$ rpki-client -vvf rpki.apnic.net/member_repository/A91616DC/44A7E5E8095F11EAA281681DC4F9AE02/l3a_sejqihq8j4z9b2Yic23YyjQ.mft File: l3a_sejqihq8j4z9b2Yic23YyjQ.mft (raw, json) Hash identifier: 5MkjYHazEXjQhXZYUbHUZoNdfw+KxgnF1VbdbqAgLto= Subject key identifier: 67:40:8F:CE:D9:D3:26:64:67:90:78:5B:6D:B6:1F:E0:BE:06:0D:F3 Authority key identifier: 97:76:BF:B1:E8:EA:8A:1A:BC:8F:8C:FD:6F:66:22:73:6D:D8:CA:34 Certificate issuer: /CN=A91616DC/serialNumber=9776BFB1E8EA8A1ABC8F8CFD6F6622736DD8CA34 Certificate serial: 0CB5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l3a_sejqihq8j4z9b2Yic23YyjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91616DC/44A7E5E8095F11EAA281681DC4F9AE02/l3a_sejqihq8j4z9b2Yic23YyjQ.mft Manifest number: 0C86 Signing time: Fri 22 Aug 2025 18:37:31 +0000 Manifest this update: Fri 22 Aug 2025 18:37:30 +0000 Manifest next update: Fri 29 Aug 2025 18:37:30 +0000 Files and hashes: 1: l3a_sejqihq8j4z9b2Yic23YyjQ.crl (hash: uhjcfxZxqxNr7yE0pStIbMplEkEQ2C/FywobWbnIERo=) 2: 64A2C96E919E11EEA5241125C4F9AE02.roa (hash: /Guh9JZ2GlA6fGHvz6IyFArNWYosj9/jyWCo/gIcAcc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91616DC/44A7E5E8095F11EAA281681DC4F9AE02/l3a_sejqihq8j4z9b2Yic23YyjQ.crl rsync://rpki.apnic.net/member_repository/A91616DC/44A7E5E8095F11EAA281681DC4F9AE02/l3a_sejqihq8j4z9b2Yic23YyjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l3a_sejqihq8j4z9b2Yic23YyjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:37:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3253 (0xcb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91616DC, serialNumber=9776BFB1E8EA8A1ABC8F8CFD6F6622736DD8CA34 Validity Not Before: Aug 22 18:37:30 2025 GMT Not After : Aug 29 18:37:30 2025 GMT Subject: CN=68a8b8ea-7f0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:d3:ca:58:0a:2b:94:89:5b:f3:b0:1f:8d:db: 5c:2e:3f:c4:40:fb:6a:97:ce:52:81:d5:02:cc:d1: 03:a6:ce:bc:03:9e:4b:1f:73:88:64:5d:99:3e:90: 76:c5:68:02:6d:24:7f:77:ae:d2:78:26:c1:eb:f2: 54:dc:b2:f8:aa:22:eb:18:b7:28:1a:f9:0c:65:02: bc:00:90:d3:50:0f:0c:09:fd:18:b6:24:ef:fa:65: c3:07:db:7b:cc:fd:7b:c6:c6:c2:7e:66:60:57:0c: 45:e5:72:4e:97:54:04:42:81:9c:b4:71:33:49:ac: c3:f4:c5:ed:29:05:e3:c8:a6:2c:fd:3f:57:de:25: 01:92:fd:71:70:85:51:55:6b:59:8c:0f:a1:35:89: 2f:13:3a:a9:a5:47:93:b9:e5:eb:dd:ea:75:70:20: 49:d7:fb:af:28:08:f6:ef:1d:cf:21:3e:22:3b:88: 74:f9:cf:10:0c:1f:d9:f0:7c:29:88:0e:32:26:14: 75:4f:bd:06:c8:e1:a0:47:2b:14:fd:fc:83:0d:77: 8e:25:29:1f:3e:98:ea:8e:32:31:b7:dc:80:59:88: 5b:9f:4d:39:d4:ad:aa:ce:f4:98:51:8a:9b:d6:83: bf:b4:c7:32:93:83:bb:84:69:19:f9:34:30:7f:9b: 5e:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:40:8F:CE:D9:D3:26:64:67:90:78:5B:6D:B6:1F:E0:BE:06:0D:F3 X509v3 Authority Key Identifier: keyid:97:76:BF:B1:E8:EA:8A:1A:BC:8F:8C:FD:6F:66:22:73:6D:D8:CA:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91616DC/44A7E5E8095F11EAA281681DC4F9AE02/l3a_sejqihq8j4z9b2Yic23YyjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l3a_sejqihq8j4z9b2Yic23YyjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91616DC/44A7E5E8095F11EAA281681DC4F9AE02/l3a_sejqihq8j4z9b2Yic23YyjQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:89:bb:7a:ca:72:ba:37:90:75:50:72:4d:47:75:92:15:dd: fc:ac:22:4c:b3:bf:0b:41:b4:92:f0:fb:4f:8e:57:2f:43:32: 22:e4:75:c5:d7:2a:c8:cf:8c:01:4c:69:dd:92:fc:69:1b:b1: 49:76:3d:01:58:5d:8e:1c:d4:83:f5:2a:97:a0:8d:60:25:1d: 9b:26:1b:5c:6c:e3:d1:e0:c3:e1:c3:16:ab:3c:cb:fc:90:a0: 44:ab:32:b0:11:8c:3b:54:1f:d1:5a:d3:08:fe:03:c1:0b:20: 10:c2:37:29:c1:7d:82:19:2e:dd:83:b8:d0:de:87:1a:9c:60: 61:ff:d3:c7:76:02:af:0d:a3:d1:45:cb:30:00:29:5b:a9:64: cd:0f:c3:ce:4d:9f:cc:7b:fd:20:77:f1:85:42:47:94:2b:9f: 2d:db:34:a6:06:81:f0:3d:6b:e5:94:d2:ae:89:e1:1e:d7:fe: f2:9c:13:5b:b4:75:4b:8f:6e:f2:db:56:48:29:12:62:37:27: 58:56:e0:b1:33:b1:cc:90:5f:83:31:54:2a:9e:8a:95:75:de: 36:11:e5:d2:aa:7d:3e:c1:01:83:b9:57:3d:5b:6f:ed:9c:b4: fe:40:38:b1:e4:f2:80:24:56:8e:37:b2:fb:57:45:a5:c1:97: ac:74:2e:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDLUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjE2REMxMTAvBgNVBAUTKDk3NzZCRkIxRThFQThBMUFCQzhGOENGRDZGNjYyMjcz NkREOENBMzQwHhcNMjUwODIyMTgzNzMwWhcNMjUwODI5MTgzNzMwWjAYMRYwFAYD VQQDEw02OGE4YjhlYS03ZjBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr9PKWAorlIlb87AfjdtcLj/EQPtql85SgdUCzNEDps68A55LH3OIZF2ZPpB2 xWgCbSR/d67SeCbB6/JU3LL4qiLrGLcoGvkMZQK8AJDTUA8MCf0YtiTv+mXDB9t7 zP17xsbCfmZgVwxF5XJOl1QEQoGctHEzSazD9MXtKQXjyKYs/T9X3iUBkv1xcIVR VWtZjA+hNYkvEzqppUeTueXr3ep1cCBJ1/uvKAj27x3PIT4iO4h0+c8QDB/Z8Hwp iA4yJhR1T70GyOGgRysU/fyDDXeOJSkfPpjqjjIxt9yAWYhbn0051K2qzvSYUYqb 1oO/tMcyk4O7hGkZ+TQwf5teywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGdAj87Z 0yZkZ5B4W222H+C+Bg3zMB8GA1UdIwQYMBaAFJd2v7Ho6ooavI+M/W9mInNt2Mo0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MTZEQy80NEE3RTVFODA5 NUYxMUVBQTI4MTY4MURDNEY5QUUwMi9sM2Ffc2VqcWlocThqNHo5YjJZaWMyM1l5 alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2wzYV9zZWpxaWhxOGo0ejliMllpYzIzWXlqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MTZEQy80NEE3RTVFODA5NUYxMUVBQTI4MTY4MURDNEY5QUUwMi9sM2Ffc2VqcWlo cThqNHo5YjJZaWMyM1l5alEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABibt6ynK6N5B1UHJNR3WSFd38rCJMs78LQbSS8PtPjlcvQzIi5HXF 1yrIz4wBTGndkvxpG7FJdj0BWF2OHNSD9SqXoI1gJR2bJhtcbOPR4MPhwxarPMv8 kKBEqzKwEYw7VB/RWtMI/gPBCyAQwjcpwX2CGS7dg7jQ3ocanGBh/9PHdgKvDaPR RcswAClbqWTND8POTZ/Me/0gd/GFQkeUK58t2zSmBoHwPWvllNKuieEe1/7ynBNb tHVLj27y21ZIKRJiNydYVuCxM7HMkF+DMVQqnoqVdd42EeXSqn0+wQGDuVc9W2/t nLT+QDix5PKAJFaON7L7V0WlwZesdC6a -----END CERTIFICATE-----Generated at Sat Aug 23 23:56:33 2025 by rpki-client