$ rpki-client -vvf rpki.apnic.net/member_repository/A91813ED/677AAA3C5F3711EFBF369E58C4F9AE02/3yS01RxnhB3WAN0qYXhrzpiHhmc.mft File: 3yS01RxnhB3WAN0qYXhrzpiHhmc.mft (raw, json) Hash identifier: yZJzD7OlFJssyN/lRtkuDEj14W9dZPq7U7jaoG1GE+U= Subject key identifier: 10:0B:96:E2:C1:B1:A5:DA:A7:9A:EE:63:0B:C4:02:37:0B:22:CD:43 Authority key identifier: DF:24:B4:D5:1C:67:84:1D:D6:00:DD:2A:61:78:6B:CE:98:87:86:67 Certificate issuer: /CN=A91813ED/serialNumber=DF24B4D51C67841DD600DD2A61786BCE98878667 Certificate serial: A3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3yS01RxnhB3WAN0qYXhrzpiHhmc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91813ED/677AAA3C5F3711EFBF369E58C4F9AE02/3yS01RxnhB3WAN0qYXhrzpiHhmc.mft Manifest number: A2 Signing time: Thu 03 Jul 2025 06:24:10 +0000 Manifest this update: Thu 03 Jul 2025 06:24:10 +0000 Manifest next update: Thu 10 Jul 2025 06:24:10 +0000 Files and hashes: 1: 3yS01RxnhB3WAN0qYXhrzpiHhmc.crl (hash: g/2lGi1dLPvVBROy0dBkzws17plpw5qmM3bJUSHOC08=) 2: B21985725F3711EFA108CA0CC4F9AE02.roa (hash: qWDPCZUNoXxLfCTQ51artmgIDTxez9EecMCL2qvkzMg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91813ED/677AAA3C5F3711EFBF369E58C4F9AE02/3yS01RxnhB3WAN0qYXhrzpiHhmc.crl rsync://rpki.apnic.net/member_repository/A91813ED/677AAA3C5F3711EFBF369E58C4F9AE02/3yS01RxnhB3WAN0qYXhrzpiHhmc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3yS01RxnhB3WAN0qYXhrzpiHhmc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 163 (0xa3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91813ED, serialNumber=DF24B4D51C67841DD600DD2A61786BCE98878667 Validity Not Before: Jul 3 06:24:10 2025 GMT Not After : Jul 10 06:24:10 2025 GMT Subject: CN=6866220a-2748 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ff:2f:0e:eb:70:1f:1f:d4:0e:23:39:24:57: 98:bb:c5:ef:36:e3:c0:80:29:43:e2:c4:7e:e3:25: 70:f0:74:48:55:16:8c:5c:d2:43:53:62:e1:33:4e: 79:52:90:ba:f9:4f:b7:2a:59:3f:03:81:e7:eb:aa: 5d:ca:6c:b4:a8:ff:90:e7:d6:46:05:bf:65:55:5b: d7:71:4c:23:67:fd:9b:f1:ac:0d:67:71:39:f1:24: aa:46:c0:b6:8a:1d:d6:5c:ef:d8:e1:fc:c1:ae:a6: d7:7c:af:24:98:8a:70:71:66:b9:a8:6d:a8:23:5f: 5d:6c:47:fc:cc:53:e0:38:fb:18:16:06:2a:f7:25: c8:5a:3e:6d:c1:7f:96:08:ab:3c:99:4f:ae:52:ff: b3:d6:ef:e6:ef:e5:44:70:cf:8b:42:ec:25:87:e9: b5:d7:19:0a:98:f9:6a:fd:6e:cc:f6:c9:e0:06:61: 94:f8:f1:70:36:33:07:c0:e8:2c:e6:87:1b:fc:29: 3f:00:cd:af:3f:b9:ce:87:47:fa:a1:d4:7d:c8:29: 10:8e:51:d0:48:a7:67:d8:c9:0b:c2:b5:bb:27:3e: 55:a0:ef:47:49:16:6a:a1:00:18:83:38:57:32:0e: 30:4e:cf:b4:a4:38:31:d2:48:c6:6b:58:0a:1a:d4: 84:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:0B:96:E2:C1:B1:A5:DA:A7:9A:EE:63:0B:C4:02:37:0B:22:CD:43 X509v3 Authority Key Identifier: keyid:DF:24:B4:D5:1C:67:84:1D:D6:00:DD:2A:61:78:6B:CE:98:87:86:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91813ED/677AAA3C5F3711EFBF369E58C4F9AE02/3yS01RxnhB3WAN0qYXhrzpiHhmc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3yS01RxnhB3WAN0qYXhrzpiHhmc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91813ED/677AAA3C5F3711EFBF369E58C4F9AE02/3yS01RxnhB3WAN0qYXhrzpiHhmc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:24:5c:e5:d9:bd:65:56:23:6b:f8:ff:72:63:3d:6b:0a:32: 82:2d:54:56:5a:21:c1:51:fb:d8:e5:8d:fa:26:f9:22:54:8e: e2:f7:45:39:05:d1:94:a6:5e:3f:43:ec:46:f4:55:f1:d5:5a: 6d:5f:f8:08:d2:b7:e3:46:89:8b:19:f2:7a:9f:79:16:98:3d: ae:a4:3e:59:af:56:b7:18:96:73:a3:f3:09:9c:69:70:5a:c7: bc:58:eb:a5:cc:96:f1:40:c1:b2:d9:96:cd:63:16:7e:60:80: db:d3:d0:50:66:b8:0b:2a:aa:35:8a:20:38:19:99:67:b9:9d: 18:49:d5:4f:7f:b3:64:10:bc:0e:ad:05:9f:8f:5f:0d:e5:3c: 1d:3c:f2:dd:66:73:a2:7e:9b:94:aa:fb:21:15:9e:fb:9e:cf: 78:cc:28:fd:8c:e4:8b:ba:de:e1:66:40:f0:e5:85:57:8e:0d: 60:9e:ed:f7:c8:ce:c3:3b:6c:a8:f8:8b:cd:e6:8d:86:ba:6c: 85:bf:38:f7:3f:4f:66:f4:0c:9f:26:18:a7:ea:8e:88:7f:1b: 63:ef:ab:68:31:de:35:9c:22:72:52:d3:fd:3f:b2:e1:08:fa: e6:76:e1:b2:3d:ea:6f:19:8b:d5:ad:87:85:86:d7:ff:a8:6d: 6f:b3:48:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODEzRUQxMTAvBgNVBAUTKERGMjRCNEQ1MUM2Nzg0MURENjAwREQyQTYxNzg2QkNF OTg4Nzg2NjcwHhcNMjUwNzAzMDYyNDEwWhcNMjUwNzEwMDYyNDEwWjAYMRYwFAYD VQQDEw02ODY2MjIwYS0yNzQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu/8vDutwHx/UDiM5JFeYu8XvNuPAgClD4sR+4yVw8HRIVRaMXNJDU2LhM055 UpC6+U+3Klk/A4Hn66pdymy0qP+Q59ZGBb9lVVvXcUwjZ/2b8awNZ3E58SSqRsC2 ih3WXO/Y4fzBrqbXfK8kmIpwcWa5qG2oI19dbEf8zFPgOPsYFgYq9yXIWj5twX+W CKs8mU+uUv+z1u/m7+VEcM+LQuwlh+m11xkKmPlq/W7M9sngBmGU+PFwNjMHwOgs 5ocb/Ck/AM2vP7nOh0f6odR9yCkQjlHQSKdn2MkLwrW7Jz5VoO9HSRZqoQAYgzhX Mg4wTs+0pDgx0kjGa1gKGtSE1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBALluLB saXap5ruYwvEAjcLIs1DMB8GA1UdIwQYMBaAFN8ktNUcZ4Qd1gDdKmF4a86Yh4Zn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTNFRC82NzdBQUEzQzVG MzcxMUVGQkYzNjlFNThDNEY5QUUwMi8zeVMwMVJ4bmhCM1dBTjBxWVhocnpwaUho bWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzN5UzAxUnhuaEIzV0FOMHFZWGhyenBpSGhtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MTNFRC82NzdBQUEzQzVGMzcxMUVGQkYzNjlFNThDNEY5QUUwMi8zeVMwMVJ4bmhC M1dBTjBxWVhocnpwaUhobWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKJFzl2b1lViNr+P9yYz1rCjKCLVRWWiHBUfvY5Y36JvkiVI7i90U5 BdGUpl4/Q+xG9FXx1VptX/gI0rfjRomLGfJ6n3kWmD2upD5Zr1a3GJZzo/MJnGlw Wse8WOulzJbxQMGy2ZbNYxZ+YIDb09BQZrgLKqo1iiA4GZlnuZ0YSdVPf7NkELwO rQWfj18N5TwdPPLdZnOifpuUqvshFZ77ns94zCj9jOSLut7hZkDw5YVXjg1gnu33 yM7DO2yo+IvN5o2GumyFvzj3P09m9AyfJhin6o6Ifxtj76toMd41nCJyUtP9P7Lh CPrmduGyPepvGYvVrYeFhtf/qG1vs0gz -----END CERTIFICATE-----Generated at Thu Jul 3 23:27:55 2025 by rpki-client