$ rpki-client -vvf rpki.apnic.net/member_repository/A91B31CB/F44CCF7E89F011EFAD26B97AC4F9AE02/3-Ss3KCmIkNlS9IJNoIFeOktJSQ.mft File: 3-Ss3KCmIkNlS9IJNoIFeOktJSQ.mft (raw, json) Hash identifier: a5y7q7o8oxVm2lPoQFWHR5eRKZNyP+ssRQ/koEVROpQ= Subject key identifier: 06:6F:2B:AC:EC:FF:F4:F0:81:FD:7B:3D:2F:28:1A:BB:7B:DE:0A:42 Authority key identifier: DF:E4:AC:DC:A0:A6:22:43:65:4B:D2:09:36:82:05:78:E9:2D:25:24 Certificate issuer: /CN=A91B31CB/serialNumber=DFE4ACDCA0A62243654BD20936820578E92D2524 Certificate serial: 69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3-Ss3KCmIkNlS9IJNoIFeOktJSQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B31CB/F44CCF7E89F011EFAD26B97AC4F9AE02/3-Ss3KCmIkNlS9IJNoIFeOktJSQ.mft Manifest number: 67 Signing time: Fri 25 Apr 2025 05:58:30 +0000 Manifest this update: Fri 25 Apr 2025 05:58:30 +0000 Manifest next update: Fri 02 May 2025 05:58:30 +0000 Files and hashes: 1: 3-Ss3KCmIkNlS9IJNoIFeOktJSQ.crl (hash: zeEwPntQsWLSN8rRNH5k6kzkEXqujumGA1yYCjco1wg=) 2: 67030B7889F111EFB3186A7BC4F9AE02.roa (hash: jpoA3nOwURms9S72GBWIhr5w5HiTb8jNg/HLvSF6ab8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B31CB/F44CCF7E89F011EFAD26B97AC4F9AE02/3-Ss3KCmIkNlS9IJNoIFeOktJSQ.crl rsync://rpki.apnic.net/member_repository/A91B31CB/F44CCF7E89F011EFAD26B97AC4F9AE02/3-Ss3KCmIkNlS9IJNoIFeOktJSQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3-Ss3KCmIkNlS9IJNoIFeOktJSQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:58:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 105 (0x69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B31CB, serialNumber=DFE4ACDCA0A62243654BD20936820578E92D2524 Validity Not Before: Apr 25 05:58:30 2025 GMT Not After : May 2 05:58:30 2025 GMT Subject: CN=680b2486-aee1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:7a:82:00:78:9a:a0:e9:1e:07:cf:eb:62:cc: 67:44:d5:67:57:1f:59:a8:03:0c:4a:1b:39:83:46: f9:81:85:3a:f8:3f:53:6f:d9:d9:54:8d:f1:9c:09: 37:92:3c:4c:e0:7a:a2:68:0c:8a:01:9f:e7:b1:ae: d0:88:01:9f:eb:cc:12:ce:2e:e0:a7:07:14:cb:c6: bb:30:80:65:be:43:f1:e0:dc:ee:a5:b8:2e:90:96: ff:9e:02:f9:64:cc:70:2c:7a:22:44:ef:e4:ff:41: ec:e0:b8:c8:11:4f:9d:60:a4:03:d9:5b:8f:b6:cd: 09:36:69:ec:48:f0:57:aa:25:d1:9d:9c:b6:09:6f: 9c:79:22:f3:48:90:d8:18:88:c7:23:f1:42:97:3f: f7:8c:e9:dc:d2:f3:98:98:64:6a:c8:0f:2a:f5:98: 05:81:9e:0c:2f:be:e2:b4:ec:f1:b4:8c:e1:0f:82: f3:aa:16:2a:1c:80:ea:02:c1:38:7a:e3:f2:77:5d: a4:30:e9:9a:c8:06:87:25:6b:79:e2:5c:ce:14:c5: 51:9b:45:fe:43:29:fd:99:b1:b4:62:7e:6b:d4:f7: 50:1f:d5:8c:0f:4a:38:b1:86:7d:cd:f8:a9:62:1b: b0:86:cc:00:c8:42:a1:e1:56:79:51:98:2e:4b:3a: f4:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:6F:2B:AC:EC:FF:F4:F0:81:FD:7B:3D:2F:28:1A:BB:7B:DE:0A:42 X509v3 Authority Key Identifier: keyid:DF:E4:AC:DC:A0:A6:22:43:65:4B:D2:09:36:82:05:78:E9:2D:25:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B31CB/F44CCF7E89F011EFAD26B97AC4F9AE02/3-Ss3KCmIkNlS9IJNoIFeOktJSQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3-Ss3KCmIkNlS9IJNoIFeOktJSQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B31CB/F44CCF7E89F011EFAD26B97AC4F9AE02/3-Ss3KCmIkNlS9IJNoIFeOktJSQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:d3:fa:d8:ee:ae:04:41:d0:f4:34:0e:2b:e5:10:e3:ea:50: 19:9d:a9:45:82:1e:0e:b0:e5:18:f7:97:31:b8:62:3c:07:50: 7c:69:29:2f:70:39:69:9f:d3:0f:e1:d7:a1:b9:d2:de:8f:28: d4:01:84:9e:05:e3:36:17:45:b3:57:4b:3f:27:10:05:ee:5a: be:4d:e4:4c:e3:1b:cb:5e:e7:40:15:13:b9:5e:d3:c6:51:de: 46:72:ab:5b:f4:5f:bb:ed:c1:36:07:10:46:e2:8a:44:7b:82: b4:38:a9:e9:04:0e:ef:c5:c9:68:cd:a8:27:cb:ff:f3:49:ee: a4:ae:9d:e0:74:d7:d3:dc:11:32:55:14:6a:c0:7f:21:55:1a: 81:57:24:fb:80:28:cd:33:87:a0:d1:8d:ed:07:21:46:26:37: 6b:3d:c3:48:7e:22:8f:3e:f7:e5:7d:5e:e6:ee:c6:cd:b8:74: f0:2b:11:cb:0a:84:0a:c3:d1:2d:8d:2c:a4:b0:c8:af:32:b3: 9c:c7:24:2a:cb:83:37:95:6b:60:a6:f6:da:61:78:52:ec:22: 56:e3:2a:ff:2b:30:9a:ef:7e:2e:33:79:4d:31:ed:6f:34:01: a5:64:b4:1f:53:c1:18:c0:a5:66:7b:b5:6e:b7:81:97:34:ff: d4:32:d7:dd -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBaTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MzFDQjExMC8GA1UEBRMoREZFNEFDRENBMEE2MjI0MzY1NEJEMjA5MzY4MjA1NzhF OTJEMjUyNDAeFw0yNTA0MjUwNTU4MzBaFw0yNTA1MDIwNTU4MzBaMBgxFjAUBgNV BAMTDTY4MGIyNDg2LWFlZTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDQeoIAeJqg6R4Hz+tizGdE1WdXH1moAwxKGzmDRvmBhTr4P1Nv2dlUjfGcCTeS PEzgeqJoDIoBn+exrtCIAZ/rzBLOLuCnBxTLxrswgGW+Q/Hg3O6luC6Qlv+eAvlk zHAseiJE7+T/QezguMgRT51gpAPZW4+2zQk2aexI8FeqJdGdnLYJb5x5IvNIkNgY iMcj8UKXP/eM6dzS85iYZGrIDyr1mAWBngwvvuK07PG0jOEPgvOqFiocgOoCwTh6 4/J3XaQw6ZrIBocla3niXM4UxVGbRf5DKf2ZsbRifmvU91Af1YwPSjixhn3N+Kli G7CGzADIQqHhVnlRmC5LOvT/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUBm8rrOz/ 9PCB/Xs9Lygau3veCkIwHwYDVR0jBBgwFoAU3+Ss3KCmIkNlS9IJNoIFeOktJSQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIzMUNCL0Y0NENDRjdFODlG MDExRUZBRDI2Qjk3QUM0RjlBRTAyLzMtU3MzS0NtSWtObFM5SUpOb0lGZU9rdEpT US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMy1TczNLQ21Ja05sUzlJSk5vSUZlT2t0SlNRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIz MUNCL0Y0NENDRjdFODlGMDExRUZBRDI2Qjk3QUM0RjlBRTAyLzMtU3MzS0NtSWtO bFM5SUpOb0lGZU9rdEpTUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADLT+tjurgRB0PQ0DivlEOPqUBmdqUWCHg6w5Rj3lzG4YjwHUHxpKS9w OWmf0w/h16G50t6PKNQBhJ4F4zYXRbNXSz8nEAXuWr5N5EzjG8te50AVE7le08ZR 3kZyq1v0X7vtwTYHEEbiikR7grQ4qekEDu/FyWjNqCfL//NJ7qSuneB019PcETJV FGrAfyFVGoFXJPuAKM0zh6DRje0HIUYmN2s9w0h+Io8+9+V9Xubuxs24dPArEcsK hArD0S2NLKSwyK8ys5zHJCrLgzeVa2Cm9tpheFLsIlbjKv8rMJrvfi4zeU0x7W80 AaVktB9TwRjApWZ7tW63gZc0/9Qy190= -----END CERTIFICATE-----Generated at Sat Apr 26 05:47:25 2025 by rpki-client