$ rpki-client -vvf rpki.apnic.net/member_repository/A91B732A/089BC4E6B63111EFA2D7FB63C4F9AE02/3BEw2GFrq8bOCI9fIOaXGamcMrs.mft File: 3BEw2GFrq8bOCI9fIOaXGamcMrs.mft (raw, json) Hash identifier: xb9ilcSU7TP+hWlP0xnulECCsQyc9NGNIoH2joHIMOI= Subject key identifier: F8:23:0A:77:0D:80:0F:55:F6:F0:DE:F8:B2:20:39:F9:BA:CE:B0:CD Authority key identifier: DC:11:30:D8:61:6B:AB:C6:CE:08:8F:5F:20:E6:97:19:A9:9C:32:BB Certificate issuer: /CN=A91B732A/serialNumber=DC1130D8616BABC6CE088F5F20E69719A99C32BB Certificate serial: 4C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3BEw2GFrq8bOCI9fIOaXGamcMrs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B732A/089BC4E6B63111EFA2D7FB63C4F9AE02/3BEw2GFrq8bOCI9fIOaXGamcMrs.mft Manifest number: 4C Signing time: Sat 03 May 2025 06:39:48 +0000 Manifest this update: Sat 03 May 2025 06:39:48 +0000 Manifest next update: Sat 10 May 2025 06:39:48 +0000 Files and hashes: 1: 3BEw2GFrq8bOCI9fIOaXGamcMrs.crl (hash: 1sbJbnFmOEqGdCQ8u+YIxnm4cNBzpCYRX7KcyzcQM/U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B732A/089BC4E6B63111EFA2D7FB63C4F9AE02/3BEw2GFrq8bOCI9fIOaXGamcMrs.crl rsync://rpki.apnic.net/member_repository/A91B732A/089BC4E6B63111EFA2D7FB63C4F9AE02/3BEw2GFrq8bOCI9fIOaXGamcMrs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3BEw2GFrq8bOCI9fIOaXGamcMrs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 06:39:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76 (0x4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B732A, serialNumber=DC1130D8616BABC6CE088F5F20E69719A99C32BB Validity Not Before: May 3 06:39:48 2025 GMT Not After : May 10 06:39:48 2025 GMT Subject: CN=6815ba34-8436 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:b1:87:80:dd:8c:98:c6:e6:d3:b2:4c:7d:8e: 5d:ea:d9:de:46:63:be:59:b6:ba:11:65:dd:5b:b8: 83:cf:08:0f:1c:aa:06:75:e3:aa:89:88:0f:ac:7d: 12:13:5a:cb:69:49:10:d4:e7:21:95:55:bf:b7:79: f3:2f:d2:82:9b:76:5c:64:13:30:7b:3f:60:e0:0f: 20:ad:6e:e5:6c:a7:91:58:65:fd:86:31:d2:63:bb: 1d:c5:90:cb:3b:77:b5:b0:e5:13:56:e3:64:23:a9: 97:e1:fa:17:4b:bd:75:8a:bb:31:bc:f0:24:1f:fb: fa:83:c3:84:ff:88:e3:6c:2c:8a:0f:88:38:d8:c1: 2f:24:47:c6:2d:19:07:8b:db:f3:d2:3f:ad:06:72: b9:34:85:ca:cf:3e:87:69:6c:e8:69:9b:3f:f5:1a: d1:2f:ec:28:3d:f8:22:18:8c:17:bc:72:4b:17:b7: ce:f4:3c:7e:5b:87:2e:4d:a4:b2:ca:69:c7:03:cd: d6:d3:41:b8:98:9d:bf:9d:65:31:49:ea:e3:24:b4: da:05:99:fb:f7:95:00:fb:f7:d8:97:22:a1:a4:10: d1:b4:34:82:3d:9c:6c:74:01:56:3b:dd:5a:b5:29: 40:32:f3:a6:c8:cd:10:ee:51:d3:d6:01:1e:69:2e: 40:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:23:0A:77:0D:80:0F:55:F6:F0:DE:F8:B2:20:39:F9:BA:CE:B0:CD X509v3 Authority Key Identifier: keyid:DC:11:30:D8:61:6B:AB:C6:CE:08:8F:5F:20:E6:97:19:A9:9C:32:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B732A/089BC4E6B63111EFA2D7FB63C4F9AE02/3BEw2GFrq8bOCI9fIOaXGamcMrs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3BEw2GFrq8bOCI9fIOaXGamcMrs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B732A/089BC4E6B63111EFA2D7FB63C4F9AE02/3BEw2GFrq8bOCI9fIOaXGamcMrs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:74:83:54:a4:d3:ee:a4:bc:0e:e6:51:82:72:d9:58:8b:11: 00:b2:04:cf:f8:14:1f:c3:30:a9:0a:50:4f:98:d2:93:ed:68: 5e:00:23:1c:04:e5:57:b3:dc:d0:eb:5e:d8:ae:35:f0:46:9a: b7:8c:19:f9:6c:fb:76:fb:1f:aa:97:a6:9d:8b:be:c3:f7:a1: 8d:e5:c6:5a:fb:7b:9b:f2:ab:76:fc:5b:99:3c:af:6f:cf:8e: 3a:2b:ab:6a:80:46:34:a8:8f:96:57:1b:5c:90:dd:60:92:7d: 0d:6c:eb:a3:34:32:fc:98:c4:5a:59:76:24:b1:8b:b4:6f:d4: 98:75:a3:6c:5d:fd:17:95:6f:d3:6a:1c:88:99:58:34:73:66: 68:38:19:7c:19:81:7c:44:a1:a2:fa:b5:58:7e:85:b4:8a:86: 57:0e:14:af:ba:09:96:48:f9:29:e1:f4:02:11:1c:61:b9:8e: 85:19:fe:1d:8f:d8:f2:c6:57:1c:ce:18:36:41:c0:d4:7b:bc: 02:fb:e8:62:b6:fd:7d:13:21:a4:be:ca:b5:49:1a:18:eb:4c: 27:47:6d:75:3e:70:19:f5:a0:4a:79:fe:af:8d:73:0e:a4:53: 70:c3:b6:c0:25:47:9f:a3:4b:41:28:df:11:ac:14:81:dd:c2: e0:e7:c0:2f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NzMyQTExMC8GA1UEBRMoREMxMTMwRDg2MTZCQUJDNkNFMDg4RjVGMjBFNjk3MTlB OTlDMzJCQjAeFw0yNTA1MDMwNjM5NDhaFw0yNTA1MTAwNjM5NDhaMBgxFjAUBgNV BAMTDTY4MTViYTM0LTg0MzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDLsYeA3YyYxubTskx9jl3q2d5GY75ZtroRZd1buIPPCA8cqgZ146qJiA+sfRIT WstpSRDU5yGVVb+3efMv0oKbdlxkEzB7P2DgDyCtbuVsp5FYZf2GMdJjux3FkMs7 d7Ww5RNW42QjqZfh+hdLvXWKuzG88CQf+/qDw4T/iONsLIoPiDjYwS8kR8YtGQeL 2/PSP60Gcrk0hcrPPodpbOhpmz/1GtEv7Cg9+CIYjBe8cksXt870PH5bhy5NpLLK accDzdbTQbiYnb+dZTFJ6uMktNoFmfv3lQD799iXIqGkENG0NII9nGx0AVY73Vq1 KUAy86bIzRDuUdPWAR5pLkDrAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU+CMKdw2A D1X28N74siA5+brOsM0wHwYDVR0jBBgwFoAU3BEw2GFrq8bOCI9fIOaXGamcMrsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3MzJBLzA4OUJDNEU2QjYz MTExRUZBMkQ3RkI2M0M0RjlBRTAyLzNCRXcyR0ZycThiT0NJOWZJT2FYR2FtY01y cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM0JFdzJHRnJxOGJPQ0k5ZklPYVhHYW1jTXJzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3 MzJBLzA4OUJDNEU2QjYzMTExRUZBMkQ3RkI2M0M0RjlBRTAyLzNCRXcyR0ZycThi T0NJOWZJT2FYR2FtY01ycy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFJ0g1Sk0+6kvA7mUYJy2ViLEQCyBM/4FB/DMKkKUE+Y0pPtaF4AIxwE 5Vez3NDrXtiuNfBGmreMGfls+3b7H6qXpp2LvsP3oY3lxlr7e5vyq3b8W5k8r2/P jjorq2qARjSoj5ZXG1yQ3WCSfQ1s66M0MvyYxFpZdiSxi7Rv1Jh1o2xd/ReVb9Nq HIiZWDRzZmg4GXwZgXxEoaL6tVh+hbSKhlcOFK+6CZZI+Snh9AIRHGG5joUZ/h2P 2PLGVxzOGDZBwNR7vAL76GK2/X0TIaS+yrVJGhjrTCdHbXU+cBn1oEp5/q+Ncw6k U3DDtsAlR5+jS0Eo3xGsFIHdwuDnwC8= -----END CERTIFICATE-----Generated at Mon May 5 01:54:06 2025 by rpki-client