$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8CAA/DCD02A20E1EA11EE999C702AC4F9AE02/N3hUTiRpVIvwm1Td2APX19kPfmI.mft File: N3hUTiRpVIvwm1Td2APX19kPfmI.mft (raw, json) Hash identifier: or9YLszdDajvw8DUNmcO4cd4EcRDv4REguX5JXjx3Ag= Subject key identifier: 64:17:C1:6E:AB:84:C8:06:23:20:1D:3B:CF:AD:69:56:07:C3:38:D1 Authority key identifier: 37:78:54:4E:24:69:54:8B:F0:9B:54:DD:D8:03:D7:D7:D9:0F:7E:62 Certificate issuer: /CN=A91F8CAA/serialNumber=3778544E2469548BF09B54DDD803D7D7D90F7E62 Certificate serial: F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N3hUTiRpVIvwm1Td2APX19kPfmI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8CAA/DCD02A20E1EA11EE999C702AC4F9AE02/N3hUTiRpVIvwm1Td2APX19kPfmI.mft Manifest number: E8 Signing time: Fri 13 Jun 2025 04:18:22 +0000 Manifest this update: Fri 13 Jun 2025 04:18:21 +0000 Manifest next update: Fri 20 Jun 2025 04:18:21 +0000 Files and hashes: 1: N3hUTiRpVIvwm1Td2APX19kPfmI.crl (hash: PyxVpyNsa8E/Vaj+elUoRWLkUzAW566gx+fycdJIznw=) 2: 1EC90968E1F211EEA360BE22C4F9AE02.roa (hash: XRFVx29hjFc5pKNr7AkvLob3HQjLTaD9Ns3C1RRvN4w=) 3: 1E4548E4E1F211EEA360BE22C4F9AE02.roa (hash: elMINW9VmQY5nycCbQ/QKtRjE+I0nxMVlzRRTvQng4k=) 4: 1DDBD99AE1F211EEA360BE22C4F9AE02.roa (hash: E3gtntzxmL6luEWEYnHzIxmyJjY7WSBf3VBE5/D496g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8CAA/DCD02A20E1EA11EE999C702AC4F9AE02/N3hUTiRpVIvwm1Td2APX19kPfmI.crl rsync://rpki.apnic.net/member_repository/A91F8CAA/DCD02A20E1EA11EE999C702AC4F9AE02/N3hUTiRpVIvwm1Td2APX19kPfmI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N3hUTiRpVIvwm1Td2APX19kPfmI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 04:18:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 240 (0xf0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8CAA, serialNumber=3778544E2469548BF09B54DDD803D7D7D90F7E62 Validity Not Before: Jun 13 04:18:21 2025 GMT Not After : Jun 20 04:18:21 2025 GMT Subject: CN=684ba68e-3c85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:70:75:a6:c5:0d:67:bb:6b:8e:a7:e7:35:04: 39:34:1b:6e:40:a8:75:eb:6b:8b:09:4b:4f:1a:33: 48:c5:c4:b5:8a:2f:11:0b:96:e6:84:65:34:03:e3: 1c:95:35:f8:94:c7:8c:cd:a7:42:79:32:5a:07:dc: d4:31:90:52:58:da:51:69:ed:b4:e8:a1:ae:5d:a7: 18:21:d5:75:ba:53:76:1b:c8:22:38:05:93:33:2d: d9:ca:79:06:65:fb:05:0e:a8:7e:45:52:a9:07:ef: 8b:45:c6:a8:da:61:b1:34:2f:97:96:ad:27:ba:29: c9:0c:64:58:77:6f:1d:a8:f8:4a:e2:41:62:6e:f6: 48:b1:8b:3a:12:94:c6:b2:b7:8f:21:c7:7c:c3:2e: ae:a2:c4:66:7e:45:62:38:2e:1a:3b:74:1a:22:dd: 13:60:3f:09:73:18:4c:31:66:c1:51:45:58:b9:15: 55:0d:5c:9a:cd:9b:1a:9b:91:07:6c:a9:83:e0:74: 7c:57:f4:f4:b6:e4:c2:d5:d0:6b:73:e7:db:ba:7f: 90:5c:2e:29:f1:19:b9:82:eb:5a:3b:05:a2:03:39: bf:aa:32:95:30:57:77:f9:12:9e:3c:0e:18:87:26: 2d:3a:b9:17:a1:c0:f7:c6:06:5f:44:04:ff:17:a0: af:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:17:C1:6E:AB:84:C8:06:23:20:1D:3B:CF:AD:69:56:07:C3:38:D1 X509v3 Authority Key Identifier: keyid:37:78:54:4E:24:69:54:8B:F0:9B:54:DD:D8:03:D7:D7:D9:0F:7E:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8CAA/DCD02A20E1EA11EE999C702AC4F9AE02/N3hUTiRpVIvwm1Td2APX19kPfmI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N3hUTiRpVIvwm1Td2APX19kPfmI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8CAA/DCD02A20E1EA11EE999C702AC4F9AE02/N3hUTiRpVIvwm1Td2APX19kPfmI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:3f:3f:a8:fa:f9:0a:d0:63:c7:dc:5d:25:d4:88:05:1e:5a: df:62:20:a8:58:39:96:18:67:e7:cd:65:61:1f:ec:56:bd:46: 1f:4a:a9:ba:85:40:02:62:09:42:e5:10:4d:91:28:f9:5d:69: 94:5e:64:85:90:c7:6c:46:e1:8f:ff:40:54:ae:a8:bd:90:e3: 8d:b2:04:0d:be:51:74:95:27:71:95:78:5f:a1:59:d3:79:12: 15:2f:cb:98:7c:82:8d:54:1d:4a:8e:a3:92:9e:8a:a3:5b:df: 18:cd:28:ad:4c:e3:f6:7c:5e:46:92:79:a9:18:1d:45:b9:6f: c1:5a:b4:93:a6:3d:2a:e1:36:fd:b9:26:4c:ce:55:c7:b0:fd: 1f:2c:09:56:cb:ce:37:cb:3b:9d:aa:3d:78:d7:56:6b:3c:45: 83:f8:bb:69:b7:f9:61:51:db:96:99:e6:52:c9:3b:9d:4f:33: 3f:a5:f9:a3:fa:49:8e:7c:f7:69:e5:95:ac:a2:65:5f:81:8d: 56:14:41:f1:79:3a:1b:5c:4d:0f:31:0c:d1:62:2e:9e:0b:7e: 79:b8:c2:3a:4e:a8:17:27:86:0c:f7:0b:a4:65:9e:c6:04:99: dd:51:7c:3b:40:01:a7:aa:2c:8a:7a:29:83:53:ef:b2:ef:b9: 7f:55:9a:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhDQUExMTAvBgNVBAUTKDM3Nzg1NDRFMjQ2OTU0OEJGMDlCNTREREQ4MDNEN0Q3 RDkwRjdFNjIwHhcNMjUwNjEzMDQxODIxWhcNMjUwNjIwMDQxODIxWjAYMRYwFAYD VQQDEw02ODRiYTY4ZS0zYzg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAunB1psUNZ7trjqfnNQQ5NBtuQKh162uLCUtPGjNIxcS1ii8RC5bmhGU0A+Mc lTX4lMeMzadCeTJaB9zUMZBSWNpRae206KGuXacYIdV1ulN2G8giOAWTMy3ZynkG ZfsFDqh+RVKpB++LRcao2mGxNC+Xlq0nuinJDGRYd28dqPhK4kFibvZIsYs6EpTG srePIcd8wy6uosRmfkViOC4aO3QaIt0TYD8JcxhMMWbBUUVYuRVVDVyazZsam5EH bKmD4HR8V/T0tuTC1dBrc+fbun+QXC4p8Rm5gutaOwWiAzm/qjKVMFd3+RKePA4Y hyYtOrkXocD3xgZfRAT/F6CvIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGQXwW6r hMgGIyAdO8+taVYHwzjRMB8GA1UdIwQYMBaAFDd4VE4kaVSL8JtU3dgD19fZD35i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOENBQS9EQ0QwMkEyMEUx RUExMUVFOTk5QzcwMkFDNEY5QUUwMi9OM2hVVGlScFZJdndtMVRkMkFQWDE5a1Bm bUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL04zaFVUaVJwVkl2d20xVGQyQVBYMTlrUGZtSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OENBQS9EQ0QwMkEyMEUxRUExMUVFOTk5QzcwMkFDNEY5QUUwMi9OM2hVVGlScFZJ dndtMVRkMkFQWDE5a1BmbUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqPz+o+vkK0GPH3F0l1IgFHlrfYiCoWDmWGGfnzWVhH+xWvUYfSqm6 hUACYglC5RBNkSj5XWmUXmSFkMdsRuGP/0BUrqi9kOONsgQNvlF0lSdxlXhfoVnT eRIVL8uYfIKNVB1KjqOSnoqjW98YzSitTOP2fF5GknmpGB1FuW/BWrSTpj0q4Tb9 uSZMzlXHsP0fLAlWy843yzudqj1411ZrPEWD+Ltpt/lhUduWmeZSyTudTzM/pfmj +kmOfPdp5ZWsomVfgY1WFEHxeTobXE0PMQzRYi6eC355uMI6TqgXJ4YM9wukZZ7G BJndUXw7QAGnqiyKeimDU++y77l/VZpz -----END CERTIFICATE-----Generated at Sat Jun 14 17:49:25 2025 by rpki-client