$ rpki-client -vvf rpki.apnic.net/member_repository/A918EF94/5B24A5C8A6C111E98C379E0FC4F9AE02/p3fkgYyg3MY4LlYlcG-YyB6TByA.mft File: p3fkgYyg3MY4LlYlcG-YyB6TByA.mft (raw, json) Hash identifier: 5tW5xRA47hV80cyNtziscrlhWdMPqlVupmayZvDWetg= Subject key identifier: 87:08:79:51:CF:84:6B:4A:9E:74:D9:18:E9:33:F8:67:52:EA:D9:04 Authority key identifier: A7:77:E4:81:8C:A0:DC:C6:38:2E:56:25:70:6F:98:C8:1E:93:07:20 Certificate issuer: /CN=A918EF94/serialNumber=A777E4818CA0DCC6382E5625706F98C81E930720 Certificate serial: 0E34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p3fkgYyg3MY4LlYlcG-YyB6TByA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EF94/5B24A5C8A6C111E98C379E0FC4F9AE02/p3fkgYyg3MY4LlYlcG-YyB6TByA.mft Manifest number: 0E2C Signing time: Sat 14 Jun 2025 17:42:22 +0000 Manifest this update: Sat 14 Jun 2025 17:42:21 +0000 Manifest next update: Sat 21 Jun 2025 17:42:21 +0000 Files and hashes: 1: p3fkgYyg3MY4LlYlcG-YyB6TByA.crl (hash: y6k6Jsy6knQrMaxUt1C/noe7n7LezKJBTwgmHBuTj7M=) 2: EE78BE36068611EDA1C2070DC4F9AE02.roa (hash: X7Dq3eZ/GJf+9yPNH4D4Wvo3ddILMQm0OljP2i+67DY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EF94/5B24A5C8A6C111E98C379E0FC4F9AE02/p3fkgYyg3MY4LlYlcG-YyB6TByA.crl rsync://rpki.apnic.net/member_repository/A918EF94/5B24A5C8A6C111E98C379E0FC4F9AE02/p3fkgYyg3MY4LlYlcG-YyB6TByA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p3fkgYyg3MY4LlYlcG-YyB6TByA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:13:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3636 (0xe34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EF94, serialNumber=A777E4818CA0DCC6382E5625706F98C81E930720 Validity Not Before: Jun 14 17:42:21 2025 GMT Not After : Jun 21 17:42:21 2025 GMT Subject: CN=684db47e-41ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:44:45:05:e6:9c:76:05:aa:69:57:d9:a1:f0: 2b:01:7f:75:dc:d9:cd:00:68:d4:e0:bb:e4:d2:02: 38:e6:c3:ec:5e:74:5b:0a:d0:44:3a:1a:7c:c4:c7: 38:f7:8a:31:73:36:d3:6d:a2:03:7f:a0:7b:f8:2a: be:6d:45:46:7d:f3:b2:cc:ab:1b:3c:75:a5:b4:f7: 5f:db:af:e2:7b:33:ea:ec:e8:ad:2b:1b:c7:09:8e: 11:e6:06:d1:41:72:98:e3:e0:0c:75:37:1c:6f:9c: 36:1f:c9:29:cb:d8:86:b8:e9:78:35:1f:c4:89:f4: 65:c6:7c:d6:a1:ce:c3:2f:1d:fe:38:c9:97:07:17: 25:3b:31:df:d6:68:e4:47:4e:b3:aa:21:47:1d:4a: 74:c8:75:d3:77:26:71:a3:b2:ca:ef:fc:43:25:7a: 99:97:ee:5f:0e:ca:c5:1b:4a:54:d5:5d:2d:7d:24: ed:f6:52:32:cb:90:18:d1:20:e8:7e:49:ce:b9:cd: e2:a3:e4:41:66:84:32:fc:18:3c:f1:73:c0:51:93: 43:3c:26:53:7a:68:a9:82:06:49:ce:5f:50:00:12: e0:78:ba:39:dc:09:26:51:37:dc:25:2d:bf:65:7b: 32:62:e2:60:d4:75:cb:b0:74:97:a6:c6:b8:0c:c8: 2c:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:08:79:51:CF:84:6B:4A:9E:74:D9:18:E9:33:F8:67:52:EA:D9:04 X509v3 Authority Key Identifier: keyid:A7:77:E4:81:8C:A0:DC:C6:38:2E:56:25:70:6F:98:C8:1E:93:07:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EF94/5B24A5C8A6C111E98C379E0FC4F9AE02/p3fkgYyg3MY4LlYlcG-YyB6TByA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p3fkgYyg3MY4LlYlcG-YyB6TByA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EF94/5B24A5C8A6C111E98C379E0FC4F9AE02/p3fkgYyg3MY4LlYlcG-YyB6TByA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:20:3b:6d:59:a4:22:e9:64:94:31:92:7c:21:b1:2d:34:3c: 5c:ed:95:4d:a4:b8:ee:a2:0d:fa:2f:a2:78:d4:81:fa:25:43: ca:59:0b:70:69:ee:4d:b4:86:85:23:2a:04:46:b9:2d:80:19: be:42:23:f9:27:9b:87:22:db:02:78:15:15:6c:c5:92:80:f0: e3:76:fd:f9:89:cc:8b:67:e8:96:35:a9:f0:0c:f1:68:1f:1c: dc:7f:d6:3e:2a:96:c5:b0:9f:f8:f5:05:0d:4f:8f:04:ba:2b: fb:f5:c4:2a:ac:92:b2:50:d5:6c:d7:83:80:fb:89:3b:de:26: a0:7f:c9:a7:31:79:26:ce:c7:e8:34:f1:55:96:79:ab:21:e7: 7b:fa:ed:dd:3c:45:d1:bc:9e:ed:38:a5:55:f3:37:96:04:55: 71:79:3b:f9:11:88:91:2a:1e:51:a5:e5:6d:c6:78:12:57:62: a9:08:21:63:3f:68:16:32:2d:67:52:c0:28:6a:68:9e:f8:67: 37:29:59:62:cd:b2:f9:9a:48:0e:fb:d0:54:ee:f7:a1:95:cc: 1f:26:ac:a4:d2:f5:36:38:2e:66:8c:fe:48:88:ef:c4:29:cd: 26:f1:b5:d7:be:b1:6a:1e:6d:e5:02:45:6a:d0:10:28:c8:61: 2b:08:36:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDjQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVGOTQxMTAvBgNVBAUTKEE3NzdFNDgxOENBMERDQzYzODJFNTYyNTcwNkY5OEM4 MUU5MzA3MjAwHhcNMjUwNjE0MTc0MjIxWhcNMjUwNjIxMTc0MjIxWjAYMRYwFAYD VQQDEw02ODRkYjQ3ZS00MWFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA20RFBeacdgWqaVfZofArAX913NnNAGjU4Lvk0gI45sPsXnRbCtBEOhp8xMc4 94oxczbTbaIDf6B7+Cq+bUVGffOyzKsbPHWltPdf26/iezPq7OitKxvHCY4R5gbR QXKY4+AMdTccb5w2H8kpy9iGuOl4NR/EifRlxnzWoc7DLx3+OMmXBxclOzHf1mjk R06zqiFHHUp0yHXTdyZxo7LK7/xDJXqZl+5fDsrFG0pU1V0tfSTt9lIyy5AY0SDo fknOuc3io+RBZoQy/Bg88XPAUZNDPCZTemipggZJzl9QABLgeLo53AkmUTfcJS2/ ZXsyYuJg1HXLsHSXpsa4DMgsaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIcIeVHP hGtKnnTZGOkz+GdS6tkEMB8GA1UdIwQYMBaAFKd35IGMoNzGOC5WJXBvmMgekwcg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RUY5NC81QjI0QTVDOEE2 QzExMUU5OEMzNzlFMEZDNEY5QUUwMi9wM2ZrZ1l5ZzNNWTRMbFlsY0ctWXlCNlRC eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3AzZmtnWXlnM01ZNExsWWxjRy1ZeUI2VEJ5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RUY5NC81QjI0QTVDOEE2QzExMUU5OEMzNzlFMEZDNEY5QUUwMi9wM2ZrZ1l5ZzNN WTRMbFlsY0ctWXlCNlRCeUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcIDttWaQi6WSUMZJ8IbEtNDxc7ZVNpLjuog36L6J41IH6JUPKWQtw ae5NtIaFIyoERrktgBm+QiP5J5uHItsCeBUVbMWSgPDjdv35icyLZ+iWNanwDPFo Hxzcf9Y+KpbFsJ/49QUNT48Euiv79cQqrJKyUNVs14OA+4k73iagf8mnMXkmzsfo NPFVlnmrIed7+u3dPEXRvJ7tOKVV8zeWBFVxeTv5EYiRKh5RpeVtxngSV2KpCCFj P2gWMi1nUsAoamie+Gc3KVlizbL5mkgO+9BU7vehlcwfJqyk0vU2OC5mjP5IiO/E Kc0m8bXXvrFqHm3lAkVq0BAoyGErCDZE -----END CERTIFICATE-----Generated at Sat Jun 14 19:37:57 2025 by rpki-client