$ rpki-client -vvf rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.mft File: 3Bh_yEFs5bNHuvIho2E6O0eCjog.mft (raw, json) Hash identifier: wzZJIiuCKzICKtzlc+ChTS65xgzs0HM3ieiUBcocR/4= Subject key identifier: 15:00:D2:C9:29:BC:11:1A:5D:01:20:E6:C2:EF:CF:BE:A8:29:0E:73 Authority key identifier: DC:18:7F:C8:41:6C:E5:B3:47:BA:F2:21:A3:61:3A:3B:47:82:8E:88 Certificate issuer: /CN=A91717D1/serialNumber=DC187FC8416CE5B347BAF221A3613A3B47828E88 Certificate serial: 0EEC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bh_yEFs5bNHuvIho2E6O0eCjog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.mft Manifest number: 0EE0 Signing time: Sat 14 Jun 2025 17:34:37 +0000 Manifest this update: Sat 14 Jun 2025 17:34:37 +0000 Manifest next update: Sat 21 Jun 2025 17:34:37 +0000 Files and hashes: 1: 3Bh_yEFs5bNHuvIho2E6O0eCjog.crl (hash: sotGhdqUjhSwlDXGRp0FE82Qwib6v7lJBqJyYmaXGJo=) 2: 085B4576C35711EC9F5ADC3DC4F9AE02.roa (hash: 8mq0TUcgdgyOArIdFl1Mn7GOTMSpOYLbH39QuqlMzQM=) 3: 0963FDF0C35711EC9F5ADC3DC4F9AE02.roa (hash: ZC6B1slbJ+NBUR+XleTIQLrCjIWpOaVIltQbveTaTb8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.crl rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bh_yEFs5bNHuvIho2E6O0eCjog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:34:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3820 (0xeec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91717D1, serialNumber=DC187FC8416CE5B347BAF221A3613A3B47828E88 Validity Not Before: Jun 14 17:34:37 2025 GMT Not After : Jun 21 17:34:37 2025 GMT Subject: CN=684db2ad-4a8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:65:64:28:36:8c:81:dd:bd:02:6e:e2:bf:51: 96:ae:de:d8:56:06:cb:11:52:72:af:ef:e8:d3:c5: 73:cf:50:12:4c:03:fe:14:29:5b:0d:2e:e5:43:d5: a0:53:52:ee:8c:b5:84:b1:75:5a:ec:ff:1f:69:1c: 08:8c:6d:33:22:6e:2f:4b:67:78:59:74:09:d7:0d: 32:84:9b:b5:62:99:95:1b:08:9a:c7:68:c5:25:be: 55:43:be:a0:a8:6f:1e:48:a4:3e:fe:28:1a:7b:02: 0e:4f:64:0f:e0:3d:6e:53:5c:86:16:e9:60:a3:38: 47:6c:fe:c5:40:d0:17:97:00:9c:7f:64:94:b7:dd: 14:2a:dc:7d:6a:d8:57:48:c4:f0:26:79:d8:f7:2c: 3c:51:cd:fe:2b:0b:87:29:bd:40:af:b6:87:62:c9: 3b:b6:f1:37:ef:c0:1d:a9:b2:d1:67:e8:1f:9a:e9: ee:9f:0f:d6:64:eb:eb:53:10:be:64:3e:6e:89:1f: 83:d9:5e:91:3a:65:b4:15:44:f7:34:57:29:f1:fd: a8:ad:f9:91:2e:94:57:cd:5f:62:72:75:9a:9f:d9: ff:19:18:df:1a:6a:d2:a1:4e:95:9b:16:48:e8:17: 58:71:28:76:50:0b:28:d7:da:4d:e7:c2:c6:23:f2: 60:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:00:D2:C9:29:BC:11:1A:5D:01:20:E6:C2:EF:CF:BE:A8:29:0E:73 X509v3 Authority Key Identifier: keyid:DC:18:7F:C8:41:6C:E5:B3:47:BA:F2:21:A3:61:3A:3B:47:82:8E:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bh_yEFs5bNHuvIho2E6O0eCjog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:a4:b1:d4:9b:ec:a9:88:94:10:20:53:0f:a6:fc:59:60:13: 1f:2f:6e:52:17:e6:be:00:bc:56:d9:6c:59:69:ba:4e:ad:e5: 5a:3a:8a:51:60:4c:73:3a:2b:22:94:e9:c0:32:6d:d0:6a:4d: d8:8a:c3:70:6e:07:e6:6f:32:38:fb:f5:9d:19:b7:f6:8c:75: b6:2d:68:09:61:84:08:30:ff:aa:11:41:ce:ce:01:00:05:8d: f6:e5:6c:06:ae:4d:1d:35:9b:e9:32:d8:81:8d:66:81:a1:5f: d0:cd:a9:77:19:fb:01:91:fd:39:ea:b0:28:8f:e4:00:1e:36: 66:b2:e3:5d:b1:8a:79:a2:ea:65:9d:e6:82:4c:5c:3c:56:49: 97:7a:63:d7:ce:f8:60:81:99:5c:d0:6f:a5:28:fe:50:4b:e1: 3e:61:1d:b1:93:af:50:8b:c8:ef:45:d1:8b:52:f3:c9:01:71: a7:08:61:18:80:58:02:d4:03:8a:34:3b:6f:17:0d:1f:f5:8e: 7f:12:77:a5:95:30:01:55:18:5f:43:62:50:0c:b7:5e:6e:b3: 44:59:ea:d8:36:9e:45:89:82:a2:ae:e3:57:6c:04:5c:ee:04: 0c:a8:f8:87:19:31:f8:50:28:13:c1:98:9f:81:07:84:8c:a7: f1:bc:b7:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDuwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE3RDExMTAvBgNVBAUTKERDMTg3RkM4NDE2Q0U1QjM0N0JBRjIyMUEzNjEzQTNC NDc4MjhFODgwHhcNMjUwNjE0MTczNDM3WhcNMjUwNjIxMTczNDM3WjAYMRYwFAYD VQQDEw02ODRkYjJhZC00YThmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuWVkKDaMgd29Am7iv1GWrt7YVgbLEVJyr+/o08Vzz1ASTAP+FClbDS7lQ9Wg U1LujLWEsXVa7P8faRwIjG0zIm4vS2d4WXQJ1w0yhJu1YpmVGwiax2jFJb5VQ76g qG8eSKQ+/igaewIOT2QP4D1uU1yGFulgozhHbP7FQNAXlwCcf2SUt90UKtx9athX SMTwJnnY9yw8Uc3+KwuHKb1Ar7aHYsk7tvE378AdqbLRZ+gfmununw/WZOvrUxC+ ZD5uiR+D2V6ROmW0FUT3NFcp8f2orfmRLpRXzV9icnWan9n/GRjfGmrSoU6VmxZI 6BdYcSh2UAso19pN58LGI/JgBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBUA0skp vBEaXQEg5sLvz76oKQ5zMB8GA1UdIwQYMBaAFNwYf8hBbOWzR7ryIaNhOjtHgo6I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTdEMS85QTlCNDhBMjgy QTMxMUU5OUU1ODIzODRDNEY5QUUwMi8zQmhfeUVGczViTkh1dklobzJFNk8wZUNq b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNCaF95RUZzNWJOSHV2SWhvMkU2TzBlQ2pvZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTdEMS85QTlCNDhBMjgyQTMxMUU5OUU1ODIzODRDNEY5QUUwMi8zQmhfeUVGczVi Tkh1dklobzJFNk8wZUNqb2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNpLHUm+ypiJQQIFMPpvxZYBMfL25SF+a+ALxW2WxZabpOreVaOopR YExzOisilOnAMm3Qak3YisNwbgfmbzI4+/WdGbf2jHW2LWgJYYQIMP+qEUHOzgEA BY325WwGrk0dNZvpMtiBjWaBoV/Qzal3GfsBkf056rAoj+QAHjZmsuNdsYp5oupl neaCTFw8VkmXemPXzvhggZlc0G+lKP5QS+E+YR2xk69Qi8jvRdGLUvPJAXGnCGEY gFgC1AOKNDtvFw0f9Y5/EnellTABVRhfQ2JQDLdebrNEWerYNp5FiYKiruNXbARc 7gQMqPiHGTH4UCgTwZifgQeEjKfxvLdm -----END CERTIFICATE-----Generated at Sun Jun 15 10:18:21 2025 by rpki-client