$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6DB3/53AA1BD4C60811EC9B31446DC4F9AE02/A3JG1RS4I0Dt4GKJvxvIxFnb_OU.mft File: A3JG1RS4I0Dt4GKJvxvIxFnb_OU.mft (raw, json) Hash identifier: zVD9zHp1wUsJNVry7Wrl9f3VrtgeDdlHZ4r0ZjpfnXQ= Subject key identifier: AD:7D:20:36:7B:CA:FD:5D:73:3C:2A:4B:27:32:99:D5:22:46:74:B6 Authority key identifier: 03:72:46:D5:14:B8:23:40:ED:E0:62:89:BF:1B:C8:C4:59:DB:FC:E5 Certificate issuer: /CN=A91E6DB3/serialNumber=037246D514B82340EDE06289BF1BC8C459DBFCE5 Certificate serial: 032D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3JG1RS4I0Dt4GKJvxvIxFnb_OU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6DB3/53AA1BD4C60811EC9B31446DC4F9AE02/A3JG1RS4I0Dt4GKJvxvIxFnb_OU.mft Manifest number: 0327 Signing time: Sun 11 May 2025 00:41:56 +0000 Manifest this update: Sun 11 May 2025 00:41:56 +0000 Manifest next update: Sun 18 May 2025 00:41:56 +0000 Files and hashes: 1: A3JG1RS4I0Dt4GKJvxvIxFnb_OU.crl (hash: 8XC/FoGMoPpD7chsnrhqbDQk0B7RNJ8xrm+dXZvi8fc=) 2: 67A55414D56911EFB3E08134C4F9AE02.roa (hash: 6JpjDff62wDTfk1naPEndRnRsudFZskUVlbVd/hGOl8=) 3: 671C31AAC6C811ECA5A9AB33C4F9AE02.roa (hash: +vJahyBsj/iwD6Uf+V5LVvoqUetqk1SrdYTgQvG1J8M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6DB3/53AA1BD4C60811EC9B31446DC4F9AE02/A3JG1RS4I0Dt4GKJvxvIxFnb_OU.crl rsync://rpki.apnic.net/member_repository/A91E6DB3/53AA1BD4C60811EC9B31446DC4F9AE02/A3JG1RS4I0Dt4GKJvxvIxFnb_OU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3JG1RS4I0Dt4GKJvxvIxFnb_OU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 00:41:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 813 (0x32d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6DB3, serialNumber=037246D514B82340EDE06289BF1BC8C459DBFCE5 Validity Not Before: May 11 00:41:56 2025 GMT Not After : May 18 00:41:56 2025 GMT Subject: CN=681ff254-dc38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ad:98:7e:41:00:0b:d0:93:0e:d7:8e:a5:6e: f6:61:f9:82:64:1d:ba:be:91:a7:aa:78:dc:00:a9: 89:67:ed:f2:5d:3a:44:31:b9:11:9c:dc:a6:56:cf: 8c:a3:aa:2c:12:6c:85:f6:6d:31:19:19:5d:ec:72: d0:7b:da:f0:12:d6:9d:9d:b2:f8:4d:03:23:b1:10: 97:81:19:dc:a2:1c:5b:7d:e6:42:18:d2:26:31:45: 45:f8:d1:28:b3:b3:ce:c5:c7:a8:74:bd:46:6c:b2: 0b:4b:14:2b:5d:9a:c1:9a:17:20:0f:e7:e5:db:0e: 30:f1:31:9d:6f:f6:fe:8b:4e:d2:02:e7:b9:15:d2: c3:eb:91:ab:45:36:e9:4d:e8:51:3b:77:d7:0c:7f: e8:de:3e:c5:50:d1:0a:39:95:0f:0e:5f:01:a8:a8: 09:f3:30:6f:ff:df:61:3a:57:be:1c:f5:b8:51:16: c4:f6:33:a2:96:c1:df:8e:ee:06:08:9f:34:65:27: ca:78:f7:16:ee:fb:62:03:e7:72:dc:aa:4c:e6:22: 73:0f:9f:08:16:5c:b2:59:0d:c4:8e:5b:4e:af:64: ad:c4:de:2a:a4:2e:a1:ae:6b:0e:10:23:8e:0c:fc: 40:06:43:05:55:17:84:72:dd:9e:66:91:3a:76:a3: 57:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:7D:20:36:7B:CA:FD:5D:73:3C:2A:4B:27:32:99:D5:22:46:74:B6 X509v3 Authority Key Identifier: keyid:03:72:46:D5:14:B8:23:40:ED:E0:62:89:BF:1B:C8:C4:59:DB:FC:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6DB3/53AA1BD4C60811EC9B31446DC4F9AE02/A3JG1RS4I0Dt4GKJvxvIxFnb_OU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3JG1RS4I0Dt4GKJvxvIxFnb_OU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6DB3/53AA1BD4C60811EC9B31446DC4F9AE02/A3JG1RS4I0Dt4GKJvxvIxFnb_OU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:cc:1e:7a:25:d8:63:74:8a:38:e1:72:da:a2:58:96:13:d3: 55:e4:09:c7:ab:21:16:7d:aa:41:ef:3f:9e:86:c8:7d:c9:e4: e1:e1:ae:a4:46:85:37:9d:3f:5f:c0:ce:e8:24:80:dd:2f:25: 21:43:a8:8c:38:57:4f:70:c4:61:ad:93:db:22:ec:9a:8a:2d: 24:b0:80:ce:8e:85:ce:9c:05:4e:90:c5:68:ec:be:17:35:78: e7:56:52:de:d0:af:06:cb:44:ff:7c:c6:2b:91:b3:c0:38:a3: c7:37:7a:d7:df:c2:da:4f:b2:1d:00:ef:2b:65:d2:b2:59:35: 6f:86:52:8f:7c:1f:29:97:e3:fa:d0:8a:d3:c1:cb:cd:93:39: 89:f4:8f:e6:3d:7b:59:da:6c:1f:88:c7:8b:96:ef:d6:37:de: d5:cd:43:cf:f0:ad:de:7d:75:35:39:f7:34:03:22:4e:44:8c: b2:3c:bf:e8:4a:4d:51:0b:49:91:52:76:9b:72:e5:2b:42:d4: 27:fc:e8:ce:b4:34:01:e0:ce:98:5c:7d:1a:14:90:0c:17:a4: e7:c0:61:3e:2d:06:f5:a0:25:d4:e2:19:1a:54:23:98:74:4f: ff:27:b9:c8:12:32:d7:d9:88:c2:08:b3:90:20:00:30:f6:ed: e6:bc:2f:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAy0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZEQjMxMTAvBgNVBAUTKDAzNzI0NkQ1MTRCODIzNDBFREUwNjI4OUJGMUJDOEM0 NTlEQkZDRTUwHhcNMjUwNTExMDA0MTU2WhcNMjUwNTE4MDA0MTU2WjAYMRYwFAYD VQQDEw02ODFmZjI1NC1kYzM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv62YfkEAC9CTDteOpW72YfmCZB26vpGnqnjcAKmJZ+3yXTpEMbkRnNymVs+M o6osEmyF9m0xGRld7HLQe9rwEtadnbL4TQMjsRCXgRncohxbfeZCGNImMUVF+NEo s7POxceodL1GbLILSxQrXZrBmhcgD+fl2w4w8TGdb/b+i07SAue5FdLD65GrRTbp TehRO3fXDH/o3j7FUNEKOZUPDl8BqKgJ8zBv/99hOle+HPW4URbE9jOilsHfju4G CJ80ZSfKePcW7vtiA+dy3KpM5iJzD58IFlyyWQ3EjltOr2StxN4qpC6hrmsOECOO DPxABkMFVReEct2eZpE6dqNXXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK19IDZ7 yv1dczwqSycymdUiRnS2MB8GA1UdIwQYMBaAFANyRtUUuCNA7eBiib8byMRZ2/zl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkRCMy81M0FBMUJENEM2 MDgxMUVDOUIzMTQ0NkRDNEY5QUUwMi9BM0pHMVJTNEkwRHQ0R0tKdnh2SXhGbmJf T1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EzSkcxUlM0STBEdDRHS0p2eHZJeEZuYl9PVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkRCMy81M0FBMUJENEM2MDgxMUVDOUIzMTQ0NkRDNEY5QUUwMi9BM0pHMVJTNEkw RHQ0R0tKdnh2SXhGbmJfT1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCszB56JdhjdIo44XLaoliWE9NV5AnHqyEWfapB7z+ehsh9yeTh4a6k RoU3nT9fwM7oJIDdLyUhQ6iMOFdPcMRhrZPbIuyaii0ksIDOjoXOnAVOkMVo7L4X NXjnVlLe0K8Gy0T/fMYrkbPAOKPHN3rX38LaT7IdAO8rZdKyWTVvhlKPfB8pl+P6 0IrTwcvNkzmJ9I/mPXtZ2mwfiMeLlu/WN97VzUPP8K3efXU1Ofc0AyJORIyyPL/o Sk1RC0mRUnabcuUrQtQn/OjOtDQB4M6YXH0aFJAMF6TnwGE+LQb1oCXU4hkaVCOY dE//J7nIEjLX2YjCCLOQIAAw9u3mvC+Y -----END CERTIFICATE-----Generated at Mon May 12 19:33:53 2025 by rpki-client