$ rpki-client -vvf rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft File: 3zHPGFCQ4VSWXv_7xmS91yHYB18.mft (raw, json) Hash identifier: Mmmy3SkrDgyrf8jWhUxRyekNAbMPQ3wP3MZb4ucMK7c= Subject key identifier: 81:F5:4C:EB:05:28:F0:B2:A9:8A:90:F8:A9:07:DF:08:AC:97:77:98 Authority key identifier: DF:31:CF:18:50:90:E1:54:96:5E:FF:FB:C6:64:BD:D7:21:D8:07:5F Certificate issuer: /CN=A9155ECF/serialNumber=DF31CF185090E154965EFFFBC664BDD721D8075F Certificate serial: 27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft Manifest number: 24 Signing time: Thu 03 Jul 2025 08:06:55 +0000 Manifest this update: Thu 03 Jul 2025 08:06:54 +0000 Manifest next update: Thu 10 Jul 2025 08:06:54 +0000 Files and hashes: 1: 3zHPGFCQ4VSWXv_7xmS91yHYB18.crl (hash: NtMlX3UfSqqH0cqMpKj43FQJUf7DlYqufd2owB7enwI=) 2: 3C0150CC25F711F0BA6BC461C4F9AE02.roa (hash: 3nF4cvLj139/qC59LZaw3WXWjKCR+W8JrfwsLDT094o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.crl rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39 (0x27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155ECF, serialNumber=DF31CF185090E154965EFFFBC664BDD721D8075F Validity Not Before: Jul 3 08:06:54 2025 GMT Not After : Jul 10 08:06:54 2025 GMT Subject: CN=68663a1f-df4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:f7:d7:52:46:1c:ae:8e:9b:61:cc:51:7b:a3: fb:9d:ea:23:45:4d:c5:77:4d:1a:2d:e3:dd:fd:65: e2:0e:bc:30:90:36:2d:00:3d:0a:9b:e0:3f:95:1b: 46:ee:32:c4:75:f3:ff:ab:ed:fb:e1:f4:ae:5c:94: 84:71:a6:53:bd:6f:ea:a6:ad:a7:55:fa:81:f5:9e: ab:07:df:bc:d8:61:8c:94:1d:73:00:44:51:cf:93: 05:59:c3:8f:7b:75:87:4a:05:f9:7e:cf:d4:1a:f1: bb:d5:cb:d8:df:c6:70:07:eb:d0:00:72:ad:09:52: f6:c5:1b:54:b4:68:9e:8d:03:af:e1:aa:fd:e2:69: d3:fd:dc:1a:97:c4:2e:e2:5c:73:1e:23:12:c1:35: 75:b3:43:cf:fb:64:6e:81:98:81:a5:65:4a:dd:7c: ef:de:ed:d3:70:bb:27:d7:35:5d:78:c4:c2:35:c8: 49:e8:5a:32:2a:8c:6b:54:46:e7:a3:6e:19:88:b2: 6d:35:1e:ea:69:05:3b:63:93:71:aa:76:7d:cd:b6: f8:03:bf:a8:f4:74:04:59:24:46:72:06:77:e6:c6: 80:bd:d8:35:19:b7:eb:9b:51:86:e1:61:fe:e7:22: 83:c8:99:06:75:65:8a:af:f2:d8:63:45:f9:0e:fe: 10:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:F5:4C:EB:05:28:F0:B2:A9:8A:90:F8:A9:07:DF:08:AC:97:77:98 X509v3 Authority Key Identifier: keyid:DF:31:CF:18:50:90:E1:54:96:5E:FF:FB:C6:64:BD:D7:21:D8:07:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:26:1b:f4:67:31:a4:a6:14:dd:87:7d:a9:f1:36:43:83:e4: 3b:3f:a0:45:9e:10:8d:f3:85:ff:4d:28:f3:31:ea:60:13:98: d8:fb:96:0b:71:f2:5b:fc:85:91:e3:21:e3:b9:14:30:95:5b: f2:b7:be:28:0b:96:bb:7f:04:7b:42:eb:e5:6b:c4:1f:c5:e3: f1:f0:24:8a:98:1d:6b:44:14:df:d6:b3:56:17:65:30:28:f8: 9f:be:5b:ad:d5:5c:6d:dd:71:db:79:c3:9a:53:66:19:00:2b: cf:b2:0e:f2:a6:1a:1c:c1:cf:20:6e:58:89:e9:f7:f5:e2:3e: 56:c7:3a:05:56:fc:11:3a:79:b5:6d:08:2c:28:59:c8:ff:85: 73:80:2b:fd:7c:97:7c:06:f7:f6:d3:89:0d:41:80:ec:b9:d5: c1:0d:1c:50:2e:17:d6:59:cb:c4:1c:16:a2:6a:b0:6c:a6:f0: 0f:55:1f:0d:6b:4f:ff:74:45:e5:af:c1:3a:8f:a8:be:7d:21: 87:71:e0:93:cc:1a:cc:83:56:79:b8:d6:d6:70:b3:d9:67:c8: 03:a9:47:ac:32:a5:cc:14:a5:a2:1a:b7:88:64:58:fc:db:2b: b2:e7:27:57:a7:6b:fd:fd:bc:84:44:85:79:48:c1:dc:7b:01: e4:9e:71:e1 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NUVDRjExMC8GA1UEBRMoREYzMUNGMTg1MDkwRTE1NDk2NUVGRkZCQzY2NEJERDcy MUQ4MDc1RjAeFw0yNTA3MDMwODA2NTRaFw0yNTA3MTAwODA2NTRaMBgxFjAUBgNV BAMTDTY4NjYzYTFmLWRmNGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCw99dSRhyujpthzFF7o/ud6iNFTcV3TRot4939ZeIOvDCQNi0APQqb4D+VG0bu MsR18/+r7fvh9K5clIRxplO9b+qmradV+oH1nqsH37zYYYyUHXMARFHPkwVZw497 dYdKBfl+z9Qa8bvVy9jfxnAH69AAcq0JUvbFG1S0aJ6NA6/hqv3iadP93BqXxC7i XHMeIxLBNXWzQ8/7ZG6BmIGlZUrdfO/e7dNwuyfXNV14xMI1yEnoWjIqjGtURuej bhmIsm01HuppBTtjk3Gqdn3NtvgDv6j0dARZJEZyBnfmxoC92DUZt+ubUYbhYf7n IoPImQZ1ZYqv8thjRfkO/hAVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUgfVM6wUo 8LKpipD4qQffCKyXd5gwHwYDVR0jBBgwFoAU3zHPGFCQ4VSWXv/7xmS91yHYB18w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1RUNGL0VGNkI5MDVDMjVG NTExRjA4QkVGREE0OUM0RjlBRTAyLzN6SFBHRkNRNFZTV1h2Xzd4bVM5MXlIWUIx OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM3pIUEdGQ1E0VlNXWHZfN3htUzkxeUhZQjE4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1 RUNGL0VGNkI5MDVDMjVGNTExRjA4QkVGREE0OUM0RjlBRTAyLzN6SFBHRkNRNFZT V1h2Xzd4bVM5MXlIWUIxOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGUmG/RnMaSmFN2HfanxNkOD5Ds/oEWeEI3zhf9NKPMx6mATmNj7lgtx 8lv8hZHjIeO5FDCVW/K3vigLlrt/BHtC6+VrxB/F4/HwJIqYHWtEFN/Ws1YXZTAo +J++W63VXG3dcdt5w5pTZhkAK8+yDvKmGhzBzyBuWInp9/XiPlbHOgVW/BE6ebVt CCwoWcj/hXOAK/18l3wG9/bTiQ1BgOy51cENHFAuF9ZZy8QcFqJqsGym8A9VHw1r T/90ReWvwTqPqL59IYdx4JPMGsyDVnm41tZws9lnyAOpR6wypcwUpaIat4hkWPzb K7LnJ1ena/39vIREhXlIwdx7AeSeceE= -----END CERTIFICATE-----Generated at Thu Jul 3 10:23:54 2025 by rpki-client