$ rpki-client -vvf rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft File: S3IqOmeTvzLJvPUuTncuCm86Yxk.mft (raw, json) Hash identifier: TBfbJ7BQvPM9jiyXF/Nmnd8LFEE0ccUSVgmouOc+oxA= Subject key identifier: A6:AD:04:75:55:83:4D:F4:26:D6:8A:F8:4A:56:17:63:1F:F2:CB:F7 Authority key identifier: 4B:72:2A:3A:67:93:BF:32:C9:BC:F5:2E:4E:77:2E:0A:6F:3A:63:19 Certificate issuer: /CN=A917A67E/serialNumber=4B722A3A6793BF32C9BCF52E4E772E0A6F3A6319 Certificate serial: 0172 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft Manifest number: 016F Signing time: Sun 15 Jun 2025 03:03:36 +0000 Manifest this update: Sun 15 Jun 2025 03:03:35 +0000 Manifest next update: Sun 22 Jun 2025 03:03:35 +0000 Files and hashes: 1: S3IqOmeTvzLJvPUuTncuCm86Yxk.crl (hash: HEGol48GCoxYQrl2GNrfbVv42zX0CX5DsnTOosbckCc=) 2: E3901F981BD711EEB9597921C4F9AE02.roa (hash: gXQtBkkUAb9x4NlHq240u/Z9LPp8ccDpu+5MVL1TOAI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.crl rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 370 (0x172) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A67E, serialNumber=4B722A3A6793BF32C9BCF52E4E772E0A6F3A6319 Validity Not Before: Jun 15 03:03:35 2025 GMT Not After : Jun 22 03:03:35 2025 GMT Subject: CN=684e3808-3046 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:bb:86:92:18:d2:c2:15:bc:78:ba:e9:61:56: 9e:b1:40:e0:1b:7a:44:06:f0:fe:6c:45:29:35:58: de:c7:bc:bf:ee:06:1d:80:8d:1e:d5:7f:7d:78:d7: 2a:3e:be:f9:48:31:79:23:80:f1:3d:a5:c0:8f:ce: 4c:4a:b2:98:68:84:2d:2f:a4:0f:2b:86:d5:a8:c6: ef:d8:75:86:2c:81:62:14:a8:14:a4:36:84:00:5e: c2:dd:dc:e8:30:08:1d:30:9f:84:f6:85:a9:4d:5c: 30:a9:c9:df:a0:07:38:e5:9c:ae:de:76:98:1d:0d: 1b:7f:ef:6a:0c:39:0e:79:ff:a0:ea:0b:65:61:27: 02:ea:cb:74:70:05:e5:ed:3e:61:e7:fb:5b:12:a7: dd:8f:c8:11:9e:f1:eb:36:67:73:76:35:5b:62:05: 3b:ee:2a:31:5f:1b:71:52:b6:39:8b:df:0c:64:39: 56:9f:3f:ed:8c:61:6a:52:3c:3a:91:48:64:cd:f9: b4:c5:4c:d5:81:46:4e:20:2a:f4:da:e2:30:f0:d8: c6:5f:3e:18:91:58:14:fd:25:11:21:e1:87:2e:50: 7c:c9:a8:30:65:f9:e2:16:29:f0:ba:b2:78:49:4e: b5:5c:7e:65:94:54:2a:01:53:4e:19:4f:32:43:a8: 37:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:AD:04:75:55:83:4D:F4:26:D6:8A:F8:4A:56:17:63:1F:F2:CB:F7 X509v3 Authority Key Identifier: keyid:4B:72:2A:3A:67:93:BF:32:C9:BC:F5:2E:4E:77:2E:0A:6F:3A:63:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:96:88:19:ba:f9:90:d2:9f:97:46:b0:cf:e7:ed:78:c6:fa: d5:d0:71:83:52:33:f3:c9:0c:c2:25:8d:07:79:bf:03:95:9d: e8:98:42:66:6e:43:52:83:a3:81:36:4e:88:93:e1:d6:9c:d8: 0a:cd:ef:27:53:d3:e7:bb:f4:1f:07:ef:2d:09:57:d1:bc:6e: db:fb:92:11:1c:e5:f2:55:25:8a:75:df:99:e7:cd:13:9e:df: 13:28:88:59:63:17:52:f2:76:ea:79:01:f3:06:f6:7a:df:1e: 45:39:c6:2f:da:81:43:ad:83:bf:cc:4f:0c:42:eb:1f:8b:1e: e2:4e:47:c9:b7:63:82:1e:de:4b:b2:87:7e:24:60:87:57:35: b5:13:69:82:ff:41:7c:40:90:34:1d:6a:e0:16:97:4e:82:88: fa:1a:98:e4:fb:49:42:34:d5:a1:1d:47:6a:f7:a7:d2:a6:07: d2:07:3e:d5:90:34:1e:25:6c:4b:92:82:11:79:fe:48:cb:95: 04:31:82:26:6f:17:58:a0:5d:f5:30:50:55:85:bf:1e:d1:ba: 05:72:25:6e:7e:c0:82:d0:21:f2:d3:b5:71:85:5a:08:64:92: 7e:e1:20:4a:e1:c8:7e:f3:75:69:33:af:85:c4:73:8e:bd:c0: 01:70:46:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E2N0UxMTAvBgNVBAUTKDRCNzIyQTNBNjc5M0JGMzJDOUJDRjUyRTRFNzcyRTBB NkYzQTYzMTkwHhcNMjUwNjE1MDMwMzM1WhcNMjUwNjIyMDMwMzM1WjAYMRYwFAYD VQQDEw02ODRlMzgwOC0zMDQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApbuGkhjSwhW8eLrpYVaesUDgG3pEBvD+bEUpNVjex7y/7gYdgI0e1X99eNcq Pr75SDF5I4DxPaXAj85MSrKYaIQtL6QPK4bVqMbv2HWGLIFiFKgUpDaEAF7C3dzo MAgdMJ+E9oWpTVwwqcnfoAc45Zyu3naYHQ0bf+9qDDkOef+g6gtlYScC6st0cAXl 7T5h5/tbEqfdj8gRnvHrNmdzdjVbYgU77ioxXxtxUrY5i98MZDlWnz/tjGFqUjw6 kUhkzfm0xUzVgUZOICr02uIw8NjGXz4YkVgU/SURIeGHLlB8yagwZfniFinwurJ4 SU61XH5llFQqAVNOGU8yQ6g3wQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKatBHVV g030JtaK+EpWF2Mf8sv3MB8GA1UdIwQYMBaAFEtyKjpnk78yybz1Lk53LgpvOmMZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTY3RS82N0I0Q0I4NDFC RDMxMUVFOTY1RkVGMzhDNEY5QUUwMi9TM0lxT21lVHZ6TEp2UFV1VG5jdUNtODZZ eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1MzSXFPbWVUdnpMSnZQVXVUbmN1Q204Nll4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTY3RS82N0I0Q0I4NDFCRDMxMUVFOTY1RkVGMzhDNEY5QUUwMi9TM0lxT21lVHZ6 TEp2UFV1VG5jdUNtODZZeGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmlogZuvmQ0p+XRrDP5+14xvrV0HGDUjPzyQzCJY0Heb8DlZ3omEJm bkNSg6OBNk6Ik+HWnNgKze8nU9Pnu/QfB+8tCVfRvG7b+5IRHOXyVSWKdd+Z580T nt8TKIhZYxdS8nbqeQHzBvZ63x5FOcYv2oFDrYO/zE8MQusfix7iTkfJt2OCHt5L sod+JGCHVzW1E2mC/0F8QJA0HWrgFpdOgoj6Gpjk+0lCNNWhHUdq96fSpgfSBz7V kDQeJWxLkoIRef5Iy5UEMYImbxdYoF31MFBVhb8e0boFciVufsCC0CHy07VxhVoI ZJJ+4SBK4ch+83VpM6+FxHOOvcABcEb3 -----END CERTIFICATE-----Generated at Sun Jun 15 08:40:42 2025 by rpki-client