$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.mft File: 3lWjaa7ZGGmMLWPDLvYb28WYBZY.mft (raw, json) Hash identifier: URIQavK3s06kqSHgGIkEzoWV5M4h9L508y/EVRfE8F8= Subject key identifier: 93:08:31:EF:0A:B7:81:83:D0:F4:3B:A6:62:EE:DF:D9:CC:B5:C4:20 Authority key identifier: DE:55:A3:69:AE:D9:18:69:8C:2D:63:C3:2E:F6:1B:DB:C5:98:05:96 Certificate issuer: /CN=A91A5CC3/serialNumber=DE55A369AED918698C2D63C32EF61BDBC5980596 Certificate serial: 017B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3lWjaa7ZGGmMLWPDLvYb28WYBZY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.mft Manifest number: 0179 Signing time: Sat 05 Jul 2025 03:58:49 +0000 Manifest this update: Sat 05 Jul 2025 03:58:49 +0000 Manifest next update: Sat 12 Jul 2025 03:58:49 +0000 Files and hashes: 1: 3lWjaa7ZGGmMLWPDLvYb28WYBZY.crl (hash: J1ixH8BDZQsKW6NFrP2+mZh4hfqLlUZlcBoZkKd+ICM=) 2: F287261014C311EE89C2C021C4F9AE02.roa (hash: h2JTkH5cDdzaWjiM7lCs6Ni3E0awofcV4Wu5xaJdDqI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.crl rsync://rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3lWjaa7ZGGmMLWPDLvYb28WYBZY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 379 (0x17b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5CC3, serialNumber=DE55A369AED918698C2D63C32EF61BDBC5980596 Validity Not Before: Jul 5 03:58:49 2025 GMT Not After : Jul 12 03:58:49 2025 GMT Subject: CN=6868a2f9-cef4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:79:f4:af:85:81:c8:45:4e:5a:86:db:6e:93: b9:49:e1:06:b2:91:27:a8:6d:46:80:8f:3d:e7:06: e5:75:1e:cc:39:90:96:54:18:43:2c:fd:31:66:a0: 26:8f:6e:f8:41:08:bf:8f:0a:6b:0d:ca:3e:24:90: 70:b7:cf:14:bb:43:34:84:41:e5:35:1c:e1:63:e8: 3f:b9:af:ee:28:29:38:be:31:4b:63:c3:be:74:6e: 9b:19:08:e0:72:f8:84:b2:cb:68:89:6b:24:15:20: 9d:f3:5c:f1:06:ac:00:9c:71:69:d0:34:cc:c1:ce: 03:33:98:fe:af:54:a1:19:b6:f3:17:d9:61:78:b6: 9d:f4:2e:4e:f4:0d:79:4d:97:23:4e:db:4a:07:72: 41:62:8c:31:23:4a:63:b4:f1:d3:44:04:eb:e5:fe: 85:8a:c6:db:0d:a7:62:7f:5f:94:24:c1:01:59:6e: 44:77:bd:ad:92:4b:a7:66:c7:bd:bb:78:08:ec:e9: c1:83:57:95:d7:54:a9:73:7d:e4:43:71:a7:b8:5c: 10:2a:3c:51:d3:8c:9d:b8:77:64:32:9b:87:5a:93: da:63:6f:ef:3f:0c:7c:03:0b:01:13:c9:03:d5:0b: c5:f8:11:48:18:23:7b:39:57:58:b7:9a:81:e6:d9: 20:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:08:31:EF:0A:B7:81:83:D0:F4:3B:A6:62:EE:DF:D9:CC:B5:C4:20 X509v3 Authority Key Identifier: keyid:DE:55:A3:69:AE:D9:18:69:8C:2D:63:C3:2E:F6:1B:DB:C5:98:05:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3lWjaa7ZGGmMLWPDLvYb28WYBZY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:37:f5:de:f0:6c:21:7f:13:32:68:f6:fe:ab:31:0e:2e:fc: b3:cb:d9:ff:4e:bc:ba:86:94:cc:cb:18:ef:90:1b:7b:18:c0: d7:ce:57:e8:1c:a6:a0:a2:aa:45:d7:3a:dd:71:18:fc:40:6c: f4:68:1b:40:12:ec:b1:0a:31:a7:4f:db:f4:85:51:b3:43:5e: 99:43:a9:61:83:bf:b7:58:96:3b:5e:ab:f8:76:6d:7e:c8:79: 93:9c:63:01:78:d9:2f:a6:5b:e4:ad:6b:f4:6e:a4:48:d4:2b: fa:6b:3a:3e:45:ee:18:57:27:ad:f1:e6:09:26:34:db:0b:30: 1b:dd:ae:eb:d9:fa:13:fc:da:10:55:78:9c:fa:ef:ce:55:1a: ae:e2:28:74:0f:7d:be:24:ec:70:61:d0:11:be:8e:cd:64:de: 6e:f0:ec:e4:3a:98:dc:8d:94:9f:8f:b3:e7:e9:41:50:cb:b0: cc:b7:49:36:3d:2a:10:54:24:69:2b:79:86:38:a3:f2:0d:f0: 4b:ae:60:89:54:53:43:27:46:6e:c1:4d:cc:4b:f9:b5:39:cd: e9:ef:5a:3d:03:aa:9b:90:91:8b:ef:37:e7:c8:cf:b1:28:3d: e6:2e:64:ea:0d:61:57:d3:b2:14:64:45:b3:a5:d6:da:49:02: 8b:0e:4f:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVDQzMxMTAvBgNVBAUTKERFNTVBMzY5QUVEOTE4Njk4QzJENjNDMzJFRjYxQkRC QzU5ODA1OTYwHhcNMjUwNzA1MDM1ODQ5WhcNMjUwNzEyMDM1ODQ5WjAYMRYwFAYD VQQDEw02ODY4YTJmOS1jZWY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAynn0r4WByEVOWobbbpO5SeEGspEnqG1GgI895wbldR7MOZCWVBhDLP0xZqAm j274QQi/jwprDco+JJBwt88Uu0M0hEHlNRzhY+g/ua/uKCk4vjFLY8O+dG6bGQjg cviEsstoiWskFSCd81zxBqwAnHFp0DTMwc4DM5j+r1ShGbbzF9lheLad9C5O9A15 TZcjTttKB3JBYowxI0pjtPHTRATr5f6FisbbDadif1+UJMEBWW5Ed72tkkunZse9 u3gI7OnBg1eV11Spc33kQ3GnuFwQKjxR04yduHdkMpuHWpPaY2/vPwx8AwsBE8kD 1QvF+BFIGCN7OVdYt5qB5tkgtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJMIMe8K t4GD0PQ7pmLu39nMtcQgMB8GA1UdIwQYMBaAFN5Vo2mu2RhpjC1jwy72G9vFmAWW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUNDMy82NDE2RDgzODE0 QzAxMUVFOTZFQTU0MjFDNEY5QUUwMi8zbFdqYWE3WkdHbU1MV1BETHZZYjI4V1lC WlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNsV2phYTdaR0dtTUxXUERMdlliMjhXWUJaWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUNDMy82NDE2RDgzODE0QzAxMUVFOTZFQTU0MjFDNEY5QUUwMi8zbFdqYWE3WkdH bU1MV1BETHZZYjI4V1lCWlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAN/Xe8GwhfxMyaPb+qzEOLvyzy9n/Try6hpTMyxjvkBt7GMDXzlfo HKagoqpF1zrdcRj8QGz0aBtAEuyxCjGnT9v0hVGzQ16ZQ6lhg7+3WJY7Xqv4dm1+ yHmTnGMBeNkvplvkrWv0bqRI1Cv6azo+Re4YVyet8eYJJjTbCzAb3a7r2foT/NoQ VXic+u/OVRqu4ih0D32+JOxwYdARvo7NZN5u8OzkOpjcjZSfj7Pn6UFQy7DMt0k2 PSoQVCRpK3mGOKPyDfBLrmCJVFNDJ0ZuwU3MS/m1Oc3p71o9A6qbkJGL7zfnyM+x KD3mLmTqDWFX07IUZEWzpdbaSQKLDk+s -----END CERTIFICATE-----Generated at Sun Jul 6 01:07:47 2025 by rpki-client