$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8EB6/108F53AE281F11E8B2038224C4F9AE02/3VM9EaneKrkYCFCDvoLVFDTfRUA.mft File: 3VM9EaneKrkYCFCDvoLVFDTfRUA.mft (raw, json) Hash identifier: /sqC7j418rYnsClFF/pTqRpsKcNOFFFRI6MbW+VzU64= Subject key identifier: 8A:30:F3:3D:10:61:8A:74:F0:2A:B7:8D:24:84:81:9B:56:0F:B2:C7 Authority key identifier: DD:53:3D:11:A9:DE:2A:B9:18:08:50:83:BE:82:D5:14:34:DF:45:40 Certificate issuer: /CN=A91C8EB6/serialNumber=DD533D11A9DE2AB918085083BE82D51434DF4540 Certificate serial: 15CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3VM9EaneKrkYCFCDvoLVFDTfRUA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8EB6/108F53AE281F11E8B2038224C4F9AE02/3VM9EaneKrkYCFCDvoLVFDTfRUA.mft Manifest number: 15C7 Signing time: Mon 16 Jun 2025 16:49:24 +0000 Manifest this update: Mon 16 Jun 2025 16:49:23 +0000 Manifest next update: Mon 23 Jun 2025 16:49:23 +0000 Files and hashes: 1: 3VM9EaneKrkYCFCDvoLVFDTfRUA.crl (hash: fOvrFv6aPSa8BUAe2Y5rPvBKNLvwPqbF3evaiaPrlog=) 2: 116B4B06282011E8BBA2F625C4F9AE02.roa (hash: Xq7aDp/RYbNUbH8lamtxHtlBICT7QgYLuIupGmw4yJo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8EB6/108F53AE281F11E8B2038224C4F9AE02/3VM9EaneKrkYCFCDvoLVFDTfRUA.crl rsync://rpki.apnic.net/member_repository/A91C8EB6/108F53AE281F11E8B2038224C4F9AE02/3VM9EaneKrkYCFCDvoLVFDTfRUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3VM9EaneKrkYCFCDvoLVFDTfRUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 16:49:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5583 (0x15cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8EB6, serialNumber=DD533D11A9DE2AB918085083BE82D51434DF4540 Validity Not Before: Jun 16 16:49:23 2025 GMT Not After : Jun 23 16:49:23 2025 GMT Subject: CN=68504b13-5cf0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:e9:c2:3d:c4:25:f5:69:41:67:89:5a:56:50: 2c:32:27:e5:0d:08:e9:71:8c:3d:ac:94:fa:53:f0: b8:d4:8c:ff:05:85:18:cb:ba:c3:19:e9:9e:ff:cd: 08:99:34:c9:85:52:85:82:be:b2:7b:67:58:fa:87: cd:c7:86:df:e5:73:36:d8:be:c9:15:31:03:bc:5e: 1e:90:23:d8:4f:fc:f2:3e:c6:99:6d:1a:04:c4:e7: 5e:70:38:2a:de:c6:dd:af:68:6f:14:73:e4:f0:31: ed:29:e3:bf:8d:4f:05:55:49:11:69:df:95:f2:0d: 63:7c:2c:5b:28:59:29:26:42:a2:9d:ed:78:61:3d: 1b:55:24:d6:fc:3c:72:ea:ac:f5:b6:57:fd:db:e4: 85:96:f9:fc:cf:3e:36:08:03:53:e0:19:23:d5:37: c3:40:b1:6b:fd:db:87:ed:b9:66:b9:94:28:0d:af: 05:4d:1c:0d:e1:ff:b7:c1:8b:f5:c7:32:a4:16:7c: eb:b7:b5:71:db:d9:1c:0f:76:c1:6c:bb:52:cb:14: 26:b3:87:c0:d6:b5:30:dc:a4:ce:de:23:08:be:27: d8:a1:02:90:03:7e:af:bb:ca:58:85:a4:42:23:7c: 1a:df:32:26:cf:a7:21:d0:e6:40:eb:86:43:a6:11: 62:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:30:F3:3D:10:61:8A:74:F0:2A:B7:8D:24:84:81:9B:56:0F:B2:C7 X509v3 Authority Key Identifier: keyid:DD:53:3D:11:A9:DE:2A:B9:18:08:50:83:BE:82:D5:14:34:DF:45:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8EB6/108F53AE281F11E8B2038224C4F9AE02/3VM9EaneKrkYCFCDvoLVFDTfRUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3VM9EaneKrkYCFCDvoLVFDTfRUA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8EB6/108F53AE281F11E8B2038224C4F9AE02/3VM9EaneKrkYCFCDvoLVFDTfRUA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:eb:21:8d:fb:74:71:bf:8a:29:5a:a6:64:2f:ef:f0:4d:49: 8f:33:2a:83:cf:c7:e0:6e:1c:f2:ee:4c:56:24:55:7e:2a:89: 8c:29:a4:fe:a3:e6:c6:5c:92:ae:85:28:32:b0:a0:6a:71:32: 74:46:49:d4:1c:7e:cb:4f:bb:6e:2f:56:04:45:19:37:59:2b: 88:6f:95:6c:6e:9a:03:85:25:61:06:73:db:be:63:99:04:7d: cd:f3:68:f3:1f:5e:fe:8e:49:f8:1c:44:24:07:b5:fd:42:fb: 9e:5a:d5:e2:35:db:46:d8:be:e3:8f:c9:2e:de:3c:a3:90:d7: 42:a1:30:9f:d6:3e:76:e1:ee:82:18:c8:9e:38:28:35:43:cc: e9:e8:e4:69:cc:9b:4e:72:59:f3:72:88:dd:db:a2:92:54:3a: 24:e8:bc:79:c9:1a:a9:0e:a3:5d:70:d2:a5:30:76:2b:70:04: df:7e:2b:b5:d2:53:ab:08:ba:ed:3f:57:a8:6b:f2:c7:be:4f: 98:68:48:f9:ab:02:fd:0b:cf:61:bb:9d:30:43:24:20:a5:e1: 53:af:ca:cb:51:aa:42:d8:98:56:78:3a:bf:ca:ee:bd:e0:65: fa:24:d4:cb:fb:84:09:80:16:a4:af:15:b7:fd:53:b3:4d:ab: fb:38:92:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFc8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhFQjYxMTAvBgNVBAUTKERENTMzRDExQTlERTJBQjkxODA4NTA4M0JFODJENTE0 MzRERjQ1NDAwHhcNMjUwNjE2MTY0OTIzWhcNMjUwNjIzMTY0OTIzWjAYMRYwFAYD VQQDEw02ODUwNGIxMy01Y2YwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxOnCPcQl9WlBZ4laVlAsMiflDQjpcYw9rJT6U/C41Iz/BYUYy7rDGeme/80I mTTJhVKFgr6ye2dY+ofNx4bf5XM22L7JFTEDvF4ekCPYT/zyPsaZbRoExOdecDgq 3sbdr2hvFHPk8DHtKeO/jU8FVUkRad+V8g1jfCxbKFkpJkKine14YT0bVSTW/Dxy 6qz1tlf92+SFlvn8zz42CANT4Bkj1TfDQLFr/duH7blmuZQoDa8FTRwN4f+3wYv1 xzKkFnzrt7Vx29kcD3bBbLtSyxQms4fA1rUw3KTO3iMIvifYoQKQA36vu8pYhaRC I3wa3zImz6ch0OZA64ZDphFiqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIow8z0Q YYp08Cq3jSSEgZtWD7LHMB8GA1UdIwQYMBaAFN1TPRGp3iq5GAhQg76C1RQ030VA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEVCNi8xMDhGNTNBRTI4 MUYxMUU4QjIwMzgyMjRDNEY5QUUwMi8zVk05RWFuZUtya1lDRkNEdm9MVkZEVGZS VUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNWTTlFYW5lS3JrWUNGQ0R2b0xWRkRUZlJVQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEVCNi8xMDhGNTNBRTI4MUYxMUU4QjIwMzgyMjRDNEY5QUUwMi8zVk05RWFuZUty a1lDRkNEdm9MVkZEVGZSVUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA06yGN+3Rxv4opWqZkL+/wTUmPMyqDz8fgbhzy7kxWJFV+KomMKaT+ o+bGXJKuhSgysKBqcTJ0RknUHH7LT7tuL1YERRk3WSuIb5VsbpoDhSVhBnPbvmOZ BH3N82jzH17+jkn4HEQkB7X9QvueWtXiNdtG2L7jj8ku3jyjkNdCoTCf1j524e6C GMieOCg1Q8zp6ORpzJtOclnzcojd26KSVDok6Lx5yRqpDqNdcNKlMHYrcATffiu1 0lOrCLrtP1eoa/LHvk+YaEj5qwL9C89hu50wQyQgpeFTr8rLUapC2JhWeDq/yu69 4GX6JNTL+4QJgBakrxW3/VOzTav7OJKO -----END CERTIFICATE-----Generated at Wed Jun 18 10:07:08 2025 by rpki-client