$ rpki-client -vvf rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft File: 3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft (raw, json) Hash identifier: rzcR4WkCgSjZPkkldGfYhOmXb+ydYnDF8ZOCnsQ64Tg= Subject key identifier: B0:D4:F0:D0:32:B3:C9:78:13:AF:61:D9:4B:18:84:B5:78:74:97:78 Authority key identifier: DD:F8:84:91:1A:D3:F2:8C:C9:D9:6A:8C:24:A9:39:A6:5F:8B:25:76 Certificate issuer: /CN=A912BAAD/serialNumber=DDF884911AD3F28CC9D96A8C24A939A65F8B2576 Certificate serial: 0C0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft Manifest number: 0BFE Signing time: Wed 02 Jul 2025 19:00:25 +0000 Manifest this update: Wed 02 Jul 2025 19:00:24 +0000 Manifest next update: Wed 09 Jul 2025 19:00:24 +0000 Files and hashes: 1: 3fiEkRrT8ozJ2WqMJKk5pl-LJXY.crl (hash: gYf0gdd7u9WXM0G9rQTbayyp3JVcnqh7R/1XBqmHZhk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.crl rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 19:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3085 (0xc0d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BAAD, serialNumber=DDF884911AD3F28CC9D96A8C24A939A65F8B2576 Validity Not Before: Jul 2 19:00:24 2025 GMT Not After : Jul 9 19:00:24 2025 GMT Subject: CN=686581c9-9cf5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:45:a3:65:90:f5:06:6f:a5:cb:07:75:ec:b8: 9e:33:8c:1f:d8:e1:d8:d5:3b:0a:a3:5d:02:f9:e7: e2:20:c7:8b:23:c7:fc:f9:25:6c:59:ae:07:eb:24: 55:e7:35:ff:09:14:94:39:fe:5b:b4:86:5a:7a:b7: e8:bb:4e:4b:1f:70:3a:1b:d7:2d:d4:c2:8d:e6:8b: c6:99:3e:b7:e8:ee:b9:56:21:55:3f:76:dd:b0:d6: b6:32:0a:ec:2b:95:f1:22:70:e0:3f:b2:67:c7:98: 40:6a:85:0c:c5:d4:22:76:ff:11:b5:c5:9f:c5:50: ea:64:62:d8:a7:b1:4a:54:28:c4:dd:08:ae:29:23: 76:17:68:90:10:55:6e:3c:3b:c2:d4:c6:b6:91:a2: 9f:0c:66:d5:06:b5:7f:37:43:a2:da:b5:fc:89:34: 56:db:e1:76:7f:72:e5:be:73:f0:c3:fa:bb:e1:4f: 33:2d:e3:b4:84:45:08:79:cc:3d:2a:70:c6:df:4e: 1f:a5:7b:7c:fd:82:c1:c2:37:61:36:5d:d0:98:c6: d6:a7:ec:6a:42:68:df:c4:e3:79:18:2f:ce:f9:10: d4:86:11:61:b3:33:ee:06:a6:09:cd:ca:7c:dc:88: 1e:b7:67:35:d8:1f:cb:91:ff:55:fc:a2:db:da:d9: 7b:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:D4:F0:D0:32:B3:C9:78:13:AF:61:D9:4B:18:84:B5:78:74:97:78 X509v3 Authority Key Identifier: keyid:DD:F8:84:91:1A:D3:F2:8C:C9:D9:6A:8C:24:A9:39:A6:5F:8B:25:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:de:fa:ca:a2:cc:63:19:b0:41:ea:06:41:9d:bd:83:b4:df: 1f:9d:a5:db:c1:d0:aa:37:40:a5:92:b4:6e:02:4a:9b:91:1e: 2a:e7:2b:94:24:51:fb:dd:5d:f0:1d:19:87:06:40:46:82:38: b4:a1:f5:14:06:32:d9:52:3a:65:a9:0b:93:43:a4:c7:10:dc: 11:f1:e4:ed:fd:2a:0d:97:1f:80:dc:19:c9:50:dd:31:f3:53: 53:7b:ec:21:da:9c:65:cd:8e:d2:bc:a0:ca:08:29:d3:c6:85: e9:41:68:43:9a:85:45:ad:76:8d:f0:ab:e5:88:0c:a8:a5:1c: c9:ec:e7:2e:f1:d3:d3:68:32:fd:ff:fc:89:26:8b:be:17:a1: dc:fa:b0:c7:ec:96:44:36:ae:80:82:20:01:a4:75:d6:3e:eb: 23:e5:4a:6c:57:9f:67:1b:95:35:85:44:ce:5f:74:ad:a4:54: 47:b4:c9:88:cf:54:ac:1d:1c:a0:61:60:3b:38:25:ae:7e:9f: e3:14:f7:a9:88:4c:68:7d:f2:3a:2a:6b:9f:bd:91:88:1b:32: ab:17:f6:d6:9a:5b:b6:04:96:37:de:50:9a:cc:73:d9:8b:ac: 85:51:83:f6:07:29:63:be:a3:6b:69:2f:07:2c:c3:5d:81:d5: 7f:9a:c0:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDA0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJBQUQxMTAvBgNVBAUTKERERjg4NDkxMUFEM0YyOENDOUQ5NkE4QzI0QTkzOUE2 NUY4QjI1NzYwHhcNMjUwNzAyMTkwMDI0WhcNMjUwNzA5MTkwMDI0WjAYMRYwFAYD VQQDEw02ODY1ODFjOS05Y2Y1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs0WjZZD1Bm+lywd17LieM4wf2OHY1TsKo10C+efiIMeLI8f8+SVsWa4H6yRV 5zX/CRSUOf5btIZaerfou05LH3A6G9ct1MKN5ovGmT636O65ViFVP3bdsNa2Mgrs K5XxInDgP7Jnx5hAaoUMxdQidv8RtcWfxVDqZGLYp7FKVCjE3QiuKSN2F2iQEFVu PDvC1Ma2kaKfDGbVBrV/N0Oi2rX8iTRW2+F2f3LlvnPww/q74U8zLeO0hEUIecw9 KnDG304fpXt8/YLBwjdhNl3QmMbWp+xqQmjfxON5GC/O+RDUhhFhszPuBqYJzcp8 3Iget2c12B/Lkf9V/KLb2tl7ZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLDU8NAy s8l4E69h2UsYhLV4dJd4MB8GA1UdIwQYMBaAFN34hJEa0/KMydlqjCSpOaZfiyV2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkFBRC81MjFBRERDODE4 NDgxMUVBOTA3ODU2MkJDNEY5QUUwMi8zZmlFa1JyVDhvekoyV3FNSktrNXBsLUxK WFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNmaUVrUnJUOG96SjJXcU1KS2s1cGwtTEpYWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkFBRC81MjFBRERDODE4NDgxMUVBOTA3ODU2MkJDNEY5QUUwMi8zZmlFa1JyVDhv ekoyV3FNSktrNXBsLUxKWFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAa3vrKosxjGbBB6gZBnb2DtN8fnaXbwdCqN0ClkrRuAkqbkR4q5yuU JFH73V3wHRmHBkBGgji0ofUUBjLZUjplqQuTQ6THENwR8eTt/SoNlx+A3BnJUN0x 81NTe+wh2pxlzY7SvKDKCCnTxoXpQWhDmoVFrXaN8KvliAyopRzJ7Ocu8dPTaDL9 //yJJou+F6Hc+rDH7JZENq6AgiABpHXWPusj5UpsV59nG5U1hUTOX3StpFRHtMmI z1SsHRygYWA7OCWufp/jFPepiExoffI6KmufvZGIGzKrF/bWmlu2BJY33lCazHPZ i6yFUYP2ByljvqNraS8HLMNdgdV/msA4 -----END CERTIFICATE-----Generated at Thu Jul 3 01:04:35 2025 by rpki-client