$ rpki-client -vvf rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft File: pm3QENok34rhcGvZCMukO9E4ljE.mft (raw, json) Hash identifier: /mHUFLiSatxuDKBXbdmBMGuUkiTcuwsvGVTAf7uZKHk= Subject key identifier: 5A:5D:5E:D2:23:61:BA:93:1E:01:90:D2:E8:94:78:0F:97:62:E0:26 Authority key identifier: A6:6D:D0:10:DA:24:DF:8A:E1:70:6B:D9:08:CB:A4:3B:D1:38:96:31 Certificate issuer: /CN=A9171753/serialNumber=A66DD010DA24DF8AE1706BD908CBA43BD1389631 Certificate serial: 349C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft Manifest number: 3491 Signing time: Wed 18 Jun 2025 15:10:42 +0000 Manifest this update: Wed 18 Jun 2025 15:10:41 +0000 Manifest next update: Wed 25 Jun 2025 15:10:41 +0000 Files and hashes: 1: pm3QENok34rhcGvZCMukO9E4ljE.crl (hash: tedkFHPLshEQi+ot5b9jsrZ10PBbvTMm4IASUX4kgIE=) 2: DE670A60679D11EEAFBA0A5DC4F9AE02.roa (hash: zHkGq6W1DSD5ffW+BnhDs7qnRsRpvtxDIEM0SIuuDg4=) 3: C92F5F8077A211EDAF94D63EC4F9AE02.roa (hash: /yGsH3AYsghIUdTIUcXoSyBB3f9raZ59e9j2Pg64iUI=) 4: 41623A12778111ED8F236A62C4F9AE02.roa (hash: OYhGj+v27n+SqxvC/qZ2JFeWyJlSzi9WwyujTQsPl7E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.crl rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 15:10:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13468 (0x349c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171753, serialNumber=A66DD010DA24DF8AE1706BD908CBA43BD1389631 Validity Not Before: Jun 18 15:10:41 2025 GMT Not After : Jun 25 15:10:41 2025 GMT Subject: CN=6852d6f1-aecc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:5e:b4:ce:89:cb:83:df:11:0d:9c:c4:29:0c: 44:53:ef:2b:37:6e:64:8b:49:90:a4:57:ab:25:7c: b9:38:2c:88:4b:44:0f:71:ef:f7:7f:91:de:a6:3d: 81:04:cd:53:65:66:b2:9f:2c:c2:e5:1a:f2:66:5f: d2:24:35:eb:f1:34:6f:05:49:e5:6e:ce:f0:da:3d: 72:25:6f:6b:a0:51:3f:da:e8:5f:2f:f8:45:50:51: 6c:4d:0b:f5:e8:f7:0c:af:da:1c:65:b7:e9:11:29: 0f:82:e2:fd:29:ed:c4:06:2d:f6:77:7d:eb:54:8b: 15:3c:70:5d:3c:b4:93:99:12:5f:74:5c:df:23:97: fb:17:cc:ea:60:05:b9:13:2f:f4:12:a6:3a:2c:50: 6d:d8:ae:12:63:b1:f0:4d:c3:7a:23:93:93:41:3f: 1d:00:bc:dd:20:b2:33:8e:3d:e9:53:9f:5c:b4:e5: ba:51:c6:09:68:a2:b5:38:96:ad:37:7e:a4:33:3e: b4:a9:ac:df:40:d6:0c:4a:5c:d6:6c:bc:56:f7:f3: 37:78:d8:38:aa:a2:17:29:53:68:7d:df:08:4f:dc: 44:ab:26:af:56:4d:6d:b3:b5:b0:99:8f:61:35:82: e8:7c:04:d3:6e:51:22:d4:96:8a:0b:a1:bd:d4:d1: 8c:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:5D:5E:D2:23:61:BA:93:1E:01:90:D2:E8:94:78:0F:97:62:E0:26 X509v3 Authority Key Identifier: keyid:A6:6D:D0:10:DA:24:DF:8A:E1:70:6B:D9:08:CB:A4:3B:D1:38:96:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:65:12:1f:61:67:05:b5:97:12:44:c1:1a:a7:0e:29:a1:ab: de:24:55:2e:8e:71:27:87:3e:56:60:d7:c9:d3:b2:2a:2e:a0: d6:99:90:6f:6a:91:e3:2c:42:ee:8a:ea:89:4c:4a:c7:5b:7a: f7:ea:44:00:fb:44:3f:0b:ca:9c:41:12:ce:94:30:63:39:89: 91:a9:a0:2d:36:3d:ad:a4:84:5c:70:a3:87:9c:f5:60:e5:b9: e6:76:7c:00:0c:84:f0:cd:12:1e:05:c1:1c:6a:82:88:aa:7e: 92:80:2d:47:96:7a:b7:ea:b4:85:c5:80:a6:6c:ce:db:79:0c: 4a:4b:de:e7:87:b4:57:e6:90:78:69:0b:c6:eb:18:4a:56:a9: 38:e2:8f:bd:d5:e7:c2:d8:56:31:b6:40:87:cc:e7:d2:c4:f1: 5d:8e:31:92:57:22:e1:d5:b7:1a:7c:4f:3a:71:b0:d4:9e:76: 33:d4:bd:14:d1:d8:85:d0:06:a8:6f:8e:38:33:73:1d:c1:8c: 4e:62:21:78:72:36:3e:1b:75:2f:df:0a:0c:d2:9b:05:92:79: 25:76:96:a4:18:0e:b9:1f:83:ad:d1:0a:74:10:b6:2f:e5:73: 5f:da:19:03:2d:df:5b:2a:ad:65:c9:15:c0:35:67:b5:1a:e7: f7:70:eb:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE3NTMxMTAvBgNVBAUTKEE2NkREMDEwREEyNERGOEFFMTcwNkJEOTA4Q0JBNDNC RDEzODk2MzEwHhcNMjUwNjE4MTUxMDQxWhcNMjUwNjI1MTUxMDQxWjAYMRYwFAYD VQQDEw02ODUyZDZmMS1hZWNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2V60zonLg98RDZzEKQxEU+8rN25ki0mQpFerJXy5OCyIS0QPce/3f5Hepj2B BM1TZWaynyzC5RryZl/SJDXr8TRvBUnlbs7w2j1yJW9roFE/2uhfL/hFUFFsTQv1 6PcMr9ocZbfpESkPguL9Ke3EBi32d33rVIsVPHBdPLSTmRJfdFzfI5f7F8zqYAW5 Ey/0EqY6LFBt2K4SY7HwTcN6I5OTQT8dALzdILIzjj3pU59ctOW6UcYJaKK1OJat N36kMz60qazfQNYMSlzWbLxW9/M3eNg4qqIXKVNofd8IT9xEqyavVk1ts7WwmY9h NYLofATTblEi1JaKC6G91NGMrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFpdXtIj YbqTHgGQ0uiUeA+XYuAmMB8GA1UdIwQYMBaAFKZt0BDaJN+K4XBr2QjLpDvROJYx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTc1My84MDUxNDU5MDFE QTcxMUUyQUFBOTRBQTEwOEIwMkNEMi9wbTNRRU5vazM0cmhjR3ZaQ011a085RTRs akUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BtM1FFTm9rMzRyaGNHdlpDTXVrTzlFNGxqRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTc1My84MDUxNDU5MDFEQTcxMUUyQUFBOTRBQTEwOEIwMkNEMi9wbTNRRU5vazM0 cmhjR3ZaQ011a085RTRsakUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3ZRIfYWcFtZcSRMEapw4poaveJFUujnEnhz5WYNfJ07IqLqDWmZBv apHjLELuiuqJTErHW3r36kQA+0Q/C8qcQRLOlDBjOYmRqaAtNj2tpIRccKOHnPVg 5bnmdnwADITwzRIeBcEcaoKIqn6SgC1Hlnq36rSFxYCmbM7beQxKS97nh7RX5pB4 aQvG6xhKVqk44o+91efC2FYxtkCHzOfSxPFdjjGSVyLh1bcafE86cbDUnnYz1L0U 0diF0Aaob444M3MdwYxOYiF4cjY+G3Uv3woM0psFknkldpakGA65H4Ot0Qp0ELYv 5XNf2hkDLd9bKq1lyRXANWe1Guf3cOtj -----END CERTIFICATE-----Generated at Thu Jun 19 18:58:30 2025 by rpki-client