$ rpki-client -vvf rpki.apnic.net/member_repository/A9161857/CB14BF263C9811F0AF124B38C4F9AE02/3qY-MQG_FZkCCkCD-hw9lkshMMA.mft File: 3qY-MQG_FZkCCkCD-hw9lkshMMA.mft (raw, json) Hash identifier: hhhMIV+Su2pur5SphEcjeWdtTBZCeXuVrOhHO3JvGzI= Subject key identifier: BD:A3:61:5B:0A:95:F1:0B:25:C3:43:B5:F2:2A:76:62:B9:F5:02:D4 Authority key identifier: DE:A6:3E:31:01:BF:15:99:02:0A:40:83:FA:1C:3D:96:4B:21:30:C0 Certificate issuer: /CN=A9161857/serialNumber=DEA63E3101BF1599020A4083FA1C3D964B2130C0 Certificate serial: 0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3qY-MQG_FZkCCkCD-hw9lkshMMA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161857/CB14BF263C9811F0AF124B38C4F9AE02/3qY-MQG_FZkCCkCD-hw9lkshMMA.mft Manifest number: 0C Signing time: Tue 17 Jun 2025 06:58:40 +0000 Manifest this update: Tue 17 Jun 2025 06:58:39 +0000 Manifest next update: Tue 24 Jun 2025 06:58:39 +0000 Files and hashes: 1: 3qY-MQG_FZkCCkCD-hw9lkshMMA.crl (hash: b742w4aMtKwS/TIoNgCSbQ+JoBirJVlYf+r/KQsu9Bc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161857/CB14BF263C9811F0AF124B38C4F9AE02/3qY-MQG_FZkCCkCD-hw9lkshMMA.crl rsync://rpki.apnic.net/member_repository/A9161857/CB14BF263C9811F0AF124B38C4F9AE02/3qY-MQG_FZkCCkCD-hw9lkshMMA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3qY-MQG_FZkCCkCD-hw9lkshMMA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 06:58:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12 (0xc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161857, serialNumber=DEA63E3101BF1599020A4083FA1C3D964B2130C0 Validity Not Before: Jun 17 06:58:39 2025 GMT Not After : Jun 24 06:58:39 2025 GMT Subject: CN=68511220-7381 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:bc:e2:49:36:6b:2b:0b:9c:61:88:ba:38:d8: 31:55:c7:bf:87:bd:19:55:36:20:d3:db:ec:c0:aa: fc:41:2c:73:00:d8:f0:e7:31:1d:20:5d:55:de:d2: 09:84:5b:ef:56:fd:91:22:76:67:44:8d:ec:45:61: d6:dd:20:ce:09:bb:62:ec:52:44:04:00:e0:c3:86: 4e:e8:0a:84:c1:71:6c:53:98:20:49:23:5a:ea:c6: f5:a3:7f:79:71:22:bf:56:65:e9:38:14:ae:f5:ce: d0:6e:61:8f:3f:53:80:93:e9:b8:fb:cd:da:b8:a7: 69:b6:57:e9:6f:7c:f8:a9:93:0f:52:f2:45:2f:dd: 6a:5f:f4:06:e6:96:22:1b:40:45:0e:d4:4e:a2:2f: df:fa:71:f1:ec:ba:d2:64:72:d8:7c:65:6f:c1:75: f5:07:02:e8:4f:dd:3c:1c:a2:a4:eb:0b:c2:30:c0: 94:00:2d:e6:a4:05:0f:b5:67:6f:f2:64:b9:8f:ab: b7:09:55:d4:1f:80:d6:fb:bb:24:0f:56:15:4b:0d: c6:47:6c:e3:c8:32:2b:3b:bd:8d:fb:54:d2:1a:f7: 8c:79:3e:36:b5:e0:62:40:b9:ff:0d:16:f7:39:d9: 15:c4:c5:2a:f2:99:8b:31:04:f0:ba:8d:02:30:5c: e8:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:A3:61:5B:0A:95:F1:0B:25:C3:43:B5:F2:2A:76:62:B9:F5:02:D4 X509v3 Authority Key Identifier: keyid:DE:A6:3E:31:01:BF:15:99:02:0A:40:83:FA:1C:3D:96:4B:21:30:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161857/CB14BF263C9811F0AF124B38C4F9AE02/3qY-MQG_FZkCCkCD-hw9lkshMMA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3qY-MQG_FZkCCkCD-hw9lkshMMA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161857/CB14BF263C9811F0AF124B38C4F9AE02/3qY-MQG_FZkCCkCD-hw9lkshMMA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:ef:fb:a5:a2:e1:4f:d2:43:90:47:33:d5:d2:b3:d6:28:78: 0d:e9:af:80:61:12:a1:46:a3:cb:70:16:28:11:e3:ce:ff:7b: ae:28:34:66:97:af:82:cd:b4:f1:45:13:37:89:0d:ed:99:34: 61:3e:44:10:2b:df:3c:a8:29:80:76:49:c1:78:c5:43:35:63: f7:1c:13:71:53:a1:b4:f5:8f:7a:6b:56:84:c2:44:22:d2:3d: 46:c4:69:cf:f3:d7:72:c1:64:da:12:b6:5c:d6:9d:5e:d8:14: bf:d8:3f:a3:b1:70:06:73:65:24:d6:b0:fd:f7:79:81:a1:f4: 27:92:85:e9:6f:0b:7b:33:77:9f:fa:4d:53:63:85:fc:92:24: 5f:34:3b:c6:3b:7f:76:82:de:ec:92:8e:48:86:66:ed:1a:f8: ca:ff:1e:c6:d8:27:f9:84:c9:97:62:70:ca:97:a6:91:cc:a0: 86:83:b7:f7:9f:e8:2d:0d:51:d4:1e:0d:bd:8a:04:f4:39:a4: 4a:b8:e9:9f:2f:83:67:b2:5e:cb:ee:cd:2b:bc:61:b4:35:c8: 44:9b:eb:20:19:db:d8:57:11:ee:21:4b:8f:26:5f:27:9a:d5: b6:3b:4f:4e:6f:2f:3f:f0:10:f9:c6:c9:76:67:63:bb:22:c3: 2f:d9:88:cc -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MTg1NzExMC8GA1UEBRMoREVBNjNFMzEwMUJGMTU5OTAyMEE0MDgzRkExQzNEOTY0 QjIxMzBDMDAeFw0yNTA2MTcwNjU4MzlaFw0yNTA2MjQwNjU4MzlaMBgxFjAUBgNV BAMTDTY4NTExMjIwLTczODEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCzvOJJNmsrC5xhiLo42DFVx7+HvRlVNiDT2+zAqvxBLHMA2PDnMR0gXVXe0gmE W+9W/ZEidmdEjexFYdbdIM4Ju2LsUkQEAODDhk7oCoTBcWxTmCBJI1rqxvWjf3lx Ir9WZek4FK71ztBuYY8/U4CT6bj7zdq4p2m2V+lvfPipkw9S8kUv3Wpf9AbmliIb QEUO1E6iL9/6cfHsutJkcth8ZW/BdfUHAuhP3TwcoqTrC8IwwJQALeakBQ+1Z2/y ZLmPq7cJVdQfgNb7uyQPVhVLDcZHbOPIMis7vY37VNIa94x5Pja14GJAuf8NFvc5 2RXExSrymYsxBPC6jQIwXOiFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUvaNhWwqV 8Qslw0O18ip2Yrn1AtQwHwYDVR0jBBgwFoAU3qY+MQG/FZkCCkCD+hw9lkshMMAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYxODU3L0NCMTRCRjI2M0M5 ODExRjBBRjEyNEIzOEM0RjlBRTAyLzNxWS1NUUdfRlprQ0NrQ0QtaHc5bGtzaE1N QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM3FZLU1RR19GWmtDQ2tDRC1odzlsa3NoTU1BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYx ODU3L0NCMTRCRjI2M0M5ODExRjBBRjEyNEIzOEM0RjlBRTAyLzNxWS1NUUdfRlpr Q0NrQ0QtaHc5bGtzaE1NQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAK3v+6Wi4U/SQ5BHM9XSs9YoeA3pr4BhEqFGo8twFigR487/e64oNGaX r4LNtPFFEzeJDe2ZNGE+RBAr3zyoKYB2ScF4xUM1Y/ccE3FTobT1j3prVoTCRCLS PUbEac/z13LBZNoStlzWnV7YFL/YP6OxcAZzZSTWsP33eYGh9CeShelvC3szd5/6 TVNjhfySJF80O8Y7f3aC3uySjkiGZu0a+Mr/HsbYJ/mEyZdicMqXppHMoIaDt/ef 6C0NUdQeDb2KBPQ5pEq46Z8vg2eyXsvuzSu8YbQ1yESb6yAZ29hXEe4hS48mXyea 1bY7T05vLz/wEPnGyXZnY7siwy/ZiMw= -----END CERTIFICATE-----Generated at Wed Jun 18 03:06:07 2025 by rpki-client