$ rpki-client -vvf rpki.apnic.net/member_repository/A917C11A/C086EA985A3911EB8E59C266C4F9AE02/3oFz59KP6tHsOpLJdljacyhQk-U.mft File: 3oFz59KP6tHsOpLJdljacyhQk-U.mft (raw, json) Hash identifier: kPDDQWYfsc23XiOJ6jYahKZW+TvFfHAX0w1kt+9Q1xI= Subject key identifier: CF:2A:D1:2D:4C:E4:FE:11:5E:AE:22:03:A6:66:B7:16:97:7E:1C:B9 Authority key identifier: DE:81:73:E7:D2:8F:EA:D1:EC:3A:92:C9:76:58:DA:73:28:50:93:E5 Certificate issuer: /CN=A917C11A/serialNumber=DE8173E7D28FEAD1EC3A92C97658DA73285093E5 Certificate serial: 06D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oFz59KP6tHsOpLJdljacyhQk-U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C11A/C086EA985A3911EB8E59C266C4F9AE02/3oFz59KP6tHsOpLJdljacyhQk-U.mft Manifest number: 06CC Signing time: Thu 12 Jun 2025 21:43:29 +0000 Manifest this update: Thu 12 Jun 2025 21:43:29 +0000 Manifest next update: Thu 19 Jun 2025 21:43:29 +0000 Files and hashes: 1: 3oFz59KP6tHsOpLJdljacyhQk-U.crl (hash: QIV3WbYK5ye5OjcfBg5du3JmVsXQVfXkGWG7j/ZkQxU=) 2: 4002E4BA5A3B11EBA4020D68C4F9AE02.roa (hash: owZNdsc75aBAEeMxk8dZOIuYb/+Ukc36obf7oLhTJGg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C11A/C086EA985A3911EB8E59C266C4F9AE02/3oFz59KP6tHsOpLJdljacyhQk-U.crl rsync://rpki.apnic.net/member_repository/A917C11A/C086EA985A3911EB8E59C266C4F9AE02/3oFz59KP6tHsOpLJdljacyhQk-U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oFz59KP6tHsOpLJdljacyhQk-U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 21:43:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1746 (0x6d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C11A, serialNumber=DE8173E7D28FEAD1EC3A92C97658DA73285093E5 Validity Not Before: Jun 12 21:43:29 2025 GMT Not After : Jun 19 21:43:29 2025 GMT Subject: CN=684b4a01-fa7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:a4:98:b9:15:3f:d1:7f:aa:ea:dd:6f:4c:64: 2d:b6:bd:c1:9b:b8:e3:6b:58:26:1c:d5:33:56:b5: bb:28:43:5a:d6:28:87:14:05:88:89:c0:e1:d4:ab: 39:5a:9d:56:14:8f:e1:d6:76:28:a4:ee:b8:7e:c0: 98:25:66:20:0c:9a:1b:42:0f:11:00:61:18:ac:4e: 9b:d7:22:bd:e4:5b:a7:2b:a7:0a:6f:d5:a1:a2:f3: 94:63:8d:58:64:61:bc:e0:64:60:df:43:22:80:39: 8f:bc:25:05:7c:6c:6f:58:56:cd:be:37:d6:49:7d: f1:53:0b:57:0c:68:d5:89:6e:d8:d7:3d:21:a4:06: e6:98:71:95:e7:a3:7f:4e:d3:e2:79:4a:d3:c2:e1: ec:17:af:41:12:6b:68:54:14:fb:16:64:a6:e9:a2: 0c:19:02:b6:12:0b:5f:90:c9:b4:fd:2c:32:1c:b4: 15:81:11:97:5b:9d:6e:b1:30:5b:1c:65:54:76:af: f7:7c:0a:d3:94:c3:c8:e4:58:3d:14:8e:6c:58:6c: ff:af:53:57:6a:cb:e0:5a:dc:7c:ba:4a:56:03:7d: 6e:09:74:0c:20:e7:d9:d5:35:d3:4b:b8:ea:7c:03: 75:47:74:5f:95:6f:e2:d1:0c:08:4d:1e:a7:bd:5a: 69:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:2A:D1:2D:4C:E4:FE:11:5E:AE:22:03:A6:66:B7:16:97:7E:1C:B9 X509v3 Authority Key Identifier: keyid:DE:81:73:E7:D2:8F:EA:D1:EC:3A:92:C9:76:58:DA:73:28:50:93:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C11A/C086EA985A3911EB8E59C266C4F9AE02/3oFz59KP6tHsOpLJdljacyhQk-U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oFz59KP6tHsOpLJdljacyhQk-U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C11A/C086EA985A3911EB8E59C266C4F9AE02/3oFz59KP6tHsOpLJdljacyhQk-U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:7d:93:e5:38:0a:cd:a9:21:f7:02:7c:15:88:c5:18:8e:d2: cb:0a:2a:e5:46:ea:e1:82:94:47:30:c4:5a:15:a9:62:42:e4: 47:b6:18:33:95:2d:11:d7:7e:83:e0:e0:a9:ac:aa:9d:90:47: 67:3d:20:b9:37:02:bd:62:74:c9:fc:63:be:50:96:34:87:44: aa:a6:d9:47:8c:18:a9:11:08:fb:10:f7:b5:26:87:b5:0c:d8: 81:d4:d1:16:28:8e:91:f8:91:0b:ad:b9:6c:db:72:c0:11:d7: 71:d0:09:1a:ef:58:18:3c:6c:af:9a:54:78:3b:b5:00:c2:70: df:c2:d6:63:5e:a7:24:f2:f6:f6:88:65:1c:c4:c3:8c:ca:fd: 68:55:d9:d1:1e:70:34:8f:2a:80:ec:7f:50:dc:1b:69:4c:52: 99:e0:ba:94:75:c2:6e:ef:ec:98:4c:8b:99:51:fd:5a:1e:eb: ed:7b:11:8e:21:f2:38:47:25:42:56:37:f4:9f:59:ea:8a:39: c4:75:89:69:a2:b0:87:6a:72:4e:46:f7:cc:b3:b9:c2:34:02: cf:62:0d:a1:23:69:17:70:35:cb:aa:00:28:86:ad:41:98:05: 6f:54:80:9f:b6:6a:03:a6:c5:7d:0b:20:84:39:d6:92:56:0a: a0:27:4f:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0MxMUExMTAvBgNVBAUTKERFODE3M0U3RDI4RkVBRDFFQzNBOTJDOTc2NThEQTcz Mjg1MDkzRTUwHhcNMjUwNjEyMjE0MzI5WhcNMjUwNjE5MjE0MzI5WjAYMRYwFAYD VQQDEw02ODRiNGEwMS1mYTdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyKSYuRU/0X+q6t1vTGQttr3Bm7jja1gmHNUzVrW7KENa1iiHFAWIicDh1Ks5 Wp1WFI/h1nYopO64fsCYJWYgDJobQg8RAGEYrE6b1yK95FunK6cKb9WhovOUY41Y ZGG84GRg30MigDmPvCUFfGxvWFbNvjfWSX3xUwtXDGjViW7Y1z0hpAbmmHGV56N/ TtPieUrTwuHsF69BEmtoVBT7FmSm6aIMGQK2EgtfkMm0/SwyHLQVgRGXW51usTBb HGVUdq/3fArTlMPI5Fg9FI5sWGz/r1NXasvgWtx8ukpWA31uCXQMIOfZ1TXTS7jq fAN1R3RflW/i0QwITR6nvVppiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM8q0S1M 5P4RXq4iA6ZmtxaXfhy5MB8GA1UdIwQYMBaAFN6Bc+fSj+rR7DqSyXZY2nMoUJPl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzExQS9DMDg2RUE5ODVB MzkxMUVCOEU1OUMyNjZDNEY5QUUwMi8zb0Z6NTlLUDZ0SHNPcExKZGxqYWN5aFFr LVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNvRno1OUtQNnRIc09wTEpkbGphY3loUWstVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzExQS9DMDg2RUE5ODVBMzkxMUVCOEU1OUMyNjZDNEY5QUUwMi8zb0Z6NTlLUDZ0 SHNPcExKZGxqYWN5aFFrLVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAofZPlOArNqSH3AnwViMUYjtLLCirlRurhgpRHMMRaFaliQuRHthgz lS0R136D4OCprKqdkEdnPSC5NwK9YnTJ/GO+UJY0h0SqptlHjBipEQj7EPe1Joe1 DNiB1NEWKI6R+JELrbls23LAEddx0Aka71gYPGyvmlR4O7UAwnDfwtZjXqck8vb2 iGUcxMOMyv1oVdnRHnA0jyqA7H9Q3BtpTFKZ4LqUdcJu7+yYTIuZUf1aHuvtexGO IfI4RyVCVjf0n1nqijnEdYlporCHanJORvfMs7nCNALPYg2hI2kXcDXLqgAohq1B mAVvVICftmoDpsV9CyCEOdaSVgqgJ0+Y -----END CERTIFICATE-----Generated at Sat Jun 14 19:26:28 2025 by rpki-client