$ rpki-client -vvf rpki.apnic.net/member_repository/A917AFE7/F8B65374291211EC8631B854C4F9AE02/3MB6nY_-N43drzzQ5Bqe9v3TFI8.mft File: 3MB6nY_-N43drzzQ5Bqe9v3TFI8.mft (raw, json) Hash identifier: yYJ+fefQUNB/h82YjkWjQbK64pKsfg9R7Zh3Z6J1J/M= Subject key identifier: 89:B4:AD:1C:77:84:34:E2:AD:F9:53:DD:3E:6B:2B:41:A3:E6:E7:A6 Authority key identifier: DC:C0:7A:9D:8F:FE:37:8D:DD:AF:3C:D0:E4:1A:9E:F6:FD:D3:14:8F Certificate issuer: /CN=A917AFE7/serialNumber=DCC07A9D8FFE378DDDAF3CD0E41A9EF6FDD3148F Certificate serial: 04B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3MB6nY_-N43drzzQ5Bqe9v3TFI8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AFE7/F8B65374291211EC8631B854C4F9AE02/3MB6nY_-N43drzzQ5Bqe9v3TFI8.mft Manifest number: 04B1 Signing time: Thu 24 Apr 2025 23:40:45 +0000 Manifest this update: Thu 24 Apr 2025 23:40:45 +0000 Manifest next update: Thu 01 May 2025 23:40:45 +0000 Files and hashes: 1: 3MB6nY_-N43drzzQ5Bqe9v3TFI8.crl (hash: bSZ5SruBB67Q6BlTgKvvvzzlNCXN7mplVbaliTUectA=) 2: D3D1604C2B6711EC8CD1C61FC4F9AE02.roa (hash: K+U5H/gEB39S0MtkniCqyAbmgU8k6WO9RKiUyR91DCc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AFE7/F8B65374291211EC8631B854C4F9AE02/3MB6nY_-N43drzzQ5Bqe9v3TFI8.crl rsync://rpki.apnic.net/member_repository/A917AFE7/F8B65374291211EC8631B854C4F9AE02/3MB6nY_-N43drzzQ5Bqe9v3TFI8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3MB6nY_-N43drzzQ5Bqe9v3TFI8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:40:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1207 (0x4b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AFE7, serialNumber=DCC07A9D8FFE378DDDAF3CD0E41A9EF6FDD3148F Validity Not Before: Apr 24 23:40:45 2025 GMT Not After : May 1 23:40:45 2025 GMT Subject: CN=680acbfd-ff13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:7d:0d:54:3b:8e:66:1e:16:2b:42:4f:6b:93: ed:6e:a5:ad:e1:74:8c:17:c2:9e:04:19:15:44:1c: 06:d5:e9:d8:8e:e5:b0:6e:b3:bd:9c:e9:86:93:4e: 8e:d8:fa:2b:a4:ae:61:c4:37:e8:cc:c9:e6:bf:b6: 8a:a1:d9:23:b2:b5:81:17:f0:87:86:55:74:a4:cb: 99:1a:58:d8:66:a1:c0:7c:5d:ab:a4:72:18:af:9a: da:31:80:64:f8:bf:07:52:b8:21:6b:25:94:c5:eb: 28:2e:f1:2b:bd:b5:9e:53:86:9c:81:48:8b:0c:49: 1a:53:f4:27:ff:23:41:66:cd:c0:a9:b7:90:cf:5d: 2a:64:54:e6:d0:bf:a0:27:f1:ac:25:b6:12:f3:83: cb:b3:3b:14:b2:6b:88:0c:dc:65:69:01:e2:ef:5a: 99:c8:f1:ad:b4:b6:e4:4f:c9:56:22:33:3d:ab:b2: ad:b5:b0:fb:e0:bc:a4:4b:08:7a:ef:d4:51:6b:42: 8b:a3:22:5f:70:07:bb:95:30:5c:31:f7:05:e0:43: c6:5e:36:42:c3:87:f9:5b:a6:85:4f:9e:30:52:80: e0:45:14:2f:ee:82:e5:72:c0:ee:94:71:2e:7e:a6: a9:e6:bf:26:66:2b:93:a7:05:f8:54:0e:ab:b6:2e: e4:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:B4:AD:1C:77:84:34:E2:AD:F9:53:DD:3E:6B:2B:41:A3:E6:E7:A6 X509v3 Authority Key Identifier: keyid:DC:C0:7A:9D:8F:FE:37:8D:DD:AF:3C:D0:E4:1A:9E:F6:FD:D3:14:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AFE7/F8B65374291211EC8631B854C4F9AE02/3MB6nY_-N43drzzQ5Bqe9v3TFI8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3MB6nY_-N43drzzQ5Bqe9v3TFI8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AFE7/F8B65374291211EC8631B854C4F9AE02/3MB6nY_-N43drzzQ5Bqe9v3TFI8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:71:78:55:13:c7:ff:e4:e8:bd:fc:ce:a9:02:45:5c:49:d6: 92:96:ed:e6:90:be:b8:f5:2b:34:c1:52:ef:b0:aa:be:ca:7c: 52:37:56:49:6b:c4:ce:4d:71:16:e3:d8:f5:e8:db:a1:20:24: e3:2b:3f:06:a0:59:97:64:9a:5d:1f:5d:ba:da:0a:e5:6e:79: 31:6e:56:c2:9f:c3:9c:a4:fb:8a:e4:7a:fc:3f:dd:cc:bc:31: 28:b4:66:c4:76:a6:c8:a0:10:24:27:88:cb:4b:66:f5:7b:54: b8:66:e9:6f:4a:d0:23:f3:d3:78:1d:ad:a4:6f:1c:60:96:6a: 98:1d:7b:18:43:a1:9a:9e:9a:ea:88:ee:b6:d8:47:e6:47:63: 8e:e3:5f:7b:1f:14:8b:e1:a1:7c:02:82:38:ef:b4:2d:53:07: c6:f8:03:e9:54:6d:1a:63:f0:cf:eb:ee:8b:69:fe:d9:95:70: 1f:ed:58:f4:b3:1b:33:bd:ec:75:46:05:d9:8e:37:72:56:2f: fc:91:ab:21:6e:97:f3:58:0c:ed:e1:5e:83:ec:87:06:a9:01: 08:75:ea:b7:73:d3:05:7a:e1:20:02:44:df:20:43:40:10:a4: a4:b5:8a:ee:34:e3:40:e5:cb:de:1f:da:1b:b7:53:7f:e5:f5: b7:f7:06:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FGRTcxMTAvBgNVBAUTKERDQzA3QTlEOEZGRTM3OEREREFGM0NEMEU0MUE5RUY2 RkREMzE0OEYwHhcNMjUwNDI0MjM0MDQ1WhcNMjUwNTAxMjM0MDQ1WjAYMRYwFAYD VQQDEw02ODBhY2JmZC1mZjEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6X0NVDuOZh4WK0JPa5PtbqWt4XSMF8KeBBkVRBwG1enYjuWwbrO9nOmGk06O 2PorpK5hxDfozMnmv7aKodkjsrWBF/CHhlV0pMuZGljYZqHAfF2rpHIYr5raMYBk +L8HUrghayWUxesoLvErvbWeU4acgUiLDEkaU/Qn/yNBZs3AqbeQz10qZFTm0L+g J/GsJbYS84PLszsUsmuIDNxlaQHi71qZyPGttLbkT8lWIjM9q7KttbD74LykSwh6 79RRa0KLoyJfcAe7lTBcMfcF4EPGXjZCw4f5W6aFT54wUoDgRRQv7oLlcsDulHEu fqap5r8mZiuTpwX4VA6rti7kIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIm0rRx3 hDTirflT3T5rK0Gj5uemMB8GA1UdIwQYMBaAFNzAep2P/jeN3a880OQanvb90xSP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUZFNy9GOEI2NTM3NDI5 MTIxMUVDODYzMUI4NTRDNEY5QUUwMi8zTUI2bllfLU40M2RyenpRNUJxZTl2M1RG STguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNNQjZuWV8tTjQzZHJ6elE1QnFlOXYzVEZJOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUZFNy9GOEI2NTM3NDI5MTIxMUVDODYzMUI4NTRDNEY5QUUwMi8zTUI2bllfLU40 M2RyenpRNUJxZTl2M1RGSTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBScXhVE8f/5Oi9/M6pAkVcSdaSlu3mkL649Ss0wVLvsKq+ynxSN1ZJ a8TOTXEW49j16NuhICTjKz8GoFmXZJpdH1262grlbnkxblbCn8OcpPuK5Hr8P93M vDEotGbEdqbIoBAkJ4jLS2b1e1S4ZulvStAj89N4Ha2kbxxglmqYHXsYQ6Ganprq iO622EfmR2OO4197HxSL4aF8AoI477QtUwfG+APpVG0aY/DP6+6Laf7ZlXAf7Vj0 sxszvex1RgXZjjdyVi/8kashbpfzWAzt4V6D7IcGqQEIdeq3c9MFeuEgAkTfIENA EKSktYruNONA5cveH9obt1N/5fW39wYi -----END CERTIFICATE-----Generated at Sat Apr 26 04:34:51 2025 by rpki-client