$ rpki-client -vvf rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.mft File: 3Bh_yEFs5bNHuvIho2E6O0eCjog.mft (raw, json) Hash identifier: k02YqusV0xunm4vrZPOOeIQEPeC4P+h7NzwoFAqp25w= Subject key identifier: CE:BA:9E:92:43:D6:9C:3B:65:B0:56:EF:83:7A:BB:CF:4F:86:88:15 Authority key identifier: DC:18:7F:C8:41:6C:E5:B3:47:BA:F2:21:A3:61:3A:3B:47:82:8E:88 Certificate issuer: /CN=A91717D1/serialNumber=DC187FC8416CE5B347BAF221A3613A3B47828E88 Certificate serial: 0F13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bh_yEFs5bNHuvIho2E6O0eCjog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.mft Manifest number: 0F05 Signing time: Fri 22 Aug 2025 17:44:51 +0000 Manifest this update: Fri 22 Aug 2025 17:44:50 +0000 Manifest next update: Fri 29 Aug 2025 17:44:50 +0000 Files and hashes: 1: 3Bh_yEFs5bNHuvIho2E6O0eCjog.crl (hash: 02gW7TDsuSbHqUA5q7LNKENxJQdpNqD2xFeFRhpDBYk=) 2: 085B4576C35711EC9F5ADC3DC4F9AE02.roa (hash: LJ768Cu3JxipfpTsVr1alEqz1iSEePAZhcCKQ/8p8EU=) 3: 0963FDF0C35711EC9F5ADC3DC4F9AE02.roa (hash: 6UUZGVX+yz33BPFW9zj9LAK08O51N58DNxWBC06Z/8c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.crl rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bh_yEFs5bNHuvIho2E6O0eCjog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:44:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3859 (0xf13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91717D1, serialNumber=DC187FC8416CE5B347BAF221A3613A3B47828E88 Validity Not Before: Aug 22 17:44:50 2025 GMT Not After : Aug 29 17:44:50 2025 GMT Subject: CN=68a8ac92-96b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:23:62:14:9f:ee:99:84:21:aa:ae:65:b4:cf: 92:1c:2b:9c:dc:61:60:d9:26:e2:8a:eb:95:88:dd: e6:3e:8c:97:95:02:f0:f9:8c:fd:03:b5:79:3d:36: 48:8e:a6:9e:5e:dc:c2:7e:c6:8f:92:ce:6a:6e:f0: 40:ff:16:60:f0:60:2c:68:c0:69:e4:85:f8:a4:69: 3d:85:fc:d9:bc:de:94:8b:bf:57:57:ab:ea:ee:b4: 0b:b5:38:36:82:ba:ed:b0:e8:c1:2b:11:63:63:70: 90:e7:94:b3:08:fd:de:23:16:42:41:25:8c:6a:84: 92:90:9d:b0:90:2a:1a:19:a7:aa:8a:42:05:72:10: ce:82:59:3a:01:f9:68:96:80:30:11:8e:43:5e:6c: 2a:47:ea:f4:95:b2:da:c4:5a:a2:25:bc:96:e3:eb: b9:2f:d8:66:4f:a3:5c:cb:e3:30:a1:d8:2f:46:4b: df:8f:f2:14:c8:a1:cd:62:0c:e7:a5:05:25:c5:ae: 6d:db:10:1b:f8:b3:1c:22:20:86:f3:dd:f8:7a:ec: 0c:c9:d8:f1:2a:19:7e:15:1a:bb:65:97:88:30:f5: 11:e9:f6:60:79:29:d8:88:b5:33:18:95:15:ab:37: 12:27:14:d9:bc:e2:e0:5b:d2:f8:6f:fd:ee:82:f8: e9:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:BA:9E:92:43:D6:9C:3B:65:B0:56:EF:83:7A:BB:CF:4F:86:88:15 X509v3 Authority Key Identifier: keyid:DC:18:7F:C8:41:6C:E5:B3:47:BA:F2:21:A3:61:3A:3B:47:82:8E:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bh_yEFs5bNHuvIho2E6O0eCjog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:55:ee:e3:e6:09:4a:48:8f:5e:64:76:e8:01:0b:48:21:df: 05:5d:89:66:f5:d7:ea:24:2d:4a:50:68:e7:81:81:e3:e2:e2: c3:e4:b5:30:b0:79:21:85:03:9f:e7:dc:86:67:48:26:4d:62: a9:03:13:db:79:c9:c3:02:72:0d:08:6d:1a:6b:82:70:12:9a: 35:f4:45:7e:80:01:52:20:06:a1:16:0c:09:f0:ca:63:2a:95: b7:e4:88:18:1f:fb:58:6b:6d:95:86:00:39:82:d3:1b:70:38: fd:69:22:80:49:90:dc:96:c7:87:6f:32:03:af:a7:81:ca:2b: 41:fc:1a:66:3e:0e:4f:fd:c2:2b:f3:8f:1d:76:44:e0:53:ed: 3c:4f:f5:11:04:4b:cb:fb:4d:c9:b7:4d:77:82:44:eb:4e:22: 7a:76:b7:35:36:84:12:65:42:31:a0:51:c2:19:58:14:f6:be: 7c:74:09:48:7d:6b:d5:86:f2:65:bb:50:b9:f0:3b:54:3b:13: 41:18:a4:d7:1f:a9:92:44:7c:aa:61:16:0d:19:a8:97:12:63: 9c:24:0d:b8:74:62:aa:8b:27:16:cc:f0:72:9f:06:64:07:9a: c9:f1:20:7b:64:fe:52:7f:f2:d1:a5:6d:f2:f0:29:a9:1f:7a: ac:0f:64:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDxMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE3RDExMTAvBgNVBAUTKERDMTg3RkM4NDE2Q0U1QjM0N0JBRjIyMUEzNjEzQTNC NDc4MjhFODgwHhcNMjUwODIyMTc0NDUwWhcNMjUwODI5MTc0NDUwWjAYMRYwFAYD VQQDEw02OGE4YWM5Mi05NmI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvyNiFJ/umYQhqq5ltM+SHCuc3GFg2SbiiuuViN3mPoyXlQLw+Yz9A7V5PTZI jqaeXtzCfsaPks5qbvBA/xZg8GAsaMBp5IX4pGk9hfzZvN6Ui79XV6vq7rQLtTg2 grrtsOjBKxFjY3CQ55SzCP3eIxZCQSWMaoSSkJ2wkCoaGaeqikIFchDOglk6Aflo loAwEY5DXmwqR+r0lbLaxFqiJbyW4+u5L9hmT6Ncy+MwodgvRkvfj/IUyKHNYgzn pQUlxa5t2xAb+LMcIiCG8934euwMydjxKhl+FRq7ZZeIMPUR6fZgeSnYiLUzGJUV qzcSJxTZvOLgW9L4b/3ugvjp8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM66npJD 1pw7ZbBW74N6u89PhogVMB8GA1UdIwQYMBaAFNwYf8hBbOWzR7ryIaNhOjtHgo6I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTdEMS85QTlCNDhBMjgy QTMxMUU5OUU1ODIzODRDNEY5QUUwMi8zQmhfeUVGczViTkh1dklobzJFNk8wZUNq b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNCaF95RUZzNWJOSHV2SWhvMkU2TzBlQ2pvZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTdEMS85QTlCNDhBMjgyQTMxMUU5OUU1ODIzODRDNEY5QUUwMi8zQmhfeUVGczVi Tkh1dklobzJFNk8wZUNqb2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9Ve7j5glKSI9eZHboAQtIId8FXYlm9dfqJC1KUGjngYHj4uLD5LUw sHkhhQOf59yGZ0gmTWKpAxPbecnDAnINCG0aa4JwEpo19EV+gAFSIAahFgwJ8Mpj KpW35IgYH/tYa22VhgA5gtMbcDj9aSKASZDclseHbzIDr6eByitB/BpmPg5P/cIr 848ddkTgU+08T/URBEvL+03Jt013gkTrTiJ6drc1NoQSZUIxoFHCGVgU9r58dAlI fWvVhvJlu1C58DtUOxNBGKTXH6mSRHyqYRYNGaiXEmOcJA24dGKqiycWzPBynwZk B5rJ8SB7ZP5Sf/LRpW3y8CmpH3qsD2QX -----END CERTIFICATE-----Generated at Sat Aug 23 19:42:48 2025 by rpki-client