$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.mft File: r3mHQ9q2R4aKtmZzr3oTbC6g6ls.mft (raw, json) Hash identifier: uj2VCGBUIRlcMyJYlDrhh6vCNnpihfNN0Pnpvg0PpX8= Subject key identifier: 83:36:79:B5:73:8E:30:01:B5:0F:F7:BF:3E:44:C8:10:D8:5A:03:B7 Authority key identifier: AF:79:87:43:DA:B6:47:86:8A:B6:66:73:AF:7A:13:6C:2E:A0:EA:5B Certificate issuer: /CN=A91F5972/serialNumber=AF798743DAB647868AB66673AF7A136C2EA0EA5B Certificate serial: 0564 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.mft Manifest number: 055E Signing time: Mon 30 Jun 2025 23:46:36 +0000 Manifest this update: Mon 30 Jun 2025 23:46:35 +0000 Manifest next update: Mon 07 Jul 2025 23:46:35 +0000 Files and hashes: 1: r3mHQ9q2R4aKtmZzr3oTbC6g6ls.crl (hash: yD3qu0LWKEMFkrCBbhFwB6/67OlD2te1vqJEqCydoI8=) 2: B52EA19A6E0B11ECA6057963C4F9AE02.roa (hash: sRAPrM6e/yJbsGZwUamXGzz2TWejjmVOjZsdsTU0i6Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.crl rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 23:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1380 (0x564) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5972, serialNumber=AF798743DAB647868AB66673AF7A136C2EA0EA5B Validity Not Before: Jun 30 23:46:35 2025 GMT Not After : Jul 7 23:46:35 2025 GMT Subject: CN=686321dc-430e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:52:ac:8f:f2:3b:92:a3:ba:9a:23:08:83:af: 9f:69:df:41:02:da:e5:ec:ab:98:06:77:18:2b:27: e3:6c:3e:96:16:c9:33:68:bc:a8:6b:9c:e7:ff:1a: 65:8f:e8:0f:69:bc:14:cb:bf:c3:6b:c4:b9:25:98: 58:4a:c2:50:b4:0d:32:35:b2:76:ef:aa:6e:ab:ec: f1:23:78:25:22:40:6d:96:56:6b:96:e0:06:c4:d1: 28:43:57:41:3e:a5:d4:d4:61:ad:5a:6f:a6:7b:db: 78:cc:e4:e7:2b:a5:be:04:4d:a3:9b:db:d6:7d:db: 83:07:5a:91:49:c9:32:7e:77:8a:b5:e3:c0:31:7d: de:1e:30:c7:ed:12:8d:c6:7e:ee:fc:7d:23:35:b8: 60:cc:5d:87:1e:ad:f4:08:b1:06:21:15:69:7d:77: e5:c8:c5:fb:90:17:94:62:47:e4:ba:20:82:e0:36: 24:cb:ea:63:41:62:a7:ad:46:dd:95:3b:fa:44:5e: e7:a4:6d:92:39:c8:15:cb:2b:1f:9d:0f:5b:f8:bb: 84:50:02:8d:56:25:76:00:dd:dd:8e:ef:11:5f:b4: b5:17:08:8b:91:33:af:0b:fb:d0:03:57:d8:18:ef: b1:ef:f2:af:9e:04:1d:d8:96:36:66:ae:a3:45:5b: 86:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:36:79:B5:73:8E:30:01:B5:0F:F7:BF:3E:44:C8:10:D8:5A:03:B7 X509v3 Authority Key Identifier: keyid:AF:79:87:43:DA:B6:47:86:8A:B6:66:73:AF:7A:13:6C:2E:A0:EA:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:2a:4b:df:ae:c4:c3:33:ec:32:13:e4:3c:91:7f:1b:ef:bf: ea:7d:69:2a:4a:e2:6e:c2:45:c4:65:0d:9d:26:a8:87:8f:05: 82:e5:f3:ab:81:4c:aa:00:74:a4:94:ff:ec:8b:91:6a:e8:59: 63:1e:15:b0:27:8b:9f:00:5d:68:55:53:6b:42:d4:c8:a1:ad: 56:af:a4:b3:8d:b2:be:8a:71:aa:e9:d1:74:ee:95:5a:a5:13: 0e:91:ef:a5:09:08:73:f0:c3:bf:03:aa:fa:fa:1a:a7:2a:c4: 44:39:d3:48:00:b8:5e:1c:65:a6:99:b1:2d:43:93:4d:fc:a4: ac:c9:24:c1:77:bf:9c:21:f7:85:58:bc:9d:d0:a2:6a:da:eb: f7:01:07:e0:b4:b2:a5:73:af:98:c6:fb:e8:b1:6c:9c:bb:76: c2:1c:79:f6:3b:ba:6c:a4:b0:3f:b2:4e:75:f3:5f:98:86:23: ad:fa:56:62:dc:74:9c:f8:29:fc:0b:a8:6f:e6:76:2e:60:40: f8:6b:ce:aa:ad:61:34:0a:67:9f:af:25:23:43:b1:ff:60:61: 5a:6a:33:15:83:40:67:a9:0e:b8:82:25:0a:63:d9:b4:bb:2f: 0f:0b:cc:c4:f0:98:61:7a:cf:96:10:c4:4a:11:16:20:5c:da: 42:97:3f:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBWQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU5NzIxMTAvBgNVBAUTKEFGNzk4NzQzREFCNjQ3ODY4QUI2NjY3M0FGN0ExMzZD MkVBMEVBNUIwHhcNMjUwNjMwMjM0NjM1WhcNMjUwNzA3MjM0NjM1WjAYMRYwFAYD VQQDEw02ODYzMjFkYy00MzBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnVKsj/I7kqO6miMIg6+fad9BAtrl7KuYBncYKyfjbD6WFskzaLyoa5zn/xpl j+gPabwUy7/Da8S5JZhYSsJQtA0yNbJ276puq+zxI3glIkBtllZrluAGxNEoQ1dB PqXU1GGtWm+me9t4zOTnK6W+BE2jm9vWfduDB1qRSckyfneKtePAMX3eHjDH7RKN xn7u/H0jNbhgzF2HHq30CLEGIRVpfXflyMX7kBeUYkfkuiCC4DYky+pjQWKnrUbd lTv6RF7npG2SOcgVyysfnQ9b+LuEUAKNViV2AN3dju8RX7S1FwiLkTOvC/vQA1fY GO+x7/KvngQd2JY2Zq6jRVuGvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIM2ebVz jjABtQ/3vz5EyBDYWgO3MB8GA1UdIwQYMBaAFK95h0PatkeGirZmc696E2wuoOpb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTk3Mi85QkY2QzQ0RUYw MzExMUVCOTVGNzY3NDhDNEY5QUUwMi9yM21IUTlxMlI0YUt0bVp6cjNvVGJDNmc2 bHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3IzbUhROXEyUjRhS3RtWnpyM29UYkM2ZzZscy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTk3Mi85QkY2QzQ0RUYwMzExMUVCOTVGNzY3NDhDNEY5QUUwMi9yM21IUTlxMlI0 YUt0bVp6cjNvVGJDNmc2bHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTKkvfrsTDM+wyE+Q8kX8b77/qfWkqSuJuwkXEZQ2dJqiHjwWC5fOr gUyqAHSklP/si5Fq6FljHhWwJ4ufAF1oVVNrQtTIoa1Wr6SzjbK+inGq6dF07pVa pRMOke+lCQhz8MO/A6r6+hqnKsREOdNIALheHGWmmbEtQ5NN/KSsySTBd7+cIfeF WLyd0KJq2uv3AQfgtLKlc6+YxvvosWycu3bCHHn2O7pspLA/sk5181+YhiOt+lZi 3HSc+Cn8C6hv5nYuYED4a86qrWE0CmefryUjQ7H/YGFaajMVg0BnqQ64giUKY9m0 uy8PC8zE8Jhhes+WEMRKERYgXNpClz+C -----END CERTIFICATE-----Generated at Wed Jul 2 20:54:09 2025 by rpki-client