$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.mft File: d3ZhKkPCLQpmuPE2gLMFi-1dmJI.mft (raw, json) Hash identifier: 7b2Ckr0zTWJWAnSW5+jZZ1ZyK2CAhAi0lmvmFil0eyE= Subject key identifier: 3C:16:8F:32:AD:63:BA:8A:32:76:34:09:68:6C:E6:34:F9:F3:D5:D3 Authority key identifier: 77:76:61:2A:43:C2:2D:0A:66:B8:F1:36:80:B3:05:8B:ED:5D:98:92 Certificate issuer: /CN=A91DEB81/serialNumber=7776612A43C22D0A66B8F13680B3058BED5D9892 Certificate serial: 0453 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.mft Manifest number: 042B Signing time: Thu 12 Jun 2025 23:58:47 +0000 Manifest this update: Thu 12 Jun 2025 23:58:46 +0000 Manifest next update: Thu 19 Jun 2025 23:58:46 +0000 Files and hashes: 1: d3ZhKkPCLQpmuPE2gLMFi-1dmJI.crl (hash: H1nJ177lgzLRrE/ZqRSviBIRJvNofvJzfqIs8Vq09cY=) 2: EEECC55A8C3611EFA07E612DC4F9AE02.roa (hash: S448nKM+pkzyKAVAq+QLZ6c2Rwj7lMGOSqjzi17yKYo=) 3: 216DB034DE9711EC9289256FC4F9AE02.roa (hash: +Y2vKS8CZ7xVCXV7DmrOc6o0OVVkIHves16LK2wsX2I=) 4: 204E25DADE9711EC9289256FC4F9AE02.roa (hash: Nm0NB5K/NvPqifGuFp/i7DvZfN/unt+xIyxa1mf1Ru8=) 5: E184C6F48F2C11EEA361B22FC4F9AE02.roa (hash: m7hFb23btwRa7iUoc5sSfQwuK6EzzQbsJrT19RdsUzA=) 6: 1FBEA1EEDE9711EC9289256FC4F9AE02.roa (hash: wFyDTsNGRzgAv8mhqHHalbGpjw+H79Gqqrm8IklHVfE=) 7: E0C5B7148F2C11EEA361B22FC4F9AE02.roa (hash: Aqyl2hhEx5BpBctkE5rWM8Kv0ZDOqQAIfUrt5yWaYks=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.crl rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 23:58:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1107 (0x453) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEB81, serialNumber=7776612A43C22D0A66B8F13680B3058BED5D9892 Validity Not Before: Jun 12 23:58:46 2025 GMT Not After : Jun 19 23:58:46 2025 GMT Subject: CN=684b69b6-74bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:cc:e7:5a:a9:df:bd:0a:07:74:85:bc:0b:24: df:6e:4e:73:73:1a:8a:ab:f5:ab:47:f7:ef:b0:23: c2:94:fc:f9:fb:20:f1:73:f5:f7:1a:7a:ad:bb:59: 57:f5:33:7a:7a:34:e8:d7:50:e7:18:9d:52:65:90: ba:e7:90:da:c6:bb:42:c1:fa:42:99:82:ea:c6:80: bc:c2:3f:0b:e0:ac:d9:f4:08:92:a2:23:d3:7f:4a: be:9f:17:f8:9c:4c:77:57:b7:1e:ba:c5:e0:54:67: 8a:e9:22:2c:30:49:6f:3e:35:71:2b:b3:60:62:28: 97:9b:7f:0f:b4:8b:7e:fe:55:5f:59:1f:1f:62:77: 2e:b9:f3:f5:59:04:a7:dc:27:27:49:73:8b:40:fd: cc:4d:fa:ea:a7:51:87:43:d8:b4:a2:44:21:4a:d0: 54:3e:30:0b:f3:b2:bb:80:a2:67:a6:f4:77:bd:9c: db:41:29:88:c9:c8:d6:1e:fa:98:43:72:09:fc:72: 0a:19:c8:78:8a:5c:38:ef:fe:17:db:83:b5:09:07: a5:c5:cc:b4:50:98:97:39:8c:3b:2e:f5:a3:67:08: e6:20:cb:32:66:78:7b:32:19:a7:ee:ae:9f:c1:05: c9:be:04:13:94:f6:72:84:de:92:ac:87:6b:ef:b7: 61:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:16:8F:32:AD:63:BA:8A:32:76:34:09:68:6C:E6:34:F9:F3:D5:D3 X509v3 Authority Key Identifier: keyid:77:76:61:2A:43:C2:2D:0A:66:B8:F1:36:80:B3:05:8B:ED:5D:98:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:8c:84:73:0b:9d:ba:cf:49:d1:7c:79:60:74:1a:e4:1a:4f: da:4d:34:a6:5a:d4:a1:8e:ec:e6:2b:58:e7:b0:78:ae:cd:db: 61:f2:cd:86:1b:b7:15:c7:c3:49:a6:b2:40:af:9d:ae:a4:78: a4:a4:f4:7e:33:9a:b8:48:95:85:e0:4f:2d:33:83:ef:a4:a6: 86:5a:95:4e:c6:33:61:df:6a:06:b5:ae:96:f8:4c:60:c5:bb: 29:77:f5:34:e1:1c:f6:09:fb:98:ac:17:81:dc:a5:cd:fd:0b: fb:a1:96:7f:23:8f:69:36:94:81:5f:e9:32:20:76:db:45:e4: 81:47:97:ee:d5:93:54:6d:39:26:b6:98:45:bb:4b:0a:72:8a: 6c:41:51:d4:86:bf:07:9a:e4:37:d4:37:db:bf:e0:e2:96:0a: 7e:50:61:40:b4:f6:e9:64:ca:46:8a:88:6b:09:ec:4d:2a:24: 87:99:ee:e7:fe:3a:bf:e1:e7:d3:b8:12:ef:21:3d:e8:57:b8: 5b:a9:da:51:c2:6f:e6:9e:09:08:b5:dd:52:72:57:b6:29:66: 5b:0d:27:1e:b7:06:84:4f:e6:99:48:76:02:f2:ac:82:d4:31: 6f:0a:db:13:a5:8d:63:93:ea:96:9f:d3:3e:fb:fd:54:48:fb: cc:7b:25:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVCODExMTAvBgNVBAUTKDc3NzY2MTJBNDNDMjJEMEE2NkI4RjEzNjgwQjMwNThC RUQ1RDk4OTIwHhcNMjUwNjEyMjM1ODQ2WhcNMjUwNjE5MjM1ODQ2WjAYMRYwFAYD VQQDEw02ODRiNjliNi03NGJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6MznWqnfvQoHdIW8CyTfbk5zcxqKq/WrR/fvsCPClPz5+yDxc/X3Gnqtu1lX 9TN6ejTo11DnGJ1SZZC655DaxrtCwfpCmYLqxoC8wj8L4KzZ9AiSoiPTf0q+nxf4 nEx3V7ceusXgVGeK6SIsMElvPjVxK7NgYiiXm38PtIt+/lVfWR8fYncuufP1WQSn 3CcnSXOLQP3MTfrqp1GHQ9i0okQhStBUPjAL87K7gKJnpvR3vZzbQSmIycjWHvqY Q3IJ/HIKGch4ilw47/4X24O1CQelxcy0UJiXOYw7LvWjZwjmIMsyZnh7Mhmn7q6f wQXJvgQTlPZyhN6SrIdr77dhsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDwWjzKt Y7qKMnY0CWhs5jT589XTMB8GA1UdIwQYMBaAFHd2YSpDwi0KZrjxNoCzBYvtXZiS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUI4MS9DRjk2NjNDNjcw RjcxMUVDQjMxOEU0M0FDNEY5QUUwMi9kM1poS2tQQ0xRcG11UEUyZ0xNRmktMWRt SkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2QzWmhLa1BDTFFwbXVQRTJnTE1GaS0xZG1KSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUI4MS9DRjk2NjNDNjcwRjcxMUVDQjMxOEU0M0FDNEY5QUUwMi9kM1poS2tQQ0xR cG11UEUyZ0xNRmktMWRtSkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIjIRzC526z0nRfHlgdBrkGk/aTTSmWtShjuzmK1jnsHiuzdth8s2G G7cVx8NJprJAr52upHikpPR+M5q4SJWF4E8tM4PvpKaGWpVOxjNh32oGta6W+Exg xbspd/U04Rz2CfuYrBeB3KXN/Qv7oZZ/I49pNpSBX+kyIHbbReSBR5fu1ZNUbTkm tphFu0sKcopsQVHUhr8HmuQ31Dfbv+Dilgp+UGFAtPbpZMpGiohrCexNKiSHme7n /jq/4efTuBLvIT3oV7hbqdpRwm/mngkItd1Scle2KWZbDScetwaET+aZSHYC8qyC 1DFvCtsTpY1jk+qWn9M++/1USPvMeyUn -----END CERTIFICATE-----Generated at Sat Jun 14 19:10:55 2025 by rpki-client