$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft File: gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft (raw, json) Hash identifier: 8cZIZA0BkIvPjnTekq+eYehHV5ZVr3jti5/5WugBRbI= Subject key identifier: 2F:68:63:7E:C2:C6:A9:9E:0A:37:1C:02:46:FE:31:BC:54:41:F8:73 Authority key identifier: 81:1D:E1:1E:7E:DC:1C:10:76:05:59:EE:B3:9B:FD:66:D6:9A:EA:46 Certificate issuer: /CN=A91E6BEF/serialNumber=811DE11E7EDC1C10760559EEB39BFD66D69AEA46 Certificate serial: 0D9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gR3hHn7cHBB2BVnus5v9Ztaa6kY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft Manifest number: 0D95 Signing time: Sat 14 Jun 2025 17:50:16 +0000 Manifest this update: Sat 14 Jun 2025 17:50:15 +0000 Manifest next update: Sat 21 Jun 2025 17:50:15 +0000 Files and hashes: 1: gR3hHn7cHBB2BVnus5v9Ztaa6kY.crl (hash: nEx+m3WcNIl7mivbX/jqOcT4FHueJcpy/TQP8KmI44k=) 2: FEBD6C62C4B511E9B7D53A7FC4F9AE02.roa (hash: UdehkLAzVXoFe5wUis48zru/UMqEMsZcDt54OS7NI9c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.crl rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gR3hHn7cHBB2BVnus5v9Ztaa6kY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:13:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3486 (0xd9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6BEF, serialNumber=811DE11E7EDC1C10760559EEB39BFD66D69AEA46 Validity Not Before: Jun 14 17:50:15 2025 GMT Not After : Jun 21 17:50:15 2025 GMT Subject: CN=684db657-64a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:f1:a6:a0:14:1a:2b:9f:79:a9:5f:4e:b9:0f: 15:92:b0:cf:e8:d7:a3:fd:f2:6d:c5:93:e1:b1:6e: ef:7c:c0:fd:89:a9:a0:bb:df:c3:1f:25:55:3c:1f: f2:3c:f7:2e:85:7f:14:f2:22:18:b3:0f:ba:1e:b4: 5f:d7:5c:a4:2b:40:20:fa:6c:d7:22:6d:e7:5c:4d: 4e:c8:16:a8:4a:28:d3:f1:9d:cb:bc:28:63:c1:ec: ef:ef:b7:ac:f3:62:f4:28:5b:54:4b:1e:e0:a4:6b: e6:bc:c8:fb:44:2c:e1:ce:d7:96:61:49:70:1d:fd: 3b:b5:23:bf:d8:af:c5:9b:dd:f8:4f:dc:35:52:3c: 68:6f:3e:a1:57:b9:98:8b:8f:d3:bb:c1:c9:bf:02: 67:98:b8:2e:0b:1e:5f:4b:98:6e:9c:b1:f6:df:66: 2e:60:80:ab:b1:cb:04:42:4a:0a:3c:6e:36:54:2b: 7e:54:7e:cf:4a:72:2d:e9:98:1a:55:c3:16:85:cb: fc:c7:1f:5b:f8:4c:89:cb:3a:4f:52:84:de:8e:0d: ee:54:6c:a9:eb:d5:9e:e1:f3:a0:be:b0:da:c4:ae: 23:6c:a3:0c:73:bd:05:29:93:19:5f:61:91:fd:bb: 58:d8:9b:90:a8:35:3a:8d:2d:7f:bf:8a:65:d6:8a: 98:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:68:63:7E:C2:C6:A9:9E:0A:37:1C:02:46:FE:31:BC:54:41:F8:73 X509v3 Authority Key Identifier: keyid:81:1D:E1:1E:7E:DC:1C:10:76:05:59:EE:B3:9B:FD:66:D6:9A:EA:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gR3hHn7cHBB2BVnus5v9Ztaa6kY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:ed:fa:b6:9a:c9:fc:a4:d7:05:54:50:01:e6:5e:0b:09:d0: b7:ee:b2:5d:c8:46:65:12:8c:ab:2a:42:96:3c:62:cd:db:6a: 1d:2e:4b:17:21:b7:06:a9:62:d1:10:39:57:5f:a5:fd:13:26: 3d:a1:dd:46:63:dc:cd:6e:b5:a7:2e:12:87:6a:c4:c8:ac:54: c1:ec:e2:be:ae:3e:31:4a:19:21:d7:5f:4d:34:85:3a:2a:ed: 12:c6:d4:25:b2:e0:b0:c2:9e:91:f3:f5:7c:09:dc:7b:f9:d8: 06:c3:f4:04:90:a7:48:0f:eb:32:e7:4c:b8:a0:1d:33:bb:a7: f3:ab:4f:86:18:ce:f6:6c:a8:aa:10:61:dd:4c:72:e6:05:79: 1c:73:69:15:98:b4:b7:27:ca:a5:51:8a:db:4d:72:48:70:eb: 77:86:52:13:45:46:ed:39:2d:7e:42:f1:ef:33:11:ba:34:93: 0a:2b:db:42:5e:16:22:cc:fa:d7:cb:ae:cc:4e:3d:68:a4:85: 64:68:84:f1:fb:5b:44:3b:69:f9:66:d0:a4:e2:0e:a2:30:0f: a1:04:d6:c5:c0:11:4a:a9:6f:ae:61:7d:36:49:61:d8:ee:e4: 9d:bc:c5:02:0f:55:4d:da:66:a6:55:c4:fd:a2:d8:bd:e7:38: 91:35:7b:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDZ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZCRUYxMTAvBgNVBAUTKDgxMURFMTFFN0VEQzFDMTA3NjA1NTlFRUIzOUJGRDY2 RDY5QUVBNDYwHhcNMjUwNjE0MTc1MDE1WhcNMjUwNjIxMTc1MDE1WjAYMRYwFAYD VQQDEw02ODRkYjY1Ny02NGE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4vGmoBQaK595qV9OuQ8VkrDP6Nej/fJtxZPhsW7vfMD9iamgu9/DHyVVPB/y PPcuhX8U8iIYsw+6HrRf11ykK0Ag+mzXIm3nXE1OyBaoSijT8Z3LvChjwezv77es 82L0KFtUSx7gpGvmvMj7RCzhzteWYUlwHf07tSO/2K/Fm934T9w1Ujxobz6hV7mY i4/Tu8HJvwJnmLguCx5fS5hunLH232YuYICrscsEQkoKPG42VCt+VH7PSnIt6Zga VcMWhcv8xx9b+EyJyzpPUoTejg3uVGyp69We4fOgvrDaxK4jbKMMc70FKZMZX2GR /btY2JuQqDU6jS1/v4pl1oqYxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC9oY37C xqmeCjccAkb+MbxUQfhzMB8GA1UdIwQYMBaAFIEd4R5+3BwQdgVZ7rOb/WbWmupG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkJFRi80RUE4NjZDNEM0 NDIxMUU5OTQ3N0UyMUZDNEY5QUUwMi9nUjNoSG43Y0hCQjJCVm51czV2OVp0YWE2 a1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dSM2hIbjdjSEJCMkJWbnVzNXY5WnRhYTZrWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkJFRi80RUE4NjZDNEM0NDIxMUU5OTQ3N0UyMUZDNEY5QUUwMi9nUjNoSG43Y0hC QjJCVm51czV2OVp0YWE2a1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAg7fq2msn8pNcFVFAB5l4LCdC37rJdyEZlEoyrKkKWPGLN22odLksX IbcGqWLREDlXX6X9EyY9od1GY9zNbrWnLhKHasTIrFTB7OK+rj4xShkh119NNIU6 Ku0SxtQlsuCwwp6R8/V8Cdx7+dgGw/QEkKdID+sy50y4oB0zu6fzq0+GGM72bKiq EGHdTHLmBXkcc2kVmLS3J8qlUYrbTXJIcOt3hlITRUbtOS1+QvHvMxG6NJMKK9tC XhYizPrXy67MTj1opIVkaITx+1tEO2n5ZtCk4g6iMA+hBNbFwBFKqW+uYX02SWHY 7uSdvMUCD1VN2mamVcT9oti95ziRNXvX -----END CERTIFICATE-----Generated at Sat Jun 14 19:41:16 2025 by rpki-client