$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.mft File: 3oqNpw4WUAnRQNn2JFJNxNR51eg.mft (raw, json) Hash identifier: cN+bufN4OzTWUGNyw+1F1w4sK6UHfBMqbszqVK2N4+w= Subject key identifier: E2:C8:36:A3:D9:18:35:C1:F7:DD:4B:37:86:AE:09:4B:7D:85:4A:42 Authority key identifier: DE:8A:8D:A7:0E:16:50:09:D1:40:D9:F6:24:52:4D:C4:D4:79:D5:E8 Certificate issuer: /CN=A91DA13E/serialNumber=DE8A8DA70E165009D140D9F624524DC4D479D5E8 Certificate serial: 07D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oqNpw4WUAnRQNn2JFJNxNR51eg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.mft Manifest number: 07C2 Signing time: Mon 30 Jun 2025 21:26:59 +0000 Manifest this update: Mon 30 Jun 2025 21:26:58 +0000 Manifest next update: Mon 07 Jul 2025 21:26:58 +0000 Files and hashes: 1: 3oqNpw4WUAnRQNn2JFJNxNR51eg.crl (hash: oATaMqUcrGvW7cWf/ANH5ilUKGr/y56Xc+t0P1nEvx0=) 2: 29D6DCB2849211EE8F9C5870C4F9AE02.roa (hash: uenMBzygNtm8pOViOrVCvIQk55vDxQTLDfSdNpW+OjU=) 3: B9A51B1AFA4F11EDB82FCB1FC4F9AE02.roa (hash: pC04v+mNv7zR9Y+4n59q7qozKs19qd8Pl1ty97dV8dI=) 4: 298965AC06B611EBBBFD6B2CC4F9AE02.roa (hash: 4189wGj0EPbmCiBfwKVkbJETVgwnkFWeQOcnoateYoU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.crl rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oqNpw4WUAnRQNn2JFJNxNR51eg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 21:26:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2006 (0x7d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA13E, serialNumber=DE8A8DA70E165009D140D9F624524DC4D479D5E8 Validity Not Before: Jun 30 21:26:58 2025 GMT Not After : Jul 7 21:26:58 2025 GMT Subject: CN=68630122-1620 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:d0:e8:f8:f1:38:fe:23:3a:4b:3d:eb:93:8b: 2a:d4:44:fd:cf:f5:3e:b6:f9:8c:28:6f:29:29:1a: 06:4e:0e:28:b4:9b:e5:9a:c8:12:f9:45:81:97:fe: a9:f3:b8:a2:5b:e1:c4:93:af:53:99:0e:d8:83:41: bb:e8:fa:15:14:46:ee:53:27:13:ed:d7:55:e4:7d: c5:e4:a9:4f:3c:20:31:97:58:27:12:ec:f5:94:2b: a5:e2:6f:04:bd:2b:3e:7c:61:ed:cb:40:04:9a:90: 5a:ef:56:c7:a4:2e:3c:0e:de:90:05:e1:7c:59:23: c6:60:9f:12:f4:cc:c2:a6:69:de:68:5d:fa:3a:5c: 61:4a:ae:a4:da:ae:03:24:a4:9b:3c:fb:4b:9d:a8: 36:dc:dd:6e:cc:c8:7a:02:7a:8a:78:e7:ed:b7:64: ec:d0:af:bf:e2:1c:41:15:ef:94:f8:33:27:96:27: 6b:94:bd:c0:aa:ed:b0:0a:0f:71:b9:66:2b:e1:6c: a0:6c:d9:82:e1:78:db:36:5a:5e:d2:10:fb:fa:d7: 38:0f:7b:40:76:0a:ff:92:49:de:c7:c4:87:1b:46: 12:cf:27:87:46:b2:a3:1d:d7:bd:77:33:3c:dc:17: 0d:3b:e2:20:4b:1d:6a:48:8c:4b:31:7c:ab:34:c9: b8:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:C8:36:A3:D9:18:35:C1:F7:DD:4B:37:86:AE:09:4B:7D:85:4A:42 X509v3 Authority Key Identifier: keyid:DE:8A:8D:A7:0E:16:50:09:D1:40:D9:F6:24:52:4D:C4:D4:79:D5:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oqNpw4WUAnRQNn2JFJNxNR51eg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:94:cb:fe:12:46:e2:ce:df:2d:38:20:9a:c7:77:3a:a2:bd: ab:7f:ff:3c:5c:d9:6a:28:92:2e:5c:b0:32:c1:a5:04:b9:36: 6e:00:fd:9c:dd:73:12:27:9c:29:04:e5:88:49:4d:33:ff:dd: af:1e:25:40:9b:b5:10:49:41:48:c6:c2:3f:cc:c9:2c:91:b5: 70:39:c7:36:e8:56:ce:c6:2c:43:89:c6:78:a4:54:03:87:ee: dc:9b:1b:fc:3c:1c:a0:22:7d:68:2b:6e:e2:f3:07:54:21:2f: f6:58:65:d0:59:44:d0:3e:75:58:57:42:95:87:27:67:a0:57: 30:1c:4c:dc:0c:56:f1:dd:48:7e:84:47:cf:e4:18:ba:b5:72: c0:37:ea:b8:88:5d:8b:de:7f:7d:14:be:d3:4a:8b:33:bd:ef: 1b:54:6e:06:64:3e:f6:7a:4c:73:be:83:b8:5e:c8:7c:8e:c4: fe:0d:94:65:e5:5c:0c:20:96:f8:57:44:a5:d5:04:4a:00:c0: 3d:69:21:07:47:d7:0a:47:56:48:b5:53:43:4a:f1:33:f2:17: b9:6b:d6:6a:5f:3a:c9:fa:1e:6a:29:54:ed:d9:33:ce:3c:60: 51:8b:43:e2:0d:2e:f1:73:db:cc:3e:08:49:e7:28:ac:32:47: 4d:01:fd:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REExM0UxMTAvBgNVBAUTKERFOEE4REE3MEUxNjUwMDlEMTQwRDlGNjI0NTI0REM0 RDQ3OUQ1RTgwHhcNMjUwNjMwMjEyNjU4WhcNMjUwNzA3MjEyNjU4WjAYMRYwFAYD VQQDEw02ODYzMDEyMi0xNjIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsdDo+PE4/iM6Sz3rk4sq1ET9z/U+tvmMKG8pKRoGTg4otJvlmsgS+UWBl/6p 87iiW+HEk69TmQ7Yg0G76PoVFEbuUycT7ddV5H3F5KlPPCAxl1gnEuz1lCul4m8E vSs+fGHty0AEmpBa71bHpC48Dt6QBeF8WSPGYJ8S9MzCpmneaF36OlxhSq6k2q4D JKSbPPtLnag23N1uzMh6AnqKeOftt2Ts0K+/4hxBFe+U+DMnlidrlL3Aqu2wCg9x uWYr4WygbNmC4XjbNlpe0hD7+tc4D3tAdgr/kknex8SHG0YSzyeHRrKjHde9dzM8 3BcNO+IgSx1qSIxLMXyrNMm49QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOLINqPZ GDXB991LN4auCUt9hUpCMB8GA1UdIwQYMBaAFN6KjacOFlAJ0UDZ9iRSTcTUedXo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTEzRS81NEQ2QTUwRTA2 QjUxMUVCOTM3MkQzMkJDNEY5QUUwMi8zb3FOcHc0V1VBblJRTm4ySkZKTnhOUjUx ZWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNvcU5wdzRXVUFuUlFObjJKRkpOeE5SNTFlZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTEzRS81NEQ2QTUwRTA2QjUxMUVCOTM3MkQzMkJDNEY5QUUwMi8zb3FOcHc0V1VB blJRTm4ySkZKTnhOUjUxZWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAflMv+Ekbizt8tOCCax3c6or2rf/88XNlqKJIuXLAywaUEuTZuAP2c 3XMSJ5wpBOWISU0z/92vHiVAm7UQSUFIxsI/zMkskbVwOcc26FbOxixDicZ4pFQD h+7cmxv8PBygIn1oK27i8wdUIS/2WGXQWUTQPnVYV0KVhydnoFcwHEzcDFbx3Uh+ hEfP5Bi6tXLAN+q4iF2L3n99FL7TSoszve8bVG4GZD72ekxzvoO4Xsh8jsT+DZRl 5VwMIJb4V0Sl1QRKAMA9aSEHR9cKR1ZItVNDSvEz8he5a9ZqXzrJ+h5qKVTt2TPO PGBRi0PiDS7xc9vMPghJ5yisMkdNAf3g -----END CERTIFICATE-----Generated at Tue Jul 1 20:56:03 2025 by rpki-client