$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA447/5F4C6CF2426211EA94C5C466C4F9AE02/3Ji1RLFsSamN0Fhc-WckJkFVLqQ.mft File: 3Ji1RLFsSamN0Fhc-WckJkFVLqQ.mft (raw, json) Hash identifier: OGupsqOp3VezYu5fIWe+b0cNvpDafExC613AZXnnRic= Subject key identifier: 51:FA:5B:BF:5C:E7:89:8D:FA:21:0E:FD:4E:E5:87:6D:C2:4F:8B:73 Authority key identifier: DC:98:B5:44:B1:6C:49:A9:8D:D0:58:5C:F9:67:24:26:41:55:2E:A4 Certificate issuer: /CN=A91BA447/serialNumber=DC98B544B16C49A98DD0585CF967242641552EA4 Certificate serial: 0B21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Ji1RLFsSamN0Fhc-WckJkFVLqQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA447/5F4C6CF2426211EA94C5C466C4F9AE02/3Ji1RLFsSamN0Fhc-WckJkFVLqQ.mft Manifest number: 0B1A Signing time: Mon 30 Jun 2025 19:25:48 +0000 Manifest this update: Mon 30 Jun 2025 19:25:47 +0000 Manifest next update: Mon 07 Jul 2025 19:25:47 +0000 Files and hashes: 1: 3Ji1RLFsSamN0Fhc-WckJkFVLqQ.crl (hash: wTLnybAyyUtu5pc/Iafjf1KLCs64p4UO5cvtnl6GNZA=) 2: 07F14B9C426411EABA91B569C4F9AE02.roa (hash: F4BgB3+37H1vj4fhyDwAENhQ6lWTOrd3il938AR6caY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA447/5F4C6CF2426211EA94C5C466C4F9AE02/3Ji1RLFsSamN0Fhc-WckJkFVLqQ.crl rsync://rpki.apnic.net/member_repository/A91BA447/5F4C6CF2426211EA94C5C466C4F9AE02/3Ji1RLFsSamN0Fhc-WckJkFVLqQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Ji1RLFsSamN0Fhc-WckJkFVLqQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 19:25:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2849 (0xb21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA447, serialNumber=DC98B544B16C49A98DD0585CF967242641552EA4 Validity Not Before: Jun 30 19:25:47 2025 GMT Not After : Jul 7 19:25:47 2025 GMT Subject: CN=6862e4bb-eab5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:59:ae:12:7a:d6:b9:4a:d8:cb:96:9f:43:ac: 5e:56:63:be:70:4d:97:eb:fe:d7:8b:fa:c7:57:11: a4:a7:d2:fe:39:50:c6:ec:38:86:a5:39:0c:9f:ce: 23:a4:19:0c:aa:b9:26:e5:ea:1b:28:23:5e:42:bd: 7b:4d:60:8e:9e:a7:fe:e2:bc:86:15:cc:c0:c8:49: ff:1f:18:79:51:1a:63:d3:dc:48:79:5e:0a:86:10: 06:3a:bd:b2:ac:b4:e5:72:b0:3e:85:97:24:6c:04: 8a:e6:9c:4a:6d:0c:89:e6:1d:63:ec:c3:11:d3:9b: fb:95:71:71:f8:0c:24:c4:99:c3:d6:8d:84:78:0e: aa:72:6e:85:f2:7d:51:06:b9:fc:9f:73:6b:23:a8: 3b:18:0c:12:be:7a:a6:fb:c4:09:2d:6d:b7:ea:b9: 5d:cc:4e:a7:79:a8:9a:44:6a:32:63:25:8c:5a:07: 3c:25:7f:53:f6:b7:9f:bd:af:ad:6a:41:40:fe:36: f0:e9:e4:ce:96:77:d3:01:b0:bf:4f:7b:b4:cf:45: 59:37:20:14:7f:e7:a6:61:5f:47:11:ec:44:25:7e: 3d:60:bd:bc:80:92:0b:15:81:0f:77:ae:5b:e4:86: 27:cc:a9:6e:87:b0:41:1a:48:a9:01:1f:27:70:76: c5:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:FA:5B:BF:5C:E7:89:8D:FA:21:0E:FD:4E:E5:87:6D:C2:4F:8B:73 X509v3 Authority Key Identifier: keyid:DC:98:B5:44:B1:6C:49:A9:8D:D0:58:5C:F9:67:24:26:41:55:2E:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA447/5F4C6CF2426211EA94C5C466C4F9AE02/3Ji1RLFsSamN0Fhc-WckJkFVLqQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Ji1RLFsSamN0Fhc-WckJkFVLqQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA447/5F4C6CF2426211EA94C5C466C4F9AE02/3Ji1RLFsSamN0Fhc-WckJkFVLqQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:ef:e5:b8:03:61:b3:a3:54:d9:a8:99:d8:2b:a4:c4:90:7c: c6:10:b6:6c:10:58:5c:fb:cb:78:f4:7d:d3:f3:3e:11:42:ac: f1:7e:91:f4:5b:93:30:f8:1c:69:69:59:b1:4c:78:45:7c:92: b0:9e:79:85:bc:5b:fc:45:cb:40:bd:22:3f:cb:17:b3:77:d0: 96:81:bc:4b:53:db:f7:b9:50:10:d1:c1:5d:f1:46:89:99:72: 84:c8:a9:e5:ad:8e:13:3a:ae:e9:e7:10:bf:51:b6:68:0f:2c: 94:ac:97:34:4b:69:f9:14:64:0d:7d:12:14:15:08:39:5d:64: c9:63:0a:28:24:fc:77:fb:c4:fb:8d:14:2d:9c:5d:de:bf:7c: c2:8d:0c:9f:4c:bf:80:24:ef:37:47:fc:93:a2:fd:9f:a7:1f: 1e:36:3a:c9:2f:ab:58:53:45:2c:91:b0:64:07:95:b3:40:6c: 15:48:6a:d9:1b:73:00:cb:f7:f9:17:8d:76:a7:f8:b0:bb:00: a9:85:be:8c:bd:f8:9f:15:2b:87:fb:ed:d4:f4:4a:a2:a4:66: 2c:66:b4:30:00:c0:37:0a:f3:dc:7a:cb:42:d2:29:96:49:f9: 2d:d5:71:f1:43:0c:ce:90:8b:21:6d:6d:9e:24:ce:9c:50:b9: e4:78:b7:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCyEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkE0NDcxMTAvBgNVBAUTKERDOThCNTQ0QjE2QzQ5QTk4REQwNTg1Q0Y5NjcyNDI2 NDE1NTJFQTQwHhcNMjUwNjMwMTkyNTQ3WhcNMjUwNzA3MTkyNTQ3WjAYMRYwFAYD VQQDEw02ODYyZTRiYi1lYWI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1VmuEnrWuUrYy5afQ6xeVmO+cE2X6/7Xi/rHVxGkp9L+OVDG7DiGpTkMn84j pBkMqrkm5eobKCNeQr17TWCOnqf+4ryGFczAyEn/Hxh5URpj09xIeV4KhhAGOr2y rLTlcrA+hZckbASK5pxKbQyJ5h1j7MMR05v7lXFx+AwkxJnD1o2EeA6qcm6F8n1R Brn8n3NrI6g7GAwSvnqm+8QJLW236rldzE6neaiaRGoyYyWMWgc8JX9T9refva+t akFA/jbw6eTOlnfTAbC/T3u0z0VZNyAUf+emYV9HEexEJX49YL28gJILFYEPd65b 5IYnzKluh7BBGkipAR8ncHbFUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFH6W79c 54mN+iEO/U7lh23CT4tzMB8GA1UdIwQYMBaAFNyYtUSxbEmpjdBYXPlnJCZBVS6k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTQ0Ny81RjRDNkNGMjQy NjIxMUVBOTRDNUM0NjZDNEY5QUUwMi8zSmkxUkxGc1NhbU4wRmhjLVdja0prRlZM cVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNKaTFSTEZzU2FtTjBGaGMtV2NrSmtGVkxxUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTQ0Ny81RjRDNkNGMjQyNjIxMUVBOTRDNUM0NjZDNEY5QUUwMi8zSmkxUkxGc1Nh bU4wRmhjLVdja0prRlZMcVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAz7+W4A2Gzo1TZqJnYK6TEkHzGELZsEFhc+8t49H3T8z4RQqzxfpH0 W5Mw+BxpaVmxTHhFfJKwnnmFvFv8RctAvSI/yxezd9CWgbxLU9v3uVAQ0cFd8UaJ mXKEyKnlrY4TOq7p5xC/UbZoDyyUrJc0S2n5FGQNfRIUFQg5XWTJYwooJPx3+8T7 jRQtnF3ev3zCjQyfTL+AJO83R/yTov2fpx8eNjrJL6tYU0UskbBkB5WzQGwVSGrZ G3MAy/f5F412p/iwuwCphb6MvfifFSuH++3U9EqipGYsZrQwAMA3CvPcestC0imW Sfkt1XHxQwzOkIshbW2eJM6cULnkeLeu -----END CERTIFICATE-----Generated at Wed Jul 2 07:06:50 2025 by rpki-client