$ rpki-client -vvf rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.mft File: 3Bh_yEFs5bNHuvIho2E6O0eCjog.mft (raw, json) Hash identifier: X35RI7l+yrv7Ba+W0P8mpCa/ZcfdWVYB1+MO5JlzI3E= Subject key identifier: 10:41:F0:34:2C:1D:60:8B:08:34:FA:C5:AB:8D:E9:F2:6E:05:7C:0E Authority key identifier: DC:18:7F:C8:41:6C:E5:B3:47:BA:F2:21:A3:61:3A:3B:47:82:8E:88 Certificate issuer: /CN=A91717D1/serialNumber=DC187FC8416CE5B347BAF221A3613A3B47828E88 Certificate serial: 0EDD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bh_yEFs5bNHuvIho2E6O0eCjog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.mft Manifest number: 0ED1 Signing time: Wed 14 May 2025 17:47:55 +0000 Manifest this update: Wed 14 May 2025 17:47:55 +0000 Manifest next update: Wed 21 May 2025 17:47:55 +0000 Files and hashes: 1: 3Bh_yEFs5bNHuvIho2E6O0eCjog.crl (hash: e2aiuAu4z9a8OD6QS3kZdXrQyrG7BDgWUHz8amt1fKo=) 2: 085B4576C35711EC9F5ADC3DC4F9AE02.roa (hash: 8mq0TUcgdgyOArIdFl1Mn7GOTMSpOYLbH39QuqlMzQM=) 3: 0963FDF0C35711EC9F5ADC3DC4F9AE02.roa (hash: ZC6B1slbJ+NBUR+XleTIQLrCjIWpOaVIltQbveTaTb8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.crl rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bh_yEFs5bNHuvIho2E6O0eCjog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 17:47:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3805 (0xedd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91717D1, serialNumber=DC187FC8416CE5B347BAF221A3613A3B47828E88 Validity Not Before: May 14 17:47:55 2025 GMT Not After : May 21 17:47:55 2025 GMT Subject: CN=6824d74b-717b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:49:15:dd:26:d2:d6:eb:c5:78:e7:ec:2f:7c: 2e:f9:61:d5:ce:9f:26:0a:4b:e7:f6:30:7a:ff:b6: 44:77:fa:d1:c9:c2:89:54:24:91:e6:bd:72:3d:88: 1a:35:ce:05:52:be:bc:6c:58:ec:7a:0b:c8:b1:86: 34:ba:f1:a6:e0:59:ae:8f:0e:5f:7c:02:84:56:a9: 94:57:d6:62:1e:df:09:e9:98:dc:0a:28:e7:4d:55: 90:35:09:a1:72:cf:7d:0c:b3:79:dc:bb:ca:ef:82: fa:ea:df:7c:53:6e:06:1d:d9:c0:2e:fa:10:97:81: 1c:d3:b4:e9:8d:fd:7c:b9:d2:5e:4c:9b:90:87:f5: 5d:ab:db:80:64:be:79:d1:d1:19:0a:c3:0d:44:f1: bc:c7:a3:4d:b1:ec:ce:37:67:6e:1a:68:b5:4a:53: 35:7e:f1:be:29:8f:0c:f8:f8:73:f7:2e:f9:a4:ea: 3d:da:e5:74:e7:1d:df:d8:3c:1e:cc:f3:57:c7:27: 9d:04:8e:e9:87:7c:f6:4e:8b:10:77:98:e7:0e:13: 7c:8f:b9:c2:59:55:b3:d8:9a:1c:8b:e6:d7:9c:2a: 1f:ec:ab:18:a6:47:cf:e2:04:db:6f:2c:97:8d:ff: c2:af:dd:e5:c5:b4:6c:56:11:58:60:57:07:68:33: 94:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:41:F0:34:2C:1D:60:8B:08:34:FA:C5:AB:8D:E9:F2:6E:05:7C:0E X509v3 Authority Key Identifier: keyid:DC:18:7F:C8:41:6C:E5:B3:47:BA:F2:21:A3:61:3A:3B:47:82:8E:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bh_yEFs5bNHuvIho2E6O0eCjog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:c8:55:44:20:98:75:97:90:96:35:9f:da:40:73:d9:96:f5: 92:7c:8f:8f:d0:97:a9:d8:92:c2:cd:58:40:0d:4f:05:7a:48: fe:7c:72:eb:a7:52:94:e8:28:ff:f6:72:84:70:d9:df:40:91: 0b:5c:0c:c6:cb:cf:a2:24:a7:5a:d8:d4:3c:99:3f:8e:89:e4: 39:34:ed:a3:5e:f0:a1:b8:b5:02:39:8c:f0:9f:9c:94:92:42: da:86:1e:21:1f:4f:a0:05:99:e8:23:ef:d7:26:61:14:58:81: 06:89:eb:e1:de:15:0c:03:05:3b:3f:6d:a2:8f:fa:b0:f5:62: 84:51:e1:8f:8c:01:b8:e6:41:67:fd:b3:04:d8:0c:0b:c9:c9: 90:c1:8d:40:91:e2:eb:bc:04:8c:94:81:35:25:9c:95:08:58: 67:86:f0:24:d1:1a:f4:19:d4:83:39:a8:e9:af:dc:98:e2:e3: de:da:db:10:80:20:57:da:73:a2:bc:eb:5d:77:aa:75:56:3c: 56:71:80:7e:cc:a1:aa:3f:ad:75:87:1e:9f:e8:f3:b8:98:bd: 99:8f:70:a3:df:d3:2e:86:87:1d:f9:56:82:fa:b5:2d:56:bd: 9c:87:fe:ac:3d:be:6c:82:8e:90:b8:bf:62:37:14:06:df:61: 1e:92:39:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDt0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE3RDExMTAvBgNVBAUTKERDMTg3RkM4NDE2Q0U1QjM0N0JBRjIyMUEzNjEzQTNC NDc4MjhFODgwHhcNMjUwNTE0MTc0NzU1WhcNMjUwNTIxMTc0NzU1WjAYMRYwFAYD VQQDEw02ODI0ZDc0Yi03MTdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA50kV3SbS1uvFeOfsL3wu+WHVzp8mCkvn9jB6/7ZEd/rRycKJVCSR5r1yPYga Nc4FUr68bFjsegvIsYY0uvGm4Fmujw5ffAKEVqmUV9ZiHt8J6ZjcCijnTVWQNQmh cs99DLN53LvK74L66t98U24GHdnALvoQl4Ec07Tpjf18udJeTJuQh/Vdq9uAZL55 0dEZCsMNRPG8x6NNsezON2duGmi1SlM1fvG+KY8M+Phz9y75pOo92uV05x3f2Dwe zPNXxyedBI7ph3z2TosQd5jnDhN8j7nCWVWz2Joci+bXnCof7KsYpkfP4gTbbyyX jf/Cr93lxbRsVhFYYFcHaDOURQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBBB8DQs HWCLCDT6xauN6fJuBXwOMB8GA1UdIwQYMBaAFNwYf8hBbOWzR7ryIaNhOjtHgo6I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTdEMS85QTlCNDhBMjgy QTMxMUU5OUU1ODIzODRDNEY5QUUwMi8zQmhfeUVGczViTkh1dklobzJFNk8wZUNq b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNCaF95RUZzNWJOSHV2SWhvMkU2TzBlQ2pvZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTdEMS85QTlCNDhBMjgyQTMxMUU5OUU1ODIzODRDNEY5QUUwMi8zQmhfeUVGczVi Tkh1dklobzJFNk8wZUNqb2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhyFVEIJh1l5CWNZ/aQHPZlvWSfI+P0Jep2JLCzVhADU8Fekj+fHLr p1KU6Cj/9nKEcNnfQJELXAzGy8+iJKda2NQ8mT+OieQ5NO2jXvChuLUCOYzwn5yU kkLahh4hH0+gBZnoI+/XJmEUWIEGievh3hUMAwU7P22ij/qw9WKEUeGPjAG45kFn /bME2AwLycmQwY1AkeLrvASMlIE1JZyVCFhnhvAk0Rr0GdSDOajpr9yY4uPe2tsQ gCBX2nOivOtdd6p1VjxWcYB+zKGqP611hx6f6PO4mL2Zj3Cj39Muhocd+VaC+rUt Vr2ch/6sPb5sgo6QuL9iNxQG32Eekjkh -----END CERTIFICATE-----Generated at Thu May 15 13:18:59 2025 by rpki-client