$ rpki-client -vvf rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.mft File: 3Y89lj-o0fItV_Tfspq9cNJVjjc.mft (raw, json) Hash identifier: k42CxncHOzrWulrvFKTYICS1GMmoeipdZxVSWzbe/fo= Subject key identifier: F9:15:3B:32:2A:94:7D:3B:94:FC:E9:9F:BC:9C:C8:2C:0F:96:FA:8F Authority key identifier: DD:8F:3D:96:3F:A8:D1:F2:2D:57:F4:DF:B2:9A:BD:70:D2:55:8E:37 Certificate issuer: /CN=A91D506C/serialNumber=DD8F3D963FA8D1F22D57F4DFB29ABD70D2558E37 Certificate serial: 02B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Y89lj-o0fItV_Tfspq9cNJVjjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.mft Manifest number: 02AE Signing time: Sun 11 May 2025 01:00:51 +0000 Manifest this update: Sun 11 May 2025 01:00:51 +0000 Manifest next update: Sun 18 May 2025 01:00:51 +0000 Files and hashes: 1: 3Y89lj-o0fItV_Tfspq9cNJVjjc.crl (hash: Kk9dbecHb549zkva9uAgycxnFVsEXKcvCuoOV4Nmd3I=) 2: 76C5241CF47311EC8721C33DC4F9AE02.roa (hash: g19FhTBXCPfsej+IJgF1Do8UhJTPPb20EhKNCmaxyOU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.crl rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Y89lj-o0fItV_Tfspq9cNJVjjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 01:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 689 (0x2b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D506C, serialNumber=DD8F3D963FA8D1F22D57F4DFB29ABD70D2558E37 Validity Not Before: May 11 01:00:51 2025 GMT Not After : May 18 01:00:51 2025 GMT Subject: CN=681ff6c3-1127 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e4:ab:f0:a2:cb:6d:e5:6c:fa:47:1c:df:9f: 8f:a7:55:a0:62:33:31:5b:1e:71:6e:9a:b4:09:3a: 7c:a1:ed:73:ad:aa:b7:2c:bd:3a:ee:d8:fa:b5:37: 82:51:7f:d5:0c:30:09:a0:a9:41:86:a4:c8:a3:2d: ab:33:ca:55:43:ff:a9:d4:7e:9a:25:f3:da:92:8a: c3:7a:b5:c7:b9:ca:dd:eb:fd:9e:7e:36:54:74:7e: d6:2d:1a:b9:a9:8b:db:7b:05:32:16:c7:35:85:c2: 67:2d:17:83:10:f6:e7:b2:e1:53:f0:e5:e6:19:1d: 9e:cb:56:f9:3c:7e:26:a1:b7:e6:db:da:8d:c6:2f: 2a:95:85:1b:3e:99:2c:c3:7d:e8:c8:9c:cc:28:68: 79:21:18:1b:c9:5e:bc:e3:69:29:ed:12:a9:b3:21: dd:4e:c9:a2:4f:04:02:d6:3c:72:85:7b:48:c2:5a: f7:74:da:f3:f3:71:92:1d:87:f8:70:21:f6:62:bf: 3e:12:dc:3c:1d:45:db:9a:a4:24:14:7c:87:52:bf: 01:ff:43:64:ce:36:b0:a7:6c:44:a6:a9:fa:31:94: af:4f:a1:f3:1f:8b:ea:12:b3:2c:c2:5e:06:74:00: 01:f8:7b:26:fd:44:80:60:dd:95:17:62:cf:ce:fe: b2:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:15:3B:32:2A:94:7D:3B:94:FC:E9:9F:BC:9C:C8:2C:0F:96:FA:8F X509v3 Authority Key Identifier: keyid:DD:8F:3D:96:3F:A8:D1:F2:2D:57:F4:DF:B2:9A:BD:70:D2:55:8E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Y89lj-o0fItV_Tfspq9cNJVjjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:c1:6e:23:cf:ba:3b:6d:6f:35:5a:91:e6:13:5d:24:39:23: 7b:ac:84:1f:42:96:15:4b:35:b1:3c:3d:39:3b:b0:ef:7c:e2: 2b:45:03:39:a6:d1:3b:6f:bd:3f:4d:6a:20:23:bb:31:52:de: c9:cf:e1:84:fc:b3:0f:e3:a9:98:f1:a4:a4:53:f8:ac:69:59: b2:71:af:78:77:50:ca:45:b6:b4:c8:0a:46:b2:4f:27:57:03: 3b:0f:96:c8:f5:d2:72:e2:2b:c7:20:a4:f5:84:b5:fe:14:0a: 70:f2:66:2f:c5:d7:01:71:7d:09:32:9b:35:37:8c:bd:a9:90: 2e:6a:8e:86:42:69:8f:ee:ac:f4:89:60:66:1f:02:ff:fa:01: ed:2f:a9:6d:54:83:90:81:e3:0d:99:cf:f9:2e:1c:a2:2e:81: 56:25:e3:af:24:80:ad:35:cf:a8:3f:f6:29:d8:42:57:a8:9f: 5a:b0:b6:d7:5c:70:80:45:99:65:0c:bc:45:59:e6:d2:9b:6e: 52:fb:0f:e6:27:1b:39:ad:b0:62:83:ab:ff:72:3c:95:d5:ed: 5d:2b:b5:09:1e:dd:bb:49:9d:a6:17:20:8e:1f:89:23:ad:bc: 71:da:58:e0:b9:eb:80:7b:df:7d:ee:29:fe:f0:36:af:f7:b8: 20:19:70:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUwNkMxMTAvBgNVBAUTKEREOEYzRDk2M0ZBOEQxRjIyRDU3RjRERkIyOUFCRDcw RDI1NThFMzcwHhcNMjUwNTExMDEwMDUxWhcNMjUwNTE4MDEwMDUxWjAYMRYwFAYD VQQDEw02ODFmZjZjMy0xMTI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuuSr8KLLbeVs+kcc35+Pp1WgYjMxWx5xbpq0CTp8oe1zraq3LL067tj6tTeC UX/VDDAJoKlBhqTIoy2rM8pVQ/+p1H6aJfPakorDerXHucrd6/2efjZUdH7WLRq5 qYvbewUyFsc1hcJnLReDEPbnsuFT8OXmGR2ey1b5PH4mobfm29qNxi8qlYUbPpks w33oyJzMKGh5IRgbyV6842kp7RKpsyHdTsmiTwQC1jxyhXtIwlr3dNrz83GSHYf4 cCH2Yr8+Etw8HUXbmqQkFHyHUr8B/0Nkzjawp2xEpqn6MZSvT6HzH4vqErMswl4G dAAB+Hsm/USAYN2VF2LPzv6yBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPkVOzIq lH07lPzpn7ycyCwPlvqPMB8GA1UdIwQYMBaAFN2PPZY/qNHyLVf037KavXDSVY43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTA2Qy80NjYxOEIxQ0Y0 NkUxMUVDOEM2MDcwMEZDNEY5QUUwMi8zWTg5bGotbzBmSXRWX1Rmc3BxOWNOSlZq amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNZODlsai1vMGZJdFZfVGZzcHE5Y05KVmpqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTA2Qy80NjYxOEIxQ0Y0NkUxMUVDOEM2MDcwMEZDNEY5QUUwMi8zWTg5bGotbzBm SXRWX1Rmc3BxOWNOSlZqamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfwW4jz7o7bW81WpHmE10kOSN7rIQfQpYVSzWxPD05O7DvfOIrRQM5 ptE7b70/TWogI7sxUt7Jz+GE/LMP46mY8aSkU/isaVmyca94d1DKRba0yApGsk8n VwM7D5bI9dJy4ivHIKT1hLX+FApw8mYvxdcBcX0JMps1N4y9qZAuao6GQmmP7qz0 iWBmHwL/+gHtL6ltVIOQgeMNmc/5LhyiLoFWJeOvJICtNc+oP/Yp2EJXqJ9asLbX XHCARZllDLxFWebSm25S+w/mJxs5rbBig6v/cjyV1e1dK7UJHt27SZ2mFyCOH4kj rbxx2ljgueuAe9997in+8Dav97ggGXB6 -----END CERTIFICATE-----Generated at Mon May 12 22:04:20 2025 by rpki-client