$ rpki-client -vvf rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/t3KDxTMROjkeMdlFJxhqz4OZol8.mft File: t3KDxTMROjkeMdlFJxhqz4OZol8.mft (raw, json) Hash identifier: mtjB2dKzk0BV5Msib0yXqBqhGaJ3C99g2MdCN5YD78M= Subject key identifier: B4:B5:ED:0D:CD:7A:4C:72:4B:79:68:07:39:86:CB:E8:93:E7:D2:7E Authority key identifier: B7:72:83:C5:33:11:3A:39:1E:31:D9:45:27:18:6A:CF:83:99:A2:5F Certificate issuer: /CN=A91AEE4B/serialNumber=B77283C533113A391E31D94527186ACF8399A25F Certificate serial: 0B09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t3KDxTMROjkeMdlFJxhqz4OZol8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/t3KDxTMROjkeMdlFJxhqz4OZol8.mft Manifest number: 0B00 Signing time: Sat 14 Jun 2025 19:11:09 +0000 Manifest this update: Sat 14 Jun 2025 19:11:08 +0000 Manifest next update: Sat 21 Jun 2025 19:11:08 +0000 Files and hashes: 1: t3KDxTMROjkeMdlFJxhqz4OZol8.crl (hash: Y0rIvLOcNnZvfm2kZwxnvU3M4sEvhN7ITDOZNfEpOCk=) 2: 02F1850E45A611EA81CD145AC4F9AE02.roa (hash: +dnFv6At/j+rB10C6K34OqDt094wwEbkgdTC71u4hkg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/t3KDxTMROjkeMdlFJxhqz4OZol8.crl rsync://rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/t3KDxTMROjkeMdlFJxhqz4OZol8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t3KDxTMROjkeMdlFJxhqz4OZol8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 19:11:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2825 (0xb09) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AEE4B, serialNumber=B77283C533113A391E31D94527186ACF8399A25F Validity Not Before: Jun 14 19:11:08 2025 GMT Not After : Jun 21 19:11:08 2025 GMT Subject: CN=684dc94c-8d9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:3b:f1:4d:d6:78:f2:95:01:48:70:b1:77:1f: 39:61:c6:e0:ed:85:38:60:ae:fc:b1:c2:b6:81:3f: b6:d9:cf:08:da:9c:af:e9:ea:11:70:3a:5d:a4:b0: d1:d5:b7:82:87:73:9c:43:03:5f:74:dd:83:5f:28: 63:68:11:98:86:1c:9e:3f:cd:e7:04:c6:2d:53:04: 6e:36:5b:63:2f:b2:f5:43:a8:06:2f:e3:48:17:09: b3:b5:e4:f1:d0:2b:b5:a0:b3:c4:52:08:4d:2f:6f: 7b:8c:c7:4f:ba:15:b4:82:70:cc:2a:32:4c:01:98: 21:16:7d:df:46:95:1a:0d:0c:25:48:03:06:56:bd: 46:64:4c:5c:c9:ba:97:fe:0c:47:95:b1:52:9a:16: 61:1d:ce:d7:78:44:b0:71:44:e0:ac:3d:78:b2:4e: d4:57:bb:f4:6a:96:75:2d:d4:48:d8:d5:4d:52:5c: 3c:3a:3b:4d:de:6f:54:02:2c:2a:ac:d3:ee:07:60: 32:2d:a9:59:e1:c4:2b:67:5b:5e:64:dd:47:62:f3: c2:25:12:9a:4d:bb:63:d2:68:36:e5:4a:0b:68:a9: 86:0e:7c:60:cd:98:c8:04:79:8d:ef:23:47:23:5d: 1c:4a:32:d1:58:f7:5a:17:af:aa:a4:5d:a2:d7:55: 85:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:B5:ED:0D:CD:7A:4C:72:4B:79:68:07:39:86:CB:E8:93:E7:D2:7E X509v3 Authority Key Identifier: keyid:B7:72:83:C5:33:11:3A:39:1E:31:D9:45:27:18:6A:CF:83:99:A2:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/t3KDxTMROjkeMdlFJxhqz4OZol8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t3KDxTMROjkeMdlFJxhqz4OZol8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/t3KDxTMROjkeMdlFJxhqz4OZol8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:62:6a:0c:f5:88:db:eb:2e:d4:53:dc:94:de:54:37:2a:5c: 46:66:16:7e:76:2c:84:cd:90:01:74:41:b9:f7:5b:82:ee:2c: 44:27:38:ed:e4:60:8e:4b:cd:f1:2e:70:1f:d6:c8:e0:a4:1a: dd:4e:52:c8:6a:84:69:5e:2b:11:5a:93:c3:19:cd:d4:11:ff: 2e:55:19:88:39:2d:67:d2:f4:74:33:50:1c:78:47:cd:81:9c: 90:0f:9c:5a:3e:44:11:7e:63:72:03:f5:05:9c:7e:e4:ab:65: fa:fb:dc:b6:c9:bb:a6:32:ed:90:52:02:00:62:9e:ef:18:1d: e6:af:ac:a9:ab:53:6d:9d:64:74:a4:d5:55:9e:42:9f:22:1c: c5:8d:99:3d:55:40:50:83:ed:1e:10:0f:13:53:aa:a5:26:84: c0:17:7a:a3:42:f5:31:cb:bd:3d:56:aa:f5:78:21:9e:91:c8: e9:f3:d4:02:4f:b2:53:e9:f9:94:4b:b1:71:5b:23:b7:d8:1c: 6c:23:75:31:72:51:33:32:9e:46:21:4d:f6:00:40:f3:3a:e3: 1a:8b:e4:fa:c3:87:a9:79:9a:b3:ae:3d:18:ef:fb:34:88:a9: 22:0a:66:f7:1b:bf:9c:95:13:28:18:40:e6:22:1c:ca:d3:08: 20:36:c0:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCwkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUVFNEIxMTAvBgNVBAUTKEI3NzI4M0M1MzMxMTNBMzkxRTMxRDk0NTI3MTg2QUNG ODM5OUEyNUYwHhcNMjUwNjE0MTkxMTA4WhcNMjUwNjIxMTkxMTA4WjAYMRYwFAYD VQQDEw02ODRkYzk0Yy04ZDlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmzvxTdZ48pUBSHCxdx85Ycbg7YU4YK78scK2gT+22c8I2pyv6eoRcDpdpLDR 1beCh3OcQwNfdN2DXyhjaBGYhhyeP83nBMYtUwRuNltjL7L1Q6gGL+NIFwmzteTx 0Cu1oLPEUghNL297jMdPuhW0gnDMKjJMAZghFn3fRpUaDQwlSAMGVr1GZExcybqX /gxHlbFSmhZhHc7XeESwcUTgrD14sk7UV7v0apZ1LdRI2NVNUlw8OjtN3m9UAiwq rNPuB2AyLalZ4cQrZ1teZN1HYvPCJRKaTbtj0mg25UoLaKmGDnxgzZjIBHmN7yNH I10cSjLRWPdaF6+qpF2i11WFCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLS17Q3N ekxyS3loBzmGy+iT59J+MB8GA1UdIwQYMBaAFLdyg8UzETo5HjHZRScYas+DmaJf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRUU0Qi82M0RGRjgwMjQ1 QTQxMUVBOTQyRTA5NTdDNEY5QUUwMi90M0tEeFRNUk9qa2VNZGxGSnhocXo0T1pv bDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3QzS0R4VE1ST2prZU1kbEZKeGhxejRPWm9sOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RUU0Qi82M0RGRjgwMjQ1QTQxMUVBOTQyRTA5NTdDNEY5QUUwMi90M0tEeFRNUk9q a2VNZGxGSnhocXo0T1pvbDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7YmoM9Yjb6y7UU9yU3lQ3KlxGZhZ+diyEzZABdEG591uC7ixEJzjt 5GCOS83xLnAf1sjgpBrdTlLIaoRpXisRWpPDGc3UEf8uVRmIOS1n0vR0M1AceEfN gZyQD5xaPkQRfmNyA/UFnH7kq2X6+9y2ybumMu2QUgIAYp7vGB3mr6ypq1NtnWR0 pNVVnkKfIhzFjZk9VUBQg+0eEA8TU6qlJoTAF3qjQvUxy709Vqr1eCGekcjp89QC T7JT6fmUS7FxWyO32BxsI3UxclEzMp5GIU32AEDzOuMai+T6w4epeZqzrj0Y7/s0 iKkiCmb3G7+clRMoGEDmIhzK0wggNsB7 -----END CERTIFICATE-----Generated at Sun Jun 15 10:03:54 2025 by rpki-client