$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.mft File: Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.mft (raw, json) Hash identifier: +Le7GxUx2QLIBX10PwAiCkP7FSSQLVwkn8JQvGwHdQI= Subject key identifier: 38:E5:82:33:BA:0A:9B:49:C0:53:23:15:E6:C5:4D:FC:E7:99:19:60 Authority key identifier: 3D:BD:D7:ED:41:24:80:E9:35:5C:27:F3:C1:13:B5:64:0D:31:86:B3 Certificate issuer: /CN=A91A3399/serialNumber=3DBDD7ED412480E9355C27F3C113B5640D3186B3 Certificate serial: 015D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.mft Manifest number: 0154 Signing time: Thu 03 Jul 2025 04:19:48 +0000 Manifest this update: Thu 03 Jul 2025 04:19:48 +0000 Manifest next update: Thu 10 Jul 2025 04:19:48 +0000 Files and hashes: 1: Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.crl (hash: bxCZXWPN3hKEHZBq6cYMKcQ9O/UprDk6hxO44a7O068=) 2: 553596D65DB511EE841C151FC4F9AE02.roa (hash: 5aNVVXrrk5+fzIwBo8UDYAZxVOdmHrz5HqTDIZHkN8o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.crl rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 349 (0x15d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3399, serialNumber=3DBDD7ED412480E9355C27F3C113B5640D3186B3 Validity Not Before: Jul 3 04:19:48 2025 GMT Not After : Jul 10 04:19:48 2025 GMT Subject: CN=686604e4-a0bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:ce:72:67:6a:33:2b:4e:78:3b:14:3c:be:ab: ed:3c:ef:1f:95:d9:a8:fa:1d:34:01:73:ed:1a:65: b7:55:11:0b:b5:dc:f7:a4:f8:40:96:a6:e8:2a:fc: ab:af:30:f0:74:02:bf:01:38:d3:5e:57:94:21:a0: ff:c9:e7:89:c3:95:5f:6a:76:18:18:b7:b4:e9:a6: 5c:ed:88:90:a1:59:18:fe:43:f0:a0:3a:4b:f4:2f: bc:22:5a:62:b7:7a:1d:8f:e5:7b:36:95:7d:a1:6e: e7:63:5e:54:34:b0:9a:82:6a:9e:47:f6:4f:f6:6b: a1:00:33:58:7a:e5:92:28:ef:63:73:27:03:1c:38: 33:b7:69:79:8c:44:67:cc:88:6d:82:03:4d:0b:89: 4f:09:29:6d:4d:d4:65:51:9d:90:3d:d0:34:61:89: e2:37:b1:7c:70:54:5b:b3:eb:f6:e2:81:7a:44:fb: bf:ba:08:c6:80:b1:7a:32:bf:86:85:9c:88:c5:f4: e1:64:ba:36:5a:5e:ab:7b:22:ac:ff:38:61:f7:dc: 56:2d:2d:63:12:15:e9:23:d5:d9:06:17:fb:39:e4: f3:c2:28:5e:63:91:32:5c:8d:e7:a0:9a:9b:a9:76: cd:53:13:75:58:20:99:35:81:9c:d5:d0:db:27:60: 7b:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:E5:82:33:BA:0A:9B:49:C0:53:23:15:E6:C5:4D:FC:E7:99:19:60 X509v3 Authority Key Identifier: keyid:3D:BD:D7:ED:41:24:80:E9:35:5C:27:F3:C1:13:B5:64:0D:31:86:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:12:14:22:7a:7e:fe:4c:6b:18:1b:a3:47:6a:b8:21:3c:d4: 94:19:8a:77:8d:f0:92:9d:09:f2:10:99:5b:99:0e:60:3d:6d: 49:23:ed:2c:86:48:5a:b2:4a:bc:3e:c0:4c:73:e4:6e:10:96: 47:12:cb:59:6a:31:a1:84:c0:2b:f2:85:c2:9d:37:38:6d:55: ed:07:55:35:51:20:e1:8e:ab:ae:87:0f:35:81:70:df:d1:d0: 1b:47:57:03:ec:28:34:a9:42:52:ba:9c:28:2c:62:8f:ae:58: 95:dd:59:da:f8:0d:53:e9:61:c3:b7:9f:85:b5:df:f8:e0:9f: 2d:ff:3a:82:9c:64:f9:5b:ca:49:2a:1d:e1:ae:04:fb:aa:b2: c6:5f:65:9d:bf:a5:5f:9c:ee:ad:d0:ba:96:28:84:e8:b7:ac: 3b:33:6d:0f:30:07:46:fb:72:45:76:3e:df:2b:74:28:3d:16: 1c:ea:a3:d3:6e:c0:02:65:33:1b:fb:3e:16:4e:16:2e:c4:a9: 7c:2c:ff:b2:b3:c1:32:97:3d:e9:53:e3:ec:e2:0b:66:c9:55: 36:06:ec:41:53:7c:a4:db:b9:3f:6a:ac:35:00:18:a5:fb:aa: 0f:99:2b:b5:f3:67:78:76:5f:37:15:51:f6:8a:b9:c4:8f:28: 36:e1:13:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAV0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTMzOTkxMTAvBgNVBAUTKDNEQkREN0VENDEyNDgwRTkzNTVDMjdGM0MxMTNCNTY0 MEQzMTg2QjMwHhcNMjUwNzAzMDQxOTQ4WhcNMjUwNzEwMDQxOTQ4WjAYMRYwFAYD VQQDEw02ODY2MDRlNC1hMGJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz85yZ2ozK054OxQ8vqvtPO8fldmo+h00AXPtGmW3VRELtdz3pPhAlqboKvyr rzDwdAK/ATjTXleUIaD/yeeJw5VfanYYGLe06aZc7YiQoVkY/kPwoDpL9C+8Ilpi t3odj+V7NpV9oW7nY15UNLCagmqeR/ZP9muhADNYeuWSKO9jcycDHDgzt2l5jERn zIhtggNNC4lPCSltTdRlUZ2QPdA0YYniN7F8cFRbs+v24oF6RPu/ugjGgLF6Mr+G hZyIxfThZLo2Wl6reyKs/zhh99xWLS1jEhXpI9XZBhf7OeTzwiheY5EyXI3noJqb qXbNUxN1WCCZNYGc1dDbJ2B7yQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDjlgjO6 CptJwFMjFebFTfznmRlgMB8GA1UdIwQYMBaAFD291+1BJIDpNVwn88ETtWQNMYaz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzM5OS9CQTY4QzMyODVD QjgxMUVFODUyM0JDN0FDNEY5QUUwMi9QYjNYN1VFa2dPazFYQ2Z6d1JPMVpBMHho ck0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BiM1g3VUVrZ09rMVhDZnp3Uk8xWkEweGhyTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzM5OS9CQTY4QzMyODVDQjgxMUVFODUyM0JDN0FDNEY5QUUwMi9QYjNYN1VFa2dP azFYQ2Z6d1JPMVpBMHhock0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDEhQien7+TGsYG6NHarghPNSUGYp3jfCSnQnyEJlbmQ5gPW1JI+0s hkhaskq8PsBMc+RuEJZHEstZajGhhMAr8oXCnTc4bVXtB1U1USDhjquuhw81gXDf 0dAbR1cD7Cg0qUJSupwoLGKPrliV3Vna+A1T6WHDt5+Ftd/44J8t/zqCnGT5W8pJ Kh3hrgT7qrLGX2Wdv6VfnO6t0LqWKITot6w7M20PMAdG+3JFdj7fK3QoPRYc6qPT bsACZTMb+z4WThYuxKl8LP+ys8Eylz3pU+Ps4gtmyVU2BuxBU3yk27k/aqw1ABil +6oPmSu182d4dl83FVH2irnEjyg24RO+ -----END CERTIFICATE-----Generated at Thu Jul 3 10:16:52 2025 by rpki-client