$ rpki-client -vvf rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft File: 3zHPGFCQ4VSWXv_7xmS91yHYB18.mft (raw, json) Hash identifier: /LkRsHsl5wrFRxbgTeSkpLukdKunNtpDMfSu1qmMk5I= Subject key identifier: 25:C7:A5:1D:7D:F3:94:34:BB:17:3D:83:CE:E8:3A:4F:13:08:C4:0E Authority key identifier: DF:31:CF:18:50:90:E1:54:96:5E:FF:FB:C6:64:BD:D7:21:D8:07:5F Certificate issuer: /CN=A9155ECF/serialNumber=DF31CF185090E154965EFFFBC664BDD721D8075F Certificate serial: 0F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft Manifest number: 0C Signing time: Tue 13 May 2025 07:23:10 +0000 Manifest this update: Tue 13 May 2025 07:23:09 +0000 Manifest next update: Tue 20 May 2025 07:23:09 +0000 Files and hashes: 1: 3zHPGFCQ4VSWXv_7xmS91yHYB18.crl (hash: SS4I3uD7SaStQ9P1E1cyECSmKhmZNmi6fCXjmzSPwpE=) 2: 3C0150CC25F711F0BA6BC461C4F9AE02.roa (hash: 3nF4cvLj139/qC59LZaw3WXWjKCR+W8JrfwsLDT094o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.crl rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 07:23:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15 (0xf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155ECF, serialNumber=DF31CF185090E154965EFFFBC664BDD721D8075F Validity Not Before: May 13 07:23:09 2025 GMT Not After : May 20 07:23:09 2025 GMT Subject: CN=6822f35e-b93b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:74:4b:9b:93:c4:5f:a2:cc:fb:8e:7b:80:44: 0c:79:39:00:4d:11:9b:77:13:13:12:84:1c:f5:11: df:b6:3c:a8:b1:70:dd:b4:d2:86:99:e9:de:23:6b: f1:63:75:af:a9:17:9d:d1:89:49:bf:fc:19:23:57: c8:6e:b1:77:18:52:29:8f:25:b9:08:e8:a4:34:c4: 4a:00:9d:72:88:89:a7:c0:df:5b:2e:3f:dd:14:0a: 5a:d3:c6:00:d7:bf:ca:cb:a5:b4:f1:ac:01:59:46: 9c:f6:de:db:56:5a:18:8b:ee:97:09:50:27:ed:16: 36:ad:8a:40:87:6f:ab:b8:12:d3:9e:70:14:fc:57: ce:1b:5d:55:95:85:5b:bc:84:33:74:d8:d7:7e:31: ba:ee:58:54:6e:f9:1a:23:2a:dc:31:1e:3a:b8:4c: ec:41:9b:11:24:a2:29:1f:84:9d:64:54:af:28:dd: f3:be:ec:00:29:1d:2e:b8:30:ea:28:4a:b0:eb:3a: dd:94:83:34:51:5c:f4:07:6d:0e:af:90:09:98:67: 20:02:7e:68:04:72:e0:43:65:5f:ea:99:c5:30:cb: 01:b5:b9:d9:ed:a9:6c:7f:3c:ba:ae:5a:00:5c:a0: 58:a0:56:dc:ce:53:7c:98:20:22:3e:04:b1:fc:c2: ee:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:C7:A5:1D:7D:F3:94:34:BB:17:3D:83:CE:E8:3A:4F:13:08:C4:0E X509v3 Authority Key Identifier: keyid:DF:31:CF:18:50:90:E1:54:96:5E:FF:FB:C6:64:BD:D7:21:D8:07:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:7a:88:88:73:79:36:ba:9d:bc:72:61:ed:c5:70:b4:a2:73: 54:95:82:3a:58:5d:a2:4e:7e:91:df:bf:31:5d:d9:ed:27:b7: 39:19:1c:3b:8c:e0:24:41:84:37:1e:20:41:6a:44:03:c5:c0: 30:89:75:0e:35:c1:7e:86:8a:3a:06:cf:f5:82:4d:3c:5f:05: 73:8e:0e:7a:e4:34:17:f3:22:b6:09:e7:3f:aa:5d:2b:d1:ac: b3:09:e5:c3:dc:8d:fb:ef:48:d4:2a:45:7f:fe:5a:4e:c1:ff: 82:e2:18:db:2e:41:7a:a0:a3:fd:dc:77:a8:6b:6b:7c:6d:ea: 34:34:39:2a:04:42:5e:61:b3:a8:8f:49:af:24:e6:c2:ac:de: 67:f6:4c:cd:fe:11:9f:ff:d1:32:ad:45:1c:13:cf:7e:bc:e6: 98:7a:34:a4:82:e1:37:4f:2e:6b:9a:9a:41:3e:5d:d5:40:46: 3f:38:3a:8c:96:56:87:96:02:c2:75:f3:a4:0c:d6:32:98:ed: 08:88:f1:c6:ac:d2:16:d7:d6:8a:8a:02:ed:db:7c:56:14:7c: 7b:a1:1e:25:2e:23:0e:96:33:54:ef:80:d5:b3:21:75:e7:e4: e4:73:31:c3:6e:65:a7:95:d9:a6:f3:04:bb:ef:4e:15:f8:75: d4:d3:80:ff -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NUVDRjExMC8GA1UEBRMoREYzMUNGMTg1MDkwRTE1NDk2NUVGRkZCQzY2NEJERDcy MUQ4MDc1RjAeFw0yNTA1MTMwNzIzMDlaFw0yNTA1MjAwNzIzMDlaMBgxFjAUBgNV BAMTDTY4MjJmMzVlLWI5M2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDgdEubk8Rfosz7jnuARAx5OQBNEZt3ExMShBz1Ed+2PKixcN200oaZ6d4ja/Fj da+pF53RiUm//BkjV8husXcYUimPJbkI6KQ0xEoAnXKIiafA31suP90UClrTxgDX v8rLpbTxrAFZRpz23ttWWhiL7pcJUCftFjatikCHb6u4EtOecBT8V84bXVWVhVu8 hDN02Nd+MbruWFRu+RojKtwxHjq4TOxBmxEkoikfhJ1kVK8o3fO+7AApHS64MOoo SrDrOt2UgzRRXPQHbQ6vkAmYZyACfmgEcuBDZV/qmcUwywG1udntqWx/PLquWgBc oFigVtzOU3yYICI+BLH8wu7FAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUJcelHX3z lDS7Fz2Dzug6TxMIxA4wHwYDVR0jBBgwFoAU3zHPGFCQ4VSWXv/7xmS91yHYB18w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1RUNGL0VGNkI5MDVDMjVG NTExRjA4QkVGREE0OUM0RjlBRTAyLzN6SFBHRkNRNFZTV1h2Xzd4bVM5MXlIWUIx OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM3pIUEdGQ1E0VlNXWHZfN3htUzkxeUhZQjE4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1 RUNGL0VGNkI5MDVDMjVGNTExRjA4QkVGREE0OUM0RjlBRTAyLzN6SFBHRkNRNFZT V1h2Xzd4bVM5MXlIWUIxOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAD96iIhzeTa6nbxyYe3FcLSic1SVgjpYXaJOfpHfvzFd2e0ntzkZHDuM 4CRBhDceIEFqRAPFwDCJdQ41wX6GijoGz/WCTTxfBXOODnrkNBfzIrYJ5z+qXSvR rLMJ5cPcjfvvSNQqRX/+Wk7B/4LiGNsuQXqgo/3cd6hra3xt6jQ0OSoEQl5hs6iP Sa8k5sKs3mf2TM3+EZ//0TKtRRwTz3685ph6NKSC4TdPLmuamkE+XdVARj84OoyW VoeWAsJ186QM1jKY7QiI8cas0hbX1oqKAu3bfFYUfHuhHiUuIw6WM1TvgNWzIXXn 5ORzMcNuZaeV2abzBLvvThX4ddTTgP8= -----END CERTIFICATE-----Generated at Tue May 13 22:49:33 2025 by rpki-client