$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.mft File: 3SNdNwiQmzPViUtMzckQXGH9Fq4.mft (raw, json) Hash identifier: o82IqoCYbxrqaaSwplJYmzBv8Cw72t/+jXsE4Y93THM= Subject key identifier: 46:9E:78:0B:F5:73:B7:A3:FE:22:50:8E:D6:22:B3:E4:23:ED:E2:E4 Authority key identifier: DD:23:5D:37:08:90:9B:33:D5:89:4B:4C:CD:C9:10:5C:61:FD:16:AE Certificate issuer: /CN=A91B8C13/serialNumber=DD235D3708909B33D5894B4CCDC9105C61FD16AE Certificate serial: 0187 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3SNdNwiQmzPViUtMzckQXGH9Fq4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.mft Manifest number: 0186 Signing time: Wed 02 Jul 2025 15:22:40 +0000 Manifest this update: Wed 02 Jul 2025 15:22:39 +0000 Manifest next update: Wed 09 Jul 2025 15:22:39 +0000 Files and hashes: 1: 3SNdNwiQmzPViUtMzckQXGH9Fq4.crl (hash: Jfnx/yIdlm8MfqpB7v5XA0suihOu1YKdvP38jQGtl9s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.crl rsync://rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3SNdNwiQmzPViUtMzckQXGH9Fq4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 15:22:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 391 (0x187) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8C13, serialNumber=DD235D3708909B33D5894B4CCDC9105C61FD16AE Validity Not Before: Jul 2 15:22:39 2025 GMT Not After : Jul 9 15:22:39 2025 GMT Subject: CN=68654ebf-252a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:f0:ac:2b:b2:70:9d:c9:88:99:cb:53:3c:00: 6d:40:69:a5:f0:6e:16:3d:18:53:d2:a0:47:65:3f: 4b:05:1d:0b:3f:5b:8c:c3:fa:85:8a:f7:57:d7:7c: e4:d4:79:19:c2:ac:a5:1c:6e:65:6d:8f:46:d7:6e: 85:49:3f:b4:df:a6:59:40:c4:29:5b:d6:f1:f2:44: 55:70:0e:c0:01:10:e3:d0:02:0d:5d:af:b8:fb:89: a5:37:27:3c:ad:c9:62:9c:af:f4:54:bb:76:31:ec: 78:d6:37:a5:09:9a:eb:05:30:c7:68:ab:ed:50:da: b0:55:e1:51:ca:af:ab:0a:89:13:63:25:ba:1d:32: 48:c6:be:32:0a:f6:b1:eb:96:02:44:71:db:52:1d: 8f:dd:9e:fd:dc:7b:0a:88:97:fd:89:f8:11:f4:c0: e0:3e:b6:b5:5c:84:60:8a:0d:11:f5:26:93:b9:37: 76:40:c2:be:6c:25:5b:25:64:77:30:cb:81:52:d3: c1:ff:50:67:8a:f0:78:3f:67:aa:cb:66:09:3c:47: 91:d1:bb:84:de:b8:79:91:b9:7f:00:91:bb:da:02: 77:1a:0d:22:2d:79:b7:ad:a5:cc:0a:5b:7a:3e:2b: a1:df:79:d8:0a:aa:0f:df:95:48:01:12:ca:f4:aa: 77:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:9E:78:0B:F5:73:B7:A3:FE:22:50:8E:D6:22:B3:E4:23:ED:E2:E4 X509v3 Authority Key Identifier: keyid:DD:23:5D:37:08:90:9B:33:D5:89:4B:4C:CD:C9:10:5C:61:FD:16:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3SNdNwiQmzPViUtMzckQXGH9Fq4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:d0:f4:d7:0f:b2:9a:c7:55:2e:5a:7d:e9:6c:b3:86:69:28: 4a:b8:02:c6:1d:6f:fc:ac:d4:a1:51:1d:b9:4c:30:cf:13:6b: 6d:f2:61:d9:c9:ed:4a:03:7c:03:99:ef:69:3b:92:35:2e:4b: af:30:69:9e:07:a3:f9:c3:09:bb:9e:2c:7d:4d:d8:16:4d:07: 90:e6:72:c6:a1:fd:a0:dd:e0:7f:63:e3:75:a0:a6:5f:90:5b: 66:b2:10:fc:d7:64:39:4e:83:6e:55:d4:63:d6:2a:23:48:4a: a3:dd:80:95:f7:b3:7e:62:d2:a1:6c:35:67:b6:46:cb:83:f2: 2a:21:8e:10:e4:bb:95:c7:dd:ca:84:dc:bc:b6:17:fb:b8:56: de:bb:8c:87:1c:cc:f0:4c:6b:fa:0f:41:45:37:46:9b:18:48: 19:bf:3c:03:23:ae:88:bd:e6:8f:eb:2b:9e:6d:26:5b:9a:71: f5:23:ab:34:eb:ce:10:ae:1e:27:e1:39:5b:a6:dc:fb:bd:bf: 8a:68:85:40:a0:32:e9:62:d2:63:4e:d0:d6:71:86:95:3f:81: 48:85:89:88:74:d3:9d:30:f8:0d:31:31:78:e3:c8:b6:01:ec: 6a:b1:0d:35:99:d6:39:13:8b:57:c7:59:0b:fb:2b:5e:23:69: 7a:a6:ca:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhDMTMxMTAvBgNVBAUTKEREMjM1RDM3MDg5MDlCMzNENTg5NEI0Q0NEQzkxMDVD NjFGRDE2QUUwHhcNMjUwNzAyMTUyMjM5WhcNMjUwNzA5MTUyMjM5WjAYMRYwFAYD VQQDEw02ODY1NGViZi0yNTJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwfCsK7JwncmImctTPABtQGml8G4WPRhT0qBHZT9LBR0LP1uMw/qFivdX13zk 1HkZwqylHG5lbY9G126FST+036ZZQMQpW9bx8kRVcA7AARDj0AINXa+4+4mlNyc8 rclinK/0VLt2Mex41jelCZrrBTDHaKvtUNqwVeFRyq+rCokTYyW6HTJIxr4yCvax 65YCRHHbUh2P3Z793HsKiJf9ifgR9MDgPra1XIRgig0R9SaTuTd2QMK+bCVbJWR3 MMuBUtPB/1BnivB4P2eqy2YJPEeR0buE3rh5kbl/AJG72gJ3Gg0iLXm3raXMClt6 Piuh33nYCqoP35VIARLK9Kp3jwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEaeeAv1 c7ej/iJQjtYis+Qj7eLkMB8GA1UdIwQYMBaAFN0jXTcIkJsz1YlLTM3JEFxh/Rau MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEMxMy9EMDYxMTcxNjBC MkQxMUVFODY3RTZBMTdDNEY5QUUwMi8zU05kTndpUW16UFZpVXRNemNrUVhHSDlG cTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzNTTmROd2lRbXpQVmlVdE16Y2tRWEdIOUZxNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEMxMy9EMDYxMTcxNjBCMkQxMUVFODY3RTZBMTdDNEY5QUUwMi8zU05kTndpUW16 UFZpVXRNemNrUVhHSDlGcTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAF0PTXD7Kax1UuWn3pbLOGaShKuALGHW/8rNShUR25TDDPE2tt8mHZ ye1KA3wDme9pO5I1LkuvMGmeB6P5wwm7nix9TdgWTQeQ5nLGof2g3eB/Y+N1oKZf kFtmshD812Q5ToNuVdRj1iojSEqj3YCV97N+YtKhbDVntkbLg/IqIY4Q5LuVx93K hNy8thf7uFbeu4yHHMzwTGv6D0FFN0abGEgZvzwDI66IveaP6yuebSZbmnH1I6s0 684Qrh4n4Tlbptz7vb+KaIVAoDLpYtJjTtDWcYaVP4FIhYmIdNOdMPgNMTF448i2 AexqsQ01mdY5E4tXx1kL+yteI2l6psqa -----END CERTIFICATE-----Generated at Thu Jul 3 22:46:04 2025 by rpki-client