$ rpki-client -vvf rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft File: 3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft (raw, json) Hash identifier: 8GGAH3DtU8ryd/mG6VBgRU4ycaFgZCTRXOSsjnWBGak= Subject key identifier: 45:D1:8D:EB:31:C1:E7:3E:B2:DB:DD:B1:3E:23:D3:65:79:BC:D4:BE Authority key identifier: DF:25:34:84:DC:E5:2C:41:37:CB:D1:C8:ED:44:D9:CB:25:57:F4:3F Certificate issuer: /CN=A9158568/serialNumber=DF253484DCE52C4137CBD1C8ED44D9CB2557F43F Certificate serial: 0C16 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yU0hNzlLEE3y9HI7UTZyyVX9D8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft Manifest number: 0BFC Signing time: Wed 02 Jul 2025 19:00:36 +0000 Manifest this update: Wed 02 Jul 2025 19:00:35 +0000 Manifest next update: Wed 09 Jul 2025 19:00:35 +0000 Files and hashes: 1: 3yU0hNzlLEE3y9HI7UTZyyVX9D8.crl (hash: CqTNEfmC3RPhvnnPe8BoX4qR/82XDCgQxzbAIo+mY6M=) 2: 3A5A84F8CB7111EBA9EEF440C4F9AE02.roa (hash: LcxIbKxK3jutvAgu3ThkdTt7YT68VEQAWEq5z0WaOxY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.crl rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yU0hNzlLEE3y9HI7UTZyyVX9D8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 19:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3094 (0xc16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158568, serialNumber=DF253484DCE52C4137CBD1C8ED44D9CB2557F43F Validity Not Before: Jul 2 19:00:35 2025 GMT Not After : Jul 9 19:00:35 2025 GMT Subject: CN=686581d4-c0d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:4b:e7:ce:f3:83:b5:c6:80:1f:49:2e:a5:bc: 16:5d:14:40:44:e7:34:fa:de:7a:2b:ae:cc:8c:e4: 8c:b3:b2:cd:97:20:bb:7e:78:88:c8:74:db:45:02: a1:43:96:ff:8e:eb:33:39:a5:77:33:37:9d:c8:1d: df:2b:09:64:1e:ad:9d:2e:dd:91:f9:77:0f:fc:fd: 7f:cc:bc:e0:74:0c:8e:14:b1:59:08:d5:b9:69:ee: 39:0c:38:a4:b7:38:13:ed:ae:83:66:9e:ec:51:84: 95:43:de:35:fc:e4:a8:70:d0:31:b1:cb:c8:77:a1: 7a:d8:99:d5:30:12:ea:d2:3a:e5:ab:a8:f3:7a:03: ff:e7:0e:44:e0:7f:75:3c:70:4a:5a:69:f8:28:ff: bc:e5:7c:f5:e7:15:ba:07:81:a7:95:06:51:48:9f: 90:4a:3e:06:30:fd:70:5c:95:89:3a:db:a8:7b:cc: 53:4e:5d:c4:e0:a4:8d:b5:ac:6f:7b:f4:ea:ef:b2: 62:07:d8:12:f0:77:ae:e6:66:14:16:03:7d:d6:21: 3c:0d:e8:03:8e:ff:11:25:d8:2d:91:38:83:58:fb: 18:9d:a3:97:eb:c9:8b:e6:41:6e:aa:75:1a:82:6b: 98:20:eb:4c:db:d4:b8:85:f2:68:4d:c6:15:d6:e5: 4d:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:D1:8D:EB:31:C1:E7:3E:B2:DB:DD:B1:3E:23:D3:65:79:BC:D4:BE X509v3 Authority Key Identifier: keyid:DF:25:34:84:DC:E5:2C:41:37:CB:D1:C8:ED:44:D9:CB:25:57:F4:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yU0hNzlLEE3y9HI7UTZyyVX9D8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:60:32:d3:98:14:0d:4f:64:af:81:a7:b4:f0:f1:5c:37:c7: b5:1a:84:15:3d:90:8c:db:63:ad:2e:4d:7b:e9:79:80:2c:da: 9e:ab:cb:1e:60:0d:0a:52:ac:a5:fb:01:8c:6c:c8:04:27:eb: f5:73:c9:ab:c9:cf:aa:2e:61:46:5e:c7:82:6e:66:9d:9e:c3: 07:44:49:49:95:fd:e6:97:39:17:99:a9:d5:8b:87:1a:a1:11: cb:1a:58:f2:16:2f:23:b8:09:a6:ab:82:39:4a:1e:3d:cf:75: c3:04:bc:e9:a9:da:9b:10:b1:54:c9:b4:19:29:2a:90:db:e6: d3:09:81:cd:f6:99:d8:6d:d7:37:a1:45:03:92:01:6d:a1:d3: e3:2a:32:bb:70:68:01:0e:d9:cf:fb:4d:48:27:b2:21:7a:a4: d4:26:c3:9b:8f:56:40:62:e7:f5:a5:55:29:26:76:8e:77:cd: 5e:2e:c1:13:88:82:8c:d1:b0:c7:d1:80:bb:ad:a1:4d:91:d1: 8c:2c:0d:c6:50:3b:49:54:dd:74:38:f4:a4:0c:5a:fd:9a:9b: 2b:b9:b4:32:11:c6:94:a6:55:04:65:8d:54:11:38:e0:f4:a4: 8c:ea:5e:2c:e1:50:24:a0:40:e8:98:87:ed:c2:c9:28:f2:1c: 8f:c3:15:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDBYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg1NjgxMTAvBgNVBAUTKERGMjUzNDg0RENFNTJDNDEzN0NCRDFDOEVENDREOUNC MjU1N0Y0M0YwHhcNMjUwNzAyMTkwMDM1WhcNMjUwNzA5MTkwMDM1WjAYMRYwFAYD VQQDEw02ODY1ODFkNC1jMGQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxEvnzvODtcaAH0kupbwWXRRAROc0+t56K67MjOSMs7LNlyC7fniIyHTbRQKh Q5b/juszOaV3MzedyB3fKwlkHq2dLt2R+XcP/P1/zLzgdAyOFLFZCNW5ae45DDik tzgT7a6DZp7sUYSVQ941/OSocNAxscvId6F62JnVMBLq0jrlq6jzegP/5w5E4H91 PHBKWmn4KP+85Xz15xW6B4GnlQZRSJ+QSj4GMP1wXJWJOtuoe8xTTl3E4KSNtaxv e/Tq77JiB9gS8Heu5mYUFgN91iE8DegDjv8RJdgtkTiDWPsYnaOX68mL5kFuqnUa gmuYIOtM29S4hfJoTcYV1uVNWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEXRjesx wec+stvdsT4j02V5vNS+MB8GA1UdIwQYMBaAFN8lNITc5SxBN8vRyO1E2cslV/Q/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODU2OC9EMzEzMDY3NjE4 NTcxMUVBOTg2MzQxNUVDNEY5QUUwMi8zeVUwaE56bExFRTN5OUhJN1VUWnl5Vlg5 RDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzN5VTBoTnpsTEVFM3k5SEk3VVRaeXlWWDlEOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODU2OC9EMzEzMDY3NjE4NTcxMUVBOTg2MzQxNUVDNEY5QUUwMi8zeVUwaE56bExF RTN5OUhJN1VUWnl5Vlg5RDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGYDLTmBQNT2Svgae08PFcN8e1GoQVPZCM22OtLk176XmALNqeq8se YA0KUqyl+wGMbMgEJ+v1c8mryc+qLmFGXseCbmadnsMHRElJlf3mlzkXmanVi4ca oRHLGljyFi8juAmmq4I5Sh49z3XDBLzpqdqbELFUybQZKSqQ2+bTCYHN9pnYbdc3 oUUDkgFtodPjKjK7cGgBDtnP+01IJ7IheqTUJsObj1ZAYuf1pVUpJnaOd81eLsET iIKM0bDH0YC7raFNkdGMLA3GUDtJVN10OPSkDFr9mpsrubQyEcaUplUEZY1UETjg 9KSM6l4s4VAkoEDomIftwsko8hyPwxXg -----END CERTIFICATE-----Generated at Thu Jul 3 18:21:04 2025 by rpki-client