AzTVRZXzVIUUVZYVdjaVBwMmU5aWpic0RmWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RkQxRC84QURFMzNGQzQxMkUxMUVCOUE5NzRDMTZDNEY5QUUwMi9QM01UWV81SFFF WWFXY2lQcDJlOWlqYnNEZlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVIQWMMzsAf5Xd204BevPE9XHvj2q+T8WPBFtKqxiGl0Okm6gfAKLY JmVvEltqoNTvguC6rtqjAk5au+aCqaUBUcs9P2wkcVWwqfxf4A2ERpi5iJUQZc+P PEiaFyFxELXQ5Q20DkICMCvMrsQ6zEYqrVsywGSIg6zZhKb6tcVCxEsX2+z676zg Whu88YgNDUbl0S/++Sq0oRk5b4ioxP6F0nsEK9S060uRxyQFODyG7A5oBvFiR+m+ CtsMGk96iXiqnkWda/opC3+x/DArA4hRT50z4R61poxTaQjfRALLi2HzTzeWgg7c yPT+r4wkikhu6AtpMomuXz1QdR2x8vu8 -----END CERTIFICATE-----Generated at Sun Jun 15 06:05:52 2025 by rpki-client