$ rpki-client -vvf rpki.apnic.net/member_repository/A91616DC/44A7E5E8095F11EAA281681DC4F9AE02/l3a_sejqihq8j4z9b2Yic23YyjQ.mft File: l3a_sejqihq8j4z9b2Yic23YyjQ.mft (raw, json) Hash identifier: sR9aLUx4EHWRQp4woYeyy8K3HcCxc0kRAIt7404j9CI= Subject key identifier: 90:91:77:E4:0D:5F:B2:3C:32:32:FA:14:E5:F6:FF:F9:1C:D8:DB:20 Authority key identifier: 97:76:BF:B1:E8:EA:8A:1A:BC:8F:8C:FD:6F:66:22:73:6D:D8:CA:34 Certificate issuer: /CN=A91616DC/serialNumber=9776BFB1E8EA8A1ABC8F8CFD6F6622736DD8CA34 Certificate serial: 0C9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l3a_sejqihq8j4z9b2Yic23YyjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91616DC/44A7E5E8095F11EAA281681DC4F9AE02/l3a_sejqihq8j4z9b2Yic23YyjQ.mft Manifest number: 0C6C Signing time: Wed 02 Jul 2025 18:46:08 +0000 Manifest this update: Wed 02 Jul 2025 18:46:08 +0000 Manifest next update: Wed 09 Jul 2025 18:46:08 +0000 Files and hashes: 1: l3a_sejqihq8j4z9b2Yic23YyjQ.crl (hash: sc7sj1I3rK5NX4L8gVg/6wJUUKiUsmmfNOYx/XdmrCc=) 2: 64A2C96E919E11EEA5241125C4F9AE02.roa (hash: /Guh9JZ2GlA6fGHvz6IyFArNWYosj9/jyWCo/gIcAcc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91616DC/44A7E5E8095F11EAA281681DC4F9AE02/l3a_sejqihq8j4z9b2Yic23YyjQ.crl rsync://rpki.apnic.net/member_repository/A91616DC/44A7E5E8095F11EAA281681DC4F9AE02/l3a_sejqihq8j4z9b2Yic23YyjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l3a_sejqihq8j4z9b2Yic23YyjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:46:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3227 (0xc9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91616DC, serialNumber=9776BFB1E8EA8A1ABC8F8CFD6F6622736DD8CA34 Validity Not Before: Jul 2 18:46:08 2025 GMT Not After : Jul 9 18:46:08 2025 GMT Subject: CN=68657e70-b249 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:f9:03:ed:67:81:f7:de:57:fe:a6:90:b4:c0: c1:c1:d4:37:a9:4d:e5:8f:57:f2:2b:b9:57:df:47: ac:d6:fa:89:53:83:0e:82:51:dc:6b:46:be:d4:41: ef:4e:7f:8a:ab:73:c3:a2:84:6e:33:ac:f8:2e:4e: 9b:39:b0:a9:30:17:a5:9f:5b:12:b5:8b:89:b6:19: 4e:4e:e4:4b:71:0d:7b:7e:cd:64:d9:4e:fb:60:eb: 3f:52:8c:81:14:88:67:9f:da:6c:05:84:b4:68:78: cd:55:69:78:fa:50:38:b7:da:ed:a4:c6:d6:46:88: 6e:6b:19:52:c9:69:c5:c7:21:d8:fb:af:42:84:ab: 57:08:33:e0:1d:65:48:1a:70:1e:72:a4:76:be:f1: 5d:88:b7:fb:90:9a:25:3f:58:03:6f:c2:97:e9:d5: 7f:27:d4:f7:c4:8d:70:54:28:f5:0e:f9:53:2e:24: 70:f4:92:8b:d7:ed:9c:3f:03:0c:db:10:0c:6c:08: 82:39:82:10:39:62:77:e3:e4:ee:ca:c8:aa:19:ba: 0c:39:96:90:6c:6d:b5:31:f7:46:36:d2:50:26:ab: e0:e1:79:85:a2:b6:63:2b:d5:2a:2a:fa:aa:08:2d: 3a:14:e3:4b:90:e5:d1:fb:a9:68:5f:f2:94:a2:3c: ae:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:91:77:E4:0D:5F:B2:3C:32:32:FA:14:E5:F6:FF:F9:1C:D8:DB:20 X509v3 Authority Key Identifier: keyid:97:76:BF:B1:E8:EA:8A:1A:BC:8F:8C:FD:6F:66:22:73:6D:D8:CA:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91616DC/44A7E5E8095F11EAA281681DC4F9AE02/l3a_sejqihq8j4z9b2Yic23YyjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l3a_sejqihq8j4z9b2Yic23YyjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91616DC/44A7E5E8095F11EAA281681DC4F9AE02/l3a_sejqihq8j4z9b2Yic23YyjQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:ea:ea:21:72:9f:4d:7f:aa:24:ed:e3:86:9a:4a:b0:ce:76: 20:72:5a:9a:db:26:cf:a2:8b:dd:47:1a:70:3e:9c:cd:80:2b: fd:6e:30:bf:4a:da:40:6b:b5:1b:d8:61:c0:53:8d:7f:41:98: ba:40:b6:50:94:82:3c:cf:d4:e1:15:da:6b:b8:71:18:7c:b3: cb:2d:18:8b:af:b6:25:16:ae:e3:66:24:af:6c:d3:24:99:04: 0a:01:a8:8b:51:31:98:92:02:fd:12:68:8b:59:4d:a9:75:2a: 05:6b:e1:da:f6:5f:1b:e1:00:8c:90:3a:ac:d3:82:57:d5:f7: 7d:f2:c7:9a:8f:68:fb:1d:bc:2b:0d:b4:59:6e:04:6a:ca:95: 63:0a:e5:79:a7:7f:24:61:64:cd:d2:5a:48:ba:f6:92:e5:f3: 70:9a:91:d2:70:0e:4b:a3:5d:2b:5b:4e:76:84:4a:33:e7:67: a1:a4:76:8d:5a:8d:96:1e:81:18:01:4a:43:4b:f7:73:22:63: 00:59:3c:7b:65:9c:27:5b:18:b6:20:c9:fa:46:ac:74:2d:57: 3e:73:c2:b2:b5:20:ca:ba:d7:0d:b0:57:ac:ac:79:15:99:d5: 5b:0d:61:a7:17:f6:63:5f:79:29:02:c2:b1:7a:43:c5:e6:1a: 35:83:c1:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjE2REMxMTAvBgNVBAUTKDk3NzZCRkIxRThFQThBMUFCQzhGOENGRDZGNjYyMjcz NkREOENBMzQwHhcNMjUwNzAyMTg0NjA4WhcNMjUwNzA5MTg0NjA4WjAYMRYwFAYD VQQDEw02ODY1N2U3MC1iMjQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsPkD7WeB995X/qaQtMDBwdQ3qU3lj1fyK7lX30es1vqJU4MOglHca0a+1EHv Tn+Kq3PDooRuM6z4Lk6bObCpMBeln1sStYuJthlOTuRLcQ17fs1k2U77YOs/UoyB FIhnn9psBYS0aHjNVWl4+lA4t9rtpMbWRohuaxlSyWnFxyHY+69ChKtXCDPgHWVI GnAecqR2vvFdiLf7kJolP1gDb8KX6dV/J9T3xI1wVCj1DvlTLiRw9JKL1+2cPwMM 2xAMbAiCOYIQOWJ34+TuysiqGboMOZaQbG21MfdGNtJQJqvg4XmForZjK9UqKvqq CC06FONLkOXR+6loX/KUojyumQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJCRd+QN X7I8MjL6FOX2//kc2NsgMB8GA1UdIwQYMBaAFJd2v7Ho6ooavI+M/W9mInNt2Mo0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MTZEQy80NEE3RTVFODA5 NUYxMUVBQTI4MTY4MURDNEY5QUUwMi9sM2Ffc2VqcWlocThqNHo5YjJZaWMyM1l5 alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2wzYV9zZWpxaWhxOGo0ejliMllpYzIzWXlqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MTZEQy80NEE3RTVFODA5NUYxMUVBQTI4MTY4MURDNEY5QUUwMi9sM2Ffc2VqcWlo cThqNHo5YjJZaWMyM1l5alEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAH6uohcp9Nf6ok7eOGmkqwznYgclqa2ybPoovdRxpwPpzNgCv9bjC/ StpAa7Ub2GHAU41/QZi6QLZQlII8z9ThFdpruHEYfLPLLRiLr7YlFq7jZiSvbNMk mQQKAaiLUTGYkgL9EmiLWU2pdSoFa+Ha9l8b4QCMkDqs04JX1fd98seaj2j7Hbwr DbRZbgRqypVjCuV5p38kYWTN0lpIuvaS5fNwmpHScA5Lo10rW052hEoz52ehpHaN Wo2WHoEYAUpDS/dzImMAWTx7ZZwnWxi2IMn6Rqx0LVc+c8KytSDKutcNsFesrHkV mdVbDWGnF/ZjX3kpAsKxekPF5ho1g8Gn -----END CERTIFICATE-----Generated at Thu Jul 3 13:35:11 2025 by rpki-client