$ rpki-client -vvf rpki.apnic.net/member_repository/A916EB73/B88FDE8C1DAA11E2A5C890A608B02CD2/34UAobIJAKu39Z62mwcBjfgEXF4.mft File: 34UAobIJAKu39Z62mwcBjfgEXF4.mft (raw, json) Hash identifier: plwaMbU5Wr9BYhJmTjKA0iFoBvWM7nXJQWgsYWi+oQY= Subject key identifier: F8:8B:10:0A:54:B1:F7:D1:AD:DE:EC:54:B4:FE:04:2A:32:4E:8E:3E Authority key identifier: DF:85:00:A1:B2:09:00:AB:B7:F5:9E:B6:9B:07:01:8D:F8:04:5C:5E Certificate issuer: /CN=A916EB73/serialNumber=DF8500A1B20900ABB7F59EB69B07018DF8045C5E Certificate serial: 3497 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34UAobIJAKu39Z62mwcBjfgEXF4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916EB73/B88FDE8C1DAA11E2A5C890A608B02CD2/34UAobIJAKu39Z62mwcBjfgEXF4.mft Manifest number: 348F Signing time: Sat 14 Jun 2025 15:16:59 +0000 Manifest this update: Sat 14 Jun 2025 15:16:59 +0000 Manifest next update: Sat 21 Jun 2025 15:16:59 +0000 Files and hashes: 1: 34UAobIJAKu39Z62mwcBjfgEXF4.crl (hash: cABKYIPwVJ1ggxT2fJZJDVNG3cz2KSAwfsGDYD/mIHQ=) 2: B92D2816064311EAAFD3B416C4F9AE02.roa (hash: snskZTPzgdK1oFEckPC5HgyDQRzXftf0PJQ8L4j0QcQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916EB73/B88FDE8C1DAA11E2A5C890A608B02CD2/34UAobIJAKu39Z62mwcBjfgEXF4.crl rsync://rpki.apnic.net/member_repository/A916EB73/B88FDE8C1DAA11E2A5C890A608B02CD2/34UAobIJAKu39Z62mwcBjfgEXF4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34UAobIJAKu39Z62mwcBjfgEXF4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 15:16:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13463 (0x3497) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916EB73, serialNumber=DF8500A1B20900ABB7F59EB69B07018DF8045C5E Validity Not Before: Jun 14 15:16:59 2025 GMT Not After : Jun 21 15:16:59 2025 GMT Subject: CN=684d926b-e2c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:b6:22:12:22:6d:38:1e:ed:69:06:98:e1:da: ca:0a:7d:14:3f:57:e3:17:47:b4:d2:85:3d:87:c7: 5f:44:db:76:da:5c:69:df:63:6d:f3:aa:41:9f:f7: 37:79:02:0d:cd:5e:59:7c:cf:e7:5c:49:b9:3a:3a: 76:9d:e6:ea:bb:bc:59:4a:92:ae:50:65:f8:24:66: 5a:8e:24:36:c2:b9:21:eb:68:d9:e4:9a:c1:21:74: 34:09:2e:73:bc:90:bb:fe:fb:d3:ed:99:70:e4:e4: c9:f9:c6:99:04:cd:d5:a0:fd:46:e8:22:11:4e:11: cc:6e:8d:b9:76:87:ba:3e:b0:86:eb:bb:87:49:30: 4c:55:ac:be:50:17:e3:e8:2c:64:36:f6:e8:bf:f4: 1d:a5:ce:ef:9b:02:a3:06:8e:63:88:f0:cb:63:76: 9c:14:1c:5a:e2:ea:2d:35:13:47:64:62:5d:7e:a0: eb:ef:cd:8d:4b:b9:a1:09:23:38:b4:a2:c1:ba:bc: c9:da:df:9e:ff:99:44:a9:93:80:2e:e1:c8:7e:c1: f9:55:b1:ff:3e:e8:f7:0f:69:61:0e:01:92:8e:8b: 73:13:dc:bc:4c:78:0d:e7:52:a2:bb:98:aa:18:f8: 67:01:38:ae:5a:dc:d4:13:b2:72:86:d5:1c:5f:93: 2f:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:8B:10:0A:54:B1:F7:D1:AD:DE:EC:54:B4:FE:04:2A:32:4E:8E:3E X509v3 Authority Key Identifier: keyid:DF:85:00:A1:B2:09:00:AB:B7:F5:9E:B6:9B:07:01:8D:F8:04:5C:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916EB73/B88FDE8C1DAA11E2A5C890A608B02CD2/34UAobIJAKu39Z62mwcBjfgEXF4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34UAobIJAKu39Z62mwcBjfgEXF4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916EB73/B88FDE8C1DAA11E2A5C890A608B02CD2/34UAobIJAKu39Z62mwcBjfgEXF4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:ac:3b:6c:05:bc:d1:7a:ee:cc:f5:82:ad:37:4e:b7:43:a4: ee:63:38:b2:ed:f6:ee:e8:19:22:59:0c:47:da:ee:ee:e2:67: 34:a5:15:2a:2c:00:e4:03:eb:32:fb:a1:8f:48:ad:1f:74:c1: 16:78:11:16:83:15:b5:9c:31:c0:d5:67:43:52:c1:dc:50:c1: d5:20:6f:7e:31:f5:f9:48:01:83:1e:ae:a7:23:11:60:ad:58: 38:93:7f:84:5b:28:54:77:8d:b0:a8:8f:7f:6a:e5:5d:0a:04: 9c:c0:fb:1b:cd:0e:66:9e:1c:17:d7:05:d9:66:20:22:67:65: 4d:48:73:8c:88:2c:a0:9e:17:be:51:3f:73:fd:c8:8b:47:93: 77:86:22:7a:19:da:fe:e1:8d:90:37:82:b9:2f:d4:f8:ac:b7: 70:03:33:86:d7:bc:56:10:72:14:f3:b2:2e:13:ad:74:72:1c: 12:c7:e7:11:30:44:32:81:9e:bd:10:cd:7b:43:b9:74:5c:e3: a4:45:06:b3:d7:1a:54:2d:17:0d:01:d8:01:4c:75:c5:29:cd: 2d:dd:18:a7:54:cb:11:ab:25:3f:17:64:7f:a1:8e:6f:d1:c5: 37:2a:f9:f9:17:10:7a:91:61:fa:af:67:de:54:29:3c:c9:c6: cc:fc:40:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkVCNzMxMTAvBgNVBAUTKERGODUwMEExQjIwOTAwQUJCN0Y1OUVCNjlCMDcwMThE RjgwNDVDNUUwHhcNMjUwNjE0MTUxNjU5WhcNMjUwNjIxMTUxNjU5WjAYMRYwFAYD VQQDEw02ODRkOTI2Yi1lMmM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8LYiEiJtOB7taQaY4drKCn0UP1fjF0e00oU9h8dfRNt22lxp32Nt86pBn/c3 eQINzV5ZfM/nXEm5Ojp2nebqu7xZSpKuUGX4JGZajiQ2wrkh62jZ5JrBIXQ0CS5z vJC7/vvT7Zlw5OTJ+caZBM3VoP1G6CIRThHMbo25doe6PrCG67uHSTBMVay+UBfj 6CxkNvbov/Qdpc7vmwKjBo5jiPDLY3acFBxa4uotNRNHZGJdfqDr782NS7mhCSM4 tKLBurzJ2t+e/5lEqZOALuHIfsH5VbH/Puj3D2lhDgGSjotzE9y8THgN51Kiu5iq GPhnATiuWtzUE7JyhtUcX5MviQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPiLEApU sffRrd7sVLT+BCoyTo4+MB8GA1UdIwQYMBaAFN+FAKGyCQCrt/WetpsHAY34BFxe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RUI3My9CODhGREU4QzFE QUExMUUyQTVDODkwQTYwOEIwMkNEMi8zNFVBb2JJSkFLdTM5WjYybXdjQmpmZ0VY RjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM0VUFvYklKQUt1MzlaNjJtd2NCamZnRVhGNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RUI3My9CODhGREU4QzFEQUExMUUyQTVDODkwQTYwOEIwMkNEMi8zNFVBb2JJSkFL dTM5WjYybXdjQmpmZ0VYRjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALrDtsBbzReu7M9YKtN063Q6TuYziy7fbu6BkiWQxH2u7u4mc0pRUq LADkA+sy+6GPSK0fdMEWeBEWgxW1nDHA1WdDUsHcUMHVIG9+MfX5SAGDHq6nIxFg rVg4k3+EWyhUd42wqI9/auVdCgScwPsbzQ5mnhwX1wXZZiAiZ2VNSHOMiCygnhe+ UT9z/ciLR5N3hiJ6Gdr+4Y2QN4K5L9T4rLdwAzOG17xWEHIU87IuE610chwSx+cR MEQygZ69EM17Q7l0XOOkRQaz1xpULRcNAdgBTHXFKc0t3RinVMsRqyU/F2R/oY5v 0cU3Kvn5FxB6kWH6r2feVCk8ycbM/ECW -----END CERTIFICATE-----Generated at Sun Jun 15 08:28:25 2025 by rpki-client