$ rpki-client -vvf rpki.apnic.net/member_repository/A91D53AC/03168C4E1D9711E28B6C008008B02CD2/S3Z_4wTU8n9REYZLp0O5R5zhSns.mft File: S3Z_4wTU8n9REYZLp0O5R5zhSns.mft (raw, json) Hash identifier: CnYL0xVMN+G7uNAO4ZSE1MlAD6LKel+T9hk5xvolhE8= Subject key identifier: 9B:01:E1:AD:75:05:64:1D:42:4B:F6:0D:0D:4E:AA:37:C8:50:36:27 Authority key identifier: 4B:76:7F:E3:04:D4:F2:7F:51:11:86:4B:A7:43:B9:47:9C:E1:4A:7B Certificate issuer: /CN=A91D53AC/serialNumber=4B767FE304D4F27F5111864BA743B9479CE14A7B Certificate serial: 3493 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3Z_4wTU8n9REYZLp0O5R5zhSns.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D53AC/03168C4E1D9711E28B6C008008B02CD2/S3Z_4wTU8n9REYZLp0O5R5zhSns.mft Manifest number: 3490 Signing time: Sat 14 Jun 2025 14:50:19 +0000 Manifest this update: Sat 14 Jun 2025 14:50:18 +0000 Manifest next update: Sat 21 Jun 2025 14:50:18 +0000 Files and hashes: 1: S3Z_4wTU8n9REYZLp0O5R5zhSns.crl (hash: 21nC/QDuXvQtuxrWRs5rsmEDK6TMzYp3uggXaRxk+qM=) 2: 0C9FD154619611EEADD97F70C4F9AE02.roa (hash: 6tys2kBORt2e9LfTgwSygjIdDqVtnmqGXLJS1SjEsWs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D53AC/03168C4E1D9711E28B6C008008B02CD2/S3Z_4wTU8n9REYZLp0O5R5zhSns.crl rsync://rpki.apnic.net/member_repository/A91D53AC/03168C4E1D9711E28B6C008008B02CD2/S3Z_4wTU8n9REYZLp0O5R5zhSns.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3Z_4wTU8n9REYZLp0O5R5zhSns.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 14:50:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13459 (0x3493) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D53AC, serialNumber=4B767FE304D4F27F5111864BA743B9479CE14A7B Validity Not Before: Jun 14 14:50:18 2025 GMT Not After : Jun 21 14:50:18 2025 GMT Subject: CN=684d8c2b-350d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:07:84:b2:4e:d2:dc:45:44:e4:a2:cd:6e:39: 5d:f7:7a:63:f5:d9:17:b1:b8:7f:a1:e9:1d:2e:f8: 68:5a:85:13:00:ea:7d:2a:6e:f4:37:b8:83:91:d1: be:7f:d8:b0:03:df:d7:69:bb:d3:99:cb:91:ae:f0: 9e:9b:2b:39:e4:8c:be:05:c3:b8:cb:88:26:f4:35: 72:d2:55:a8:ae:10:de:47:ae:00:37:f5:85:a4:68: 89:31:3f:eb:33:42:44:e0:73:19:cf:e5:04:7f:25: 69:14:29:9d:d6:cf:b2:1c:2d:b0:78:52:f6:e6:75: 7d:28:bd:d5:b5:38:16:84:38:f1:ca:81:2d:d4:1a: 0e:21:91:dc:d7:69:c9:a4:b9:c1:46:dd:6f:1e:57: d4:23:65:92:b7:e2:3c:f6:5a:22:f8:e5:05:f1:c7: 45:2a:f5:b6:fd:7c:76:11:60:3f:7f:cc:ac:67:6a: b9:e5:6b:b7:8d:e2:5c:bb:ff:8c:c3:fe:a1:f8:42: e7:b3:45:55:cb:87:85:32:1c:e6:77:f2:5b:a2:f9: 5f:67:b8:12:ee:a9:8f:67:a1:59:43:6b:65:ad:8f: ab:28:a7:32:e0:b1:14:7a:62:66:c8:a1:48:44:8f: f0:73:0d:be:ce:7e:6c:15:34:fb:fd:e0:41:c9:92: f0:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:01:E1:AD:75:05:64:1D:42:4B:F6:0D:0D:4E:AA:37:C8:50:36:27 X509v3 Authority Key Identifier: keyid:4B:76:7F:E3:04:D4:F2:7F:51:11:86:4B:A7:43:B9:47:9C:E1:4A:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D53AC/03168C4E1D9711E28B6C008008B02CD2/S3Z_4wTU8n9REYZLp0O5R5zhSns.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3Z_4wTU8n9REYZLp0O5R5zhSns.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D53AC/03168C4E1D9711E28B6C008008B02CD2/S3Z_4wTU8n9REYZLp0O5R5zhSns.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:25:e2:e6:d8:ae:85:08:be:9d:89:26:ea:95:5f:28:71:89: e8:5d:d2:44:22:92:a3:5a:04:37:6b:f1:43:58:0f:02:9d:e7: 5c:5d:72:ec:7b:7d:19:85:80:da:67:9e:89:51:04:73:fe:a5: fe:bf:78:1f:f9:02:f4:95:2d:9c:6d:14:e7:17:ea:67:78:24: 62:38:ef:21:e4:ed:49:24:c7:91:95:38:58:a9:46:74:f8:3c: 20:c3:ff:a4:8a:97:86:3c:f8:f6:b4:12:d9:8b:27:53:7b:16: 01:0d:33:0d:d0:fc:04:c9:58:6c:f3:4d:54:1c:e9:70:06:2d: 38:c6:0f:24:7d:8e:d3:8c:b7:a1:fb:a4:c7:74:d9:20:40:72: df:7d:44:12:a1:17:e6:bd:d7:e9:20:a5:2c:d1:46:4b:a9:d4: 0a:fd:3c:5d:12:eb:36:08:c5:17:49:b5:09:a5:94:a6:18:3f: f8:b5:91:cd:f7:79:b6:50:2f:48:56:fa:71:71:0f:37:ef:ea: 64:cc:df:aa:23:a3:08:5a:15:14:f8:07:4c:1e:81:15:02:6f: 28:27:8c:4a:65:4a:57:58:a9:ca:92:91:8d:c4:f3:b8:b9:21: b3:ef:1a:fa:fe:b4:72:18:c8:f9:14:a2:8d:42:fa:37:b0:cb: 87:4b:cb:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUzQUMxMTAvBgNVBAUTKDRCNzY3RkUzMDRENEYyN0Y1MTExODY0QkE3NDNCOTQ3 OUNFMTRBN0IwHhcNMjUwNjE0MTQ1MDE4WhcNMjUwNjIxMTQ1MDE4WjAYMRYwFAYD VQQDEw02ODRkOGMyYi0zNTBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoAeEsk7S3EVE5KLNbjld93pj9dkXsbh/oekdLvhoWoUTAOp9Km70N7iDkdG+ f9iwA9/XabvTmcuRrvCemys55Iy+BcO4y4gm9DVy0lWorhDeR64AN/WFpGiJMT/r M0JE4HMZz+UEfyVpFCmd1s+yHC2weFL25nV9KL3VtTgWhDjxyoEt1BoOIZHc12nJ pLnBRt1vHlfUI2WSt+I89loi+OUF8cdFKvW2/Xx2EWA/f8ysZ2q55Wu3jeJcu/+M w/6h+ELns0VVy4eFMhzmd/JbovlfZ7gS7qmPZ6FZQ2tlrY+rKKcy4LEUemJmyKFI RI/wcw2+zn5sFTT7/eBByZLwKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJsB4a11 BWQdQkv2DQ1OqjfIUDYnMB8GA1UdIwQYMBaAFEt2f+ME1PJ/URGGS6dDuUec4Up7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTNBQy8wMzE2OEM0RTFE OTcxMUUyOEI2QzAwODAwOEIwMkNEMi9TM1pfNHdUVThuOVJFWVpMcDBPNVI1emhT bnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1MzWl80d1RVOG45UkVZWkxwME81UjV6aFNucy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTNBQy8wMzE2OEM0RTFEOTcxMUUyOEI2QzAwODAwOEIwMkNEMi9TM1pfNHdUVThu OVJFWVpMcDBPNVI1emhTbnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyJeLm2K6FCL6diSbqlV8ocYnoXdJEIpKjWgQ3a/FDWA8CnedcXXLs e30ZhYDaZ56JUQRz/qX+v3gf+QL0lS2cbRTnF+pneCRiOO8h5O1JJMeRlThYqUZ0 +Dwgw/+kipeGPPj2tBLZiydTexYBDTMN0PwEyVhs801UHOlwBi04xg8kfY7TjLeh +6THdNkgQHLffUQSoRfmvdfpIKUs0UZLqdQK/TxdEus2CMUXSbUJpZSmGD/4tZHN 93m2UC9IVvpxcQ837+pkzN+qI6MIWhUU+AdMHoEVAm8oJ4xKZUpXWKnKkpGNxPO4 uSGz7xr6/rRyGMj5FKKNQvo3sMuHS8vI -----END CERTIFICATE-----Generated at Sat Jun 14 19:32:28 2025 by rpki-client