$ rpki-client -vvf rpki.apnic.net/member_repository/A915FDD9/BE7CAC12D6DE11EFB0474E1BC4F9AE02/A3iO4rrk2AXrzcpmGOLsGhilxOI.mft File: A3iO4rrk2AXrzcpmGOLsGhilxOI.mft (raw, json) Hash identifier: ou5/J0ypktv29IomazRIfO6bKA+tudqyzDiisgi+s8I= Subject key identifier: C4:CB:FE:E4:D9:6A:7D:4D:AD:6A:B1:67:7D:2A:20:78:F4:17:6F:08 Authority key identifier: 03:78:8E:E2:BA:E4:D8:05:EB:CD:CA:66:18:E2:EC:1A:18:A5:C4:E2 Certificate issuer: /CN=A915FDD9/serialNumber=03788EE2BAE4D805EBCDCA6618E2EC1A18A5C4E2 Certificate serial: 4C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3iO4rrk2AXrzcpmGOLsGhilxOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FDD9/BE7CAC12D6DE11EFB0474E1BC4F9AE02/A3iO4rrk2AXrzcpmGOLsGhilxOI.mft Manifest number: 4C Signing time: Sun 15 Jun 2025 06:25:20 +0000 Manifest this update: Sun 15 Jun 2025 06:25:19 +0000 Manifest next update: Sun 22 Jun 2025 06:25:19 +0000 Files and hashes: 1: A3iO4rrk2AXrzcpmGOLsGhilxOI.crl (hash: 17MyCFi7C/tCEiLlvf81wEdAyMuo+0igk+lfgnA/I28=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FDD9/BE7CAC12D6DE11EFB0474E1BC4F9AE02/A3iO4rrk2AXrzcpmGOLsGhilxOI.crl rsync://rpki.apnic.net/member_repository/A915FDD9/BE7CAC12D6DE11EFB0474E1BC4F9AE02/A3iO4rrk2AXrzcpmGOLsGhilxOI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3iO4rrk2AXrzcpmGOLsGhilxOI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76 (0x4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FDD9, serialNumber=03788EE2BAE4D805EBCDCA6618E2EC1A18A5C4E2 Validity Not Before: Jun 15 06:25:19 2025 GMT Not After : Jun 22 06:25:19 2025 GMT Subject: CN=684e674f-c0be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:89:de:58:5e:a1:10:e6:03:43:64:07:70:90: 48:95:3a:b4:6a:9c:bd:d6:5d:fa:5a:37:50:eb:69: 15:23:b2:51:d9:07:b7:4e:9f:a8:40:ad:ac:bc:b0: 22:53:fa:e5:b3:6c:71:f3:5d:1d:54:1f:0a:cd:76: da:1d:95:9b:f5:1c:f7:44:d7:89:61:7e:70:0f:50: 3d:d4:ff:b1:fc:a4:9c:9e:e7:9d:cd:f7:84:60:e1: 67:ff:8f:f4:43:85:a2:76:ce:b4:40:0e:00:16:06: 90:46:f3:c7:ae:ef:81:75:fe:51:5b:8a:37:b4:4c: 9b:90:9e:0b:cd:28:9f:7a:52:27:a6:22:60:c8:b6: 56:96:03:17:de:ac:a7:f0:2c:22:1f:0d:f0:9f:7e: d3:ec:45:cc:49:c7:14:c0:ea:57:42:48:2a:2f:94: aa:4c:2f:e8:9f:ac:52:0b:94:12:f9:0f:94:4a:5f: 5a:0c:12:2a:e8:96:99:5b:f0:6a:3e:40:44:f7:9c: 14:81:83:1a:ed:89:2d:15:c1:6e:f5:94:61:c5:9b: 0a:ed:82:95:38:51:95:83:dd:ac:42:96:ee:60:09: 65:2f:42:28:cc:96:d7:bf:8c:9d:9c:de:c3:29:af: 49:35:75:01:6c:07:5b:14:75:41:87:3f:f5:ca:83: 42:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:CB:FE:E4:D9:6A:7D:4D:AD:6A:B1:67:7D:2A:20:78:F4:17:6F:08 X509v3 Authority Key Identifier: keyid:03:78:8E:E2:BA:E4:D8:05:EB:CD:CA:66:18:E2:EC:1A:18:A5:C4:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FDD9/BE7CAC12D6DE11EFB0474E1BC4F9AE02/A3iO4rrk2AXrzcpmGOLsGhilxOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3iO4rrk2AXrzcpmGOLsGhilxOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FDD9/BE7CAC12D6DE11EFB0474E1BC4F9AE02/A3iO4rrk2AXrzcpmGOLsGhilxOI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cf:ed:e1:0a:e0:dd:89:4f:1e:ea:2b:bc:38:df:1f:b5:65:7e: a5:55:62:67:09:f9:77:39:d0:dd:6e:c3:a2:93:53:51:5f:dc: df:27:0d:fa:cb:60:bd:57:83:3d:7d:8a:c4:48:dd:ce:cf:d8: fb:bb:9d:df:b9:84:bd:d9:2b:04:7d:3b:bd:72:d5:00:35:3c: ff:21:e6:f4:be:4f:6b:86:17:33:5f:17:93:11:d7:cc:55:b2: b0:02:d0:05:04:8b:9e:8e:47:ec:dc:e5:10:a3:cd:1a:56:6b: 69:73:53:ff:1a:5a:0c:4c:2e:23:d3:c4:b4:2b:37:55:58:c6: 2e:b7:1b:62:ca:e2:51:94:2c:a0:6a:9c:86:4b:59:86:38:f1: 7c:9a:07:69:ae:81:ab:be:df:87:4a:9c:75:80:20:ee:70:c9: e3:7e:f0:01:19:71:92:2a:92:55:da:6f:ca:f9:f1:25:ce:e0: 7b:0c:df:5e:ae:28:05:cc:e1:38:e7:9a:a3:b2:6d:7c:69:52: 0a:8a:20:1e:a7:4d:a1:cc:19:d0:4f:a1:e3:54:ac:39:98:06: b2:51:02:0e:13:5e:f7:a9:bc:51:42:86:ce:22:c7:a2:34:fb: 35:94:23:f2:f4:8d:db:48:7a:d8:5c:8d:e5:0e:9c:47:9b:9a: ce:ad:c0:3d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 RkREOTExMC8GA1UEBRMoMDM3ODhFRTJCQUU0RDgwNUVCQ0RDQTY2MThFMkVDMUEx OEE1QzRFMjAeFw0yNTA2MTUwNjI1MTlaFw0yNTA2MjIwNjI1MTlaMBgxFjAUBgNV BAMTDTY4NGU2NzRmLWMwYmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/id5YXqEQ5gNDZAdwkEiVOrRqnL3WXfpaN1DraRUjslHZB7dOn6hAray8sCJT +uWzbHHzXR1UHwrNdtodlZv1HPdE14lhfnAPUD3U/7H8pJye553N94Rg4Wf/j/RD haJ2zrRADgAWBpBG88eu74F1/lFbije0TJuQngvNKJ96UiemImDItlaWAxferKfw LCIfDfCfftPsRcxJxxTA6ldCSCovlKpML+ifrFILlBL5D5RKX1oMEirolplb8Go+ QET3nBSBgxrtiS0VwW71lGHFmwrtgpU4UZWD3axClu5gCWUvQijMlte/jJ2c3sMp r0k1dQFsB1sUdUGHP/XKg0J/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUxMv+5Nlq fU2tarFnfSogePQXbwgwHwYDVR0jBBgwFoAUA3iO4rrk2AXrzcpmGOLsGhilxOIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVGREQ5L0JFN0NBQzEyRDZE RTExRUZCMDQ3NEUxQkM0RjlBRTAyL0EzaU80cnJrMkFYcnpjcG1HT0xzR2hpbHhP SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQTNpTzRycmsyQVhyemNwbUdPTHNHaGlseE9JLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVG REQ5L0JFN0NBQzEyRDZERTExRUZCMDQ3NEUxQkM0RjlBRTAyL0EzaU80cnJrMkFY cnpjcG1HT0xzR2hpbHhPSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAM/t4Qrg3YlPHuorvDjfH7VlfqVVYmcJ+Xc50N1uw6KTU1Ff3N8nDfrL YL1Xgz19isRI3c7P2Pu7nd+5hL3ZKwR9O71y1QA1PP8h5vS+T2uGFzNfF5MR18xV srAC0AUEi56OR+zc5RCjzRpWa2lzU/8aWgxMLiPTxLQrN1VYxi63G2LK4lGULKBq nIZLWYY48XyaB2mugau+34dKnHWAIO5wyeN+8AEZcZIqklXab8r58SXO4HsM316u KAXM4TjnmqOybXxpUgqKIB6nTaHMGdBPoeNUrDmYBrJRAg4TXvepvFFChs4ix6I0 +zWUI/L0jdtIethcjeUOnEebms6twD0= -----END CERTIFICATE-----Generated at Sun Jun 15 09:45:11 2025 by rpki-client