$ rpki-client -vvf rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.mft File: 3Y89lj-o0fItV_Tfspq9cNJVjjc.mft (raw, json) Hash identifier: vxQnCwVrKK94Ww6BFLo31dwv2TwxICG7xW01BW5TNwU= Subject key identifier: 25:22:01:AA:92:4B:55:38:86:57:8D:A7:F2:18:61:8F:0F:0E:7B:B2 Authority key identifier: DD:8F:3D:96:3F:A8:D1:F2:2D:57:F4:DF:B2:9A:BD:70:D2:55:8E:37 Certificate issuer: /CN=A91D506C/serialNumber=DD8F3D963FA8D1F22D57F4DFB29ABD70D2558E37 Certificate serial: 02C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Y89lj-o0fItV_Tfspq9cNJVjjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.mft Manifest number: 02BE Signing time: Fri 13 Jun 2025 00:56:47 +0000 Manifest this update: Fri 13 Jun 2025 00:56:46 +0000 Manifest next update: Fri 20 Jun 2025 00:56:46 +0000 Files and hashes: 1: 3Y89lj-o0fItV_Tfspq9cNJVjjc.crl (hash: rsicQXHgvJtG6aqd9LzMXSuRj9o50Xtdsku0KOc6sgM=) 2: 76C5241CF47311EC8721C33DC4F9AE02.roa (hash: g19FhTBXCPfsej+IJgF1Do8UhJTPPb20EhKNCmaxyOU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.crl rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Y89lj-o0fItV_Tfspq9cNJVjjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 00:56:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 705 (0x2c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D506C, serialNumber=DD8F3D963FA8D1F22D57F4DFB29ABD70D2558E37 Validity Not Before: Jun 13 00:56:46 2025 GMT Not After : Jun 20 00:56:46 2025 GMT Subject: CN=684b774e-52ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:db:f3:cf:61:ff:be:ac:13:86:62:68:b6:f5: 53:ab:76:1f:2d:a1:5d:9d:c1:69:ab:ae:2c:3d:71: 3e:2e:9c:89:f2:9c:c8:19:1d:1b:b1:b9:ee:58:d0: 8e:3e:a4:fd:fb:f0:22:a6:c8:cb:96:2e:a5:9d:b4: 9c:34:70:5e:c2:3f:84:7b:43:18:36:bf:76:7f:10: 38:42:da:08:e3:9c:35:0c:82:e6:eb:0b:69:13:2a: c0:62:d3:e5:4a:73:a5:91:a8:31:f8:a0:55:93:93: d4:d8:c6:09:98:af:3c:37:f9:91:bf:6d:b1:32:9d: 9b:5d:d7:f0:7b:ed:9e:1f:00:6b:0c:8f:8b:fd:74: 24:52:6f:05:0e:47:da:46:48:7f:ef:0c:35:99:b9: 63:1b:9b:16:81:13:3f:f7:c1:c3:b3:5d:99:88:0d: ad:0d:5e:2b:4a:8d:5b:d5:77:91:d5:e4:f4:82:9b: fa:eb:aa:57:ef:03:80:c8:86:90:da:a6:f0:0d:f5: 4f:14:b6:7b:72:23:4a:4e:04:cd:b2:c0:68:43:21: e3:7b:b3:48:63:3e:c2:91:c0:2c:4d:a5:8d:1d:0c: 9c:5e:cb:02:96:39:46:2b:fb:f5:1c:93:25:70:2f: 73:ab:d0:12:17:8f:17:e6:bc:a3:c9:ba:6f:8c:b9: ee:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:22:01:AA:92:4B:55:38:86:57:8D:A7:F2:18:61:8F:0F:0E:7B:B2 X509v3 Authority Key Identifier: keyid:DD:8F:3D:96:3F:A8:D1:F2:2D:57:F4:DF:B2:9A:BD:70:D2:55:8E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Y89lj-o0fItV_Tfspq9cNJVjjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:60:23:03:44:5d:59:84:d2:83:2e:06:8e:ad:cb:bc:5f:34: 4d:14:5a:73:64:83:46:65:0c:cb:96:69:f6:4a:fa:13:4a:61: 40:71:96:10:fc:f7:4f:a7:9b:95:bc:17:b4:54:40:fe:91:df: 1d:a0:83:8e:3a:79:5a:58:5c:1b:35:48:92:f5:6a:85:f6:cf: 48:d7:5c:8d:12:89:93:8f:67:57:58:80:3d:8c:a8:1f:44:94: ca:5a:43:26:2f:a5:68:39:91:22:42:81:c0:6b:70:55:c1:90: d6:a5:4e:58:c1:f0:df:23:ca:ef:87:20:c2:11:e6:3a:71:8c: ca:68:4e:cc:78:7e:d2:72:38:fa:c8:3a:2e:bd:a5:9c:64:c1: 6c:76:a1:0a:ae:b1:7a:c4:79:76:20:d7:e8:19:0b:90:2a:dd: 17:0e:ea:df:ae:f9:88:e6:dd:6d:b2:75:11:cf:20:74:a9:5f: d9:6c:c0:f8:81:8e:b9:a9:e5:2b:44:1f:50:9d:f0:5d:38:c8: 7f:f8:99:76:40:bf:0d:c6:1d:45:4f:36:70:53:12:56:bc:e0: b9:1d:1c:b3:69:fc:5a:83:6d:0f:a7:7a:8c:3b:ed:bb:e6:db: 33:59:97:43:71:8c:d2:e7:33:8c:c6:c6:97:47:80:9f:23:0f: d9:41:96:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAsEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUwNkMxMTAvBgNVBAUTKEREOEYzRDk2M0ZBOEQxRjIyRDU3RjRERkIyOUFCRDcw RDI1NThFMzcwHhcNMjUwNjEzMDA1NjQ2WhcNMjUwNjIwMDA1NjQ2WjAYMRYwFAYD VQQDEw02ODRiNzc0ZS01MmVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtdvzz2H/vqwThmJotvVTq3YfLaFdncFpq64sPXE+LpyJ8pzIGR0bsbnuWNCO PqT9+/AipsjLli6lnbScNHBewj+Ee0MYNr92fxA4QtoI45w1DILm6wtpEyrAYtPl SnOlkagx+KBVk5PU2MYJmK88N/mRv22xMp2bXdfwe+2eHwBrDI+L/XQkUm8FDkfa Rkh/7ww1mbljG5sWgRM/98HDs12ZiA2tDV4rSo1b1XeR1eT0gpv666pX7wOAyIaQ 2qbwDfVPFLZ7ciNKTgTNssBoQyHje7NIYz7CkcAsTaWNHQycXssCljlGK/v1HJMl cC9zq9ASF48X5ryjybpvjLnuXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCUiAaqS S1U4hleNp/IYYY8PDnuyMB8GA1UdIwQYMBaAFN2PPZY/qNHyLVf037KavXDSVY43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTA2Qy80NjYxOEIxQ0Y0 NkUxMUVDOEM2MDcwMEZDNEY5QUUwMi8zWTg5bGotbzBmSXRWX1Rmc3BxOWNOSlZq amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNZODlsai1vMGZJdFZfVGZzcHE5Y05KVmpqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTA2Qy80NjYxOEIxQ0Y0NkUxMUVDOEM2MDcwMEZDNEY5QUUwMi8zWTg5bGotbzBm SXRWX1Rmc3BxOWNOSlZqamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDYCMDRF1ZhNKDLgaOrcu8XzRNFFpzZINGZQzLlmn2SvoTSmFAcZYQ /PdPp5uVvBe0VED+kd8doIOOOnlaWFwbNUiS9WqF9s9I11yNEomTj2dXWIA9jKgf RJTKWkMmL6VoOZEiQoHAa3BVwZDWpU5YwfDfI8rvhyDCEeY6cYzKaE7MeH7Scjj6 yDouvaWcZMFsdqEKrrF6xHl2INfoGQuQKt0XDurfrvmI5t1tsnURzyB0qV/ZbMD4 gY65qeUrRB9QnfBdOMh/+Jl2QL8Nxh1FTzZwUxJWvOC5HRyzafxag20Pp3qMO+27 5tszWZdDcYzS5zOMxsaXR4CfIw/ZQZat -----END CERTIFICATE-----Generated at Sat Jun 14 19:07:15 2025 by rpki-client