$ rpki-client -vvf rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.mft File: 3K6HG3xct5vH7PZ5s7LTyVan2eM.mft (raw, json) Hash identifier: ZclNc9bTT/GbgaWmJFMzEBdFAiJBiYeh+ICGOfWkcCQ= Subject key identifier: 8E:89:E4:2B:B3:52:FC:89:C2:D1:B3:9A:F5:7B:9D:30:CF:27:EA:59 Authority key identifier: DC:AE:87:1B:7C:5C:B7:9B:C7:EC:F6:79:B3:B2:D3:C9:56:A7:D9:E3 Certificate issuer: /CN=A91604AC/serialNumber=DCAE871B7C5CB79BC7ECF679B3B2D3C956A7D9E3 Certificate serial: 066E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3K6HG3xct5vH7PZ5s7LTyVan2eM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.mft Manifest number: 0662 Signing time: Thu 24 Apr 2025 22:17:39 +0000 Manifest this update: Thu 24 Apr 2025 22:17:39 +0000 Manifest next update: Thu 01 May 2025 22:17:39 +0000 Files and hashes: 1: 3K6HG3xct5vH7PZ5s7LTyVan2eM.crl (hash: TYTk2gYIZpm7hcAQKKA20A6j906HowZV0U8k9qZKTc8=) 2: 0081F3D6F22111EE8EEC070EC4F9AE02.roa (hash: FOS9hpfhSMJ/5W+e+NFkrecUhC86TAOPH0uxsIPYP4A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.crl rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3K6HG3xct5vH7PZ5s7LTyVan2eM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:17:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1646 (0x66e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91604AC, serialNumber=DCAE871B7C5CB79BC7ECF679B3B2D3C956A7D9E3 Validity Not Before: Apr 24 22:17:39 2025 GMT Not After : May 1 22:17:39 2025 GMT Subject: CN=680ab883-78ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:d1:ff:8f:d7:e7:a4:a7:38:bb:25:89:c9:71: 2d:c1:68:c5:8f:6f:1e:56:94:e8:3d:18:12:74:1e: ec:e7:1a:37:19:8b:64:72:58:c8:d7:31:8e:93:fc: 40:06:19:d2:db:bd:ce:b6:41:39:51:6c:a3:8d:80: 33:f4:a2:54:42:47:d7:c4:d7:a6:75:1b:28:a9:60: 5e:ac:fd:7f:d5:c4:d1:80:c1:ae:40:04:71:e6:a6: 2b:9a:b9:61:a0:6d:07:f8:11:c6:c0:99:f9:7a:f4: 02:52:b9:1f:7e:ec:f3:4d:22:e6:76:0e:17:0f:2b: 84:65:61:f0:bc:41:c6:65:79:91:81:27:1d:60:72: d5:24:09:c4:a8:0b:23:ce:e4:53:7a:1d:47:59:28: db:30:7b:6a:c0:29:8f:ea:1a:1e:72:c5:04:b9:57: c7:33:ca:14:5d:5e:1f:94:21:62:ad:b4:74:15:d2: 31:ee:5d:d3:0f:c1:60:e2:c6:90:8f:ed:49:76:19: c5:62:a1:85:4c:3d:74:1f:79:95:76:a6:0b:b6:9e: 8b:93:5b:45:20:cf:36:7c:52:b6:1d:8f:6d:67:ba: fa:b9:a2:4d:f2:26:b3:e4:71:54:aa:ba:41:3d:59: 6a:e0:77:f5:95:22:c5:b5:90:d3:4d:06:76:66:62: 4a:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:89:E4:2B:B3:52:FC:89:C2:D1:B3:9A:F5:7B:9D:30:CF:27:EA:59 X509v3 Authority Key Identifier: keyid:DC:AE:87:1B:7C:5C:B7:9B:C7:EC:F6:79:B3:B2:D3:C9:56:A7:D9:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3K6HG3xct5vH7PZ5s7LTyVan2eM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:44:ea:f8:7c:7f:93:ea:5d:6b:8c:87:23:32:85:6d:08:47: af:61:d5:c3:0d:9f:e9:88:2d:ee:d6:a6:9b:7d:ed:ab:88:5c: fa:7d:17:94:4a:d9:2f:6c:22:70:30:89:19:4d:e5:9d:bd:4a: eb:e1:0c:c6:ad:d9:a9:8d:2f:45:4b:0f:01:c1:c2:65:76:66: 27:3c:be:44:e6:c8:6c:a9:ca:10:26:ed:a3:4e:18:50:82:ca: 08:0f:8f:77:fc:3f:17:d4:9b:0e:c9:c9:cd:5e:23:0d:3a:c3: e7:20:d6:40:02:3b:22:f8:95:ba:2b:79:4d:46:1f:f6:33:57: 17:25:92:5f:96:77:a8:64:59:5b:9f:0a:19:8f:ae:37:1a:22: 72:ba:ee:27:1c:2f:09:b2:e1:b4:84:88:58:11:bb:6a:4f:ed: 48:a7:86:e0:80:ac:42:2e:27:1c:0c:2b:7c:8a:cc:ea:f1:6d: 15:d3:19:5c:8d:06:ea:d9:6b:31:fc:38:1a:52:d0:44:fa:79: cb:d1:8b:7b:93:d2:37:87:fa:fa:ec:dd:aa:66:a7:dc:69:12: 1c:28:c4:60:cf:0c:05:98:19:70:9a:57:a2:c1:84:01:f8:00: ab:5a:e4:81:7a:20:51:84:31:ea:b6:6c:05:e9:c1:0e:25:61: c9:9a:e3:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBm4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA0QUMxMTAvBgNVBAUTKERDQUU4NzFCN0M1Q0I3OUJDN0VDRjY3OUIzQjJEM0M5 NTZBN0Q5RTMwHhcNMjUwNDI0MjIxNzM5WhcNMjUwNTAxMjIxNzM5WjAYMRYwFAYD VQQDEw02ODBhYjg4My03OGFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwtH/j9fnpKc4uyWJyXEtwWjFj28eVpToPRgSdB7s5xo3GYtkcljI1zGOk/xA BhnS273OtkE5UWyjjYAz9KJUQkfXxNemdRsoqWBerP1/1cTRgMGuQARx5qYrmrlh oG0H+BHGwJn5evQCUrkffuzzTSLmdg4XDyuEZWHwvEHGZXmRgScdYHLVJAnEqAsj zuRTeh1HWSjbMHtqwCmP6hoecsUEuVfHM8oUXV4flCFirbR0FdIx7l3TD8Fg4saQ j+1JdhnFYqGFTD10H3mVdqYLtp6Lk1tFIM82fFK2HY9tZ7r6uaJN8iaz5HFUqrpB PVlq4Hf1lSLFtZDTTQZ2ZmJKjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI6J5Cuz UvyJwtGzmvV7nTDPJ+pZMB8GA1UdIwQYMBaAFNyuhxt8XLebx+z2ebOy08lWp9nj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDRBQy80OTcyMDk5Njgx NDUxMUVCQjJERDVENEJDNEY5QUUwMi8zSzZIRzN4Y3Q1dkg3UFo1czdMVHlWYW4y ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNLNkhHM3hjdDV2SDdQWjVzN0xUeVZhbjJlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDRBQy80OTcyMDk5NjgxNDUxMUVCQjJERDVENEJDNEY5QUUwMi8zSzZIRzN4Y3Q1 dkg3UFo1czdMVHlWYW4yZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGROr4fH+T6l1rjIcjMoVtCEevYdXDDZ/piC3u1qabfe2riFz6fReU StkvbCJwMIkZTeWdvUrr4QzGrdmpjS9FSw8BwcJldmYnPL5E5shsqcoQJu2jThhQ gsoID493/D8X1JsOycnNXiMNOsPnINZAAjsi+JW6K3lNRh/2M1cXJZJflneoZFlb nwoZj643GiJyuu4nHC8JsuG0hIhYEbtqT+1Ip4bggKxCLiccDCt8iszq8W0V0xlc jQbq2Wsx/DgaUtBE+nnL0Yt7k9I3h/r67N2qZqfcaRIcKMRgzwwFmBlwmleiwYQB +ACrWuSBeiBRhDHqtmwF6cEOJWHJmuOg -----END CERTIFICATE-----Generated at Sat Apr 26 17:16:31 2025 by rpki-client