$ rpki-client -vvf rpki.apnic.net/member_repository/A91D74A6/7171BBF2D19C11EF83CEAD3CC4F9AE02/3IDIXlEBCJqyQl0_yRd5haASXG4.mft File: 3IDIXlEBCJqyQl0_yRd5haASXG4.mft (raw, json) Hash identifier: O3nRLoj38+GZEhSPhlhGHTLHM3aBFwDyvJpc/IfXXJc= Subject key identifier: CC:87:BD:4A:C4:5D:FF:04:9E:55:6A:64:62:0C:67:80:01:24:47:1E Authority key identifier: DC:80:C8:5E:51:01:08:9A:B2:42:5D:3F:C9:17:79:85:A0:12:5C:6E Certificate issuer: /CN=A91D74A6/serialNumber=DC80C85E5101089AB2425D3FC9177985A0125C6E Certificate serial: 6C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3IDIXlEBCJqyQl0_yRd5haASXG4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D74A6/7171BBF2D19C11EF83CEAD3CC4F9AE02/3IDIXlEBCJqyQl0_yRd5haASXG4.mft Manifest number: 64 Signing time: Tue 01 Jul 2025 07:56:52 +0000 Manifest this update: Tue 01 Jul 2025 07:56:52 +0000 Manifest next update: Tue 08 Jul 2025 07:56:52 +0000 Files and hashes: 1: 3IDIXlEBCJqyQl0_yRd5haASXG4.crl (hash: XlZj/crMop/xuDDD+1xII/KgUt4+AN3oxlRPwMNYsJU=) 2: 727850D8D3EF11EFB596E00CC4F9AE02.roa (hash: hvte1LGzH8lQs5HlVIeT4otbezAzwXIr7d7vqIECmd8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D74A6/7171BBF2D19C11EF83CEAD3CC4F9AE02/3IDIXlEBCJqyQl0_yRd5haASXG4.crl rsync://rpki.apnic.net/member_repository/A91D74A6/7171BBF2D19C11EF83CEAD3CC4F9AE02/3IDIXlEBCJqyQl0_yRd5haASXG4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3IDIXlEBCJqyQl0_yRd5haASXG4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 07:56:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 108 (0x6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D74A6, serialNumber=DC80C85E5101089AB2425D3FC9177985A0125C6E Validity Not Before: Jul 1 07:56:52 2025 GMT Not After : Jul 8 07:56:52 2025 GMT Subject: CN=686394c4-187d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:49:ff:f5:58:27:d7:07:ab:ae:81:a1:1e:a2: b9:29:83:d5:e4:0f:1b:02:ca:52:2f:60:9d:51:17: 6b:d6:ee:4b:fb:74:29:03:7a:a4:a6:da:c6:fd:99: f2:12:9d:fe:6f:c6:f2:57:cd:ad:1c:fb:6e:e4:08: 88:6a:f4:f4:d0:90:e2:ed:cf:ee:7a:d2:a3:76:ef: ba:da:16:85:02:06:15:03:31:d3:f6:06:4f:05:e6: 5d:fa:7d:94:fc:bf:5e:08:52:c2:08:91:d0:da:f7: f4:14:7c:d2:74:1f:83:ab:2b:e6:39:5f:ff:98:c3: dd:b3:b7:8d:b3:b1:8b:fc:23:b1:37:52:fe:b0:ff: 31:70:e7:e9:06:7c:16:b1:44:38:bd:92:8b:35:45: 3e:6e:ce:97:d6:35:ba:8d:ee:57:d1:9e:f7:2a:11: 43:5b:4a:c7:eb:66:4a:ba:9a:af:f0:bb:09:cb:94: 07:4f:7f:39:a6:62:9f:3c:5d:e3:b3:42:49:a2:9b: 2b:72:9e:2c:0c:1b:95:85:04:b2:4f:bb:3a:20:e6: 8d:e9:09:f8:c6:0d:8d:a0:40:c4:22:62:86:23:de: bb:c5:f5:af:e0:a9:e7:69:1c:0c:d7:4f:f5:7f:5a: b2:dc:6b:41:d7:9f:ee:2a:3a:f1:e0:3f:7b:d2:8d: d8:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:87:BD:4A:C4:5D:FF:04:9E:55:6A:64:62:0C:67:80:01:24:47:1E X509v3 Authority Key Identifier: keyid:DC:80:C8:5E:51:01:08:9A:B2:42:5D:3F:C9:17:79:85:A0:12:5C:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D74A6/7171BBF2D19C11EF83CEAD3CC4F9AE02/3IDIXlEBCJqyQl0_yRd5haASXG4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3IDIXlEBCJqyQl0_yRd5haASXG4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D74A6/7171BBF2D19C11EF83CEAD3CC4F9AE02/3IDIXlEBCJqyQl0_yRd5haASXG4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:74:4c:7c:26:12:de:69:8b:8a:c8:46:26:b6:67:90:f0:5e: c3:a8:6a:be:09:60:d8:18:9b:76:8a:15:4d:2a:b0:3f:25:9a: 54:18:4f:f3:0e:bc:ab:90:39:be:7d:72:a0:90:32:92:ad:73: bc:0c:22:dc:4a:38:d0:e4:5c:4d:70:e0:7e:bf:90:a8:e3:98: 10:f2:4b:33:01:4e:3e:cc:75:82:eb:b8:31:86:75:01:a5:10: 08:ec:ff:1f:b6:47:cf:82:ee:72:2d:ca:93:7e:5e:70:fc:cc: 16:74:5d:a0:7c:4f:41:57:ae:20:2d:e7:ef:74:a2:ac:6e:29: a6:26:a6:36:b8:b5:1c:49:b2:af:38:6e:f9:35:15:16:80:1c: 7c:dc:10:e5:6f:68:66:3a:bf:f9:f5:47:0c:ce:86:bd:b3:ea: b6:c1:da:84:f8:c8:78:15:3c:bb:e4:85:b4:c4:da:6b:6a:08: 76:19:af:55:e4:2c:bc:1b:fc:a1:3d:c7:1d:cc:d3:9f:cd:15: 7c:74:c0:80:ec:b9:34:ab:c8:b8:01:76:b6:07:91:bd:41:b9: 63:9b:03:2d:9e:d4:58:c0:64:a3:94:14:e9:68:95:40:7c:02: a2:65:4c:4d:51:6b:38:a4:d8:45:1b:e5:e5:eb:32:6c:c7:29: 5f:7d:62:66 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE NzRBNjExMC8GA1UEBRMoREM4MEM4NUU1MTAxMDg5QUIyNDI1RDNGQzkxNzc5ODVB MDEyNUM2RTAeFw0yNTA3MDEwNzU2NTJaFw0yNTA3MDgwNzU2NTJaMBgxFjAUBgNV BAMTDTY4NjM5NGM0LTE4N2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1Sf/1WCfXB6uugaEeorkpg9XkDxsCylIvYJ1RF2vW7kv7dCkDeqSm2sb9mfIS nf5vxvJXza0c+27kCIhq9PTQkOLtz+560qN277raFoUCBhUDMdP2Bk8F5l36fZT8 v14IUsIIkdDa9/QUfNJ0H4OrK+Y5X/+Yw92zt42zsYv8I7E3Uv6w/zFw5+kGfBax RDi9kos1RT5uzpfWNbqN7lfRnvcqEUNbSsfrZkq6mq/wuwnLlAdPfzmmYp88XeOz QkmimytyniwMG5WFBLJPuzog5o3pCfjGDY2gQMQiYoYj3rvF9a/gqedpHAzXT/V/ WrLca0HXn+4qOvHgP3vSjdiJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUzIe9SsRd /wSeVWpkYgxngAEkRx4wHwYDVR0jBBgwFoAU3IDIXlEBCJqyQl0/yRd5haASXG4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ3NEE2LzcxNzFCQkYyRDE5 QzExRUY4M0NFQUQzQ0M0RjlBRTAyLzNJRElYbEVCQ0pxeVFsMF95UmQ1aGFBU1hH NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvM0lESVhsRUJDSnF5UWwwX3lSZDVoYUFTWEc0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ3 NEE2LzcxNzFCQkYyRDE5QzExRUY4M0NFQUQzQ0M0RjlBRTAyLzNJRElYbEVCQ0px eVFsMF95UmQ1aGFBU1hHNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABF0THwmEt5pi4rIRia2Z5DwXsOoar4JYNgYm3aKFU0qsD8lmlQYT/MO vKuQOb59cqCQMpKtc7wMItxKONDkXE1w4H6/kKjjmBDySzMBTj7MdYLruDGGdQGl EAjs/x+2R8+C7nItypN+XnD8zBZ0XaB8T0FXriAt5+90oqxuKaYmpja4tRxJsq84 bvk1FRaAHHzcEOVvaGY6v/n1RwzOhr2z6rbB2oT4yHgVPLvkhbTE2mtqCHYZr1Xk LLwb/KE9xx3M05/NFXx0wIDsuTSryLgBdrYHkb1BuWObAy2e1FjAZKOUFOlolUB8 AqJlTE1Razik2EUb5eXrMmzHKV99YmY= -----END CERTIFICATE-----Generated at Thu Jul 3 03:48:19 2025 by rpki-client