$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft File: 3rTAuQf6yhxdN3a9SUb0uqjKazA.mft (raw, json) Hash identifier: a7ZjjSVNCS1FrJh/AU7wbRaq/fDk662vCq6uBCiXmwo= Subject key identifier: 48:D1:D4:73:59:08:B2:A6:A4:A0:EF:EC:D4:DC:43:B8:F5:91:DD:48 Authority key identifier: DE:B4:C0:B9:07:FA:CA:1C:5D:37:76:BD:49:46:F4:BA:A8:CA:6B:30 Certificate issuer: /CN=A91F3B5F/serialNumber=DEB4C0B907FACA1C5D3776BD4946F4BAA8CA6B30 Certificate serial: 30 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3rTAuQf6yhxdN3a9SUb0uqjKazA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft Manifest number: 2F Signing time: Thu 03 Jul 2025 07:57:17 +0000 Manifest this update: Thu 03 Jul 2025 07:57:16 +0000 Manifest next update: Thu 10 Jul 2025 07:57:16 +0000 Files and hashes: 1: 3rTAuQf6yhxdN3a9SUb0uqjKazA.crl (hash: Ow9+71HIgCFFUuPY8ZbCBZGz2C//laICFfpKHmKK/sM=) 2: 0B65C980136D11F09F542C81C4F9AE02.roa (hash: VBqh2E7rkd2+euZfBVuvn8Wuy6ZridPl7cQmEbFqT/k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.crl rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3rTAuQf6yhxdN3a9SUb0uqjKazA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48 (0x30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3B5F, serialNumber=DEB4C0B907FACA1C5D3776BD4946F4BAA8CA6B30 Validity Not Before: Jul 3 07:57:16 2025 GMT Not After : Jul 10 07:57:16 2025 GMT Subject: CN=686637dc-afba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:44:bb:8b:9b:22:5a:67:49:86:32:56:8e:de: 8c:25:7a:fd:a0:dc:91:cd:51:6f:87:d3:78:7b:0e: d0:6b:7a:37:a3:33:1a:0d:6f:b8:0a:f5:78:54:5e: 60:56:78:99:4d:8f:f7:b2:96:0d:44:12:ec:d9:3b: bc:29:05:d0:b8:5c:96:92:35:51:15:0b:5a:4f:8d: 49:e3:8f:65:ec:bb:ec:9a:e4:d0:a4:a8:6b:79:c6: 13:02:08:29:40:4b:b2:19:3e:84:da:ce:1d:71:36: 5f:91:ca:3e:94:1e:fe:65:7f:f8:b9:55:2e:e8:d6: a2:bc:2c:11:e9:71:af:bf:27:db:9a:6d:b9:3a:07: e5:29:fa:af:39:89:04:99:0f:e0:88:6d:58:d2:1b: 4d:21:9f:68:35:81:6f:05:8e:72:d7:4e:e8:4f:0a: 96:b8:59:ac:99:57:6a:9f:05:64:69:92:ac:98:dc: 5a:d0:b8:00:92:23:b5:dc:d9:ea:0c:a7:7f:09:53: fa:c3:74:05:aa:21:ea:5e:5f:a6:2a:b3:af:22:1c: 3f:5f:35:99:8f:a9:cd:04:8f:3a:35:de:57:6d:59: e8:8e:f4:11:93:c6:d4:cf:cf:a1:10:36:62:c7:99: 80:07:c6:81:6e:c0:71:d2:e4:33:7e:71:93:0e:3d: 44:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:D1:D4:73:59:08:B2:A6:A4:A0:EF:EC:D4:DC:43:B8:F5:91:DD:48 X509v3 Authority Key Identifier: keyid:DE:B4:C0:B9:07:FA:CA:1C:5D:37:76:BD:49:46:F4:BA:A8:CA:6B:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3rTAuQf6yhxdN3a9SUb0uqjKazA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:b1:16:a0:30:76:76:ca:e0:29:31:de:53:d0:d4:3c:98:37: 41:e1:eb:e3:8c:1d:79:13:1d:d5:bc:61:28:64:bc:77:f9:74: 79:03:c1:5e:ca:96:18:66:a2:02:f7:1d:45:cf:07:90:84:9e: 68:94:01:83:51:c6:ce:e8:3e:c5:04:80:84:23:80:ea:20:5c: 49:47:76:69:29:06:80:4d:0d:40:60:dc:f6:7e:e8:92:89:3f: 3f:81:86:40:cd:e4:b9:48:b4:ec:aa:f9:9f:9b:2e:8f:d4:b0: 49:c0:8a:a6:64:bf:8e:5d:1a:ed:7f:98:56:ac:ec:5a:ea:9a: 66:a4:72:17:07:18:6d:8b:2e:a4:df:97:19:98:d6:12:1c:d8: 75:dd:90:24:d4:96:13:21:50:2f:0c:78:a8:25:f6:23:c9:78: 4c:ac:b2:85:ff:b7:56:e5:ef:18:5b:87:63:e3:ef:97:01:4e: 6b:f5:af:65:57:2b:00:28:0b:4f:a1:8d:90:50:f8:88:80:53: 65:e1:13:a8:2a:f3:c8:b8:5f:87:a3:e6:bb:fa:79:10:f0:f6: eb:89:e8:e8:49:d7:1d:d7:10:0f:41:8e:40:70:56:75:44:4a: a6:81:f5:d7:1e:3c:5f:4a:de:95:2c:08:57:51:63:94:1a:e0: f2:08:52:17 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG M0I1RjExMC8GA1UEBRMoREVCNEMwQjkwN0ZBQ0ExQzVEMzc3NkJENDk0NkY0QkFB OENBNkIzMDAeFw0yNTA3MDMwNzU3MTZaFw0yNTA3MTAwNzU3MTZaMBgxFjAUBgNV BAMTDTY4NjYzN2RjLWFmYmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2RLuLmyJaZ0mGMlaO3owlev2g3JHNUW+H03h7DtBrejejMxoNb7gK9XhUXmBW eJlNj/eylg1EEuzZO7wpBdC4XJaSNVEVC1pPjUnjj2Xsu+ya5NCkqGt5xhMCCClA S7IZPoTazh1xNl+Ryj6UHv5lf/i5VS7o1qK8LBHpca+/J9uabbk6B+Up+q85iQSZ D+CIbVjSG00hn2g1gW8FjnLXTuhPCpa4WayZV2qfBWRpkqyY3FrQuACSI7Xc2eoM p38JU/rDdAWqIepeX6Yqs68iHD9fNZmPqc0Ejzo13ldtWeiO9BGTxtTPz6EQNmLH mYAHxoFuwHHS5DN+cZMOPUTjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUSNHUc1kI sqakoO/s1NxDuPWR3UgwHwYDVR0jBBgwFoAU3rTAuQf6yhxdN3a9SUb0uqjKazAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYzQjVGL0IxNzBDOTEyMTM2 NjExRjA4MkUzQzUwREM0RjlBRTAyLzNyVEF1UWY2eWh4ZE4zYTlTVWIwdXFqS2F6 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvM3JUQXVRZjZ5aHhkTjNhOVNVYjB1cWpLYXpBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYz QjVGL0IxNzBDOTEyMTM2NjExRjA4MkUzQzUwREM0RjlBRTAyLzNyVEF1UWY2eWh4 ZE4zYTlTVWIwdXFqS2F6QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACSxFqAwdnbK4Ckx3lPQ1DyYN0Hh6+OMHXkTHdW8YShkvHf5dHkDwV7K lhhmogL3HUXPB5CEnmiUAYNRxs7oPsUEgIQjgOogXElHdmkpBoBNDUBg3PZ+6JKJ Pz+BhkDN5LlItOyq+Z+bLo/UsEnAiqZkv45dGu1/mFas7FrqmmakchcHGG2LLqTf lxmY1hIc2HXdkCTUlhMhUC8MeKgl9iPJeEyssoX/t1bl7xhbh2Pj75cBTmv1r2VX KwAoC0+hjZBQ+IiAU2XhE6gq88i4X4ej5rv6eRDw9uuJ6OhJ1x3XEA9BjkBwVnVE SqaB9dcePF9K3pUsCFdRY5Qa4PIIUhc= -----END CERTIFICATE-----Generated at Thu Jul 3 20:04:06 2025 by rpki-client