$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEBE3/80AE10C6045011EABA82C415C4F9AE02/3lBUK-oQggGncsALyfJRrRf6ls0.mft File: 3lBUK-oQggGncsALyfJRrRf6ls0.mft (raw, json) Hash identifier: LVr3sCZe9dd0LphFb4lIvDkGd3xv4P+dism2mHYcnbM= Subject key identifier: FF:C4:20:2C:C5:E5:7F:F4:5F:F5:8C:4B:BD:21:56:FE:5D:E0:9A:EC Authority key identifier: DE:50:54:2B:EA:10:82:01:A7:72:C0:0B:C9:F2:51:AD:17:FA:96:CD Certificate issuer: /CN=A91DEBE3/serialNumber=DE50542BEA108201A772C00BC9F251AD17FA96CD Certificate serial: 0CC4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3lBUK-oQggGncsALyfJRrRf6ls0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEBE3/80AE10C6045011EABA82C415C4F9AE02/3lBUK-oQggGncsALyfJRrRf6ls0.mft Manifest number: 0C87 Signing time: Fri 20 Jun 2025 18:19:25 +0000 Manifest this update: Fri 20 Jun 2025 18:19:24 +0000 Manifest next update: Fri 27 Jun 2025 18:19:24 +0000 Files and hashes: 1: 3lBUK-oQggGncsALyfJRrRf6ls0.crl (hash: PGCNqFBZM7Wpa95qN2Rz7bYg6FsNKXP4ptO4cKtX0XE=) 2: AF0508E8B1EE11EF93E70F63C4F9AE02.roa (hash: /m7E0Dw/anD8qYNxCWedW44uleLaVBkf0eBmZ6XFvMk=) 3: D59CB8F4968511EF93AE8239C4F9AE02.roa (hash: rZ4CQjG/7W0/b4/xy8McSOxNbiTi926f91iRcbtKHeo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEBE3/80AE10C6045011EABA82C415C4F9AE02/3lBUK-oQggGncsALyfJRrRf6ls0.crl rsync://rpki.apnic.net/member_repository/A91DEBE3/80AE10C6045011EABA82C415C4F9AE02/3lBUK-oQggGncsALyfJRrRf6ls0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3lBUK-oQggGncsALyfJRrRf6ls0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Jun 2025 18:19:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3268 (0xcc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEBE3, serialNumber=DE50542BEA108201A772C00BC9F251AD17FA96CD Validity Not Before: Jun 20 18:19:24 2025 GMT Not After : Jun 27 18:19:24 2025 GMT Subject: CN=6855a62d-b243 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:a1:73:d6:68:37:10:48:3e:93:bc:04:30:0d: 35:59:75:bc:75:d7:ff:71:9a:1b:dc:e2:82:fc:ae: d9:fa:0f:bf:62:5f:68:38:28:f5:4a:69:ae:b5:a5: f7:e0:44:6e:09:80:df:04:76:30:b6:78:f2:4a:5a: 41:30:5e:ee:5f:c1:fb:18:a7:9f:f4:d2:c1:47:01: cc:91:f4:0f:1c:35:50:f3:e4:09:36:23:a0:9e:8c: 13:58:61:23:95:64:8a:c2:b0:23:44:3c:ad:75:7c: 8a:0e:93:71:30:47:20:85:4b:83:2f:d4:6a:39:90: f5:28:f2:39:30:26:a9:b6:1d:12:f1:88:1e:d0:7f: e4:d5:84:ce:18:ef:81:96:73:d8:36:f9:c5:84:91: 36:c4:fd:a6:ab:c8:5a:e1:77:ea:5b:60:a1:75:a6: 4c:98:99:3c:a4:57:37:6d:61:49:06:53:45:03:b3: 97:eb:e0:42:f5:fc:1c:d7:5c:43:a7:05:f3:4f:c4: 47:f5:36:9b:9f:9f:a4:9f:c6:f9:6f:2e:c0:5e:28: f9:53:ae:91:3d:b1:f5:95:ff:b9:e8:ca:58:f2:99: fb:0d:53:1d:ec:f9:68:fd:d1:d4:eb:80:fc:38:43: a0:c7:eb:d7:a7:5c:e0:0d:fb:a7:bd:52:b4:c9:64: 04:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:C4:20:2C:C5:E5:7F:F4:5F:F5:8C:4B:BD:21:56:FE:5D:E0:9A:EC X509v3 Authority Key Identifier: keyid:DE:50:54:2B:EA:10:82:01:A7:72:C0:0B:C9:F2:51:AD:17:FA:96:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEBE3/80AE10C6045011EABA82C415C4F9AE02/3lBUK-oQggGncsALyfJRrRf6ls0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3lBUK-oQggGncsALyfJRrRf6ls0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEBE3/80AE10C6045011EABA82C415C4F9AE02/3lBUK-oQggGncsALyfJRrRf6ls0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d9:dd:d7:34:6f:2a:53:56:2a:33:a3:67:8b:b0:4b:5b:83:89: 96:57:48:36:25:f3:a1:95:6e:98:18:05:5f:01:b9:ab:ee:ba: 00:18:fc:f6:bb:a7:71:f5:65:47:89:72:bb:f4:51:04:13:b0: bb:2d:eb:ab:7b:f7:ab:f7:13:e3:d2:13:82:c6:e6:0c:b2:82: b9:a9:9d:53:db:bf:0e:ea:86:ab:f1:9b:6c:a0:11:17:3f:54: 3a:f7:80:d7:b0:cf:ec:82:1c:3a:e8:3c:3f:5c:f0:83:3e:e2: f3:de:af:93:f3:fd:8d:86:8b:26:5e:f8:65:86:3b:33:21:a3: 4f:66:92:f3:48:50:e0:28:6c:63:1a:d6:33:7c:b2:62:18:51: 12:34:da:c3:51:26:ed:71:10:c2:7f:54:93:eb:ec:d6:d5:ca: cc:e3:ec:da:04:5e:79:08:1e:70:06:3a:65:c1:23:8a:f0:29: 2b:e4:b4:c0:de:a0:d9:03:bf:8c:3e:44:f8:25:28:fa:39:7a: e2:b1:58:60:63:06:5d:e6:69:f1:4f:4d:8b:60:53:e2:90:67: c3:f1:b7:26:a4:41:74:35:20:f9:3e:1d:e3:ff:16:e4:18:cf: 93:48:17:49:8a:ed:f4:2f:86:ff:02:b9:1f:8c:8b:99:6d:2c: 8a:77:92:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDMQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVCRTMxMTAvBgNVBAUTKERFNTA1NDJCRUExMDgyMDFBNzcyQzAwQkM5RjI1MUFE MTdGQTk2Q0QwHhcNMjUwNjIwMTgxOTI0WhcNMjUwNjI3MTgxOTI0WjAYMRYwFAYD VQQDEw02ODU1YTYyZC1iMjQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5qFz1mg3EEg+k7wEMA01WXW8ddf/cZob3OKC/K7Z+g+/Yl9oOCj1SmmutaX3 4ERuCYDfBHYwtnjySlpBMF7uX8H7GKef9NLBRwHMkfQPHDVQ8+QJNiOgnowTWGEj lWSKwrAjRDytdXyKDpNxMEcghUuDL9RqOZD1KPI5MCapth0S8Yge0H/k1YTOGO+B lnPYNvnFhJE2xP2mq8ha4XfqW2ChdaZMmJk8pFc3bWFJBlNFA7OX6+BC9fwc11xD pwXzT8RH9Tabn5+kn8b5by7AXij5U66RPbH1lf+56MpY8pn7DVMd7Plo/dHU64D8 OEOgx+vXp1zgDfunvVK0yWQEfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP/EICzF 5X/0X/WMS70hVv5d4JrsMB8GA1UdIwQYMBaAFN5QVCvqEIIBp3LAC8nyUa0X+pbN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUJFMy84MEFFMTBDNjA0 NTAxMUVBQkE4MkM0MTVDNEY5QUUwMi8zbEJVSy1vUWdnR25jc0FMeWZKUnJSZjZs czAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNsQlVLLW9RZ2dHbmNzQUx5ZkpSclJmNmxzMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUJFMy84MEFFMTBDNjA0NTAxMUVBQkE4MkM0MTVDNEY5QUUwMi8zbEJVSy1vUWdn R25jc0FMeWZKUnJSZjZsczAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDZ3dc0bypTViozo2eLsEtbg4mWV0g2JfOhlW6YGAVfAbmr7roAGPz2 u6dx9WVHiXK79FEEE7C7Leure/er9xPj0hOCxuYMsoK5qZ1T278O6oar8ZtsoBEX P1Q694DXsM/sghw66Dw/XPCDPuLz3q+T8/2NhosmXvhlhjszIaNPZpLzSFDgKGxj GtYzfLJiGFESNNrDUSbtcRDCf1ST6+zW1crM4+zaBF55CB5wBjplwSOK8Ckr5LTA 3qDZA7+MPkT4JSj6OXrisVhgYwZd5mnxT02LYFPikGfD8bcmpEF0NSD5Ph3j/xbk GM+TSBdJiu30L4b/ArkfjIuZbSyKd5JN -----END CERTIFICATE-----Generated at Sun Jun 22 07:27:26 2025 by rpki-client