$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF85B/C713C2FE61D511EEBAA04A5EC4F9AE02/3DHPX8nyg0g327s2g8uK9kKrSnw.mft File: 3DHPX8nyg0g327s2g8uK9kKrSnw.mft (raw, json) Hash identifier: tQK9wuHk42Hfdiab7SMITCsZqdJx30lSkpEQFaNYtrA= Subject key identifier: 64:C7:12:07:75:43:80:03:B7:1F:C7:9E:76:1C:49:6D:9D:0B:BC:9B Authority key identifier: DC:31:CF:5F:C9:F2:83:48:37:DB:BB:36:83:CB:8A:F6:42:AB:4A:7C Certificate issuer: /CN=A91DF85B/serialNumber=DC31CF5FC9F2834837DBBB3683CB8AF642AB4A7C Certificate serial: 013E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3DHPX8nyg0g327s2g8uK9kKrSnw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF85B/C713C2FE61D511EEBAA04A5EC4F9AE02/3DHPX8nyg0g327s2g8uK9kKrSnw.mft Manifest number: 013C Signing time: Fri 13 Jun 2025 03:20:02 +0000 Manifest this update: Fri 13 Jun 2025 03:20:01 +0000 Manifest next update: Fri 20 Jun 2025 03:20:01 +0000 Files and hashes: 1: 3DHPX8nyg0g327s2g8uK9kKrSnw.crl (hash: 3SnCgSkyX46dsFsxnQ4sHxyrOxc7jEpvr6gcBQKRNCY=) 2: EE28B64661D611EE9C66300EC4F9AE02.roa (hash: g/Vp4JxPAnFvSE7br/vqo4Gmy4ZBC5/7hAk3ouH5N3o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF85B/C713C2FE61D511EEBAA04A5EC4F9AE02/3DHPX8nyg0g327s2g8uK9kKrSnw.crl rsync://rpki.apnic.net/member_repository/A91DF85B/C713C2FE61D511EEBAA04A5EC4F9AE02/3DHPX8nyg0g327s2g8uK9kKrSnw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3DHPX8nyg0g327s2g8uK9kKrSnw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 03:20:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 318 (0x13e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF85B, serialNumber=DC31CF5FC9F2834837DBBB3683CB8AF642AB4A7C Validity Not Before: Jun 13 03:20:01 2025 GMT Not After : Jun 20 03:20:01 2025 GMT Subject: CN=684b98e2-2ac4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:3e:7b:47:8e:16:7b:fa:ed:d8:0f:bc:16:33: 42:1c:91:f2:b9:df:6c:87:38:f5:39:81:69:45:4d: 99:bb:eb:4f:c4:18:a1:3a:6f:d2:3d:b2:9b:aa:b7: 80:7a:35:72:83:83:ed:83:01:34:39:21:be:38:b7: 07:6c:62:6f:b7:ff:5b:4c:1e:54:42:3c:28:ac:8b: af:7e:a7:ae:9a:93:24:30:70:4e:63:79:31:a0:ae: f1:ff:80:ca:7c:9a:cc:cd:e1:8f:14:30:f5:0b:7f: 6a:59:f4:76:a1:2d:60:be:6f:f8:b5:2f:1d:ff:10: 80:fe:b5:41:09:b1:89:2b:26:4d:a7:86:33:87:89: fe:b1:e0:fd:9e:e2:05:f9:45:36:ea:10:8b:97:9a: 12:93:e3:83:01:f4:8b:52:6f:1a:3b:52:ec:5a:a7: 7d:fd:76:37:71:82:35:8b:23:4d:53:47:13:44:02: d7:8a:9b:2b:0c:ad:5e:d3:1b:32:d7:12:92:6e:7c: 88:c0:b9:a0:95:53:cb:82:5a:17:54:78:91:a8:88: ea:c9:96:3b:57:c1:32:06:cc:c0:0c:1d:d2:64:dc: 69:34:b6:6b:cb:e8:61:81:e4:88:b9:7b:27:8d:4c: 94:2f:7e:78:fa:2c:ce:4f:98:8f:eb:69:aa:f1:b1: c3:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:C7:12:07:75:43:80:03:B7:1F:C7:9E:76:1C:49:6D:9D:0B:BC:9B X509v3 Authority Key Identifier: keyid:DC:31:CF:5F:C9:F2:83:48:37:DB:BB:36:83:CB:8A:F6:42:AB:4A:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF85B/C713C2FE61D511EEBAA04A5EC4F9AE02/3DHPX8nyg0g327s2g8uK9kKrSnw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3DHPX8nyg0g327s2g8uK9kKrSnw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF85B/C713C2FE61D511EEBAA04A5EC4F9AE02/3DHPX8nyg0g327s2g8uK9kKrSnw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:97:56:d3:77:d7:1d:ed:61:d7:f7:32:d2:44:9d:c1:2f:76: 44:03:c0:e2:dc:3c:b6:c3:02:37:03:94:17:a8:7d:ce:d0:b3: 38:9d:54:e8:e9:2e:72:ab:77:6c:67:cf:cc:bd:d7:04:04:91: b3:7a:98:1b:dd:07:06:24:21:3d:2d:c3:90:43:f0:8d:72:ea: c0:e9:94:98:5f:5e:a6:4c:03:e0:fc:fc:6d:e4:10:f3:61:9f: 79:0e:87:9a:70:ed:e9:22:50:65:46:ed:e0:98:39:f9:83:cd: 21:1e:00:7c:4e:bf:ca:a0:d0:6f:fc:85:ab:03:64:2d:ab:d8: f3:7e:02:19:7b:40:cf:41:8f:c1:3f:a7:fc:e8:91:71:07:66: fb:01:fd:2c:83:8b:e2:43:e5:20:a8:1b:53:e8:21:16:7b:8e: b4:02:3c:8b:5a:4b:59:b0:5a:0e:9b:7d:51:7d:8e:ad:dc:08: f7:de:78:db:a6:37:c5:7c:9a:7d:58:e0:9c:0f:e1:8e:c7:19: 44:b0:3a:d5:90:c8:9f:bd:e0:a8:2b:58:bc:e2:bb:3f:30:06: f7:6e:eb:ad:44:01:c0:ff:49:d8:6d:74:aa:ed:91:f0:7a:21: f1:a8:2e:23:b7:1e:f8:78:8b:8b:80:04:92:e1:fb:f4:a5:74: b6:7b:17:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAT4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY4NUIxMTAvBgNVBAUTKERDMzFDRjVGQzlGMjgzNDgzN0RCQkIzNjgzQ0I4QUY2 NDJBQjRBN0MwHhcNMjUwNjEzMDMyMDAxWhcNMjUwNjIwMDMyMDAxWjAYMRYwFAYD VQQDEw02ODRiOThlMi0yYWM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnT57R44We/rt2A+8FjNCHJHyud9shzj1OYFpRU2Zu+tPxBihOm/SPbKbqreA ejVyg4PtgwE0OSG+OLcHbGJvt/9bTB5UQjworIuvfqeumpMkMHBOY3kxoK7x/4DK fJrMzeGPFDD1C39qWfR2oS1gvm/4tS8d/xCA/rVBCbGJKyZNp4Yzh4n+seD9nuIF +UU26hCLl5oSk+ODAfSLUm8aO1LsWqd9/XY3cYI1iyNNU0cTRALXipsrDK1e0xsy 1xKSbnyIwLmglVPLgloXVHiRqIjqyZY7V8EyBszADB3SZNxpNLZry+hhgeSIuXsn jUyUL354+izOT5iP62mq8bHDxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGTHEgd1 Q4ADtx/HnnYcSW2dC7ybMB8GA1UdIwQYMBaAFNwxz1/J8oNIN9u7NoPLivZCq0p8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjg1Qi9DNzEzQzJGRTYx RDUxMUVFQkFBMDRBNUVDNEY5QUUwMi8zREhQWDhueWcwZzMyN3MyZzh1SzlrS3JT bncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNESFBYOG55ZzBnMzI3czJnOHVLOWtLclNudy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Rjg1Qi9DNzEzQzJGRTYxRDUxMUVFQkFBMDRBNUVDNEY5QUUwMi8zREhQWDhueWcw ZzMyN3MyZzh1SzlrS3JTbncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4l1bTd9cd7WHX9zLSRJ3BL3ZEA8Di3Dy2wwI3A5QXqH3O0LM4nVTo 6S5yq3dsZ8/MvdcEBJGzepgb3QcGJCE9LcOQQ/CNcurA6ZSYX16mTAPg/Pxt5BDz YZ95DoeacO3pIlBlRu3gmDn5g80hHgB8Tr/KoNBv/IWrA2Qtq9jzfgIZe0DPQY/B P6f86JFxB2b7Af0sg4viQ+UgqBtT6CEWe460AjyLWktZsFoOm31RfY6t3Aj33njb pjfFfJp9WOCcD+GOxxlEsDrVkMifveCoK1i84rs/MAb3buutRAHA/0nYbXSq7ZHw eiHxqC4jtx74eIuLgASS4fv0pXS2exfL -----END CERTIFICATE-----Generated at Sat Jun 14 18:52:51 2025 by rpki-client