$ rpki-client -vvf rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.mft File: pi3nVqmxabvP97VW1DMAlV1A4yA.mft (raw, json) Hash identifier: 5YyWE+nFVQX2vnnfb2Y4XdnBZO77CepD5NK6XwkV4+c= Subject key identifier: 79:A0:DF:68:79:88:3E:B6:8D:A5:5F:7C:B3:FA:E3:CE:07:F0:22:1A Authority key identifier: A6:2D:E7:56:A9:B1:69:BB:CF:F7:B5:56:D4:33:00:95:5D:40:E3:20 Certificate issuer: /CN=A91104BD/serialNumber=A62DE756A9B169BBCFF7B556D43300955D40E320 Certificate serial: 0B6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pi3nVqmxabvP97VW1DMAlV1A4yA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.mft Manifest number: 0B65 Signing time: Fri 22 Aug 2025 19:12:51 +0000 Manifest this update: Fri 22 Aug 2025 19:12:50 +0000 Manifest next update: Fri 29 Aug 2025 19:12:50 +0000 Files and hashes: 1: pi3nVqmxabvP97VW1DMAlV1A4yA.crl (hash: ltivvFUyQUKDLYQ6dC/60FYn2YsBy7Ko6g5YuyJXKpg=) 2: D326CC30384411EA9D540B58C4F9AE02.roa (hash: y7gm3Ye3cCKsMlMiwHP3v0HJTLEmZvMTdt93lWQK5j4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.crl rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pi3nVqmxabvP97VW1DMAlV1A4yA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:12:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2924 (0xb6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91104BD, serialNumber=A62DE756A9B169BBCFF7B556D43300955D40E320 Validity Not Before: Aug 22 19:12:50 2025 GMT Not After : Aug 29 19:12:50 2025 GMT Subject: CN=68a8c132-46a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:06:ad:d1:95:4b:89:10:80:8f:d0:ea:43:cf: 81:21:b8:2d:a4:7f:35:87:e6:18:16:ed:90:ff:fc: 6e:fd:f8:1d:35:87:cf:2e:af:ff:1b:69:81:1d:aa: 42:ae:59:42:68:d4:f2:84:9b:07:9b:7a:95:b2:c8: 64:ae:56:dd:c6:df:ee:c9:1b:21:7b:fb:e9:66:fa: 0c:bc:d4:fd:0e:3c:b3:a0:32:00:55:d3:72:f9:b9: f2:e2:50:8f:96:7d:51:09:56:89:c8:b0:54:c0:e5: 04:d8:eb:dc:41:f3:62:b2:98:61:a9:1c:d7:66:3c: 83:4b:09:d5:a0:69:b8:49:b2:b3:78:0f:74:b9:0d: 8f:a0:55:f7:69:06:fa:59:6c:31:0c:43:49:d2:4d: b2:c0:cd:35:bf:8f:46:3e:63:5b:43:f3:3b:85:39: be:66:36:b1:7a:02:72:86:f5:be:15:4c:80:0b:b2: b8:ab:3d:d1:22:ec:ff:f9:32:74:32:ec:02:ef:f3: a4:29:9f:61:de:8f:20:96:c1:52:02:a9:ea:29:11: 2f:9a:d6:77:15:88:6a:5c:2d:a6:38:15:33:10:b0: 04:10:e8:19:d3:7b:d1:2f:f2:f9:8b:65:75:0e:65: 53:5c:82:1f:c2:33:ed:bf:e4:35:d9:b6:25:7a:a9: 8d:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:A0:DF:68:79:88:3E:B6:8D:A5:5F:7C:B3:FA:E3:CE:07:F0:22:1A X509v3 Authority Key Identifier: keyid:A6:2D:E7:56:A9:B1:69:BB:CF:F7:B5:56:D4:33:00:95:5D:40:E3:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pi3nVqmxabvP97VW1DMAlV1A4yA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:d4:ff:53:a2:0a:2c:1f:a1:91:51:87:b5:d7:b6:a9:00:fd: f8:79:1b:ac:a6:fb:3d:85:dc:41:0d:d8:1c:ac:61:ef:9c:99: 61:44:82:16:33:b9:9b:07:39:c3:de:d7:d6:b8:34:fc:3d:cd: 25:1b:d7:a8:ee:2a:53:6e:aa:b7:66:2a:f5:2d:62:88:e0:e6: 4c:e1:23:c2:cb:4a:e9:b7:4b:dd:df:03:21:19:e7:e4:55:ea: 91:1c:f9:fb:0a:d1:39:71:c2:ef:2a:fd:4b:28:c1:43:9a:d3: a2:69:da:fb:0d:2d:60:72:d8:66:fb:06:0e:8e:28:12:35:da: 3f:5a:44:7e:dd:24:be:6b:65:03:ce:e6:45:df:5f:4a:38:82: 5d:67:50:e6:3b:ea:30:11:05:a0:56:3a:c5:11:be:29:b4:30: 35:82:f5:1b:08:ea:99:1c:6b:14:e4:8b:83:61:ea:d7:16:a4: 7d:df:2f:31:0f:1c:a2:98:bb:f7:97:4b:ba:e0:5a:3b:b4:c8: d2:f3:48:40:90:02:c2:ea:0a:eb:44:be:1d:7c:37:f8:fa:04: cd:c2:39:c0:4a:66:9a:1e:39:0f:7c:d6:3a:7d:65:53:d0:74: fe:81:4e:3d:e4:af:70:08:1d:c8:ca:9a:fd:07:03:aa:ed:90: da:54:46:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC2wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTA0QkQxMTAvBgNVBAUTKEE2MkRFNzU2QTlCMTY5QkJDRkY3QjU1NkQ0MzMwMDk1 NUQ0MEUzMjAwHhcNMjUwODIyMTkxMjUwWhcNMjUwODI5MTkxMjUwWjAYMRYwFAYD VQQDEw02OGE4YzEzMi00NmE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqQat0ZVLiRCAj9DqQ8+BIbgtpH81h+YYFu2Q//xu/fgdNYfPLq//G2mBHapC rllCaNTyhJsHm3qVsshkrlbdxt/uyRshe/vpZvoMvNT9DjyzoDIAVdNy+bny4lCP ln1RCVaJyLBUwOUE2OvcQfNisphhqRzXZjyDSwnVoGm4SbKzeA90uQ2PoFX3aQb6 WWwxDENJ0k2ywM01v49GPmNbQ/M7hTm+ZjaxegJyhvW+FUyAC7K4qz3RIuz/+TJ0 MuwC7/OkKZ9h3o8glsFSAqnqKREvmtZ3FYhqXC2mOBUzELAEEOgZ03vRL/L5i2V1 DmVTXIIfwjPtv+Q12bYleqmN4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHmg32h5 iD62jaVffLP6484H8CIaMB8GA1UdIwQYMBaAFKYt51apsWm7z/e1VtQzAJVdQOMg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDRCRC80MzczRDUwQzM4 NDMxMUVBQTYxOTJFNTNDNEY5QUUwMi9waTNuVnFteGFidlA5N1ZXMURNQWxWMUE0 eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BpM25WcW14YWJ2UDk3VlcxRE1BbFYxQTR5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDRCRC80MzczRDUwQzM4NDMxMUVBQTYxOTJFNTNDNEY5QUUwMi9waTNuVnFteGFi dlA5N1ZXMURNQWxWMUE0eUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBw1P9TogosH6GRUYe117apAP34eRuspvs9hdxBDdgcrGHvnJlhRIIW M7mbBznD3tfWuDT8Pc0lG9eo7ipTbqq3Zir1LWKI4OZM4SPCy0rpt0vd3wMhGefk VeqRHPn7CtE5ccLvKv1LKMFDmtOiadr7DS1gcthm+wYOjigSNdo/WkR+3SS+a2UD zuZF319KOIJdZ1DmO+owEQWgVjrFEb4ptDA1gvUbCOqZHGsU5IuDYerXFqR93y8x DxyimLv3l0u64Fo7tMjS80hAkALC6grrRL4dfDf4+gTNwjnASmaaHjkPfNY6fWVT 0HT+gU495K9wCB3Iypr9BwOq7ZDaVEai -----END CERTIFICATE-----Generated at Sun Aug 24 00:52:54 2025 by rpki-client