$ rpki-client -vvf rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.mft File: g3GOntShsiknnjylVdRNbh_KjMU.mft (raw, json) Hash identifier: uuxUHvMJRQ1LJhSzvpqhgVYKI9ECYDBsmOqLQaJcoBM= Subject key identifier: C1:00:93:34:15:FE:C9:6B:07:09:0F:2A:7E:48:63:BA:78:41:D4:F6 Authority key identifier: 83:71:8E:9E:D4:A1:B2:29:27:9E:3C:A5:55:D4:4D:6E:1F:CA:8C:C5 Certificate issuer: /CN=A917A17B/serialNumber=83718E9ED4A1B229279E3CA555D44D6E1FCA8CC5 Certificate serial: 0C56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3GOntShsiknnjylVdRNbh_KjMU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.mft Manifest number: 0C4B Signing time: Thu 12 Jun 2025 18:19:29 +0000 Manifest this update: Thu 12 Jun 2025 18:19:29 +0000 Manifest next update: Thu 19 Jun 2025 18:19:29 +0000 Files and hashes: 1: g3GOntShsiknnjylVdRNbh_KjMU.crl (hash: cBzdkZ9EiCYljB6Aj86ffsH14JlrJEHb9RFh4OZdMB4=) 2: A473C9A008F311EE98719810C4F9AE02.roa (hash: I+dyDrUC3DvMgCPW4jStqejUHX8a7vo0aXHEIsgKIwo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.crl rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3GOntShsiknnjylVdRNbh_KjMU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 18:19:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3158 (0xc56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A17B, serialNumber=83718E9ED4A1B229279E3CA555D44D6E1FCA8CC5 Validity Not Before: Jun 12 18:19:29 2025 GMT Not After : Jun 19 18:19:29 2025 GMT Subject: CN=684b1a31-3a45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:bf:42:3f:ca:de:69:96:31:00:54:87:8e:93: 6d:b4:28:db:b1:6a:a9:e0:b3:83:71:85:7f:97:07: 03:7d:72:ad:9d:64:a2:a0:b7:08:51:64:ef:ee:fe: 31:ec:35:eb:b5:8c:74:c8:b8:9f:f9:ae:38:d1:1d: 59:51:b2:c9:96:d0:c0:03:1c:0b:3c:85:5e:31:c3: 7d:30:b9:0a:47:72:7d:f7:2f:dd:b0:e6:fe:2a:be: 96:a3:35:99:71:3e:6c:34:90:b0:ff:7a:21:f6:bf: fb:9a:14:1a:f7:d7:9c:18:1f:36:c4:5a:c4:46:8c: 69:07:73:62:24:c0:1d:5d:98:a0:2b:ef:22:aa:1e: 67:56:71:1d:88:f6:00:73:c2:65:92:53:aa:99:76: bb:c8:c4:dd:2b:f8:ad:8c:1d:72:ad:97:c5:f3:2c: 86:bf:44:da:68:2d:b5:e4:02:f9:57:74:63:75:f5: 99:66:e8:ba:2a:cc:c3:dd:0b:2a:62:04:8f:e7:bf: f8:f7:a8:80:27:04:81:b6:23:50:d6:f9:69:00:cf: 53:bf:dd:f8:62:35:1f:f5:e3:5d:d2:df:b7:78:c5: d3:55:5a:a3:52:c5:48:80:4d:48:30:fe:94:da:c7: a4:9c:d3:a2:b2:ed:25:f5:2e:1f:86:02:03:94:75: b9:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:00:93:34:15:FE:C9:6B:07:09:0F:2A:7E:48:63:BA:78:41:D4:F6 X509v3 Authority Key Identifier: keyid:83:71:8E:9E:D4:A1:B2:29:27:9E:3C:A5:55:D4:4D:6E:1F:CA:8C:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3GOntShsiknnjylVdRNbh_KjMU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:be:e7:c5:6a:b9:53:78:36:bb:0d:77:e7:22:1d:0f:a7:80: 5b:74:a1:f2:9d:0a:7e:b3:9e:07:da:66:49:7d:10:fe:48:30: 2d:88:36:9b:92:8a:08:5a:42:76:1d:53:54:cf:18:6d:d2:eb: b7:94:e0:24:f1:1f:e1:dc:68:01:78:c0:cf:ee:f5:8c:e7:ad: 14:55:59:68:b6:83:43:e9:88:c6:a4:c0:b4:79:7c:8c:8a:2c: be:c3:84:70:92:01:d2:dd:16:32:20:de:1c:31:65:67:1a:67: af:36:f8:89:15:5a:f0:e4:e6:4e:a5:9d:9b:6a:d6:cc:45:3a: 81:47:38:79:88:df:69:72:5e:cf:95:6f:ea:db:21:85:b7:9a: 72:8d:4b:6f:79:9b:8b:66:3e:b7:f0:79:88:f6:97:3c:af:c8: 55:66:dc:f3:e0:c0:8f:b7:7e:e4:0d:27:a1:73:8e:ad:e9:a9: 7e:c1:ba:01:e4:fc:24:ca:32:6a:0b:30:ea:10:8e:87:7d:cb: 20:68:45:13:63:7f:b2:9e:50:51:ee:4c:a5:f2:6d:92:6e:8d: 61:4a:bd:dd:da:f1:9b:50:bc:b4:f0:36:e1:93:80:fe:b8:65: ca:4d:24:36:ca:c7:33:5f:e1:f0:9b:10:b8:20:76:df:d9:e3: 30:99:10:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0ExN0IxMTAvBgNVBAUTKDgzNzE4RTlFRDRBMUIyMjkyNzlFM0NBNTU1RDQ0RDZF MUZDQThDQzUwHhcNMjUwNjEyMTgxOTI5WhcNMjUwNjE5MTgxOTI5WjAYMRYwFAYD VQQDEw02ODRiMWEzMS0zYTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8r9CP8reaZYxAFSHjpNttCjbsWqp4LODcYV/lwcDfXKtnWSioLcIUWTv7v4x 7DXrtYx0yLif+a440R1ZUbLJltDAAxwLPIVeMcN9MLkKR3J99y/dsOb+Kr6WozWZ cT5sNJCw/3oh9r/7mhQa99ecGB82xFrERoxpB3NiJMAdXZigK+8iqh5nVnEdiPYA c8JlklOqmXa7yMTdK/itjB1yrZfF8yyGv0TaaC215AL5V3RjdfWZZui6KszD3Qsq YgSP57/496iAJwSBtiNQ1vlpAM9Tv934YjUf9eNd0t+3eMXTVVqjUsVIgE1IMP6U 2seknNOisu0l9S4fhgIDlHW5QwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMEAkzQV /slrBwkPKn5IY7p4QdT2MB8GA1UdIwQYMBaAFINxjp7UobIpJ548pVXUTW4fyozF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTE3Qi84NTM5NUQ2RTA2 RDMxMUVBQkE1RDVBNDlDNEY5QUUwMi9nM0dPbnRTaHNpa25uanlsVmRSTmJoX0tq TVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2czR09udFNoc2lrbm5qeWxWZFJOYmhfS2pNVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTE3Qi84NTM5NUQ2RTA2RDMxMUVBQkE1RDVBNDlDNEY5QUUwMi9nM0dPbnRTaHNp a25uanlsVmRSTmJoX0tqTVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8vufFarlTeDa7DXfnIh0Pp4BbdKHynQp+s54H2mZJfRD+SDAtiDab kooIWkJ2HVNUzxht0uu3lOAk8R/h3GgBeMDP7vWM560UVVlotoND6YjGpMC0eXyM iiy+w4RwkgHS3RYyIN4cMWVnGmevNviJFVrw5OZOpZ2batbMRTqBRzh5iN9pcl7P lW/q2yGFt5pyjUtveZuLZj638HmI9pc8r8hVZtzz4MCPt37kDSehc46t6al+wboB 5PwkyjJqCzDqEI6HfcsgaEUTY3+ynlBR7kyl8m2Sbo1hSr3d2vGbULy08Dbhk4D+ uGXKTSQ2ysczX+HwmxC4IHbf2eMwmRBT -----END CERTIFICATE-----Generated at Sat Jun 14 19:30:08 2025 by rpki-client