$ rpki-client -vvf rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.mft File: 3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.mft (raw, json) Hash identifier: 8PNxdQ9rdl1wPmo6comLXbDskm5pjkHj/mVG8fynguU= Subject key identifier: AD:B0:53:5E:CA:06:E0:EA:1D:37:60:EC:73:21:78:38:F3:6D:6C:2F Authority key identifier: DC:B8:39:31:9F:D5:2E:AD:9F:CB:97:78:29:84:FD:1F:D4:49:2C:17 Certificate issuer: /CN=A91B569E/serialNumber=DCB839319FD52EAD9FCB97782984FD1FD4492C17 Certificate serial: 0205 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.mft Manifest number: 01FD Signing time: Fri 13 Jun 2025 01:34:59 +0000 Manifest this update: Fri 13 Jun 2025 01:34:59 +0000 Manifest next update: Fri 20 Jun 2025 01:34:59 +0000 Files and hashes: 1: 3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.crl (hash: O2sRO6mpP65QfZU6D0ZQmNvx4jW9swbx92qdMtAasyI=) 2: 0CDAA8EEE86611EFA5152A24C4F9AE02.roa (hash: lUMcuws+kkSP+r54F6XS/v0f47726g1ZKxyTfmh7RHY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.crl rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 01:34:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 517 (0x205) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B569E, serialNumber=DCB839319FD52EAD9FCB97782984FD1FD4492C17 Validity Not Before: Jun 13 01:34:59 2025 GMT Not After : Jun 20 01:34:59 2025 GMT Subject: CN=684b8043-def5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:2a:dd:b1:2e:0b:15:06:07:12:4b:b5:98:12: 33:86:c6:c2:2a:bb:77:ed:73:6f:f7:35:30:3c:9f: 32:3c:b1:52:f2:70:b5:29:52:27:d5:e0:89:55:1a: ae:f5:f3:2b:1c:ee:d5:bb:34:fe:26:2e:86:f5:f0: 3f:1b:62:e5:c8:6f:ce:db:c9:e9:f9:e5:14:2c:ef: 67:80:81:37:77:c0:79:69:25:20:f6:97:1f:27:67: 37:0f:c0:50:0e:87:6e:a9:1c:89:37:cc:a2:81:a7: 45:dc:ff:67:25:ea:08:fd:dc:e3:97:0e:b4:c4:32: 63:0b:c4:66:d2:e3:c9:e3:65:1d:4c:44:e4:45:33: 5e:91:7b:f6:41:64:c7:a6:2f:b3:6e:ee:3e:65:c5: f7:dd:df:88:8e:85:84:df:25:26:52:34:f7:8a:63: ea:02:ff:06:26:f1:d4:12:57:37:96:14:37:21:41: 24:52:ef:41:da:03:20:c7:1c:88:2f:a5:f3:9d:47: c4:82:12:a7:36:bd:4f:5f:10:31:bd:9a:de:de:da: e7:03:bf:88:16:b7:cf:2b:3a:eb:88:25:7f:b5:b7: 71:b7:36:ed:85:13:4e:58:8f:a6:c5:61:00:29:e9: 1f:ec:c9:17:5e:db:fc:f5:38:9d:d0:b2:b8:ba:2a: 36:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:B0:53:5E:CA:06:E0:EA:1D:37:60:EC:73:21:78:38:F3:6D:6C:2F X509v3 Authority Key Identifier: keyid:DC:B8:39:31:9F:D5:2E:AD:9F:CB:97:78:29:84:FD:1F:D4:49:2C:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:d3:29:70:b6:7a:de:37:5e:05:1e:e1:06:fe:ed:4c:33:51: a5:a2:15:71:fb:3a:df:8d:31:31:14:fe:b2:4e:5c:76:d8:4f: be:df:a5:b5:42:39:58:7b:59:17:78:b0:fa:68:da:5b:fd:de: c2:c2:3c:82:fd:c4:53:b4:e7:0d:f9:0b:8b:30:f0:39:34:ea: e5:d3:4a:56:c6:0a:02:fe:21:fe:bd:7a:21:51:44:fe:00:40: f7:04:7e:c1:3a:0f:44:24:71:56:03:e9:45:03:fc:cc:65:a5: 47:52:4f:6c:eb:b6:31:26:9b:12:88:54:41:f9:62:d1:ba:cb: fd:3a:42:b5:14:88:57:13:29:98:f6:28:f3:a4:56:86:e5:1f: 0d:ac:00:30:04:c7:8f:d5:b2:7f:5d:ef:93:fe:a7:6b:05:02: e9:87:c8:d7:69:ac:15:75:4b:c3:1f:09:db:92:cf:63:cb:eb: 97:55:e1:6c:d7:bf:f3:ad:08:7c:02:b5:2e:ea:d2:76:1f:a6: 34:94:58:22:8f:0a:3f:f1:c5:72:4b:8f:04:78:eb:15:1f:80: 24:0e:31:bb:65:3f:a4:2d:fb:06:d6:b5:7b:68:1a:d6:7f:b2: 5b:5f:06:a3:13:5b:48:ff:79:af:b3:d1:d3:d3:6d:4d:c8:38: 74:d9:b3:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU2OUUxMTAvBgNVBAUTKERDQjgzOTMxOUZENTJFQUQ5RkNCOTc3ODI5ODRGRDFG RDQ0OTJDMTcwHhcNMjUwNjEzMDEzNDU5WhcNMjUwNjIwMDEzNDU5WjAYMRYwFAYD VQQDEw02ODRiODA0My1kZWY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0SrdsS4LFQYHEku1mBIzhsbCKrt37XNv9zUwPJ8yPLFS8nC1KVIn1eCJVRqu 9fMrHO7VuzT+Ji6G9fA/G2LlyG/O28np+eUULO9ngIE3d8B5aSUg9pcfJ2c3D8BQ DoduqRyJN8yigadF3P9nJeoI/dzjlw60xDJjC8Rm0uPJ42UdTETkRTNekXv2QWTH pi+zbu4+ZcX33d+IjoWE3yUmUjT3imPqAv8GJvHUElc3lhQ3IUEkUu9B2gMgxxyI L6XznUfEghKnNr1PXxAxvZre3trnA7+IFrfPKzrriCV/tbdxtzbthRNOWI+mxWEA Kekf7MkXXtv89Tid0LK4uio2fwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK2wU17K BuDqHTdg7HMheDjzbWwvMB8GA1UdIwQYMBaAFNy4OTGf1S6tn8uXeCmE/R/USSwX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTY5RS8yNTI1QzdDODRE MjUxMUVEQTZEREQyMkVDNEY5QUUwMi8zTGc1TVpfVkxxMmZ5NWQ0S1lUOUg5UkpM QmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNMZzVNWl9WTHEyZnk1ZDRLWVQ5SDlSSkxCYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTY5RS8yNTI1QzdDODREMjUxMUVEQTZEREQyMkVDNEY5QUUwMi8zTGc1TVpfVkxx MmZ5NWQ0S1lUOUg5UkpMQmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBn0ylwtnreN14FHuEG/u1MM1GlohVx+zrfjTExFP6yTlx22E++36W1 QjlYe1kXeLD6aNpb/d7CwjyC/cRTtOcN+QuLMPA5NOrl00pWxgoC/iH+vXohUUT+ AED3BH7BOg9EJHFWA+lFA/zMZaVHUk9s67YxJpsSiFRB+WLRusv9OkK1FIhXEymY 9ijzpFaG5R8NrAAwBMeP1bJ/Xe+T/qdrBQLph8jXaawVdUvDHwnbks9jy+uXVeFs 17/zrQh8ArUu6tJ2H6Y0lFgijwo/8cVyS48EeOsVH4AkDjG7ZT+kLfsG1rV7aBrW f7JbXwajE1tI/3mvs9HT021NyDh02bPq -----END CERTIFICATE-----Generated at Sat Jun 14 18:43:48 2025 by rpki-client