$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4D54/D2877DB6E9EB11EFA4542B18C4F9AE02/r3YSV94snaXzPnHGQZ4meoYt-2I.mft File: r3YSV94snaXzPnHGQZ4meoYt-2I.mft (raw, json) Hash identifier: T1ju3EleJwCcI+QLy0gMsndW2xuYwWf1udrmxlm5R1g= Subject key identifier: 90:CE:91:ED:36:C5:59:5D:A0:C7:3C:78:D4:15:31:46:EA:29:18:4B Authority key identifier: AF:76:12:57:DE:2C:9D:A5:F3:3E:71:C6:41:9E:26:7A:86:2D:FB:62 Certificate issuer: /CN=A91F4D54/serialNumber=AF761257DE2C9DA5F33E71C6419E267A862DFB62 Certificate serial: 44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3YSV94snaXzPnHGQZ4meoYt-2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4D54/D2877DB6E9EB11EFA4542B18C4F9AE02/r3YSV94snaXzPnHGQZ4meoYt-2I.mft Manifest number: 42 Signing time: Tue 17 Jun 2025 06:20:34 +0000 Manifest this update: Tue 17 Jun 2025 06:20:34 +0000 Manifest next update: Tue 24 Jun 2025 06:20:34 +0000 Files and hashes: 1: r3YSV94snaXzPnHGQZ4meoYt-2I.crl (hash: DpxZLgSBo0K9CkT9JLoM3Lu47vt5lNA13Z9EdGR4sdU=) 2: 61AAFCCAE9EC11EFB6D6D21BC4F9AE02.roa (hash: EzMoudDWuTdlnNruCHKgAEy3hjxWEtpDs8wnwjR1b6o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4D54/D2877DB6E9EB11EFA4542B18C4F9AE02/r3YSV94snaXzPnHGQZ4meoYt-2I.crl rsync://rpki.apnic.net/member_repository/A91F4D54/D2877DB6E9EB11EFA4542B18C4F9AE02/r3YSV94snaXzPnHGQZ4meoYt-2I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3YSV94snaXzPnHGQZ4meoYt-2I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 06:20:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68 (0x44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4D54, serialNumber=AF761257DE2C9DA5F33E71C6419E267A862DFB62 Validity Not Before: Jun 17 06:20:34 2025 GMT Not After : Jun 24 06:20:34 2025 GMT Subject: CN=68510932-f4f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:da:dd:e1:56:5c:8b:9d:1f:68:11:64:bc:0d: ee:81:84:e7:fd:54:1c:95:3f:8a:0c:db:9f:0d:80: c4:d1:59:20:84:1d:52:f1:de:cc:e5:50:ce:a5:05: d1:48:50:b2:7a:7b:cf:26:c4:00:ed:93:68:e8:f7: cb:6a:42:2c:b0:65:35:91:47:fd:b1:d9:a6:f8:7c: 13:3d:94:63:06:a1:d3:41:ea:68:83:6c:c4:ea:40: cb:ed:7c:8f:67:20:51:0e:f3:a6:29:16:a4:c4:5b: 58:c0:69:6f:4f:b6:70:ea:8a:2a:88:29:de:70:71: f0:d3:7a:dc:1b:88:2d:3e:a4:54:89:9f:e5:64:5d: 0a:7f:ee:f3:68:8a:87:0e:07:ba:e7:0c:9a:5a:93: fc:bc:17:05:88:02:93:4b:0a:54:eb:64:9e:c1:54: ff:ce:b0:2a:c2:c3:d7:15:ca:3f:9b:1f:bb:e8:2f: 99:07:22:7a:8c:11:10:6e:9d:71:f6:18:41:da:b7: 34:10:67:57:25:4d:ca:76:2b:03:53:ff:6c:80:7a: 04:f0:b2:29:fb:43:ef:58:d1:75:37:7d:d4:64:f8: 3a:84:31:a7:5b:52:52:b3:61:14:4e:23:e9:12:8b: 3c:1b:2c:d6:de:82:7d:91:c0:da:13:76:0e:98:e2: 9c:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:CE:91:ED:36:C5:59:5D:A0:C7:3C:78:D4:15:31:46:EA:29:18:4B X509v3 Authority Key Identifier: keyid:AF:76:12:57:DE:2C:9D:A5:F3:3E:71:C6:41:9E:26:7A:86:2D:FB:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4D54/D2877DB6E9EB11EFA4542B18C4F9AE02/r3YSV94snaXzPnHGQZ4meoYt-2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3YSV94snaXzPnHGQZ4meoYt-2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4D54/D2877DB6E9EB11EFA4542B18C4F9AE02/r3YSV94snaXzPnHGQZ4meoYt-2I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:34:f6:96:3b:66:88:a5:d2:19:2e:30:b9:e0:48:12:52:7c: 5e:61:a2:dd:3e:7b:10:88:fb:97:aa:6a:07:fe:25:bc:3a:e2: 4b:a6:88:c4:77:77:92:47:0f:5d:ed:a8:d1:d3:11:e6:fc:3f: ff:49:92:2d:8a:2f:01:5c:59:e2:c5:af:b6:68:5f:43:99:d0: 74:99:d8:c1:ec:fa:d2:34:ad:81:5f:53:09:39:06:7a:d2:dc: 09:64:71:82:d8:2d:33:47:83:ca:32:5f:d3:f5:b7:43:94:88: e8:ab:1c:d6:fb:a3:55:92:1a:73:35:6d:68:8b:da:d3:8b:2b: a2:01:7f:f5:9e:d9:a1:48:11:d3:b3:10:95:05:2a:73:c2:75: 4f:ef:ae:bb:71:60:34:94:0a:0c:76:df:6d:96:44:72:00:bb: 26:b5:af:28:ae:fe:53:c7:ce:02:f0:47:53:ce:3e:07:7f:62: 81:bf:6c:9a:71:f0:ba:f0:8e:48:21:25:d2:3f:20:90:d7:79: f8:32:b6:32:9e:30:09:51:f1:2e:50:9a:38:65:7b:c7:05:b1: e6:c0:a6:10:d6:ca:ca:6e:09:37:fe:cf:22:8d:41:cf:f0:89: 64:a8:28:2e:24:42:80:56:99:a9:9f:2c:59:21:8f:3d:8e:a8: ec:2d:e6:94 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NEQ1NDExMC8GA1UEBRMoQUY3NjEyNTdERTJDOURBNUYzM0U3MUM2NDE5RTI2N0E4 NjJERkI2MjAeFw0yNTA2MTcwNjIwMzRaFw0yNTA2MjQwNjIwMzRaMBgxFjAUBgNV BAMTDTY4NTEwOTMyLWY0ZjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC72t3hVlyLnR9oEWS8De6BhOf9VByVP4oM258NgMTRWSCEHVLx3szlUM6lBdFI ULJ6e88mxADtk2jo98tqQiywZTWRR/2x2ab4fBM9lGMGodNB6miDbMTqQMvtfI9n IFEO86YpFqTEW1jAaW9PtnDqiiqIKd5wcfDTetwbiC0+pFSJn+VkXQp/7vNoiocO B7rnDJpak/y8FwWIApNLClTrZJ7BVP/OsCrCw9cVyj+bH7voL5kHInqMERBunXH2 GEHatzQQZ1clTcp2KwNT/2yAegTwsin7Q+9Y0XU3fdRk+DqEMadbUlKzYRROI+kS izwbLNbegn2RwNoTdg6Y4pxdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUkM6R7TbF WV2gxzx41BUxRuopGEswHwYDVR0jBBgwFoAUr3YSV94snaXzPnHGQZ4meoYt+2Iw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY0RDU0L0QyODc3REI2RTlF QjExRUZBNDU0MkIxOEM0RjlBRTAyL3IzWVNWOTRzbmFYelBuSEdRWjRtZW9ZdC0y SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcjNZU1Y5NHNuYVh6UG5IR1FaNG1lb1l0LTJJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY0 RDU0L0QyODc3REI2RTlFQjExRUZBNDU0MkIxOEM0RjlBRTAyL3IzWVNWOTRzbmFY elBuSEdRWjRtZW9ZdC0ySS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALw09pY7Zoil0hkuMLngSBJSfF5hot0+exCI+5eqagf+Jbw64kumiMR3 d5JHD13tqNHTEeb8P/9Jki2KLwFcWeLFr7ZoX0OZ0HSZ2MHs+tI0rYFfUwk5BnrS 3AlkcYLYLTNHg8oyX9P1t0OUiOirHNb7o1WSGnM1bWiL2tOLK6IBf/We2aFIEdOz EJUFKnPCdU/vrrtxYDSUCgx2322WRHIAuya1ryiu/lPHzgLwR1POPgd/YoG/bJpx 8LrwjkghJdI/IJDXefgytjKeMAlR8S5Qmjhle8cFsebAphDWyspuCTf+zyKNQc/w iWSoKC4kQoBWmamfLFkhjz2OqOwt5pQ= -----END CERTIFICATE-----Generated at Tue Jun 17 19:43:59 2025 by rpki-client