$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA6E6/3B83AFE0F0D011ED8050766AC4F9AE02/kS3Nd84XYnPZShzEJZKtBclnamI.mft File: kS3Nd84XYnPZShzEJZKtBclnamI.mft (raw, json) Hash identifier: pt9MCWAlFb41YKMiE1DvuA+Jab2+ZMJaZUK468hZyXM= Subject key identifier: BB:F4:5B:FA:63:AD:64:0E:B0:8C:3C:0C:4D:7E:E0:A0:40:1D:E9:91 Authority key identifier: 91:2D:CD:77:CE:17:62:73:D9:4A:1C:C4:25:92:AD:05:C9:67:6A:62 Certificate issuer: /CN=A91CA6E6/serialNumber=912DCD77CE176273D94A1CC42592AD05C9676A62 Certificate serial: 0191 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kS3Nd84XYnPZShzEJZKtBclnamI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA6E6/3B83AFE0F0D011ED8050766AC4F9AE02/kS3Nd84XYnPZShzEJZKtBclnamI.mft Manifest number: 0267 Signing time: Thu 03 Jul 2025 03:33:09 +0000 Manifest this update: Thu 03 Jul 2025 03:33:08 +0000 Manifest next update: Thu 10 Jul 2025 03:33:08 +0000 Files and hashes: 1: kS3Nd84XYnPZShzEJZKtBclnamI.crl (hash: JeSz1SGqJ1m/RHT2clFQuXAjsclssTk2OzRzaEsfo6w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA6E6/3B83AFE0F0D011ED8050766AC4F9AE02/kS3Nd84XYnPZShzEJZKtBclnamI.crl rsync://rpki.apnic.net/member_repository/A91CA6E6/3B83AFE0F0D011ED8050766AC4F9AE02/kS3Nd84XYnPZShzEJZKtBclnamI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kS3Nd84XYnPZShzEJZKtBclnamI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 401 (0x191) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA6E6, serialNumber=912DCD77CE176273D94A1CC42592AD05C9676A62 Validity Not Before: Jul 3 03:33:08 2025 GMT Not After : Jul 10 03:33:08 2025 GMT Subject: CN=6865f9f4-bcb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:94:e4:d5:36:10:4f:a5:f8:d6:39:b5:9d:4e: 93:53:14:72:39:76:24:62:87:da:ef:78:56:51:53: 10:d0:96:c3:6e:fa:ca:19:51:52:a9:ff:40:52:48: 3b:cd:ad:b0:c6:29:fe:26:7d:2c:d0:8c:1b:39:3e: 15:14:67:c6:ed:67:93:81:8d:68:02:36:d2:09:93: 8b:f0:6f:c0:5f:83:52:1d:85:90:d9:0a:21:41:29: be:2e:eb:90:9d:0f:43:cb:20:e5:f7:33:63:ec:98: 76:fa:fe:32:bf:7a:b9:28:2c:b4:6b:d3:91:e6:f3: a2:a9:14:21:52:98:76:5f:b5:5d:55:7c:4d:22:92: 4e:40:bc:85:80:a3:2e:10:b2:0a:a8:c5:de:6e:9b: ee:94:a1:39:8b:f6:32:e5:85:bd:1f:e5:fb:ad:dd: 23:6e:34:03:93:53:c9:3d:0a:04:6a:a0:45:a1:85: 89:79:fc:4e:17:89:3d:6a:a4:e7:a6:1e:da:fd:31: 02:27:07:b5:c0:c0:0b:78:22:5a:5a:ce:c2:ce:23: 82:69:4e:10:40:a1:ed:cc:ae:5d:17:a7:d7:2d:03: e4:c4:d4:b1:9a:a1:52:67:fd:fb:61:1f:4d:04:87: a8:05:03:28:ec:b8:36:8a:f3:97:84:e0:df:ef:c2: 58:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:F4:5B:FA:63:AD:64:0E:B0:8C:3C:0C:4D:7E:E0:A0:40:1D:E9:91 X509v3 Authority Key Identifier: keyid:91:2D:CD:77:CE:17:62:73:D9:4A:1C:C4:25:92:AD:05:C9:67:6A:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA6E6/3B83AFE0F0D011ED8050766AC4F9AE02/kS3Nd84XYnPZShzEJZKtBclnamI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kS3Nd84XYnPZShzEJZKtBclnamI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA6E6/3B83AFE0F0D011ED8050766AC4F9AE02/kS3Nd84XYnPZShzEJZKtBclnamI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c7:14:57:c5:88:02:3b:71:34:39:8b:8e:29:04:45:68:0a:2c: e5:b9:e2:69:7c:06:39:6b:b7:e2:ca:23:1d:aa:0b:eb:3f:ab: b6:63:f3:44:68:0c:ed:7a:4b:1a:09:fc:c6:07:17:56:c4:bf: b1:60:99:e0:7d:76:f3:ba:68:cc:a1:cd:a8:32:0c:63:86:15: 16:d5:1e:9f:ce:2c:b0:bb:86:4d:04:fe:9f:49:68:00:c1:b8: be:74:72:69:61:32:27:7b:de:65:1f:2b:22:a2:ef:26:64:7d: d0:a0:7a:67:74:4d:01:88:9b:3c:ee:5c:e6:17:65:39:57:13: d7:a1:5d:56:7e:be:db:a7:c7:44:25:0e:51:f2:cc:6b:c6:b6: f2:f3:2b:b0:5e:5e:3b:09:5b:f0:ae:65:06:97:8d:4d:0e:0e: f1:4d:0d:a0:4d:8f:b2:5d:0c:5a:42:10:ad:6f:00:8b:62:52: 6d:3d:65:b0:cf:d7:f9:70:be:a8:6e:16:ad:9a:4d:3d:1f:17: 67:8d:c9:d5:d8:3f:d2:8e:1a:5b:0c:ba:c2:1b:0a:e7:2a:0f: c1:c4:43:2e:e4:27:19:3a:38:40:95:8d:89:76:9a:4c:12:d6: 99:06:1f:48:59:ef:2c:f0:3a:6f:60:80:7b:6d:3d:22:ae:46: 60:6a:91:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0E2RTYxMTAvBgNVBAUTKDkxMkRDRDc3Q0UxNzYyNzNEOTRBMUNDNDI1OTJBRDA1 Qzk2NzZBNjIwHhcNMjUwNzAzMDMzMzA4WhcNMjUwNzEwMDMzMzA4WjAYMRYwFAYD VQQDEw02ODY1ZjlmNC1iY2I1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA35Tk1TYQT6X41jm1nU6TUxRyOXYkYofa73hWUVMQ0JbDbvrKGVFSqf9AUkg7 za2wxin+Jn0s0IwbOT4VFGfG7WeTgY1oAjbSCZOL8G/AX4NSHYWQ2QohQSm+LuuQ nQ9DyyDl9zNj7Jh2+v4yv3q5KCy0a9OR5vOiqRQhUph2X7VdVXxNIpJOQLyFgKMu ELIKqMXebpvulKE5i/Yy5YW9H+X7rd0jbjQDk1PJPQoEaqBFoYWJefxOF4k9aqTn ph7a/TECJwe1wMALeCJaWs7CziOCaU4QQKHtzK5dF6fXLQPkxNSxmqFSZ/37YR9N BIeoBQMo7Lg2ivOXhODf78JYuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLv0W/pj rWQOsIw8DE1+4KBAHemRMB8GA1UdIwQYMBaAFJEtzXfOF2Jz2UocxCWSrQXJZ2pi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQTZFNi8zQjgzQUZFMEYw RDAxMUVEODA1MDc2NkFDNEY5QUUwMi9rUzNOZDg0WFluUFpTaHpFSlpLdEJjbG5h bUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tTM05kODRYWW5QWlNoekVKWkt0QmNsbmFtSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QTZFNi8zQjgzQUZFMEYwRDAxMUVEODA1MDc2NkFDNEY5QUUwMi9rUzNOZDg0WFlu UFpTaHpFSlpLdEJjbG5hbUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDHFFfFiAI7cTQ5i44pBEVoCizlueJpfAY5a7fiyiMdqgvrP6u2Y/NE aAzteksaCfzGBxdWxL+xYJngfXbzumjMoc2oMgxjhhUW1R6fziywu4ZNBP6fSWgA wbi+dHJpYTIne95lHysiou8mZH3QoHpndE0BiJs87lzmF2U5VxPXoV1Wfr7bp8dE JQ5R8sxrxrby8yuwXl47CVvwrmUGl41NDg7xTQ2gTY+yXQxaQhCtbwCLYlJtPWWw z9f5cL6obhatmk09HxdnjcnV2D/SjhpbDLrCGwrnKg/BxEMu5CcZOjhAlY2JdppM EtaZBh9IWe8s8DpvYIB7bT0irkZgapGH -----END CERTIFICATE-----Generated at Fri Jul 4 23:12:48 2025 by rpki-client