$ rpki-client -vvf rpki.apnic.net/member_repository/A91616DC/44A7E5E8095F11EAA281681DC4F9AE02/l3a_sejqihq8j4z9b2Yic23YyjQ.mft File: l3a_sejqihq8j4z9b2Yic23YyjQ.mft (raw, json) Hash identifier: 6+7+74nOYMWO1XrvwbukfpHmbKor0kT3HYk2yFk+EtU= Subject key identifier: 84:78:2B:3D:BA:9E:0C:25:3D:0F:D7:D6:53:94:27:DF:3B:9D:7C:DB Authority key identifier: 97:76:BF:B1:E8:EA:8A:1A:BC:8F:8C:FD:6F:66:22:73:6D:D8:CA:34 Certificate issuer: /CN=A91616DC/serialNumber=9776BFB1E8EA8A1ABC8F8CFD6F6622736DD8CA34 Certificate serial: 0C81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l3a_sejqihq8j4z9b2Yic23YyjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91616DC/44A7E5E8095F11EAA281681DC4F9AE02/l3a_sejqihq8j4z9b2Yic23YyjQ.mft Manifest number: 0C52 Signing time: Sat 10 May 2025 18:23:16 +0000 Manifest this update: Sat 10 May 2025 18:23:16 +0000 Manifest next update: Sat 17 May 2025 18:23:16 +0000 Files and hashes: 1: l3a_sejqihq8j4z9b2Yic23YyjQ.crl (hash: xLbCSmvehsNCwLGrQ5yLykqnend+vnEAOqmEQEzUFxs=) 2: 64A2C96E919E11EEA5241125C4F9AE02.roa (hash: /Guh9JZ2GlA6fGHvz6IyFArNWYosj9/jyWCo/gIcAcc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91616DC/44A7E5E8095F11EAA281681DC4F9AE02/l3a_sejqihq8j4z9b2Yic23YyjQ.crl rsync://rpki.apnic.net/member_repository/A91616DC/44A7E5E8095F11EAA281681DC4F9AE02/l3a_sejqihq8j4z9b2Yic23YyjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l3a_sejqihq8j4z9b2Yic23YyjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 18:23:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3201 (0xc81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91616DC, serialNumber=9776BFB1E8EA8A1ABC8F8CFD6F6622736DD8CA34 Validity Not Before: May 10 18:23:16 2025 GMT Not After : May 17 18:23:16 2025 GMT Subject: CN=681f9994-3c8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:4a:e0:a0:b3:44:f2:33:6e:81:1f:d8:4e:b9: ba:e2:7e:a6:2a:6f:e1:6e:51:10:56:39:9a:ec:64: 6e:39:bb:fc:e2:cf:9e:5b:e9:8e:14:1a:dd:67:55: da:f9:44:1c:47:20:60:c6:f1:66:ed:bb:a7:ee:50: 4e:73:39:c4:05:54:f9:5a:5b:d9:38:27:7e:11:b7: ac:2e:d1:a5:1f:be:a3:6c:fb:46:27:12:16:db:a8: f6:20:c5:60:fe:47:95:c6:c0:b8:e8:f7:ee:ad:97: c5:59:77:f9:74:10:db:77:5f:c1:ad:0d:96:a1:93: cd:48:0f:fa:e5:f2:ac:7a:00:78:bf:38:14:d0:d8: 64:0e:09:47:42:4a:08:af:9a:0b:3e:74:74:31:cb: 88:fb:d6:04:70:1b:b1:d9:57:0b:0d:df:29:cd:cf: 0c:0b:01:49:91:3a:b8:66:3d:3a:8a:f3:47:aa:05: 7f:8d:12:e0:04:a2:25:19:ac:65:a8:81:08:89:74: c1:bc:97:d5:8b:63:af:56:db:4e:65:ad:93:f5:21: 09:90:a6:9d:41:87:ec:65:6f:c7:fd:c8:00:66:6a: 57:41:e1:4e:c3:ce:82:32:c7:8e:a3:61:b8:14:36: fb:c5:2d:d5:64:b2:10:78:41:f4:d2:9e:b3:db:4e: 90:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:78:2B:3D:BA:9E:0C:25:3D:0F:D7:D6:53:94:27:DF:3B:9D:7C:DB X509v3 Authority Key Identifier: keyid:97:76:BF:B1:E8:EA:8A:1A:BC:8F:8C:FD:6F:66:22:73:6D:D8:CA:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91616DC/44A7E5E8095F11EAA281681DC4F9AE02/l3a_sejqihq8j4z9b2Yic23YyjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l3a_sejqihq8j4z9b2Yic23YyjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91616DC/44A7E5E8095F11EAA281681DC4F9AE02/l3a_sejqihq8j4z9b2Yic23YyjQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:93:92:3b:22:92:19:10:d2:c4:ae:5a:97:4c:93:92:e3:cb: ca:e5:14:06:d7:1e:fb:78:96:43:49:3f:5a:6f:62:9d:91:1b: 7d:f2:8b:5b:d5:22:1f:02:8a:0b:95:c1:b1:91:bf:30:c9:0c: ae:0d:ae:0c:93:3a:12:f9:7b:af:7a:2d:7a:46:a3:dd:3d:65: 13:d1:68:87:5d:aa:54:d5:19:6d:3d:f9:cb:73:06:ce:65:04: 5f:bb:93:e3:25:62:41:d0:54:70:78:d6:43:ef:60:f6:8d:4b: b3:fb:4a:eb:17:bd:89:36:60:86:2c:0e:b8:1b:ab:3c:ba:26: 5e:95:7a:10:2a:b0:af:4f:d3:35:b6:c7:12:83:7b:e0:3f:49: 5f:4a:d2:ed:1b:8d:71:50:e8:e9:19:7b:ca:1c:3c:34:9b:b0: 2b:b8:64:93:19:0d:f2:27:6b:69:ad:c0:95:ac:f4:26:d1:18: f7:b4:30:13:06:06:b9:63:79:6b:e4:88:2a:a6:b4:88:2f:04: 95:7a:60:15:d9:b5:43:e8:50:c3:f9:ae:93:4e:da:86:e0:6d: 84:d3:fc:10:f7:b9:a5:7e:08:5e:ae:d4:00:fd:ba:74:08:28: 57:82:27:f3:99:88:51:d1:36:d9:ae:f1:50:57:f8:6f:b9:53: 8b:93:05:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjE2REMxMTAvBgNVBAUTKDk3NzZCRkIxRThFQThBMUFCQzhGOENGRDZGNjYyMjcz NkREOENBMzQwHhcNMjUwNTEwMTgyMzE2WhcNMjUwNTE3MTgyMzE2WjAYMRYwFAYD VQQDEw02ODFmOTk5NC0zYzhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA20rgoLNE8jNugR/YTrm64n6mKm/hblEQVjma7GRuObv84s+eW+mOFBrdZ1Xa +UQcRyBgxvFm7bun7lBOcznEBVT5WlvZOCd+EbesLtGlH76jbPtGJxIW26j2IMVg /keVxsC46PfurZfFWXf5dBDbd1/BrQ2WoZPNSA/65fKsegB4vzgU0NhkDglHQkoI r5oLPnR0McuI+9YEcBux2VcLDd8pzc8MCwFJkTq4Zj06ivNHqgV/jRLgBKIlGaxl qIEIiXTBvJfVi2OvVttOZa2T9SEJkKadQYfsZW/H/cgAZmpXQeFOw86CMseOo2G4 FDb7xS3VZLIQeEH00p6z206QpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIR4Kz26 ngwlPQ/X1lOUJ987nXzbMB8GA1UdIwQYMBaAFJd2v7Ho6ooavI+M/W9mInNt2Mo0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MTZEQy80NEE3RTVFODA5 NUYxMUVBQTI4MTY4MURDNEY5QUUwMi9sM2Ffc2VqcWlocThqNHo5YjJZaWMyM1l5 alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2wzYV9zZWpxaWhxOGo0ejliMllpYzIzWXlqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MTZEQy80NEE3RTVFODA5NUYxMUVBQTI4MTY4MURDNEY5QUUwMi9sM2Ffc2VqcWlo cThqNHo5YjJZaWMyM1l5alEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtk5I7IpIZENLErlqXTJOS48vK5RQG1x77eJZDST9ab2KdkRt98otb 1SIfAooLlcGxkb8wyQyuDa4MkzoS+Xuvei16RqPdPWUT0WiHXapU1RltPfnLcwbO ZQRfu5PjJWJB0FRweNZD72D2jUuz+0rrF72JNmCGLA64G6s8uiZelXoQKrCvT9M1 tscSg3vgP0lfStLtG41xUOjpGXvKHDw0m7AruGSTGQ3yJ2tprcCVrPQm0Rj3tDAT Bga5Y3lr5IgqprSILwSVemAV2bVD6FDD+a6TTtqG4G2E0/wQ97mlfghertQA/bp0 CChXgifzmYhR0TbZrvFQV/hvuVOLkwW/ -----END CERTIFICATE-----Generated at Mon May 12 04:16:11 2025 by rpki-client