$ rpki-client -vvf rpki.apnic.net/member_repository/A91D53AC/03168C4E1D9711E28B6C008008B02CD2/S3Z_4wTU8n9REYZLp0O5R5zhSns.mft File: S3Z_4wTU8n9REYZLp0O5R5zhSns.mft (raw, json) Hash identifier: DQhSf6OAYn7DOfeu6uaHHFJreM+6la9dG/TmPPWRwuQ= Subject key identifier: F5:C8:50:FF:3B:8F:41:DC:7C:85:42:52:09:BD:25:2E:13:5C:37:B9 Authority key identifier: 4B:76:7F:E3:04:D4:F2:7F:51:11:86:4B:A7:43:B9:47:9C:E1:4A:7B Certificate issuer: /CN=A91D53AC/serialNumber=4B767FE304D4F27F5111864BA743B9479CE14A7B Certificate serial: 3479 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3Z_4wTU8n9REYZLp0O5R5zhSns.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D53AC/03168C4E1D9711E28B6C008008B02CD2/S3Z_4wTU8n9REYZLp0O5R5zhSns.mft Manifest number: 3476 Signing time: Thu 24 Apr 2025 14:50:04 +0000 Manifest this update: Thu 24 Apr 2025 14:50:03 +0000 Manifest next update: Thu 01 May 2025 14:50:03 +0000 Files and hashes: 1: S3Z_4wTU8n9REYZLp0O5R5zhSns.crl (hash: JkeNZqBAwLuMGXBsg1Ayg4SzczMojItNl95dDCGVPVM=) 2: 0C9FD154619611EEADD97F70C4F9AE02.roa (hash: 6tys2kBORt2e9LfTgwSygjIdDqVtnmqGXLJS1SjEsWs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D53AC/03168C4E1D9711E28B6C008008B02CD2/S3Z_4wTU8n9REYZLp0O5R5zhSns.crl rsync://rpki.apnic.net/member_repository/A91D53AC/03168C4E1D9711E28B6C008008B02CD2/S3Z_4wTU8n9REYZLp0O5R5zhSns.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3Z_4wTU8n9REYZLp0O5R5zhSns.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:50:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13433 (0x3479) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D53AC, serialNumber=4B767FE304D4F27F5111864BA743B9479CE14A7B Validity Not Before: Apr 24 14:50:03 2025 GMT Not After : May 1 14:50:03 2025 GMT Subject: CN=680a4f9c-1b60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:01:4e:34:56:e8:03:6a:db:c3:21:4c:7a:00: 02:2b:56:a4:32:78:f6:eb:83:8e:b7:f3:83:fd:e0: 90:cb:a5:5f:ef:50:a2:31:e8:d8:43:37:fe:20:4d: 23:6d:8b:ba:5b:f9:23:4b:cb:ae:19:3d:72:69:1a: 62:80:75:79:28:51:a5:ca:75:3c:f2:5b:fb:2b:54: c0:75:af:17:61:03:af:cc:e4:8f:80:d3:8d:ad:51: 8a:b3:8f:75:d9:26:b7:0a:33:1c:18:45:df:86:52: 49:1c:20:85:b8:44:8f:56:2a:54:4d:24:ab:1c:2a: 17:51:9b:a2:e6:db:65:75:88:2c:8c:e4:78:be:27: a5:25:0d:4c:08:8f:31:e0:e4:7b:6e:4d:38:b7:3f: 47:5e:f1:74:73:a8:12:3a:04:04:30:0a:be:0b:d3: 43:8e:aa:b6:b7:5e:64:e0:dd:7f:d8:59:79:63:82: 57:06:4e:f1:64:0d:14:67:de:5c:1f:3a:ea:6c:2f: c7:21:06:a2:50:15:aa:77:ba:b7:95:43:c4:2f:ea: 5c:2d:70:43:ab:b6:2f:be:9f:35:ec:82:9e:a6:e5: 9e:3c:c4:c9:37:f6:ea:07:e9:26:77:88:54:f1:fb: c0:28:4d:c6:b2:15:b7:21:5a:fa:1e:c0:1a:dc:7a: 1e:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:C8:50:FF:3B:8F:41:DC:7C:85:42:52:09:BD:25:2E:13:5C:37:B9 X509v3 Authority Key Identifier: keyid:4B:76:7F:E3:04:D4:F2:7F:51:11:86:4B:A7:43:B9:47:9C:E1:4A:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D53AC/03168C4E1D9711E28B6C008008B02CD2/S3Z_4wTU8n9REYZLp0O5R5zhSns.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3Z_4wTU8n9REYZLp0O5R5zhSns.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D53AC/03168C4E1D9711E28B6C008008B02CD2/S3Z_4wTU8n9REYZLp0O5R5zhSns.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:62:02:0d:c2:d8:1f:c9:8b:e7:63:4f:40:b6:64:64:af:1c: 79:01:63:d0:64:39:44:56:e5:9b:45:5b:ef:d9:0a:e8:54:7b: 4a:64:d5:fa:0c:27:81:0f:fd:4c:0a:63:c9:18:40:35:12:90: 83:b7:e1:0a:fe:b6:10:29:e9:38:4a:60:ac:25:32:8d:3e:76: ec:4b:e4:3d:58:82:e6:25:f1:68:9c:69:e3:7e:60:77:03:4e: 6a:ca:44:85:e6:fb:48:1e:ee:75:53:6d:2e:ca:60:ed:ba:aa: 91:ab:20:fa:2d:41:66:1a:8e:65:f8:00:25:ec:e0:45:14:b1: cb:54:b7:8e:69:97:73:69:9d:f8:ce:de:df:e3:f3:fe:15:d6: 6e:28:8c:0d:3b:fb:68:35:3f:e9:40:07:6e:3a:85:48:69:18: d6:5e:62:ed:20:48:4e:7c:86:83:cd:95:b4:2c:22:e4:d3:d1: 12:e0:45:c9:6a:cf:9e:3f:2c:ad:a8:aa:62:b6:4f:1e:c6:fa: 7d:0c:c8:c1:90:d6:89:ed:64:88:24:57:c8:68:24:e1:f5:eb: eb:e6:aa:69:40:75:01:b3:3e:ec:d3:d9:74:6f:d6:8a:f9:71: 27:b7:62:93:a7:83:bd:db:fc:1c:77:2a:98:d0:6e:82:9d:a8: 77:81:8e:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNHkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUzQUMxMTAvBgNVBAUTKDRCNzY3RkUzMDRENEYyN0Y1MTExODY0QkE3NDNCOTQ3 OUNFMTRBN0IwHhcNMjUwNDI0MTQ1MDAzWhcNMjUwNTAxMTQ1MDAzWjAYMRYwFAYD VQQDEw02ODBhNGY5Yy0xYjYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtgFONFboA2rbwyFMegACK1akMnj264OOt/OD/eCQy6Vf71CiMejYQzf+IE0j bYu6W/kjS8uuGT1yaRpigHV5KFGlynU88lv7K1TAda8XYQOvzOSPgNONrVGKs491 2Sa3CjMcGEXfhlJJHCCFuESPVipUTSSrHCoXUZui5ttldYgsjOR4vielJQ1MCI8x 4OR7bk04tz9HXvF0c6gSOgQEMAq+C9NDjqq2t15k4N1/2Fl5Y4JXBk7xZA0UZ95c HzrqbC/HIQaiUBWqd7q3lUPEL+pcLXBDq7Yvvp817IKepuWePMTJN/bqB+kmd4hU 8fvAKE3GshW3IVr6HsAa3Hoe3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPXIUP87 j0HcfIVCUgm9JS4TXDe5MB8GA1UdIwQYMBaAFEt2f+ME1PJ/URGGS6dDuUec4Up7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTNBQy8wMzE2OEM0RTFE OTcxMUUyOEI2QzAwODAwOEIwMkNEMi9TM1pfNHdUVThuOVJFWVpMcDBPNVI1emhT bnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1MzWl80d1RVOG45UkVZWkxwME81UjV6aFNucy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTNBQy8wMzE2OEM0RTFEOTcxMUUyOEI2QzAwODAwOEIwMkNEMi9TM1pfNHdUVThu OVJFWVpMcDBPNVI1emhTbnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmYgINwtgfyYvnY09AtmRkrxx5AWPQZDlEVuWbRVvv2QroVHtKZNX6 DCeBD/1MCmPJGEA1EpCDt+EK/rYQKek4SmCsJTKNPnbsS+Q9WILmJfFonGnjfmB3 A05qykSF5vtIHu51U20uymDtuqqRqyD6LUFmGo5l+AAl7OBFFLHLVLeOaZdzaZ34 zt7f4/P+FdZuKIwNO/toNT/pQAduOoVIaRjWXmLtIEhOfIaDzZW0LCLk09ES4EXJ as+ePyytqKpitk8exvp9DMjBkNaJ7WSIJFfIaCTh9evr5qppQHUBsz7s09l0b9aK +XEnt2KTp4O92/wcdyqY0G6Cnah3gY6z -----END CERTIFICATE-----Generated at Sat Apr 26 04:35:57 2025 by rpki-client