$ rpki-client -vvf rpki.apnic.net/member_repository/A91B31CB/F44CCF7E89F011EFAD26B97AC4F9AE02/3-Ss3KCmIkNlS9IJNoIFeOktJSQ.mft File: 3-Ss3KCmIkNlS9IJNoIFeOktJSQ.mft (raw, json) Hash identifier: ExIzGOEt1eZcrU7fOmoRznYqvj26CYHtqC5VflU3M3c= Subject key identifier: 68:14:86:37:EE:3D:98:D7:A7:CF:4C:D8:EE:8C:59:2F:CF:96:F9:B8 Authority key identifier: DF:E4:AC:DC:A0:A6:22:43:65:4B:D2:09:36:82:05:78:E9:2D:25:24 Certificate issuer: /CN=A91B31CB/serialNumber=DFE4ACDCA0A62243654BD20936820578E92D2524 Certificate serial: 81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3-Ss3KCmIkNlS9IJNoIFeOktJSQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B31CB/F44CCF7E89F011EFAD26B97AC4F9AE02/3-Ss3KCmIkNlS9IJNoIFeOktJSQ.mft Manifest number: 7F Signing time: Fri 13 Jun 2025 05:36:09 +0000 Manifest this update: Fri 13 Jun 2025 05:36:08 +0000 Manifest next update: Fri 20 Jun 2025 05:36:08 +0000 Files and hashes: 1: 3-Ss3KCmIkNlS9IJNoIFeOktJSQ.crl (hash: Mm2ra9V+xoezoEomKUNnLOLFINohonXRhx8XgpIdeI0=) 2: 67030B7889F111EFB3186A7BC4F9AE02.roa (hash: jpoA3nOwURms9S72GBWIhr5w5HiTb8jNg/HLvSF6ab8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B31CB/F44CCF7E89F011EFAD26B97AC4F9AE02/3-Ss3KCmIkNlS9IJNoIFeOktJSQ.crl rsync://rpki.apnic.net/member_repository/A91B31CB/F44CCF7E89F011EFAD26B97AC4F9AE02/3-Ss3KCmIkNlS9IJNoIFeOktJSQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3-Ss3KCmIkNlS9IJNoIFeOktJSQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 05:36:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 129 (0x81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B31CB, serialNumber=DFE4ACDCA0A62243654BD20936820578E92D2524 Validity Not Before: Jun 13 05:36:08 2025 GMT Not After : Jun 20 05:36:08 2025 GMT Subject: CN=684bb8c8-5d7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:ca:3a:db:22:f0:60:9d:f7:6f:bb:a8:f7:03: ee:91:09:ba:6c:e1:d6:b8:1d:f8:8d:82:b1:2b:d6: 7b:b1:26:ac:56:73:7e:7c:07:3a:cd:e7:5d:79:62: c1:cf:e4:e0:43:c0:9b:3c:f9:57:1e:70:cd:71:73: d5:04:a3:01:c4:08:42:de:3e:0a:f6:26:1b:14:5b: 5f:68:15:e8:ce:d3:c3:2f:07:21:dd:37:24:44:2b: 55:48:4c:d8:0a:f8:5c:9e:b0:82:29:d4:bd:5d:f0: 58:3e:a9:20:44:e6:13:a5:0a:c2:ff:41:d4:eb:3f: b8:39:7d:51:4e:88:65:0f:fa:76:18:d2:ec:b6:df: 25:8d:56:21:0a:5f:9d:de:ad:38:44:56:77:8e:cc: 17:11:a3:52:55:37:a9:14:60:39:fb:a6:f2:c5:d2: 71:b7:8c:fe:f5:0e:81:33:0b:3b:49:b3:d2:c0:96: ff:82:14:ce:00:a8:48:54:91:4c:fc:e0:89:b6:96: 0d:a6:8e:e3:6e:27:d2:93:49:f3:61:c4:94:8e:69: 2a:51:7d:b8:9b:d3:1b:14:e9:c7:c9:71:22:87:dc: a3:35:9c:f6:cf:56:b8:b4:0e:84:c3:06:ff:63:ab: 1f:33:91:10:11:71:31:21:3d:e1:32:20:f5:9b:32: ec:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:14:86:37:EE:3D:98:D7:A7:CF:4C:D8:EE:8C:59:2F:CF:96:F9:B8 X509v3 Authority Key Identifier: keyid:DF:E4:AC:DC:A0:A6:22:43:65:4B:D2:09:36:82:05:78:E9:2D:25:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B31CB/F44CCF7E89F011EFAD26B97AC4F9AE02/3-Ss3KCmIkNlS9IJNoIFeOktJSQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3-Ss3KCmIkNlS9IJNoIFeOktJSQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B31CB/F44CCF7E89F011EFAD26B97AC4F9AE02/3-Ss3KCmIkNlS9IJNoIFeOktJSQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:36:8c:ba:89:89:da:3e:cb:ed:0c:e0:1b:2e:90:4c:d0:04: 95:37:36:3e:7e:c6:cd:9b:b7:4c:d5:94:3a:d7:ff:b7:68:ed: d7:e9:f7:70:5a:62:ad:5e:ab:28:04:43:05:90:57:b3:87:cc: 3c:10:f2:01:77:b4:66:8c:c4:f2:70:2d:f2:3a:e2:38:f5:71: a2:a4:e7:52:d0:07:96:21:4b:6c:29:e4:ab:25:3b:5e:35:a8: 36:13:0b:1d:d7:f4:2c:cd:28:f8:25:30:f6:6d:fc:a4:80:a7: 07:54:fc:b9:5f:46:58:31:05:36:21:72:2a:26:3c:04:de:33: 22:b7:5b:71:75:4d:e0:a6:92:8c:5a:1e:86:55:ce:b0:19:5e: 94:a9:f6:b3:b2:5e:dd:22:ae:08:9d:ad:7f:0e:60:52:5b:3b: ef:88:f9:a3:9d:35:d8:21:98:af:15:30:01:55:e4:e6:36:fb: c9:f6:25:c2:af:65:52:6c:82:64:87:0f:ca:60:c4:31:e5:77: db:0f:8a:38:d9:b4:4a:f3:ee:df:e9:57:76:d2:f3:36:8b:af: 9e:56:69:74:ae:1c:6e:0c:ac:a7:c3:cb:4a:ba:82:19:4e:2a: 59:c6:ff:2e:ce:a1:07:14:74:0d:31:98:17:ed:44:32:b9:65: 09:b0:e3:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjMxQ0IxMTAvBgNVBAUTKERGRTRBQ0RDQTBBNjIyNDM2NTRCRDIwOTM2ODIwNTc4 RTkyRDI1MjQwHhcNMjUwNjEzMDUzNjA4WhcNMjUwNjIwMDUzNjA4WjAYMRYwFAYD VQQDEw02ODRiYjhjOC01ZDdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA18o62yLwYJ33b7uo9wPukQm6bOHWuB34jYKxK9Z7sSasVnN+fAc6zeddeWLB z+TgQ8CbPPlXHnDNcXPVBKMBxAhC3j4K9iYbFFtfaBXoztPDLwch3TckRCtVSEzY CvhcnrCCKdS9XfBYPqkgROYTpQrC/0HU6z+4OX1RTohlD/p2GNLstt8ljVYhCl+d 3q04RFZ3jswXEaNSVTepFGA5+6byxdJxt4z+9Q6BMws7SbPSwJb/ghTOAKhIVJFM /OCJtpYNpo7jbifSk0nzYcSUjmkqUX24m9MbFOnHyXEih9yjNZz2z1a4tA6Ewwb/ Y6sfM5EQEXExIT3hMiD1mzLsHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGgUhjfu PZjXp89M2O6MWS/Plvm4MB8GA1UdIwQYMBaAFN/krNygpiJDZUvSCTaCBXjpLSUk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzFDQi9GNDRDQ0Y3RTg5 RjAxMUVGQUQyNkI5N0FDNEY5QUUwMi8zLVNzM0tDbUlrTmxTOUlKTm9JRmVPa3RK U1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMtU3MzS0NtSWtObFM5SUpOb0lGZU9rdEpTUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzFDQi9GNDRDQ0Y3RTg5RjAxMUVGQUQyNkI5N0FDNEY5QUUwMi8zLVNzM0tDbUlr TmxTOUlKTm9JRmVPa3RKU1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBONoy6iYnaPsvtDOAbLpBM0ASVNzY+fsbNm7dM1ZQ61/+3aO3X6fdw WmKtXqsoBEMFkFezh8w8EPIBd7RmjMTycC3yOuI49XGipOdS0AeWIUtsKeSrJTte Nag2Ewsd1/QszSj4JTD2bfykgKcHVPy5X0ZYMQU2IXIqJjwE3jMit1txdU3gppKM Wh6GVc6wGV6Uqfazsl7dIq4Ina1/DmBSWzvviPmjnTXYIZivFTABVeTmNvvJ9iXC r2VSbIJkhw/KYMQx5XfbD4o42bRK8+7f6Vd20vM2i6+eVml0rhxuDKynw8tKuoIZ TipZxv8uzqEHFHQNMZgX7UQyuWUJsONj -----END CERTIFICATE-----Generated at Sat Jun 14 18:55:50 2025 by rpki-client