$ rpki-client -vvf rpki.apnic.net/member_repository/A917C11A/C086EA985A3911EB8E59C266C4F9AE02/3oFz59KP6tHsOpLJdljacyhQk-U.mft File: 3oFz59KP6tHsOpLJdljacyhQk-U.mft (raw, json) Hash identifier: gHGU85IlSoWBKeCO+G/nv1SpesJkZtfIo74FdQbEtdw= Subject key identifier: 93:9F:BD:6C:25:A3:6B:37:AA:ED:DA:8D:E2:D0:B5:ED:A1:F9:68:E1 Authority key identifier: DE:81:73:E7:D2:8F:EA:D1:EC:3A:92:C9:76:58:DA:73:28:50:93:E5 Certificate issuer: /CN=A917C11A/serialNumber=DE8173E7D28FEAD1EC3A92C97658DA73285093E5 Certificate serial: 06C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oFz59KP6tHsOpLJdljacyhQk-U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C11A/C086EA985A3911EB8E59C266C4F9AE02/3oFz59KP6tHsOpLJdljacyhQk-U.mft Manifest number: 06BD Signing time: Wed 14 May 2025 22:09:56 +0000 Manifest this update: Wed 14 May 2025 22:09:55 +0000 Manifest next update: Wed 21 May 2025 22:09:55 +0000 Files and hashes: 1: 3oFz59KP6tHsOpLJdljacyhQk-U.crl (hash: ++PCHvhaJG3iGKKVyFiMJRkkIqqLHQtXthz9pXupKr4=) 2: 4002E4BA5A3B11EBA4020D68C4F9AE02.roa (hash: owZNdsc75aBAEeMxk8dZOIuYb/+Ukc36obf7oLhTJGg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C11A/C086EA985A3911EB8E59C266C4F9AE02/3oFz59KP6tHsOpLJdljacyhQk-U.crl rsync://rpki.apnic.net/member_repository/A917C11A/C086EA985A3911EB8E59C266C4F9AE02/3oFz59KP6tHsOpLJdljacyhQk-U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oFz59KP6tHsOpLJdljacyhQk-U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 22:09:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1731 (0x6c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C11A, serialNumber=DE8173E7D28FEAD1EC3A92C97658DA73285093E5 Validity Not Before: May 14 22:09:55 2025 GMT Not After : May 21 22:09:55 2025 GMT Subject: CN=682514b3-6215 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:65:72:aa:22:32:11:04:de:2f:dd:74:ac:19: d7:84:23:a6:02:d7:8d:78:07:23:f0:65:0e:60:fe: f2:c8:e5:a2:c8:40:ff:a1:96:4a:c7:36:d5:de:48: c5:51:56:5b:58:d0:07:92:f5:07:57:6f:41:03:ff: c7:6a:23:f9:2d:99:3d:6c:c4:f4:3b:74:74:de:a1: 26:c2:c3:b3:08:d2:cc:0c:20:e3:39:29:6b:70:1c: 4d:90:08:59:50:53:44:61:57:a7:d0:4d:63:2c:ba: 1d:e1:b0:b2:41:ca:fd:c8:e5:2d:91:48:a1:4b:ec: 5f:a3:2b:be:af:5e:2c:4a:5a:ad:f8:78:f5:68:97: c5:39:6c:84:35:12:d0:9f:89:e3:a2:6c:f1:cb:6f: 8a:1f:b7:8d:17:9a:46:43:a1:54:24:f3:aa:2f:58: d7:b1:59:4d:8d:d2:30:bd:79:e4:4a:40:48:62:08: 02:a5:fd:07:82:5d:30:fd:2f:61:ab:46:a2:85:7b: e0:57:a3:fb:5e:a6:64:9f:46:cf:16:6e:7f:ad:1a: a8:e2:89:a8:f6:d7:cf:5b:b6:c7:c0:35:c8:43:37: 26:b0:f1:61:6e:81:36:7d:74:39:e4:90:de:b0:59: c3:73:8a:6e:77:cd:38:59:f2:0b:e7:63:c1:cb:54: c6:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:9F:BD:6C:25:A3:6B:37:AA:ED:DA:8D:E2:D0:B5:ED:A1:F9:68:E1 X509v3 Authority Key Identifier: keyid:DE:81:73:E7:D2:8F:EA:D1:EC:3A:92:C9:76:58:DA:73:28:50:93:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C11A/C086EA985A3911EB8E59C266C4F9AE02/3oFz59KP6tHsOpLJdljacyhQk-U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oFz59KP6tHsOpLJdljacyhQk-U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C11A/C086EA985A3911EB8E59C266C4F9AE02/3oFz59KP6tHsOpLJdljacyhQk-U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:0f:15:1a:b7:aa:4e:df:96:3b:b7:f8:33:68:17:7d:f0:cf: 83:cb:01:41:01:8d:3d:47:c1:76:80:59:4f:b6:e9:ea:79:2a: 20:f7:a3:07:89:9d:c4:2e:eb:e9:d4:2f:ca:01:51:2b:f1:a1: 36:e5:8a:bb:90:b9:28:e0:f5:3e:78:9b:ca:f3:19:8e:28:92: 07:40:40:cb:85:5b:ee:91:b5:6b:51:b3:ce:19:a6:62:e6:99: 34:9d:85:a1:e6:52:e3:0e:8d:d6:41:cb:28:27:06:3f:65:86: 00:ed:1b:ed:c4:c6:06:b5:f2:51:2e:69:3d:6d:f6:79:c6:02: 18:cf:1e:bd:43:f6:c5:6f:4f:34:f7:d6:31:15:65:be:bd:02: e6:5f:9e:c5:72:00:7f:66:4b:88:63:58:d2:96:af:bb:60:b2: 00:2d:dc:f7:23:ea:4c:aa:d0:92:7e:e4:f2:39:51:58:52:63: a3:54:03:b5:df:98:ae:bb:4d:2a:e8:97:80:e7:51:73:02:ea: 63:f9:e6:31:4d:7d:91:f9:dc:6b:7a:d2:ee:1c:f2:cd:40:17: 22:60:2c:d1:e1:8b:ca:a2:84:8a:0e:cb:f8:de:8a:b2:3c:b3: c4:fd:f9:aa:84:7c:12:5c:c0:26:24:59:6b:fe:5f:bf:5d:ab: a7:b8:b3:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBsMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0MxMUExMTAvBgNVBAUTKERFODE3M0U3RDI4RkVBRDFFQzNBOTJDOTc2NThEQTcz Mjg1MDkzRTUwHhcNMjUwNTE0MjIwOTU1WhcNMjUwNTIxMjIwOTU1WjAYMRYwFAYD VQQDEw02ODI1MTRiMy02MjE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwGVyqiIyEQTeL910rBnXhCOmAteNeAcj8GUOYP7yyOWiyED/oZZKxzbV3kjF UVZbWNAHkvUHV29BA//HaiP5LZk9bMT0O3R03qEmwsOzCNLMDCDjOSlrcBxNkAhZ UFNEYVen0E1jLLod4bCyQcr9yOUtkUihS+xfoyu+r14sSlqt+Hj1aJfFOWyENRLQ n4njomzxy2+KH7eNF5pGQ6FUJPOqL1jXsVlNjdIwvXnkSkBIYggCpf0Hgl0w/S9h q0aihXvgV6P7XqZkn0bPFm5/rRqo4omo9tfPW7bHwDXIQzcmsPFhboE2fXQ55JDe sFnDc4pud804WfIL52PBy1TG+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJOfvWwl o2s3qu3ajeLQte2h+WjhMB8GA1UdIwQYMBaAFN6Bc+fSj+rR7DqSyXZY2nMoUJPl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzExQS9DMDg2RUE5ODVB MzkxMUVCOEU1OUMyNjZDNEY5QUUwMi8zb0Z6NTlLUDZ0SHNPcExKZGxqYWN5aFFr LVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNvRno1OUtQNnRIc09wTEpkbGphY3loUWstVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzExQS9DMDg2RUE5ODVBMzkxMUVCOEU1OUMyNjZDNEY5QUUwMi8zb0Z6NTlLUDZ0 SHNPcExKZGxqYWN5aFFrLVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJDxUat6pO35Y7t/gzaBd98M+DywFBAY09R8F2gFlPtunqeSog96MH iZ3ELuvp1C/KAVEr8aE25Yq7kLko4PU+eJvK8xmOKJIHQEDLhVvukbVrUbPOGaZi 5pk0nYWh5lLjDo3WQcsoJwY/ZYYA7RvtxMYGtfJRLmk9bfZ5xgIYzx69Q/bFb080 99YxFWW+vQLmX57FcgB/ZkuIY1jSlq+7YLIALdz3I+pMqtCSfuTyOVFYUmOjVAO1 35iuu00q6JeA51FzAupj+eYxTX2R+dxretLuHPLNQBciYCzR4YvKooSKDsv43oqy PLPE/fmqhHwSXMAmJFlr/l+/XaunuLPx -----END CERTIFICATE-----Generated at Fri May 16 00:32:56 2025 by rpki-client