$ rpki-client -vvf rpki.apnic.net/member_repository/A911AA05/4DC1D926212911F0A66A4972C4F9AE02/3xhzEfoJx3m4sV2UekbU9O3MUFM.mft File: 3xhzEfoJx3m4sV2UekbU9O3MUFM.mft (raw, json) Hash identifier: 1aVd/Vsw2DaErNczk1XmWlKZ8G18/n4exbOp+8e/SXI= Subject key identifier: C0:3A:FA:0D:16:CA:D8:C7:2D:BF:AA:40:E4:69:6A:BB:6E:D6:70:A3 Authority key identifier: DF:18:73:11:FA:09:C7:79:B8:B1:5D:94:7A:46:D4:F4:ED:CC:50:53 Certificate issuer: /CN=A911AA05/serialNumber=DF187311FA09C779B8B15D947A46D4F4EDCC5053 Certificate serial: 24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3xhzEfoJx3m4sV2UekbU9O3MUFM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AA05/4DC1D926212911F0A66A4972C4F9AE02/3xhzEfoJx3m4sV2UekbU9O3MUFM.mft Manifest number: 23 Signing time: Thu 03 Jul 2025 08:05:30 +0000 Manifest this update: Thu 03 Jul 2025 08:05:30 +0000 Manifest next update: Thu 10 Jul 2025 08:05:30 +0000 Files and hashes: 1: 3xhzEfoJx3m4sV2UekbU9O3MUFM.crl (hash: bjIOkHiKR+rFZ3mfiUxnak2yIXqJMhYNr3ZO1NIfbW8=) 2: F1940290212911F087425013C4F9AE02.roa (hash: MnHNxat0n45sPIepd+2k7Aeq3t/02+1KvIJP8MEpuv8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AA05/4DC1D926212911F0A66A4972C4F9AE02/3xhzEfoJx3m4sV2UekbU9O3MUFM.crl rsync://rpki.apnic.net/member_repository/A911AA05/4DC1D926212911F0A66A4972C4F9AE02/3xhzEfoJx3m4sV2UekbU9O3MUFM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3xhzEfoJx3m4sV2UekbU9O3MUFM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36 (0x24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AA05, serialNumber=DF187311FA09C779B8B15D947A46D4F4EDCC5053 Validity Not Before: Jul 3 08:05:30 2025 GMT Not After : Jul 10 08:05:30 2025 GMT Subject: CN=686639ca-4724 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:26:5b:65:b2:37:23:26:c0:a1:ec:e8:48:b0: c0:b4:b1:09:47:92:4e:22:40:a4:2e:33:42:8a:4f: a1:3d:66:c9:b6:76:a6:76:b1:bd:19:35:d6:eb:2a: 90:ac:43:11:a7:89:6a:35:79:ed:76:8b:16:2d:ed: 38:32:b2:12:5a:bb:ac:32:fc:22:c9:cd:c4:f9:a7: 20:00:b2:aa:98:3f:b0:a5:c0:f1:e6:56:69:a8:7b: 06:d6:cb:3e:d6:6a:86:2c:1f:f9:96:b3:46:48:93: 7b:5d:35:8b:ba:d5:15:60:65:8e:98:9d:61:24:46: 24:d3:a2:2e:c3:58:fc:6e:b1:a9:5b:ff:88:05:4a: d4:6a:07:64:ff:17:7d:da:54:bd:74:a3:27:62:58: b9:00:2b:2f:e5:88:c5:5b:b8:d2:97:c9:a3:88:0f: 42:1b:6b:66:64:d2:70:ff:a0:9d:13:8d:e3:83:33: cb:63:6c:12:1b:64:10:03:16:2a:c1:7b:fe:f7:df: 73:ae:a0:85:be:2d:33:41:72:a8:be:48:ae:6c:f4: 41:19:f9:48:b4:e6:c2:6e:8f:e9:7f:46:06:5a:c2: d5:88:86:24:00:15:76:22:a4:e1:c5:34:30:c1:aa: 73:0c:0c:c2:78:b9:9b:3c:7f:10:32:a3:5e:15:da: b1:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:3A:FA:0D:16:CA:D8:C7:2D:BF:AA:40:E4:69:6A:BB:6E:D6:70:A3 X509v3 Authority Key Identifier: keyid:DF:18:73:11:FA:09:C7:79:B8:B1:5D:94:7A:46:D4:F4:ED:CC:50:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AA05/4DC1D926212911F0A66A4972C4F9AE02/3xhzEfoJx3m4sV2UekbU9O3MUFM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3xhzEfoJx3m4sV2UekbU9O3MUFM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AA05/4DC1D926212911F0A66A4972C4F9AE02/3xhzEfoJx3m4sV2UekbU9O3MUFM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:ad:95:bd:da:3a:42:b3:20:c7:a6:03:69:c7:e6:d2:73:9a: 7e:3e:28:47:2b:42:d7:9a:1e:8b:0b:6b:5e:48:67:5a:7b:17: c2:c0:ec:7a:5f:f0:1f:83:13:65:42:c4:cf:08:34:39:c8:a2: 0a:c3:fa:1d:ee:1c:ce:28:e5:73:b2:d5:b1:d1:a5:3c:47:55: 00:48:21:8e:76:ab:84:d6:9a:9c:59:2b:4e:a1:0a:d4:1d:ef: 12:c3:64:f5:58:c5:51:10:ec:0c:c0:e6:bf:53:87:36:27:ec: b6:fa:25:21:b9:91:53:33:fb:ae:ab:89:53:4b:d8:0e:e2:db: d9:1e:67:6c:e2:19:f2:dc:1d:0d:f9:0a:a2:78:09:16:3a:e7: a4:61:15:a8:ed:21:73:33:a9:52:8c:bd:df:b3:06:51:d6:c3: b1:94:a7:6e:83:97:66:48:26:1f:56:dc:41:a6:47:80:f1:5b: 36:86:1c:c1:60:c8:ca:75:ca:53:a6:c7:37:e8:b0:73:2f:37: 8f:03:88:ab:d4:1d:b6:5a:9f:e6:93:e6:32:94:ac:18:77:d5: c6:51:73:23:a8:7b:34:42:08:7f:6a:89:7e:2b:9a:89:86:07: 7b:33:f2:13:e0:f2:6c:2c:9a:ab:d0:e7:d5:5d:00:ea:17:2b: 5e:43:84:b5 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx QUEwNTExMC8GA1UEBRMoREYxODczMTFGQTA5Qzc3OUI4QjE1RDk0N0E0NkQ0RjRF RENDNTA1MzAeFw0yNTA3MDMwODA1MzBaFw0yNTA3MTAwODA1MzBaMBgxFjAUBgNV BAMTDTY4NjYzOWNhLTQ3MjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDOJltlsjcjJsCh7OhIsMC0sQlHkk4iQKQuM0KKT6E9Zsm2dqZ2sb0ZNdbrKpCs QxGniWo1ee12ixYt7TgyshJau6wy/CLJzcT5pyAAsqqYP7ClwPHmVmmoewbWyz7W aoYsH/mWs0ZIk3tdNYu61RVgZY6YnWEkRiTToi7DWPxusalb/4gFStRqB2T/F33a VL10oydiWLkAKy/liMVbuNKXyaOID0Iba2Zk0nD/oJ0TjeODM8tjbBIbZBADFirB e/7333OuoIW+LTNBcqi+SK5s9EEZ+Ui05sJuj+l/RgZawtWIhiQAFXYipOHFNDDB qnMMDMJ4uZs8fxAyo14V2rEhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUwDr6DRbK 2Mctv6pA5Glqu27WcKMwHwYDVR0jBBgwFoAU3xhzEfoJx3m4sV2UekbU9O3MUFMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFBQTA1LzREQzFEOTI2MjEy OTExRjBBNjZBNDk3MkM0RjlBRTAyLzN4aHpFZm9KeDNtNHNWMlVla2JVOU8zTVVG TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM3hoekVmb0p4M200c1YyVWVrYlU5TzNNVUZNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFB QTA1LzREQzFEOTI2MjEyOTExRjBBNjZBNDk3MkM0RjlBRTAyLzN4aHpFZm9KeDNt NHNWMlVla2JVOU8zTVVGTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKetlb3aOkKzIMemA2nH5tJzmn4+KEcrQteaHosLa15IZ1p7F8LA7Hpf 8B+DE2VCxM8INDnIogrD+h3uHM4o5XOy1bHRpTxHVQBIIY52q4TWmpxZK06hCtQd 7xLDZPVYxVEQ7AzA5r9ThzYn7Lb6JSG5kVMz+66riVNL2A7i29keZ2ziGfLcHQ35 CqJ4CRY656RhFajtIXMzqVKMvd+zBlHWw7GUp26Dl2ZIJh9W3EGmR4DxWzaGHMFg yMp1ylOmxzfosHMvN48DiKvUHbZan+aT5jKUrBh31cZRcyOoezRCCH9qiX4rmomG B3sz8hPg8mwsmqvQ59VdAOoXK15DhLU= -----END CERTIFICATE-----Generated at Thu Jul 3 14:51:39 2025 by rpki-client