$ rpki-client -vvf rpki.apnic.net/member_repository/A9119C32/C4EA1B9E46E211EEA2372F41C4F9AE02/3glSX1epVbpvLTKtIoMwQhUYLkU.mft File: 3glSX1epVbpvLTKtIoMwQhUYLkU.mft (raw, json) Hash identifier: TWh8UjGr220Ljilc9Zd6AlWC+vRS971MkTmCFd9OMD8= Subject key identifier: DC:F9:2F:95:11:CB:BE:FE:DF:7D:4D:F7:AA:3E:6B:31:EA:CA:A7:03 Authority key identifier: DE:09:52:5F:57:A9:55:BA:6F:2D:32:AD:22:83:30:42:15:18:2E:45 Certificate issuer: /CN=A9119C32/serialNumber=DE09525F57A955BA6F2D32AD2283304215182E45 Certificate serial: 015E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3glSX1epVbpvLTKtIoMwQhUYLkU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119C32/C4EA1B9E46E211EEA2372F41C4F9AE02/3glSX1epVbpvLTKtIoMwQhUYLkU.mft Manifest number: 015B Signing time: Thu 03 Jul 2025 04:08:52 +0000 Manifest this update: Thu 03 Jul 2025 04:08:51 +0000 Manifest next update: Thu 10 Jul 2025 04:08:51 +0000 Files and hashes: 1: 3glSX1epVbpvLTKtIoMwQhUYLkU.crl (hash: CJOP44HI5w/K6v5kyjs4tDW0HM64BElDg5wasQgRrFU=) 2: 5D79BDF8486C11EEB3C19A71C4F9AE02.roa (hash: 0Dz92F7ct8bVXTADuiwvMmdgfbqvyjCznAHcDYM7e2M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119C32/C4EA1B9E46E211EEA2372F41C4F9AE02/3glSX1epVbpvLTKtIoMwQhUYLkU.crl rsync://rpki.apnic.net/member_repository/A9119C32/C4EA1B9E46E211EEA2372F41C4F9AE02/3glSX1epVbpvLTKtIoMwQhUYLkU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3glSX1epVbpvLTKtIoMwQhUYLkU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 350 (0x15e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119C32, serialNumber=DE09525F57A955BA6F2D32AD2283304215182E45 Validity Not Before: Jul 3 04:08:51 2025 GMT Not After : Jul 10 04:08:51 2025 GMT Subject: CN=68660254-bc29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:12:9e:af:b4:c6:cd:15:6f:bb:ea:87:da:c8: 84:bc:2a:70:0b:99:30:fa:a0:9a:59:34:36:66:80: aa:e2:ec:13:e8:a7:21:37:f5:6f:5b:17:0d:37:59: 0d:2d:46:31:8f:2f:f2:ce:50:6a:45:b2:8d:a5:af: 16:db:eb:f0:0e:f5:29:2d:73:8b:8c:29:a8:87:0a: bc:0b:38:9b:1e:bc:4e:86:ef:15:f2:51:b8:23:78: 50:4e:a7:cf:d1:ac:f8:ff:e5:81:62:78:42:d7:40: 35:06:f3:64:a3:af:d7:bf:0b:0f:9b:22:da:33:c1: ff:08:e0:5d:bc:62:9a:f2:20:82:d7:71:aa:4b:73: 93:14:c0:fd:d3:0b:72:6b:29:ef:ca:78:af:93:03: c7:a7:5f:e2:7a:59:0d:8f:b1:bb:7b:24:54:71:1c: 80:c5:25:41:9a:5d:6f:97:ab:6a:ba:d2:e1:85:6c: 2c:db:7d:3e:eb:60:64:58:3b:d6:09:da:dc:ba:43: e5:ac:0a:47:29:3e:97:12:9d:13:c8:be:d0:5d:1f: c8:21:37:71:1b:79:e0:5b:b2:31:b5:cf:35:1f:cc: 1e:43:db:b7:5a:02:e1:23:de:25:c2:06:e1:54:46: bb:da:d9:fc:80:37:ea:a1:1e:c8:35:6e:46:a1:c6: df:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:F9:2F:95:11:CB:BE:FE:DF:7D:4D:F7:AA:3E:6B:31:EA:CA:A7:03 X509v3 Authority Key Identifier: keyid:DE:09:52:5F:57:A9:55:BA:6F:2D:32:AD:22:83:30:42:15:18:2E:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119C32/C4EA1B9E46E211EEA2372F41C4F9AE02/3glSX1epVbpvLTKtIoMwQhUYLkU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3glSX1epVbpvLTKtIoMwQhUYLkU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119C32/C4EA1B9E46E211EEA2372F41C4F9AE02/3glSX1epVbpvLTKtIoMwQhUYLkU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:4f:a6:be:b3:bb:70:73:2c:e4:42:0d:56:ad:00:55:2a:aa: 66:91:02:98:70:68:f4:4d:b6:28:af:75:02:bb:25:54:e7:1c: c1:d1:03:24:c1:32:b6:35:5b:bf:ec:6d:f0:47:e7:f2:61:46: 03:b1:10:41:c3:4b:20:34:80:20:36:68:9f:fe:5e:c3:66:3a: 85:f5:d4:94:29:4b:b7:9e:98:e9:d5:48:f4:ff:9b:17:cd:fa: 33:88:6d:d9:24:9a:2c:2f:6c:d8:40:a8:0d:e9:fb:75:9b:c8: 56:e2:f8:97:ab:f7:71:84:51:be:d7:d6:2e:6a:07:1d:14:ae: d4:e5:85:22:53:e6:8d:98:79:a7:61:c6:46:fd:77:b5:4e:1e: b6:cc:7c:a2:d1:9f:5d:c3:a1:19:f0:99:a0:6d:b7:8c:87:bf: 78:4f:35:c5:ca:ee:21:3a:22:43:ae:63:78:7d:fb:aa:0c:e3: 18:ab:66:c2:2d:6d:27:73:97:79:4e:43:3a:45:31:63:f7:90: 05:ca:a2:5d:05:d6:05:83:c5:14:fb:f3:28:e5:28:6c:14:d8: bb:55:e2:07:22:e4:85:c5:30:ba:de:44:99:ba:2d:fd:be:48: 04:84:ff:53:b2:71:71:a7:29:d2:de:6b:23:e0:fd:e1:59:95: 3c:2e:23:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAV4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTlDMzIxMTAvBgNVBAUTKERFMDk1MjVGNTdBOTU1QkE2RjJEMzJBRDIyODMzMDQy MTUxODJFNDUwHhcNMjUwNzAzMDQwODUxWhcNMjUwNzEwMDQwODUxWjAYMRYwFAYD VQQDEw02ODY2MDI1NC1iYzI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3xKer7TGzRVvu+qH2siEvCpwC5kw+qCaWTQ2ZoCq4uwT6KchN/VvWxcNN1kN LUYxjy/yzlBqRbKNpa8W2+vwDvUpLXOLjCmohwq8CzibHrxOhu8V8lG4I3hQTqfP 0az4/+WBYnhC10A1BvNko6/XvwsPmyLaM8H/COBdvGKa8iCC13GqS3OTFMD90wty aynvynivkwPHp1/ielkNj7G7eyRUcRyAxSVBml1vl6tqutLhhWws230+62BkWDvW CdrcukPlrApHKT6XEp0TyL7QXR/IITdxG3ngW7Ixtc81H8weQ9u3WgLhI94lwgbh VEa72tn8gDfqoR7INW5GocbfrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNz5L5UR y77+331N96o+azHqyqcDMB8GA1UdIwQYMBaAFN4JUl9XqVW6by0yrSKDMEIVGC5F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOUMzMi9DNEVBMUI5RTQ2 RTIxMUVFQTIzNzJGNDFDNEY5QUUwMi8zZ2xTWDFlcFZicHZMVEt0SW9Nd1FoVVlM a1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNnbFNYMWVwVmJwdkxUS3RJb013UWhVWUxrVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OUMzMi9DNEVBMUI5RTQ2RTIxMUVFQTIzNzJGNDFDNEY5QUUwMi8zZ2xTWDFlcFZi cHZMVEt0SW9Nd1FoVVlMa1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHT6a+s7twcyzkQg1WrQBVKqpmkQKYcGj0TbYor3UCuyVU5xzB0QMk wTK2NVu/7G3wR+fyYUYDsRBBw0sgNIAgNmif/l7DZjqF9dSUKUu3npjp1Uj0/5sX zfoziG3ZJJosL2zYQKgN6ft1m8hW4viXq/dxhFG+19YuagcdFK7U5YUiU+aNmHmn YcZG/Xe1Th62zHyi0Z9dw6EZ8JmgbbeMh794TzXFyu4hOiJDrmN4ffuqDOMYq2bC LW0nc5d5TkM6RTFj95AFyqJdBdYFg8UU+/Mo5ShsFNi7VeIHIuSFxTC63kSZui39 vkgEhP9TsnFxpynS3msj4P3hWZU8LiMi -----END CERTIFICATE-----Generated at Fri Jul 4 14:28:06 2025 by rpki-client