$ rpki-client -vvf rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.mft File: 3K6HG3xct5vH7PZ5s7LTyVan2eM.mft (raw, json) Hash identifier: nFu5c21dUaCBRJ5uHjxB30sD1Gsm+t2NeFiTkWM4Xns= Subject key identifier: DF:36:2B:4C:86:42:9E:E3:8A:D0:A3:E7:45:62:E6:5D:FF:B5:61:79 Authority key identifier: DC:AE:87:1B:7C:5C:B7:9B:C7:EC:F6:79:B3:B2:D3:C9:56:A7:D9:E3 Certificate issuer: /CN=A91604AC/serialNumber=DCAE871B7C5CB79BC7ECF679B3B2D3C956A7D9E3 Certificate serial: 0686 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3K6HG3xct5vH7PZ5s7LTyVan2eM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.mft Manifest number: 067A Signing time: Thu 12 Jun 2025 22:04:10 +0000 Manifest this update: Thu 12 Jun 2025 22:04:10 +0000 Manifest next update: Thu 19 Jun 2025 22:04:10 +0000 Files and hashes: 1: 3K6HG3xct5vH7PZ5s7LTyVan2eM.crl (hash: Ry8gQ6UheCf+1pKPTjk2aVJUUpqr3R04o8+pjAeWNrM=) 2: 0081F3D6F22111EE8EEC070EC4F9AE02.roa (hash: FOS9hpfhSMJ/5W+e+NFkrecUhC86TAOPH0uxsIPYP4A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.crl rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3K6HG3xct5vH7PZ5s7LTyVan2eM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 22:04:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1670 (0x686) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91604AC, serialNumber=DCAE871B7C5CB79BC7ECF679B3B2D3C956A7D9E3 Validity Not Before: Jun 12 22:04:10 2025 GMT Not After : Jun 19 22:04:10 2025 GMT Subject: CN=684b4eda-416c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:6e:fa:38:64:bc:b0:9e:7e:6d:57:ae:aa:e9: 76:37:27:5a:14:28:77:7f:77:61:9d:82:b3:89:97: 51:a9:9d:64:e7:63:00:06:69:e5:d4:ac:04:aa:94: 07:64:17:2d:c8:5a:c4:25:f1:e5:df:b7:9a:ce:7c: d9:51:c1:25:6d:d3:e8:7b:10:f0:b3:8e:bc:b1:c2: 31:35:7f:17:8b:14:ad:96:c3:22:e6:fd:7b:e9:e4: a7:8b:ac:63:6b:de:0a:32:d1:c7:fe:6a:11:26:51: 36:ad:a7:98:6e:16:5c:43:59:96:0b:62:d6:91:c2: e8:33:49:cd:1d:8f:e5:6e:14:2b:1a:dc:dc:84:41: d1:66:f0:26:4b:0d:33:5c:ee:10:dc:67:27:a2:ce: 8e:97:1c:96:a9:24:d1:fb:11:01:1d:2f:14:71:16: ff:b7:50:7b:0d:4f:d0:ae:b0:82:c6:13:a2:38:76: fc:35:00:36:52:73:52:21:c6:31:b8:98:2c:cc:82: 75:7b:c9:4c:dd:87:46:0b:74:d3:4a:17:22:5e:f9: 8a:6e:1c:c3:b3:ae:ac:d1:e1:a3:fc:0f:d5:51:c2: 3b:b1:e3:c9:b5:72:d9:02:d4:91:c3:f8:9c:93:4e: 31:e8:f1:a1:a5:1a:fe:5c:68:6a:9b:5b:e8:5b:93: 98:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:36:2B:4C:86:42:9E:E3:8A:D0:A3:E7:45:62:E6:5D:FF:B5:61:79 X509v3 Authority Key Identifier: keyid:DC:AE:87:1B:7C:5C:B7:9B:C7:EC:F6:79:B3:B2:D3:C9:56:A7:D9:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3K6HG3xct5vH7PZ5s7LTyVan2eM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:50:ae:3f:85:85:c6:a3:23:15:e4:cf:64:a9:d8:2f:21:56: b8:be:50:c7:5c:ef:39:7c:84:c2:35:b7:2c:0c:4d:c2:59:3b: 3c:d2:ca:ad:7d:27:f0:8d:e7:74:77:a1:64:e2:1a:4e:11:1a: 27:14:ee:42:a4:8b:e4:da:f5:05:3e:cd:f8:09:2b:5f:63:d7: 31:eb:dc:e2:b4:d6:07:4c:50:8b:04:a1:7e:22:5c:95:cd:bb: 09:4c:5e:96:03:3c:c5:ab:b1:9f:56:0d:0a:45:2f:03:ba:ad: b8:6d:bc:20:c7:c9:b2:98:15:eb:ce:e3:d8:db:88:c5:d2:f9: f1:a8:10:91:89:59:d3:41:95:a5:67:9a:c3:9c:b0:7e:03:45: a1:2d:4c:fb:be:48:e0:52:cf:fb:67:a5:c3:82:7a:7a:c9:4b: 6b:08:bf:ba:16:db:7f:d1:57:4b:9a:57:7b:c4:13:34:9d:7c: ea:92:9d:8b:2a:78:27:93:c9:62:82:83:95:86:fc:d2:cd:f8: 51:83:98:85:6c:a4:05:17:9c:77:78:c3:d7:5b:87:9f:b8:07: ae:a4:0b:cb:18:ca:89:b5:5c:0f:da:e9:c0:78:51:e6:33:3a: be:d6:04:3a:60:84:7e:6c:7e:97:21:23:7a:fe:49:13:00:b7: 83:da:35:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBoYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA0QUMxMTAvBgNVBAUTKERDQUU4NzFCN0M1Q0I3OUJDN0VDRjY3OUIzQjJEM0M5 NTZBN0Q5RTMwHhcNMjUwNjEyMjIwNDEwWhcNMjUwNjE5MjIwNDEwWjAYMRYwFAYD VQQDEw02ODRiNGVkYS00MTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo276OGS8sJ5+bVeuqul2NydaFCh3f3dhnYKziZdRqZ1k52MABmnl1KwEqpQH ZBctyFrEJfHl37eaznzZUcElbdPoexDws468scIxNX8XixStlsMi5v176eSni6xj a94KMtHH/moRJlE2raeYbhZcQ1mWC2LWkcLoM0nNHY/lbhQrGtzchEHRZvAmSw0z XO4Q3Gcnos6OlxyWqSTR+xEBHS8UcRb/t1B7DU/QrrCCxhOiOHb8NQA2UnNSIcYx uJgszIJ1e8lM3YdGC3TTShciXvmKbhzDs66s0eGj/A/VUcI7sePJtXLZAtSRw/ic k04x6PGhpRr+XGhqm1voW5OYNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN82K0yG Qp7jitCj50Vi5l3/tWF5MB8GA1UdIwQYMBaAFNyuhxt8XLebx+z2ebOy08lWp9nj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDRBQy80OTcyMDk5Njgx NDUxMUVCQjJERDVENEJDNEY5QUUwMi8zSzZIRzN4Y3Q1dkg3UFo1czdMVHlWYW4y ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNLNkhHM3hjdDV2SDdQWjVzN0xUeVZhbjJlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDRBQy80OTcyMDk5NjgxNDUxMUVCQjJERDVENEJDNEY5QUUwMi8zSzZIRzN4Y3Q1 dkg3UFo1czdMVHlWYW4yZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC8UK4/hYXGoyMV5M9kqdgvIVa4vlDHXO85fITCNbcsDE3CWTs80sqt fSfwjed0d6Fk4hpOERonFO5CpIvk2vUFPs34CStfY9cx69zitNYHTFCLBKF+IlyV zbsJTF6WAzzFq7GfVg0KRS8Duq24bbwgx8mymBXrzuPY24jF0vnxqBCRiVnTQZWl Z5rDnLB+A0WhLUz7vkjgUs/7Z6XDgnp6yUtrCL+6Ftt/0VdLmld7xBM0nXzqkp2L Kngnk8ligoOVhvzSzfhRg5iFbKQFF5x3eMPXW4efuAeupAvLGMqJtVwP2unAeFHm Mzq+1gQ6YIR+bH6XISN6/kkTALeD2jXd -----END CERTIFICATE-----Generated at Sat Jun 14 19:36:46 2025 by rpki-client