$ rpki-client -vvf rpki.apnic.net/member_repository/A917CD31/75F57B10823A11EB8AE2360AC4F9AE02/3HxGdMlvt2fql8B49oDvV07eu78.mft File: 3HxGdMlvt2fql8B49oDvV07eu78.mft (raw, json) Hash identifier: g3YaVLbatlq0EYoNXk7Iy9Jqm0EAEtAL2wEix8ov4Os= Subject key identifier: 1B:6D:EA:A1:87:D7:5A:7D:FD:B9:96:DA:9D:C0:4D:9F:E1:83:5D:EB Authority key identifier: DC:7C:46:74:C9:6F:B7:67:EA:97:C0:78:F6:80:EF:57:4E:DE:BB:BF Certificate issuer: /CN=A917CD31/serialNumber=DC7C4674C96FB767EA97C078F680EF574EDEBBBF Certificate serial: 0675 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3HxGdMlvt2fql8B49oDvV07eu78.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917CD31/75F57B10823A11EB8AE2360AC4F9AE02/3HxGdMlvt2fql8B49oDvV07eu78.mft Manifest number: 066E Signing time: Fri 20 Jun 2025 22:12:58 +0000 Manifest this update: Fri 20 Jun 2025 22:12:58 +0000 Manifest next update: Fri 27 Jun 2025 22:12:58 +0000 Files and hashes: 1: 3HxGdMlvt2fql8B49oDvV07eu78.crl (hash: DkZjIlReFp1TH0UcQVaUG7SFBsKrJ2ovnvlEkaR8yXg=) 2: A88A17FA823C11EBB35EF50FC4F9AE02.roa (hash: ut9kkhaYpPkueMT9PUXekkExmboRUtj4jv3lyVcffmc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917CD31/75F57B10823A11EB8AE2360AC4F9AE02/3HxGdMlvt2fql8B49oDvV07eu78.crl rsync://rpki.apnic.net/member_repository/A917CD31/75F57B10823A11EB8AE2360AC4F9AE02/3HxGdMlvt2fql8B49oDvV07eu78.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3HxGdMlvt2fql8B49oDvV07eu78.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Jun 2025 22:12:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1653 (0x675) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917CD31, serialNumber=DC7C4674C96FB767EA97C078F680EF574EDEBBBF Validity Not Before: Jun 20 22:12:58 2025 GMT Not After : Jun 27 22:12:58 2025 GMT Subject: CN=6855dcea-3cd7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:11:aa:54:7d:31:41:86:6e:f3:67:94:27:c8: 67:bf:dd:e4:d0:6b:7f:af:11:8f:d5:0e:c0:4a:d2: 61:9b:c5:4f:9a:7c:4b:92:da:d1:ae:05:0b:9b:ae: 29:4e:33:48:92:93:c6:76:c1:0a:92:1b:e9:85:2c: b2:f3:f4:01:fe:21:57:f6:2b:c8:92:23:82:e8:15: 1c:6c:18:2b:51:3c:72:3f:b7:f7:91:95:90:e5:51: e3:56:3a:fc:7e:85:42:ad:0f:8a:75:b2:2a:52:df: 2b:de:20:9e:91:2e:16:6e:ff:23:fd:2a:a1:e3:26: 33:9a:96:08:0e:b7:d4:1b:f7:52:55:88:f4:75:33: 14:cc:75:8c:b6:d2:1e:2a:44:ce:06:c9:60:c6:fc: b7:0e:4f:5d:7c:12:18:f5:cc:d7:fd:bf:7e:5f:5d: 09:9b:21:72:73:77:a3:09:40:b9:16:dd:37:d1:0a: 3b:de:81:54:ee:93:69:0c:4b:58:5a:fa:ad:14:8c: c7:58:30:ba:17:85:a7:4b:30:dc:ef:d9:a9:b0:7c: bc:bb:18:17:71:74:b6:29:cc:7c:43:89:1d:39:47: d7:de:7d:5c:33:c3:90:41:52:c1:bc:2d:94:92:bd: a7:cd:ba:b1:1e:ec:d3:32:ff:ba:ab:13:fb:1a:cc: 2d:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:6D:EA:A1:87:D7:5A:7D:FD:B9:96:DA:9D:C0:4D:9F:E1:83:5D:EB X509v3 Authority Key Identifier: keyid:DC:7C:46:74:C9:6F:B7:67:EA:97:C0:78:F6:80:EF:57:4E:DE:BB:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917CD31/75F57B10823A11EB8AE2360AC4F9AE02/3HxGdMlvt2fql8B49oDvV07eu78.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3HxGdMlvt2fql8B49oDvV07eu78.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917CD31/75F57B10823A11EB8AE2360AC4F9AE02/3HxGdMlvt2fql8B49oDvV07eu78.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:46:f6:a2:25:cd:b9:30:f3:2b:93:35:8a:b0:be:60:90:32: ac:63:d2:ec:8c:d9:ed:02:77:21:15:b4:1f:66:14:81:49:f0: ff:0c:be:1d:ea:54:b5:cb:c6:e4:7a:a4:b9:9b:e8:39:9c:56: b9:48:9c:65:6d:12:48:f8:31:95:d1:94:72:03:0c:df:f7:51: d0:cc:6c:c8:6e:68:16:ce:3d:6a:c4:49:df:9e:29:c1:e5:f2: 74:9a:28:5d:c6:c2:11:e7:ed:22:73:f6:b3:b1:1f:40:55:13: 12:51:e7:98:d6:64:eb:e2:71:86:1a:ad:d9:35:00:7f:ba:ea: 7f:81:d7:8f:e1:20:45:e4:5d:74:ff:8c:cc:74:3b:73:e5:4b: a3:ae:cb:63:da:7b:e2:6b:17:31:2b:7d:87:06:ee:2a:cf:a7: 7b:fc:47:5f:64:cb:ec:23:3c:cf:a6:a0:a1:26:b6:fd:f4:30: a5:8d:e3:2b:2c:38:d7:5c:ab:f1:a0:bb:3a:27:16:5c:7a:c3: 0d:ad:ea:51:88:b6:18:15:b9:a4:f2:3b:d7:33:19:af:a3:b3: 88:fa:73:27:71:cb:f6:40:58:98:07:5b:03:35:47:bc:de:97: 16:5c:13:a3:87:ec:25:f0:b2:21:2b:ae:f0:bb:96:6e:9b:5d: 73:ee:1f:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0NEMzExMTAvBgNVBAUTKERDN0M0Njc0Qzk2RkI3NjdFQTk3QzA3OEY2ODBFRjU3 NEVERUJCQkYwHhcNMjUwNjIwMjIxMjU4WhcNMjUwNjI3MjIxMjU4WjAYMRYwFAYD VQQDEw02ODU1ZGNlYS0zY2Q3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAthGqVH0xQYZu82eUJ8hnv93k0Gt/rxGP1Q7AStJhm8VPmnxLktrRrgULm64p TjNIkpPGdsEKkhvphSyy8/QB/iFX9ivIkiOC6BUcbBgrUTxyP7f3kZWQ5VHjVjr8 foVCrQ+KdbIqUt8r3iCekS4Wbv8j/Sqh4yYzmpYIDrfUG/dSVYj0dTMUzHWMttIe KkTOBslgxvy3Dk9dfBIY9czX/b9+X10JmyFyc3ejCUC5Ft030Qo73oFU7pNpDEtY WvqtFIzHWDC6F4WnSzDc79mpsHy8uxgXcXS2Kcx8Q4kdOUfX3n1cM8OQQVLBvC2U kr2nzbqxHuzTMv+6qxP7GswtswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBtt6qGH 11p9/bmW2p3ATZ/hg13rMB8GA1UdIwQYMBaAFNx8RnTJb7dn6pfAePaA71dO3ru/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Q0QzMS83NUY1N0IxMDgy M0ExMUVCOEFFMjM2MEFDNEY5QUUwMi8zSHhHZE1sdnQyZnFsOEI0OW9EdlYwN2V1 NzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNIeEdkTWx2dDJmcWw4QjQ5b0R2VjA3ZXU3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 Q0QzMS83NUY1N0IxMDgyM0ExMUVCOEFFMjM2MEFDNEY5QUUwMi8zSHhHZE1sdnQy ZnFsOEI0OW9EdlYwN2V1NzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDRvaiJc25MPMrkzWKsL5gkDKsY9LsjNntAnchFbQfZhSBSfD/DL4d 6lS1y8bkeqS5m+g5nFa5SJxlbRJI+DGV0ZRyAwzf91HQzGzIbmgWzj1qxEnfninB 5fJ0mihdxsIR5+0ic/azsR9AVRMSUeeY1mTr4nGGGq3ZNQB/uup/gdeP4SBF5F10 /4zMdDtz5Uujrstj2nviaxcxK32HBu4qz6d7/EdfZMvsIzzPpqChJrb99DCljeMr LDjXXKvxoLs6JxZcesMNrepRiLYYFbmk8jvXMxmvo7OI+nMnccv2QFiYB1sDNUe8 3pcWXBOjh+wl8LIhK67wu5Zum11z7h9f -----END CERTIFICATE-----Generated at Sat Jun 21 19:00:59 2025 by rpki-client