$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.mft File: 3lWjaa7ZGGmMLWPDLvYb28WYBZY.mft (raw, json) Hash identifier: axczEjk1HqQxQJUcn8+VyHTYC7qadAGSII6J5MyLA0Y= Subject key identifier: 91:31:46:69:94:59:D9:62:98:8F:E2:53:2E:7C:3E:9D:47:06:B1:15 Authority key identifier: DE:55:A3:69:AE:D9:18:69:8C:2D:63:C3:2E:F6:1B:DB:C5:98:05:96 Certificate issuer: /CN=A91A5CC3/serialNumber=DE55A369AED918698C2D63C32EF61BDBC5980596 Certificate serial: 0162 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3lWjaa7ZGGmMLWPDLvYb28WYBZY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.mft Manifest number: 0160 Signing time: Thu 15 May 2025 03:22:57 +0000 Manifest this update: Thu 15 May 2025 03:22:56 +0000 Manifest next update: Thu 22 May 2025 03:22:56 +0000 Files and hashes: 1: 3lWjaa7ZGGmMLWPDLvYb28WYBZY.crl (hash: fDg45PpImnyZhOvMnc5HRzMUaGcE+ugXHRs9rpzuikg=) 2: F287261014C311EE89C2C021C4F9AE02.roa (hash: h2JTkH5cDdzaWjiM7lCs6Ni3E0awofcV4Wu5xaJdDqI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.crl rsync://rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3lWjaa7ZGGmMLWPDLvYb28WYBZY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 03:22:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 354 (0x162) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5CC3, serialNumber=DE55A369AED918698C2D63C32EF61BDBC5980596 Validity Not Before: May 15 03:22:56 2025 GMT Not After : May 22 03:22:56 2025 GMT Subject: CN=68255e10-8745 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:93:e1:39:99:84:9a:81:ef:90:d7:70:c3:74: b1:16:da:2e:04:14:f8:d5:82:3f:2a:9b:1a:cf:f8: 7b:9c:35:60:3d:01:37:98:cf:0b:46:a7:37:e1:69: b2:91:75:f2:0e:a2:79:22:f4:93:46:47:23:3c:4f: 18:f1:45:8a:c2:33:a5:9a:08:17:2e:55:57:3f:7e: 9e:1f:0c:48:39:b9:3a:0e:29:8f:2c:ce:f0:d8:82: 6c:1f:75:e1:23:29:a9:4f:46:60:d1:73:f6:bd:2e: d4:58:41:76:3a:1f:11:99:36:d0:b6:bf:79:66:45: 0e:50:0b:8e:68:4e:ad:fe:3f:18:53:79:8f:3c:3a: 33:7a:f2:9b:c8:5c:62:ef:cd:c4:6f:ce:69:45:18: 9b:5b:6a:db:6e:ff:96:d2:f0:d1:e0:a4:2c:60:ab: 34:2d:d5:9d:94:c3:e5:60:83:a4:19:24:25:b3:6d: b5:cb:94:0d:62:a9:49:03:fc:53:42:40:a5:9a:85: 82:03:d2:d8:ea:54:5a:0e:fb:f4:70:42:df:63:16: 9b:9d:89:17:6d:a1:b7:a2:98:e4:39:2a:98:bc:99: cb:03:f1:d8:53:03:2d:fd:fd:f5:7b:0d:4b:e4:51: 44:6e:54:ce:5d:c9:59:86:e6:b3:7f:91:ff:fb:f0: 08:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:31:46:69:94:59:D9:62:98:8F:E2:53:2E:7C:3E:9D:47:06:B1:15 X509v3 Authority Key Identifier: keyid:DE:55:A3:69:AE:D9:18:69:8C:2D:63:C3:2E:F6:1B:DB:C5:98:05:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3lWjaa7ZGGmMLWPDLvYb28WYBZY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:15:da:8e:2e:cb:4b:13:5a:93:37:4c:98:56:81:94:02:91: 8e:1b:2a:57:0c:8b:a5:ae:54:2d:6f:7d:64:7d:ca:87:70:61: e6:2c:33:bb:cf:37:23:e3:1e:24:46:4a:f5:de:48:1b:4e:e2: bb:0c:6d:26:35:06:02:a5:e0:c6:64:ef:e8:46:83:74:60:31: f2:ff:8d:e9:34:85:fe:b1:b1:b0:e8:23:db:2f:0f:a8:0c:89: 7a:f4:de:d2:04:c7:2e:c6:9b:ad:68:27:cc:c9:f1:a1:00:07: e6:7d:3d:f3:52:b4:8f:83:41:aa:61:55:c2:ae:2e:90:56:70: a2:08:a5:2a:fe:09:95:1d:5b:2b:73:20:25:a1:16:69:6a:a1: 69:eb:06:a5:76:f7:2c:ed:5f:b3:51:d5:5b:c2:78:08:58:81: c1:19:2b:45:66:25:52:36:43:1f:2b:bf:e8:56:87:24:3f:be: a1:df:87:6a:d8:b7:0b:6a:65:ec:ca:90:5e:3e:95:f8:11:08: a1:cb:1a:44:ab:28:fd:30:f9:4c:db:55:02:eb:3b:23:04:58: 78:53:a9:68:b9:72:18:f7:be:db:2d:ef:59:58:e2:a3:e9:b3: 55:fa:00:4f:e2:85:42:fb:24:67:26:9e:42:e6:23:f4:39:ee: 4d:20:e5:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVDQzMxMTAvBgNVBAUTKERFNTVBMzY5QUVEOTE4Njk4QzJENjNDMzJFRjYxQkRC QzU5ODA1OTYwHhcNMjUwNTE1MDMyMjU2WhcNMjUwNTIyMDMyMjU2WjAYMRYwFAYD VQQDEw02ODI1NWUxMC04NzQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3ZPhOZmEmoHvkNdww3SxFtouBBT41YI/Kpsaz/h7nDVgPQE3mM8LRqc34Wmy kXXyDqJ5IvSTRkcjPE8Y8UWKwjOlmggXLlVXP36eHwxIObk6DimPLM7w2IJsH3Xh IympT0Zg0XP2vS7UWEF2Oh8RmTbQtr95ZkUOUAuOaE6t/j8YU3mPPDozevKbyFxi 783Eb85pRRibW2rbbv+W0vDR4KQsYKs0LdWdlMPlYIOkGSQls221y5QNYqlJA/xT QkClmoWCA9LY6lRaDvv0cELfYxabnYkXbaG3opjkOSqYvJnLA/HYUwMt/f31ew1L 5FFEblTOXclZhuazf5H/+/AIvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJExRmmU WdlimI/iUy58Pp1HBrEVMB8GA1UdIwQYMBaAFN5Vo2mu2RhpjC1jwy72G9vFmAWW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUNDMy82NDE2RDgzODE0 QzAxMUVFOTZFQTU0MjFDNEY5QUUwMi8zbFdqYWE3WkdHbU1MV1BETHZZYjI4V1lC WlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNsV2phYTdaR0dtTUxXUERMdlliMjhXWUJaWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUNDMy82NDE2RDgzODE0QzAxMUVFOTZFQTU0MjFDNEY5QUUwMi8zbFdqYWE3WkdH bU1MV1BETHZZYjI4V1lCWlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3FdqOLstLE1qTN0yYVoGUApGOGypXDIulrlQtb31kfcqHcGHmLDO7 zzcj4x4kRkr13kgbTuK7DG0mNQYCpeDGZO/oRoN0YDHy/43pNIX+sbGw6CPbLw+o DIl69N7SBMcuxputaCfMyfGhAAfmfT3zUrSPg0GqYVXCri6QVnCiCKUq/gmVHVsr cyAloRZpaqFp6waldvcs7V+zUdVbwngIWIHBGStFZiVSNkMfK7/oVockP76h34dq 2LcLamXsypBePpX4EQihyxpEqyj9MPlM21UC6zsjBFh4U6louXIY977bLe9ZWOKj 6bNV+gBP4oVC+yRnJp5C5iP0Oe5NIOUc -----END CERTIFICATE-----Generated at Fri May 16 15:34:53 2025 by rpki-client