$ rpki-client -vvf rpki.apnic.net/member_repository/A91D76BE/44C29E0E6B7711EA86594476C4F9AE02/3RGLuzSfLJtA3Zu3GlthxkvbPhE.mft File: 3RGLuzSfLJtA3Zu3GlthxkvbPhE.mft (raw, json) Hash identifier: yYiDMSzYBaliRIO2gSsSLTWSSoioCoac8h5wdU1Etwk= Subject key identifier: 8F:29:B6:1C:44:FA:5A:2B:F0:B7:B6:3C:27:08:2B:A5:7D:6C:FF:95 Authority key identifier: DD:11:8B:BB:34:9F:2C:9B:40:DD:9B:B7:1A:5B:61:C6:4B:DB:3E:11 Certificate issuer: /CN=A91D76BE/serialNumber=DD118BBB349F2C9B40DD9BB71A5B61C64BDB3E11 Certificate serial: 0A43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3RGLuzSfLJtA3Zu3GlthxkvbPhE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D76BE/44C29E0E6B7711EA86594476C4F9AE02/3RGLuzSfLJtA3Zu3GlthxkvbPhE.mft Manifest number: 0A3C Signing time: Thu 12 Jun 2025 19:32:08 +0000 Manifest this update: Thu 12 Jun 2025 19:32:08 +0000 Manifest next update: Thu 19 Jun 2025 19:32:08 +0000 Files and hashes: 1: 3RGLuzSfLJtA3Zu3GlthxkvbPhE.crl (hash: +RPikEXREOge5u1t9pzfLSMYzuzG/iF3mP+wGq08BU0=) 2: 47772F946C2011EAA5965B3CC4F9AE02.roa (hash: VtwEbio1gRB7Ch5LlsoNkh9yhOMrAAqsTjIWAhPZFj0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D76BE/44C29E0E6B7711EA86594476C4F9AE02/3RGLuzSfLJtA3Zu3GlthxkvbPhE.crl rsync://rpki.apnic.net/member_repository/A91D76BE/44C29E0E6B7711EA86594476C4F9AE02/3RGLuzSfLJtA3Zu3GlthxkvbPhE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3RGLuzSfLJtA3Zu3GlthxkvbPhE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 19:32:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2627 (0xa43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D76BE, serialNumber=DD118BBB349F2C9B40DD9BB71A5B61C64BDB3E11 Validity Not Before: Jun 12 19:32:08 2025 GMT Not After : Jun 19 19:32:08 2025 GMT Subject: CN=684b2b38-a7c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:2c:96:16:11:8d:80:0a:5e:a1:bd:b7:e3:11: 00:fc:17:41:c3:a8:4d:e2:e4:dd:af:fe:79:96:a0: 19:de:e6:68:d3:fb:1d:4e:55:dd:fc:b7:20:1f:30: da:cf:a1:00:00:89:fb:33:cf:94:ac:ad:6d:8f:9b: 88:58:0c:b1:21:18:4f:69:39:3a:8b:d5:12:4b:66: 08:1b:80:2e:34:98:a8:5a:2c:fb:30:eb:1b:99:73: 2e:60:34:85:50:74:56:aa:7e:8d:3b:c8:a5:dd:ce: 44:a3:61:b7:c4:4a:f3:c0:06:61:8f:10:6c:bb:55: c9:c8:d7:7d:ba:a6:40:20:70:9a:d3:66:0f:26:54: 45:33:84:15:c6:61:28:0e:03:62:b9:24:c0:cd:71: 70:37:2e:05:35:86:fe:cb:4e:81:69:c2:bd:3b:f3: 98:70:31:ab:31:74:0f:83:a3:d4:d2:d1:27:9b:f5: 14:68:02:a4:f3:1f:ae:c7:06:65:22:05:b4:9b:3d: 4f:86:15:c3:db:5b:da:40:1b:21:f0:7e:d1:cc:34: 34:9c:4f:57:d0:19:65:f8:e4:63:db:6a:fb:50:47: 5d:4b:31:aa:26:60:48:38:15:49:9e:0b:16:88:bf: 32:99:51:e7:79:7a:6f:f3:ef:9e:47:19:21:52:b9: b4:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:29:B6:1C:44:FA:5A:2B:F0:B7:B6:3C:27:08:2B:A5:7D:6C:FF:95 X509v3 Authority Key Identifier: keyid:DD:11:8B:BB:34:9F:2C:9B:40:DD:9B:B7:1A:5B:61:C6:4B:DB:3E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D76BE/44C29E0E6B7711EA86594476C4F9AE02/3RGLuzSfLJtA3Zu3GlthxkvbPhE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3RGLuzSfLJtA3Zu3GlthxkvbPhE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D76BE/44C29E0E6B7711EA86594476C4F9AE02/3RGLuzSfLJtA3Zu3GlthxkvbPhE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:d3:47:c2:16:86:b0:c9:fd:ac:d7:a5:2f:0e:1d:6f:ad:a6: 27:d4:ec:ee:1d:90:d3:b5:dc:88:4b:81:d7:2f:41:1e:df:43: a5:c9:00:13:24:c3:06:9b:ef:bc:3a:af:a3:55:83:34:c8:45: d4:12:60:2a:75:6e:15:41:a7:dc:bb:af:99:12:09:45:60:05: df:a7:97:d7:bc:8f:01:90:79:f8:2c:3c:88:a7:67:45:0e:e2: b0:1c:4d:cf:59:fb:0f:d5:ba:66:ad:be:ce:97:f8:ba:fa:20: b5:bd:f0:ef:7d:91:9a:2f:4d:3b:ce:68:9d:7f:23:15:6f:05: 2d:d2:6e:08:7b:2a:67:14:3e:78:86:7f:f3:19:12:7e:df:cc: 03:28:77:92:bf:8c:f0:67:85:bc:92:1a:d0:ab:ad:8f:9f:c0: 7b:99:19:93:12:16:80:bc:d9:34:16:6f:33:3d:6c:b3:6f:fc: 71:6a:95:ca:b8:d0:6e:02:38:fb:58:9a:6b:d0:36:ed:49:a7: 9a:50:9c:a9:71:07:ce:e3:4a:cc:6d:32:c5:29:95:16:b3:99: fd:3a:6c:73:b2:80:c0:64:d9:b0:53:1a:72:e1:0f:a2:eb:97: e0:ca:fb:bf:60:2f:4b:74:8d:82:11:54:5b:44:ca:bf:da:5c: 11:f7:74:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCkMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDc2QkUxMTAvBgNVBAUTKEREMTE4QkJCMzQ5RjJDOUI0MEREOUJCNzFBNUI2MUM2 NEJEQjNFMTEwHhcNMjUwNjEyMTkzMjA4WhcNMjUwNjE5MTkzMjA4WjAYMRYwFAYD VQQDEw02ODRiMmIzOC1hN2M2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxSyWFhGNgApeob234xEA/BdBw6hN4uTdr/55lqAZ3uZo0/sdTlXd/LcgHzDa z6EAAIn7M8+UrK1tj5uIWAyxIRhPaTk6i9USS2YIG4AuNJioWiz7MOsbmXMuYDSF UHRWqn6NO8il3c5Eo2G3xErzwAZhjxBsu1XJyNd9uqZAIHCa02YPJlRFM4QVxmEo DgNiuSTAzXFwNy4FNYb+y06BacK9O/OYcDGrMXQPg6PU0tEnm/UUaAKk8x+uxwZl IgW0mz1PhhXD21vaQBsh8H7RzDQ0nE9X0Bll+ORj22r7UEddSzGqJmBIOBVJngsW iL8ymVHneXpv8++eRxkhUrm0bwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI8pthxE +lor8Le2PCcIK6V9bP+VMB8GA1UdIwQYMBaAFN0Ri7s0nyybQN2btxpbYcZL2z4R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzZCRS80NEMyOUUwRTZC NzcxMUVBODY1OTQ0NzZDNEY5QUUwMi8zUkdMdXpTZkxKdEEzWnUzR2x0aHhrdmJQ aEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNSR0x1elNmTEp0QTNadTNHbHRoeGt2YlBoRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NzZCRS80NEMyOUUwRTZCNzcxMUVBODY1OTQ0NzZDNEY5QUUwMi8zUkdMdXpTZkxK dEEzWnUzR2x0aHhrdmJQaEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCw00fCFoawyf2s16UvDh1vraYn1OzuHZDTtdyIS4HXL0Ee30OlyQAT JMMGm++8Oq+jVYM0yEXUEmAqdW4VQafcu6+ZEglFYAXfp5fXvI8BkHn4LDyIp2dF DuKwHE3PWfsP1bpmrb7Ol/i6+iC1vfDvfZGaL007zmidfyMVbwUt0m4IeypnFD54 hn/zGRJ+38wDKHeSv4zwZ4W8khrQq62Pn8B7mRmTEhaAvNk0Fm8zPWyzb/xxapXK uNBuAjj7WJpr0DbtSaeaUJypcQfO40rMbTLFKZUWs5n9OmxzsoDAZNmwUxpy4Q+i 65fgyvu/YC9LdI2CEVRbRMq/2lwR93Q+ -----END CERTIFICATE-----Generated at Sat Jun 14 19:26:59 2025 by rpki-client