$ rpki-client -vvf rpki.apnic.net/member_repository/A91813ED/677AAA3C5F3711EFBF369E58C4F9AE02/3yS01RxnhB3WAN0qYXhrzpiHhmc.mft File: 3yS01RxnhB3WAN0qYXhrzpiHhmc.mft (raw, json) Hash identifier: 7RN4PUyfNPrT6aOugb1aPJ5YKzO/ex+xFxgxPNQC944= Subject key identifier: 5B:59:C3:65:AB:AF:B4:72:B9:DE:0D:33:4F:85:45:6A:F4:11:6D:99 Authority key identifier: DF:24:B4:D5:1C:67:84:1D:D6:00:DD:2A:61:78:6B:CE:98:87:86:67 Certificate issuer: /CN=A91813ED/serialNumber=DF24B4D51C67841DD600DD2A61786BCE98878667 Certificate serial: BD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3yS01RxnhB3WAN0qYXhrzpiHhmc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91813ED/677AAA3C5F3711EFBF369E58C4F9AE02/3yS01RxnhB3WAN0qYXhrzpiHhmc.mft Manifest number: BC Signing time: Sat 23 Aug 2025 06:05:18 +0000 Manifest this update: Sat 23 Aug 2025 06:05:17 +0000 Manifest next update: Sat 30 Aug 2025 06:05:17 +0000 Files and hashes: 1: 3yS01RxnhB3WAN0qYXhrzpiHhmc.crl (hash: fht1UGXb925oAjEhaYwGlgkQ0v5w98fTbu1uoKeCafo=) 2: B21985725F3711EFA108CA0CC4F9AE02.roa (hash: qWDPCZUNoXxLfCTQ51artmgIDTxez9EecMCL2qvkzMg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91813ED/677AAA3C5F3711EFBF369E58C4F9AE02/3yS01RxnhB3WAN0qYXhrzpiHhmc.crl rsync://rpki.apnic.net/member_repository/A91813ED/677AAA3C5F3711EFBF369E58C4F9AE02/3yS01RxnhB3WAN0qYXhrzpiHhmc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3yS01RxnhB3WAN0qYXhrzpiHhmc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:05:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 189 (0xbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91813ED, serialNumber=DF24B4D51C67841DD600DD2A61786BCE98878667 Validity Not Before: Aug 23 06:05:17 2025 GMT Not After : Aug 30 06:05:17 2025 GMT Subject: CN=68a95a1e-5bc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:6f:0e:cb:f8:c5:95:0e:b7:50:c0:a8:e9:d6: 48:64:c9:3a:ef:9a:bc:17:ad:de:f7:27:ca:f4:af: 53:ff:7d:b1:fd:93:0b:e7:58:40:c0:78:27:bd:9a: b2:9e:c4:31:9f:ad:81:2d:f3:7d:91:66:0a:78:8b: 1c:5e:28:db:8e:52:8f:14:56:02:a2:85:a0:24:1a: f0:1d:3b:74:64:86:a1:a1:e3:9f:10:eb:93:07:31: af:82:e3:5e:82:c8:bb:d7:79:3c:d5:5d:c0:4b:2c: b6:d3:3f:eb:c9:82:f4:7e:d9:9b:27:32:cc:8f:de: 46:fc:4b:50:ee:cb:80:04:ed:c9:db:c3:ca:1c:01: 3e:8c:3c:50:41:5c:2d:0f:5d:00:37:0d:06:e7:ec: 1e:a7:13:83:ca:a4:d3:a9:3b:96:28:35:31:0f:72: e9:8d:de:8b:ab:f5:0d:9a:86:f0:83:b7:73:1e:4a: ec:45:16:15:88:60:8f:42:96:58:dc:f8:ad:43:95: bd:f3:4a:dc:8d:c0:5a:5c:af:b9:48:06:f1:f2:d5: 88:56:84:1e:23:59:de:ae:09:32:c3:85:7f:2b:04: 37:6e:4d:3f:17:23:13:39:e4:c4:41:7e:83:92:a8: 8a:86:e6:3a:c2:de:b5:34:3a:9f:07:a4:ef:af:7b: df:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:59:C3:65:AB:AF:B4:72:B9:DE:0D:33:4F:85:45:6A:F4:11:6D:99 X509v3 Authority Key Identifier: keyid:DF:24:B4:D5:1C:67:84:1D:D6:00:DD:2A:61:78:6B:CE:98:87:86:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91813ED/677AAA3C5F3711EFBF369E58C4F9AE02/3yS01RxnhB3WAN0qYXhrzpiHhmc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3yS01RxnhB3WAN0qYXhrzpiHhmc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91813ED/677AAA3C5F3711EFBF369E58C4F9AE02/3yS01RxnhB3WAN0qYXhrzpiHhmc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:f0:6a:4c:51:b7:da:45:bb:a6:67:d7:8b:0c:76:1d:4c:6d: 48:b1:cc:bd:d9:92:d8:55:09:e6:82:35:c0:e2:6e:91:f9:db: f8:6c:94:28:cf:85:3a:73:27:10:44:21:5a:a5:a6:ab:d8:b6: 99:0f:57:c5:e4:c5:13:90:70:8c:c3:e0:6b:c0:be:25:7e:1d: b6:41:45:13:ed:66:5f:95:05:4d:5b:9d:1f:0b:25:83:64:87: 3e:ec:eb:8c:73:6e:7e:d8:71:5c:1c:71:1e:c7:e5:55:89:98: 0c:ef:09:e3:6e:96:1a:37:4f:84:10:17:89:84:c1:2f:a8:ed: c7:b1:13:4f:52:9b:2b:f7:5e:00:d9:df:b8:6a:9f:d8:e9:39: fa:41:27:8e:13:f4:21:7f:ca:de:f7:08:6e:7a:77:2c:d4:cf: 0a:76:2a:93:5a:96:ec:80:2d:c8:0f:97:5e:57:b2:27:7a:b9: 6e:ce:11:91:d8:c6:dd:9c:4f:6a:af:05:23:4c:af:e5:24:97: 2b:8d:f9:33:72:bd:39:79:3b:8a:f2:d3:ea:8d:1b:74:9c:f5: 4c:23:33:f9:1a:a8:8f:28:9b:31:75:d2:d8:43:4d:e3:b6:b4: 85:32:21:d2:0d:c7:21:30:ee:71:fd:aa:ba:c5:b5:d3:2c:b4: e5:92:16:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODEzRUQxMTAvBgNVBAUTKERGMjRCNEQ1MUM2Nzg0MURENjAwREQyQTYxNzg2QkNF OTg4Nzg2NjcwHhcNMjUwODIzMDYwNTE3WhcNMjUwODMwMDYwNTE3WjAYMRYwFAYD VQQDEw02OGE5NWExZS01YmMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2G8Oy/jFlQ63UMCo6dZIZMk675q8F63e9yfK9K9T/32x/ZML51hAwHgnvZqy nsQxn62BLfN9kWYKeIscXijbjlKPFFYCooWgJBrwHTt0ZIahoeOfEOuTBzGvguNe gsi713k81V3ASyy20z/ryYL0ftmbJzLMj95G/EtQ7suABO3J28PKHAE+jDxQQVwt D10ANw0G5+wepxODyqTTqTuWKDUxD3Lpjd6Lq/UNmobwg7dzHkrsRRYViGCPQpZY 3PitQ5W980rcjcBaXK+5SAbx8tWIVoQeI1nergkyw4V/KwQ3bk0/FyMTOeTEQX6D kqiKhuY6wt61NDqfB6Tvr3vfMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFtZw2Wr r7Ryud4NM0+FRWr0EW2ZMB8GA1UdIwQYMBaAFN8ktNUcZ4Qd1gDdKmF4a86Yh4Zn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTNFRC82NzdBQUEzQzVG MzcxMUVGQkYzNjlFNThDNEY5QUUwMi8zeVMwMVJ4bmhCM1dBTjBxWVhocnpwaUho bWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzN5UzAxUnhuaEIzV0FOMHFZWGhyenBpSGhtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MTNFRC82NzdBQUEzQzVGMzcxMUVGQkYzNjlFNThDNEY5QUUwMi8zeVMwMVJ4bmhC M1dBTjBxWVhocnpwaUhobWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBg8GpMUbfaRbumZ9eLDHYdTG1Iscy92ZLYVQnmgjXA4m6R+dv4bJQo z4U6cycQRCFapaar2LaZD1fF5MUTkHCMw+BrwL4lfh22QUUT7WZflQVNW50fCyWD ZIc+7OuMc25+2HFcHHEex+VViZgM7wnjbpYaN0+EEBeJhMEvqO3HsRNPUpsr914A 2d+4ap/Y6Tn6QSeOE/Qhf8re9whuencs1M8KdiqTWpbsgC3ID5deV7InerluzhGR 2MbdnE9qrwUjTK/lJJcrjfkzcr05eTuK8tPqjRt0nPVMIzP5GqiPKJsxddLYQ03j trSFMiHSDcchMO5x/aq6xbXTLLTlkhaE -----END CERTIFICATE-----Generated at Sat Aug 23 19:07:33 2025 by rpki-client