$ rpki-client -vvf rpki.apnic.net/member_repository/A91E22E5/F5E34E64338D11ED97E3E25FC4F9AE02/I-3rdP0jQOR_AbyL94Q7dpHcBhU.mft File: I-3rdP0jQOR_AbyL94Q7dpHcBhU.mft (raw, json) Hash identifier: IbmTVqNNE0tb7l4GEC/CEBI+G7G2fOa5wxCY/MlwdNs= Subject key identifier: AD:CD:8D:75:08:B7:FA:A9:6B:BA:FB:B2:10:7E:DD:4D:7A:59:90:7F Authority key identifier: 23:ED:EB:74:FD:23:40:E4:7F:01:BC:8B:F7:84:3B:76:91:DC:06:15 Certificate issuer: /CN=A91E22E5/serialNumber=23EDEB74FD2340E47F01BC8BF7843B7691DC0615 Certificate serial: 0223 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-3rdP0jQOR_AbyL94Q7dpHcBhU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E22E5/F5E34E64338D11ED97E3E25FC4F9AE02/I-3rdP0jQOR_AbyL94Q7dpHcBhU.mft Manifest number: 021F Signing time: Sun 15 Jun 2025 01:38:11 +0000 Manifest this update: Sun 15 Jun 2025 01:38:11 +0000 Manifest next update: Sun 22 Jun 2025 01:38:11 +0000 Files and hashes: 1: I-3rdP0jQOR_AbyL94Q7dpHcBhU.crl (hash: kpCcS8/1mpDgC7AtMSc4jjyfrI0ETzM60BSOOlX2E7c=) 2: 623705DA339111ED9249064BC4F9AE02.roa (hash: 3xXR0x6j8N4PVf2/cUiVsVNe4o0Qs5z+0StILd/4bVs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E22E5/F5E34E64338D11ED97E3E25FC4F9AE02/I-3rdP0jQOR_AbyL94Q7dpHcBhU.crl rsync://rpki.apnic.net/member_repository/A91E22E5/F5E34E64338D11ED97E3E25FC4F9AE02/I-3rdP0jQOR_AbyL94Q7dpHcBhU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-3rdP0jQOR_AbyL94Q7dpHcBhU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 01:38:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 547 (0x223) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E22E5, serialNumber=23EDEB74FD2340E47F01BC8BF7843B7691DC0615 Validity Not Before: Jun 15 01:38:11 2025 GMT Not After : Jun 22 01:38:11 2025 GMT Subject: CN=684e2403-1006 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:90:60:83:8e:cd:aa:ad:42:97:42:ac:4d:96: d5:c4:6e:57:23:13:88:5e:c6:6e:06:6c:8c:44:04: 42:e3:b7:40:d2:09:99:0f:ad:fe:82:0e:3b:bd:f1: c2:0d:fc:0b:f0:29:f9:75:55:dd:0e:a7:df:68:82: 66:ff:23:0a:85:ca:8a:e2:f0:60:60:e7:c3:8c:dd: a2:e8:31:d2:a5:7f:1a:42:ae:43:ac:eb:ef:db:b2: ea:e1:8d:ad:1f:c1:6f:05:05:b4:5a:41:f0:0c:57: b6:37:99:c6:4e:ae:75:46:f1:9b:ea:3a:43:b8:f4: 51:3c:85:22:39:fb:c0:a4:69:b8:5b:94:7b:01:3a: b4:7b:39:d4:e1:c5:dd:66:88:f6:95:76:7f:27:a6: d0:25:3f:77:4e:fc:3f:80:bf:75:51:9c:4f:88:75: f0:49:4b:8d:ff:00:5e:61:6a:00:01:f8:5f:fb:b0: 33:0a:4d:fd:0f:5a:10:e3:6e:c3:0d:7f:b6:4c:9f: 5f:7a:c7:f8:0e:fd:15:5c:ff:7a:6c:49:7a:44:0c: f7:81:d6:3c:22:3d:a7:15:04:7a:36:24:8f:6f:76: 34:57:8f:26:a2:a8:e2:57:06:07:b4:0e:7f:cd:01: c5:a8:38:51:d8:89:bb:87:a8:ec:f9:81:f9:19:e5: d8:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:CD:8D:75:08:B7:FA:A9:6B:BA:FB:B2:10:7E:DD:4D:7A:59:90:7F X509v3 Authority Key Identifier: keyid:23:ED:EB:74:FD:23:40:E4:7F:01:BC:8B:F7:84:3B:76:91:DC:06:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E22E5/F5E34E64338D11ED97E3E25FC4F9AE02/I-3rdP0jQOR_AbyL94Q7dpHcBhU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-3rdP0jQOR_AbyL94Q7dpHcBhU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E22E5/F5E34E64338D11ED97E3E25FC4F9AE02/I-3rdP0jQOR_AbyL94Q7dpHcBhU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:9d:a6:6e:74:58:0d:6c:4a:60:4e:bf:bf:62:53:dc:57:3c: f2:fe:3e:46:78:2b:82:0d:c7:7d:26:f6:5d:b3:9d:56:8f:c6: d2:a4:df:15:c6:72:8e:a8:c3:29:de:c6:09:2e:d2:fc:9d:98: e8:b2:4c:7b:00:15:7e:3d:53:25:0d:4c:01:33:66:53:79:36: 1d:10:9c:17:4a:b2:cb:1a:7d:9e:68:42:42:ae:69:24:74:d0: fe:08:84:2b:ce:17:a0:fe:ba:eb:85:9c:f8:45:b6:9a:37:ff: 93:36:8e:a6:50:51:eb:76:70:e5:ae:88:3c:c4:8d:79:5e:66: 80:8e:95:76:3f:bf:50:86:3f:e1:bc:5b:fb:c4:5c:9c:3f:de: ad:ee:ac:59:16:4a:d6:66:39:c0:46:ed:2b:85:81:55:88:72: 27:7a:77:27:ca:b5:b9:cf:57:0c:52:e2:ff:fb:d8:61:17:79: c3:6f:73:ad:ef:b2:ce:1c:1f:60:9a:3a:a9:59:81:e1:1e:c7: 00:30:52:e2:94:8a:ce:93:0c:d0:f6:b6:96:1a:f3:92:64:3f: 01:b3:f9:aa:1c:7f:77:2e:4c:aa:44:0a:d2:7c:4e:57:c1:94: d2:76:c5:a5:ff:5d:36:c4:a4:dc:21:1e:e9:8b:0c:ac:2c:65: 7a:b5:f4:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTIyRTUxMTAvBgNVBAUTKDIzRURFQjc0RkQyMzQwRTQ3RjAxQkM4QkY3ODQzQjc2 OTFEQzA2MTUwHhcNMjUwNjE1MDEzODExWhcNMjUwNjIyMDEzODExWjAYMRYwFAYD VQQDEw02ODRlMjQwMy0xMDA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3pBgg47Nqq1Cl0KsTZbVxG5XIxOIXsZuBmyMRARC47dA0gmZD63+gg47vfHC DfwL8Cn5dVXdDqffaIJm/yMKhcqK4vBgYOfDjN2i6DHSpX8aQq5DrOvv27Lq4Y2t H8FvBQW0WkHwDFe2N5nGTq51RvGb6jpDuPRRPIUiOfvApGm4W5R7ATq0eznU4cXd Zoj2lXZ/J6bQJT93Tvw/gL91UZxPiHXwSUuN/wBeYWoAAfhf+7AzCk39D1oQ427D DX+2TJ9fesf4Dv0VXP96bEl6RAz3gdY8Ij2nFQR6NiSPb3Y0V48moqjiVwYHtA5/ zQHFqDhR2Im7h6js+YH5GeXYkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK3NjXUI t/qpa7r7shB+3U16WZB/MB8GA1UdIwQYMBaAFCPt63T9I0DkfwG8i/eEO3aR3AYV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjJFNS9GNUUzNEU2NDMz OEQxMUVEOTdFM0UyNUZDNEY5QUUwMi9JLTNyZFAwalFPUl9BYnlMOTRRN2RwSGNC aFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ktM3JkUDBqUU9SX0FieUw5NFE3ZHBIY0JoVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjJFNS9GNUUzNEU2NDMzOEQxMUVEOTdFM0UyNUZDNEY5QUUwMi9JLTNyZFAwalFP Ul9BYnlMOTRRN2RwSGNCaFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBanaZudFgNbEpgTr+/YlPcVzzy/j5GeCuCDcd9JvZds51Wj8bSpN8V xnKOqMMp3sYJLtL8nZjoskx7ABV+PVMlDUwBM2ZTeTYdEJwXSrLLGn2eaEJCrmkk dND+CIQrzheg/rrrhZz4RbaaN/+TNo6mUFHrdnDlrog8xI15XmaAjpV2P79Qhj/h vFv7xFycP96t7qxZFkrWZjnARu0rhYFViHInencnyrW5z1cMUuL/+9hhF3nDb3Ot 77LOHB9gmjqpWYHhHscAMFLilIrOkwzQ9raWGvOSZD8Bs/mqHH93LkyqRArSfE5X wZTSdsWl/102xKTcIR7piwysLGV6tfTl -----END CERTIFICATE-----Generated at Sun Jun 15 05:09:28 2025 by rpki-client