$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/b3tF49x2JsN_igHgq46krwVfSYo.mft File: b3tF49x2JsN_igHgq46krwVfSYo.mft (raw, json) Hash identifier: O1md4EhO3hx1ArHyTlwwBQprB8tajxodP/Oo+kAu79M= Subject key identifier: F3:D3:29:0D:1A:BA:EF:95:67:DF:86:49:9F:62:0B:35:9F:21:AE:FC Authority key identifier: 6F:7B:45:E3:DC:76:26:C3:7F:8A:01:E0:AB:8E:A4:AF:05:5F:49:8A Certificate issuer: /CN=A91F0AF0/serialNumber=6F7B45E3DC7626C37F8A01E0AB8EA4AF055F498A Certificate serial: 1129 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b3tF49x2JsN_igHgq46krwVfSYo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/b3tF49x2JsN_igHgq46krwVfSYo.mft Manifest number: 1D90 Signing time: Sat 14 Jun 2025 17:12:36 +0000 Manifest this update: Sat 14 Jun 2025 17:12:35 +0000 Manifest next update: Sat 21 Jun 2025 17:12:35 +0000 Files and hashes: 1: b3tF49x2JsN_igHgq46krwVfSYo.crl (hash: n8lofDWLB6wWxgonxb7iByLw0RFriNNF0s6wWdKvpzk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/b3tF49x2JsN_igHgq46krwVfSYo.crl rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/b3tF49x2JsN_igHgq46krwVfSYo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b3tF49x2JsN_igHgq46krwVfSYo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:12:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4393 (0x1129) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0AF0, serialNumber=6F7B45E3DC7626C37F8A01E0AB8EA4AF055F498A Validity Not Before: Jun 14 17:12:35 2025 GMT Not After : Jun 21 17:12:35 2025 GMT Subject: CN=684dad83-8878 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:6e:5b:6a:6a:f5:04:78:a0:f6:7f:c9:bf:df: 23:11:7b:60:d0:50:5e:3e:ee:34:09:d3:b8:f5:2c: 9c:b9:27:b9:de:b1:df:b5:bd:6d:88:e1:92:51:ad: 75:ae:26:71:ed:73:3b:6b:28:60:da:6d:39:3a:df: 27:06:d4:bb:6a:a4:cf:70:c1:a9:9e:6f:d5:7d:ae: 5f:16:52:a3:9d:bd:06:47:4f:f9:67:70:18:e3:69: b7:50:c8:79:d3:fe:25:e2:f4:13:9b:d7:db:a4:cc: 39:41:e7:50:e6:79:d7:2b:44:d9:06:b5:21:40:ac: 5f:33:e1:3d:ff:b7:c1:fb:5e:19:f0:c7:58:ea:a7: a9:91:cd:18:86:0a:f4:14:8f:dc:76:f1:03:b8:57: 1c:e0:a6:aa:b7:d5:f4:03:ec:0e:c6:8a:93:c1:76: da:18:4f:ae:cf:01:15:7f:06:b4:bc:a6:23:db:68: 7a:45:e9:54:55:86:1f:db:c1:b5:d0:26:47:74:d7: c4:a5:5d:e5:d6:80:80:7a:a4:62:0b:58:79:cf:27: 40:bd:45:44:b2:c4:58:b7:ca:4e:3f:1d:48:2e:20: e9:73:55:6e:62:a8:19:d1:19:ca:5c:b1:f0:36:3b: 41:c3:83:e8:53:68:88:10:76:cd:25:c2:f9:ce:28: e1:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:D3:29:0D:1A:BA:EF:95:67:DF:86:49:9F:62:0B:35:9F:21:AE:FC X509v3 Authority Key Identifier: keyid:6F:7B:45:E3:DC:76:26:C3:7F:8A:01:E0:AB:8E:A4:AF:05:5F:49:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/b3tF49x2JsN_igHgq46krwVfSYo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b3tF49x2JsN_igHgq46krwVfSYo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/b3tF49x2JsN_igHgq46krwVfSYo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:d6:fc:84:4b:33:82:44:86:2d:2f:6f:de:2b:49:15:b3:99: b7:23:fb:51:24:ef:05:1e:cb:32:36:d6:fa:21:60:de:c1:76: 76:8b:87:cb:31:ee:be:da:a2:06:79:34:bb:bc:8c:74:84:57: db:41:e5:2e:6d:01:35:17:dc:de:f4:5f:62:ef:69:2f:32:77: 27:a2:9d:47:91:f0:8d:5d:a6:4f:1c:5f:03:df:a7:ea:ae:6d: 85:33:e8:a4:51:41:a4:7d:41:fc:b2:6a:ac:9d:00:7e:90:d4: df:07:f3:d1:ac:72:0b:3a:ea:42:2c:31:83:ad:0b:5e:ba:49: e3:0f:7f:c0:b2:a4:15:25:8d:36:e2:b0:80:66:97:0f:bf:43: 9a:4e:77:7d:02:e7:16:13:26:8f:28:4f:32:c0:6c:80:06:41: 3e:c8:69:4f:64:ed:06:ae:0c:4b:50:f1:3c:0d:01:39:13:2a: bd:45:f3:51:ca:65:ce:5b:77:d9:a1:9f:94:a9:21:f2:4f:71: 07:54:1e:9c:bb:f3:e6:fe:ac:aa:ca:21:52:2d:4b:8c:44:4d: 3f:ee:21:2a:e7:e7:26:e0:99:ba:4c:3d:8d:55:1f:03:9a:63: b0:64:c5:3b:60:c4:75:05:7d:54:35:1b:5f:2f:0b:f1:ed:9b: 93:a6:fe:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICESkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBBRjAxMTAvBgNVBAUTKDZGN0I0NUUzREM3NjI2QzM3RjhBMDFFMEFCOEVBNEFG MDU1RjQ5OEEwHhcNMjUwNjE0MTcxMjM1WhcNMjUwNjIxMTcxMjM1WjAYMRYwFAYD VQQDEw02ODRkYWQ4My04ODc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAym5bamr1BHig9n/Jv98jEXtg0FBePu40CdO49SycuSe53rHftb1tiOGSUa11 riZx7XM7ayhg2m05Ot8nBtS7aqTPcMGpnm/Vfa5fFlKjnb0GR0/5Z3AY42m3UMh5 0/4l4vQTm9fbpMw5QedQ5nnXK0TZBrUhQKxfM+E9/7fB+14Z8MdY6qepkc0Yhgr0 FI/cdvEDuFcc4Kaqt9X0A+wOxoqTwXbaGE+uzwEVfwa0vKYj22h6RelUVYYf28G1 0CZHdNfEpV3l1oCAeqRiC1h5zydAvUVEssRYt8pOPx1ILiDpc1VuYqgZ0RnKXLHw NjtBw4PoU2iIEHbNJcL5zijhtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPPTKQ0a uu+VZ9+GSZ9iCzWfIa78MB8GA1UdIwQYMBaAFG97RePcdibDf4oB4KuOpK8FX0mK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEFGMC9FMzc2Mjk1MDBG RkYxMUU5ODgxNUFFMjJDNEY5QUUwMi9iM3RGNDl4MkpzTl9pZ0hncTQ2a3J3VmZT WW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2IzdEY0OXgySnNOX2lnSGdxNDZrcndWZlNZby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEFGMC9FMzc2Mjk1MDBGRkYxMUU5ODgxNUFFMjJDNEY5QUUwMi9iM3RGNDl4Mkpz Tl9pZ0hncTQ2a3J3VmZTWW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAu1vyESzOCRIYtL2/eK0kVs5m3I/tRJO8FHssyNtb6IWDewXZ2i4fL Me6+2qIGeTS7vIx0hFfbQeUubQE1F9ze9F9i72kvMncnop1HkfCNXaZPHF8D36fq rm2FM+ikUUGkfUH8smqsnQB+kNTfB/PRrHILOupCLDGDrQteuknjD3/AsqQVJY02 4rCAZpcPv0OaTnd9AucWEyaPKE8ywGyABkE+yGlPZO0GrgxLUPE8DQE5Eyq9RfNR ymXOW3fZoZ+UqSHyT3EHVB6cu/Pm/qyqyiFSLUuMRE0/7iEq5+cm4Jm6TD2NVR8D mmOwZMU7YMR1BX1UNRtfLwvx7ZuTpv4a -----END CERTIFICATE-----Generated at Sun Jun 15 09:47:56 2025 by rpki-client