$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBB7D/3017096E2BB911ECB2B3674FC4F9AE02/379fgwtQs7_B5TULnGBbt1YSLhE.mft File: 379fgwtQs7_B5TULnGBbt1YSLhE.mft (raw, json) Hash identifier: e7qmEjLi19U22jdBrr2EsVLcmPaRuzj59Dtz/gBOvdk= Subject key identifier: 3C:9D:40:6C:AA:19:88:A6:1C:00:0A:56:24:66:E0:96:EB:D8:7F:0C Authority key identifier: DF:BF:5F:83:0B:50:B3:BF:C1:E5:35:0B:9C:60:5B:B7:56:12:2E:11 Certificate issuer: /CN=A91DBB7D/serialNumber=DFBF5F830B50B3BFC1E5350B9C605BB756122E11 Certificate serial: 04CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/379fgwtQs7_B5TULnGBbt1YSLhE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBB7D/3017096E2BB911ECB2B3674FC4F9AE02/379fgwtQs7_B5TULnGBbt1YSLhE.mft Manifest number: 04C7 Signing time: Thu 12 Jun 2025 23:25:58 +0000 Manifest this update: Thu 12 Jun 2025 23:25:58 +0000 Manifest next update: Thu 19 Jun 2025 23:25:58 +0000 Files and hashes: 1: 379fgwtQs7_B5TULnGBbt1YSLhE.crl (hash: HbR1z3DVAVihcj8UuQVdiThCisM6mLwm4wk/jLYRnFA=) 2: D5C4A54A617B11EC82058668C4F9AE02.roa (hash: lRFgE9XZ6iDD+G2GlIBwvnuaHaRG9VvqEjSSiJJQVDA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBB7D/3017096E2BB911ECB2B3674FC4F9AE02/379fgwtQs7_B5TULnGBbt1YSLhE.crl rsync://rpki.apnic.net/member_repository/A91DBB7D/3017096E2BB911ECB2B3674FC4F9AE02/379fgwtQs7_B5TULnGBbt1YSLhE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/379fgwtQs7_B5TULnGBbt1YSLhE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 23:25:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1230 (0x4ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBB7D, serialNumber=DFBF5F830B50B3BFC1E5350B9C605BB756122E11 Validity Not Before: Jun 12 23:25:58 2025 GMT Not After : Jun 19 23:25:58 2025 GMT Subject: CN=684b6206-786a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:e5:50:78:d6:bc:20:81:bf:8d:47:37:70:1d: d9:a0:51:08:7d:b7:a8:56:a7:4a:4d:06:58:e1:1e: 47:c3:3b:90:7d:a6:c9:40:2b:4f:6d:4e:5b:8c:cd: 8e:86:02:17:7a:00:42:a8:ea:44:7a:d1:9e:73:7a: ae:af:08:1a:24:d0:5f:64:30:10:07:0e:e4:fb:74: e3:d1:5c:c2:ec:90:7b:17:09:ce:bb:d3:70:05:98: fb:85:05:1e:1f:f3:38:7e:b7:d9:46:94:d0:bc:ac: 07:24:f6:ce:db:ff:45:20:4b:06:ff:e4:dd:34:8f: 42:45:52:40:a2:3b:00:b4:fc:95:c1:71:f2:f4:25: 7e:19:e0:81:79:48:77:28:3a:a9:63:7e:ac:06:0f: 6d:d3:eb:8e:c2:c9:79:b1:4d:aa:3a:61:2b:d4:6e: 1b:ee:d0:68:52:6e:ca:8b:c7:9c:06:08:d6:61:e3: 23:08:e1:78:6e:0b:cc:df:05:f1:a2:a0:ab:c3:b7: 62:d1:26:ea:77:06:7b:4f:d6:a4:db:50:6b:88:4d: f5:3f:77:40:30:c0:07:ac:21:91:90:fe:86:73:e3: 24:ec:f8:f3:d6:31:9e:8a:49:64:ec:96:f5:7a:ec: 8f:66:f7:75:f5:dd:6f:46:b9:8b:db:a0:a3:2c:57: 5d:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:9D:40:6C:AA:19:88:A6:1C:00:0A:56:24:66:E0:96:EB:D8:7F:0C X509v3 Authority Key Identifier: keyid:DF:BF:5F:83:0B:50:B3:BF:C1:E5:35:0B:9C:60:5B:B7:56:12:2E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBB7D/3017096E2BB911ECB2B3674FC4F9AE02/379fgwtQs7_B5TULnGBbt1YSLhE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/379fgwtQs7_B5TULnGBbt1YSLhE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBB7D/3017096E2BB911ECB2B3674FC4F9AE02/379fgwtQs7_B5TULnGBbt1YSLhE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:9d:6e:2d:5c:37:b1:d2:52:ee:c3:90:7d:3f:79:8b:07:ca: f5:80:f9:11:32:5a:c4:70:c4:4c:24:b9:37:6a:c6:c5:94:d4: 01:6b:d7:ce:09:06:19:26:80:15:d8:6c:a3:b4:90:df:80:f7: e4:a1:d4:f2:42:8e:42:cd:44:a9:45:be:e9:8e:27:fd:aa:8c: b1:ff:23:97:bb:6d:bd:b7:5f:6a:01:81:32:31:18:4b:8e:20: ad:0d:2c:76:9a:33:c1:54:fd:83:6a:aa:ad:de:a6:f6:24:02: 75:fa:56:81:c1:35:51:ca:9b:bc:d5:10:3c:6b:a7:4b:21:18: d5:68:a1:44:44:5a:f2:1d:2a:16:ca:33:5b:05:67:88:2b:3b: cc:dd:ba:54:23:e4:a1:c9:70:79:f9:df:6b:8c:5e:a1:36:6a: bc:a2:f6:fa:d2:b1:45:d6:71:f5:ae:fa:88:d9:47:06:13:4a: c7:8d:f7:43:6c:80:04:8b:4f:9d:6d:cb:99:6c:83:65:98:55: 6d:5d:e2:a4:4e:4b:d5:08:bd:36:7f:a3:d9:41:8d:c5:f6:b7: 22:42:33:eb:11:12:67:b6:bb:e1:4e:02:bf:ff:9b:2b:e3:f9: 00:03:1e:eb:dd:ab:f0:3d:e7:ba:b8:2f:80:f3:ae:4d:0e:47: d7:dd:d8:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJCN0QxMTAvBgNVBAUTKERGQkY1RjgzMEI1MEIzQkZDMUU1MzUwQjlDNjA1QkI3 NTYxMjJFMTEwHhcNMjUwNjEyMjMyNTU4WhcNMjUwNjE5MjMyNTU4WjAYMRYwFAYD VQQDEw02ODRiNjIwNi03ODZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0+VQeNa8IIG/jUc3cB3ZoFEIfbeoVqdKTQZY4R5HwzuQfabJQCtPbU5bjM2O hgIXegBCqOpEetGec3qurwgaJNBfZDAQBw7k+3Tj0VzC7JB7FwnOu9NwBZj7hQUe H/M4frfZRpTQvKwHJPbO2/9FIEsG/+TdNI9CRVJAojsAtPyVwXHy9CV+GeCBeUh3 KDqpY36sBg9t0+uOwsl5sU2qOmEr1G4b7tBoUm7Ki8ecBgjWYeMjCOF4bgvM3wXx oqCrw7di0SbqdwZ7T9ak21BriE31P3dAMMAHrCGRkP6Gc+Mk7Pjz1jGeiklk7Jb1 euyPZvd19d1vRrmL26CjLFdd0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDydQGyq GYimHAAKViRm4Jbr2H8MMB8GA1UdIwQYMBaAFN+/X4MLULO/weU1C5xgW7dWEi4R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkI3RC8zMDE3MDk2RTJC QjkxMUVDQjJCMzY3NEZDNEY5QUUwMi8zNzlmZ3d0UXM3X0I1VFVMbkdCYnQxWVNM aEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM3OWZnd3RRczdfQjVUVUxuR0JidDFZU0xoRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QkI3RC8zMDE3MDk2RTJCQjkxMUVDQjJCMzY3NEZDNEY5QUUwMi8zNzlmZ3d0UXM3 X0I1VFVMbkdCYnQxWVNMaEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEnW4tXDex0lLuw5B9P3mLB8r1gPkRMlrEcMRMJLk3asbFlNQBa9fO CQYZJoAV2GyjtJDfgPfkodTyQo5CzUSpRb7pjif9qoyx/yOXu229t19qAYEyMRhL jiCtDSx2mjPBVP2Daqqt3qb2JAJ1+laBwTVRypu81RA8a6dLIRjVaKFERFryHSoW yjNbBWeIKzvM3bpUI+ShyXB5+d9rjF6hNmq8ovb60rFF1nH1rvqI2UcGE0rHjfdD bIAEi0+dbcuZbINlmFVtXeKkTkvVCL02f6PZQY3F9rciQjPrERJntrvhTgK//5sr 4/kAAx7r3avwPee6uC+A865NDkfX3djX -----END CERTIFICATE-----Generated at Sat Jun 14 19:02:40 2025 by rpki-client