$ rpki-client -vvf rpki.apnic.net/member_repository/A91B732A/089BC4E6B63111EFA2D7FB63C4F9AE02/3BEw2GFrq8bOCI9fIOaXGamcMrs.mft File: 3BEw2GFrq8bOCI9fIOaXGamcMrs.mft (raw, json) Hash identifier: HwRCI+InGh+e9QMx+kxjDiHSfObLkz/haVwyqVjIwuU= Subject key identifier: D8:B4:F3:08:D6:4E:0C:37:F8:61:BE:64:0B:DF:62:27:CF:66:9F:17 Authority key identifier: DC:11:30:D8:61:6B:AB:C6:CE:08:8F:5F:20:E6:97:19:A9:9C:32:BB Certificate issuer: /CN=A91B732A/serialNumber=DC1130D8616BABC6CE088F5F20E69719A99C32BB Certificate serial: 68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3BEw2GFrq8bOCI9fIOaXGamcMrs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B732A/089BC4E6B63111EFA2D7FB63C4F9AE02/3BEw2GFrq8bOCI9fIOaXGamcMrs.mft Manifest number: 68 Signing time: Sun 29 Jun 2025 06:01:29 +0000 Manifest this update: Sun 29 Jun 2025 06:01:28 +0000 Manifest next update: Sun 06 Jul 2025 06:01:28 +0000 Files and hashes: 1: 3BEw2GFrq8bOCI9fIOaXGamcMrs.crl (hash: djfJFDIrgFq+lU6CHGdLNkwWaXRhWg2nrhkzrLgatGQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B732A/089BC4E6B63111EFA2D7FB63C4F9AE02/3BEw2GFrq8bOCI9fIOaXGamcMrs.crl rsync://rpki.apnic.net/member_repository/A91B732A/089BC4E6B63111EFA2D7FB63C4F9AE02/3BEw2GFrq8bOCI9fIOaXGamcMrs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3BEw2GFrq8bOCI9fIOaXGamcMrs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 06:01:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 104 (0x68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B732A, serialNumber=DC1130D8616BABC6CE088F5F20E69719A99C32BB Validity Not Before: Jun 29 06:01:28 2025 GMT Not After : Jul 6 06:01:28 2025 GMT Subject: CN=6860d6b8-b250 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:ff:ab:d3:67:c1:16:b8:2d:9e:f0:62:d0:88: f4:0e:11:23:07:af:a8:c6:29:56:98:05:de:48:6d: e0:69:0f:44:4e:57:b6:e2:7a:55:da:6b:41:69:21: 64:17:62:f9:7e:ec:23:b3:f2:bd:7e:11:65:c1:f3: 38:a3:b5:3a:ab:b9:d9:5d:66:36:7d:a2:1f:06:b2: 4b:51:a8:fd:24:4b:1e:6e:c5:3f:d3:38:f7:b1:e5: 65:25:e4:e6:ef:01:c5:5e:27:0d:e8:f9:13:6a:71: 0b:14:2f:c6:a2:db:18:05:17:fd:cb:b8:bd:6b:6c: ac:e1:28:61:e0:8f:de:7c:a8:38:ad:b4:f7:87:89: d5:5c:b3:ae:d8:1a:55:cc:4f:77:99:96:cd:c6:12: 4e:a8:97:f3:45:25:e5:07:9d:f9:ba:5c:d2:65:db: e2:93:b1:ba:21:0c:d2:7e:09:0c:9f:bc:5f:07:0d: d9:b7:10:4c:ed:92:fa:42:62:06:90:b9:1f:0e:33: 63:9e:de:39:1e:cc:c3:ae:4d:d5:73:46:41:b9:57: 1d:18:f5:ad:0b:c5:7a:e0:c7:62:25:26:06:d4:8f: b8:87:03:be:35:bb:fb:3d:73:50:29:e4:e2:0e:08: eb:f6:4b:a0:c7:c9:30:34:a8:5c:22:61:f2:6f:1c: b9:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:B4:F3:08:D6:4E:0C:37:F8:61:BE:64:0B:DF:62:27:CF:66:9F:17 X509v3 Authority Key Identifier: keyid:DC:11:30:D8:61:6B:AB:C6:CE:08:8F:5F:20:E6:97:19:A9:9C:32:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B732A/089BC4E6B63111EFA2D7FB63C4F9AE02/3BEw2GFrq8bOCI9fIOaXGamcMrs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3BEw2GFrq8bOCI9fIOaXGamcMrs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B732A/089BC4E6B63111EFA2D7FB63C4F9AE02/3BEw2GFrq8bOCI9fIOaXGamcMrs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:49:33:c6:08:a6:58:8c:da:7e:e6:25:9b:64:31:fd:d2:23: a7:4d:61:5e:75:d0:f2:57:c9:fd:38:30:31:af:58:6a:08:1e: 5c:38:0a:3e:08:97:e8:9c:62:2b:6b:b3:b8:11:c2:4c:0a:52: 92:bd:8a:98:f2:66:ad:81:53:3e:86:15:e4:62:29:c1:e5:9f: 6d:0f:e2:65:d4:0c:c1:cb:3c:a5:27:6f:2a:dc:57:cc:05:24: 44:ee:70:48:f4:c1:6b:37:01:59:ab:c1:8f:4e:61:dc:9f:50: ff:b6:fa:4a:77:6c:95:fe:56:88:68:d9:45:44:db:53:0e:a3: 3f:e9:01:8f:d6:2d:b8:af:11:7a:a0:78:e4:93:13:8e:8e:89: 0d:cd:7c:ad:6c:6c:14:36:92:f0:3e:86:ec:db:57:ce:78:c5: 87:63:b1:a0:40:56:1d:29:96:98:86:9c:49:1a:d7:e5:b8:a0: 33:66:2d:ac:10:f3:fe:e4:09:0d:c3:4d:d1:a2:a2:1d:26:90: 3a:14:2a:f0:05:95:e7:fc:7f:29:e2:ba:a5:51:f0:8d:27:1b: 13:66:10:14:71:a8:f8:38:47:dc:e9:5a:41:06:f6:17:cd:cb: 64:c5:98:97:b1:18:68:8e:54:8f:8c:eb:a0:d8:ba:9e:6e:79: 2b:90:89:89 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBaDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NzMyQTExMC8GA1UEBRMoREMxMTMwRDg2MTZCQUJDNkNFMDg4RjVGMjBFNjk3MTlB OTlDMzJCQjAeFw0yNTA2MjkwNjAxMjhaFw0yNTA3MDYwNjAxMjhaMBgxFjAUBgNV BAMTDTY4NjBkNmI4LWIyNTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCu/6vTZ8EWuC2e8GLQiPQOESMHr6jGKVaYBd5IbeBpD0ROV7bielXaa0FpIWQX Yvl+7COz8r1+EWXB8zijtTqrudldZjZ9oh8GsktRqP0kSx5uxT/TOPex5WUl5Obv AcVeJw3o+RNqcQsUL8ai2xgFF/3LuL1rbKzhKGHgj958qDittPeHidVcs67YGlXM T3eZls3GEk6ol/NFJeUHnfm6XNJl2+KTsbohDNJ+CQyfvF8HDdm3EEztkvpCYgaQ uR8OM2Oe3jkezMOuTdVzRkG5Vx0Y9a0LxXrgx2IlJgbUj7iHA741u/s9c1Ap5OIO COv2S6DHyTA0qFwiYfJvHLktAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU2LTzCNZO DDf4Yb5kC99iJ89mnxcwHwYDVR0jBBgwFoAU3BEw2GFrq8bOCI9fIOaXGamcMrsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3MzJBLzA4OUJDNEU2QjYz MTExRUZBMkQ3RkI2M0M0RjlBRTAyLzNCRXcyR0ZycThiT0NJOWZJT2FYR2FtY01y cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM0JFdzJHRnJxOGJPQ0k5ZklPYVhHYW1jTXJzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3 MzJBLzA4OUJDNEU2QjYzMTExRUZBMkQ3RkI2M0M0RjlBRTAyLzNCRXcyR0ZycThi T0NJOWZJT2FYR2FtY01ycy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKdJM8YIpliM2n7mJZtkMf3SI6dNYV510PJXyf04MDGvWGoIHlw4Cj4I l+icYitrs7gRwkwKUpK9ipjyZq2BUz6GFeRiKcHln20P4mXUDMHLPKUnbyrcV8wF JETucEj0wWs3AVmrwY9OYdyfUP+2+kp3bJX+Voho2UVE21MOoz/pAY/WLbivEXqg eOSTE46OiQ3NfK1sbBQ2kvA+huzbV854xYdjsaBAVh0plpiGnEka1+W4oDNmLawQ 8/7kCQ3DTdGioh0mkDoUKvAFlef8fyniuqVR8I0nGxNmEBRxqPg4R9zpWkEG9hfN y2TFmJexGGiOVI+M66DYup5ueSuQiYk= -----END CERTIFICATE-----Generated at Sun Jun 29 13:28:56 2025 by rpki-client