$ rpki-client -vvf rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft File: S3IqOmeTvzLJvPUuTncuCm86Yxk.mft (raw, json) Hash identifier: EEEWV6iVOJU5e4K0/VLn3b5moP83m3KsjV3peGZo1Xo= Subject key identifier: AF:37:A6:CF:06:41:5F:93:11:4D:04:E1:56:4E:C1:1A:DB:F1:56:50 Authority key identifier: 4B:72:2A:3A:67:93:BF:32:C9:BC:F5:2E:4E:77:2E:0A:6F:3A:63:19 Certificate issuer: /CN=A917A67E/serialNumber=4B722A3A6793BF32C9BCF52E4E772E0A6F3A6319 Certificate serial: 017E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft Manifest number: 017A Signing time: Thu 03 Jul 2025 03:50:23 +0000 Manifest this update: Thu 03 Jul 2025 03:50:23 +0000 Manifest next update: Thu 10 Jul 2025 03:50:23 +0000 Files and hashes: 1: S3IqOmeTvzLJvPUuTncuCm86Yxk.crl (hash: jqZXw0vcWo1SXGfbE62+WKBKXKcIf9iKib0rdkbjH4g=) 2: E3901F981BD711EEB9597921C4F9AE02.roa (hash: sLVF2uLBYBc6LDSXH2VUz3ksriL+t2pMsQjafYLst9Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.crl rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 382 (0x17e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A67E, serialNumber=4B722A3A6793BF32C9BCF52E4E772E0A6F3A6319 Validity Not Before: Jul 3 03:50:23 2025 GMT Not After : Jul 10 03:50:23 2025 GMT Subject: CN=6865fdff-1f4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:6b:63:b8:2d:fe:9d:5e:55:66:d4:e8:f4:28: fd:2d:2f:ec:6e:c7:f2:3f:ed:27:a1:be:f4:55:e5: af:4f:89:b7:79:78:14:93:a5:1a:45:c1:fa:d3:2b: ca:98:c2:bf:63:7b:60:79:20:58:f9:41:cd:d8:49: f9:fc:0c:0e:b3:1d:af:b0:11:c4:a5:d4:d7:1b:40: 12:8b:e2:fe:6b:dd:aa:c1:43:f5:f5:2f:ba:96:26: 0e:6b:20:8c:94:0d:ef:88:e0:e2:66:1d:d2:8b:28: 72:4b:fb:9d:35:b5:60:e2:b3:68:88:71:99:73:5c: 73:d6:d8:08:21:e1:e7:92:09:28:fb:9a:6d:ab:fd: 21:69:0a:ff:9f:9c:7f:3c:cf:6f:0f:31:90:df:43: 48:1b:32:13:89:bd:62:d0:c5:f8:19:7c:b5:c4:99: 99:da:40:f7:61:39:e3:15:13:02:c6:8f:53:4a:3f: bc:e3:8d:d6:1c:b2:6f:14:58:d1:6d:f6:ac:8f:ee: 1d:66:c5:d2:e2:36:8e:49:b7:33:6f:ea:60:29:7c: 15:8b:ba:7a:25:e6:81:f9:c3:85:7b:23:b8:85:c0: 11:3f:aa:7e:4a:5a:68:db:34:51:9e:06:7c:4a:92: b3:69:33:2a:64:f3:2b:54:39:bf:40:c6:ff:f3:6b: c4:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:37:A6:CF:06:41:5F:93:11:4D:04:E1:56:4E:C1:1A:DB:F1:56:50 X509v3 Authority Key Identifier: keyid:4B:72:2A:3A:67:93:BF:32:C9:BC:F5:2E:4E:77:2E:0A:6F:3A:63:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:2e:6d:a2:89:1e:5a:dd:23:6b:8a:14:fa:b9:80:47:89:25: cb:c1:fd:38:90:d4:df:8d:fa:fe:66:46:42:9a:45:e0:f7:b3: fa:1e:cc:09:63:e9:43:3d:ae:7d:21:c2:27:28:05:d1:f3:34: 63:b3:84:cd:02:39:04:b0:6e:9f:95:2c:76:d2:d7:2a:91:57: d6:7c:af:db:d8:83:5f:f1:0b:4f:59:70:7c:f9:3d:36:d2:da: 44:d3:bd:a2:7f:e7:f5:9a:fb:49:23:2d:bb:9d:3c:36:2b:dc: f7:8f:df:bc:77:2d:24:d5:1d:b1:c0:45:91:57:18:e5:61:35: a5:76:ad:be:b7:a8:d3:82:fc:67:ff:51:1c:3c:1a:5b:38:60: 13:1d:81:a4:df:f2:0a:8e:2f:46:90:d8:cb:96:09:df:99:77: 8b:75:31:2e:91:27:a3:f4:71:88:b9:01:63:3d:51:4d:b5:7e: d4:cc:1d:44:a2:ab:98:89:ed:c6:cd:82:bc:af:84:10:4a:6e: b4:d2:c5:ce:6f:7d:25:11:a7:22:ad:98:26:d8:cb:78:cd:cd: ef:26:eb:90:b4:af:d0:fc:0b:af:76:0e:73:a1:ff:5a:44:33: 71:e1:6b:67:69:25:26:80:9b:d4:16:11:88:c7:76:65:f6:a0: c6:45:62:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAX4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E2N0UxMTAvBgNVBAUTKDRCNzIyQTNBNjc5M0JGMzJDOUJDRjUyRTRFNzcyRTBB NkYzQTYzMTkwHhcNMjUwNzAzMDM1MDIzWhcNMjUwNzEwMDM1MDIzWjAYMRYwFAYD VQQDEw02ODY1ZmRmZi0xZjRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyWtjuC3+nV5VZtTo9Cj9LS/sbsfyP+0nob70VeWvT4m3eXgUk6UaRcH60yvK mMK/Y3tgeSBY+UHN2En5/AwOsx2vsBHEpdTXG0ASi+L+a92qwUP19S+6liYOayCM lA3viODiZh3SiyhyS/udNbVg4rNoiHGZc1xz1tgIIeHnkgko+5ptq/0haQr/n5x/ PM9vDzGQ30NIGzITib1i0MX4GXy1xJmZ2kD3YTnjFRMCxo9TSj+8443WHLJvFFjR bfasj+4dZsXS4jaOSbczb+pgKXwVi7p6JeaB+cOFeyO4hcARP6p+Slpo2zRRngZ8 SpKzaTMqZPMrVDm/QMb/82vE7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK83ps8G QV+TEU0E4VZOwRrb8VZQMB8GA1UdIwQYMBaAFEtyKjpnk78yybz1Lk53LgpvOmMZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTY3RS82N0I0Q0I4NDFC RDMxMUVFOTY1RkVGMzhDNEY5QUUwMi9TM0lxT21lVHZ6TEp2UFV1VG5jdUNtODZZ eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1MzSXFPbWVUdnpMSnZQVXVUbmN1Q204Nll4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTY3RS82N0I0Q0I4NDFCRDMxMUVFOTY1RkVGMzhDNEY5QUUwMi9TM0lxT21lVHZ6 TEp2UFV1VG5jdUNtODZZeGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5Lm2iiR5a3SNrihT6uYBHiSXLwf04kNTfjfr+ZkZCmkXg97P6HswJ Y+lDPa59IcInKAXR8zRjs4TNAjkEsG6flSx20tcqkVfWfK/b2INf8QtPWXB8+T02 0tpE072if+f1mvtJIy27nTw2K9z3j9+8dy0k1R2xwEWRVxjlYTWldq2+t6jTgvxn /1EcPBpbOGATHYGk3/IKji9GkNjLlgnfmXeLdTEukSej9HGIuQFjPVFNtX7UzB1E oquYie3GzYK8r4QQSm600sXOb30lEacirZgm2Mt4zc3vJuuQtK/Q/Auvdg5zof9a RDNx4WtnaSUmgJvUFhGIx3Zl9qDGRWK0 -----END CERTIFICATE-----Generated at Fri Jul 4 06:52:46 2025 by rpki-client