$ rpki-client -vvf rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft File: A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft (raw, json) Hash identifier: X/VSnsoYmKnoTq2S4cSnSpujvKVegxgl2Fbu9NPxYbk= Subject key identifier: BE:1B:BD:A7:07:FD:BE:BC:E8:1C:41:5C:27:96:AC:FE:0B:50:99:A8 Authority key identifier: 03:77:B9:3C:91:FD:AF:46:9A:59:1B:4C:52:D2:4C:B1:55:5D:2B:D4 Certificate issuer: /CN=A91822BF/serialNumber=0377B93C91FDAF469A591B4C52D24CB1555D2BD4 Certificate serial: 0BE8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft Manifest number: 0BE0 Signing time: Mon 30 Jun 2025 18:58:31 +0000 Manifest this update: Mon 30 Jun 2025 18:58:30 +0000 Manifest next update: Mon 07 Jul 2025 18:58:30 +0000 Files and hashes: 1: A3e5PJH9r0aaWRtMUtJMsVVdK9Q.crl (hash: BouysXeo0bAou36gFW3tS6nd212ndkhEiIAh8U00ZPo=) 2: 37EA3E261ADC11EA8EB46F37C4F9AE02.roa (hash: ELFkrkGvrGXpvAeGB34G/wdhCkAvgz4ejLB+gQtN8Ps=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.crl rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 18:58:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3048 (0xbe8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91822BF, serialNumber=0377B93C91FDAF469A591B4C52D24CB1555D2BD4 Validity Not Before: Jun 30 18:58:30 2025 GMT Not After : Jul 7 18:58:30 2025 GMT Subject: CN=6862de56-8c97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:1d:af:3b:0d:6f:be:fa:71:c0:9c:39:3c:7e: 8e:45:fa:92:1c:59:fd:e0:22:71:c0:4e:9e:a2:d2: 04:bf:c9:1c:55:aa:97:3c:24:67:ba:b3:56:fd:a1: 1e:eb:82:47:63:9b:da:f4:3d:dc:5a:ff:7e:23:90: f4:10:33:d7:78:a1:91:2f:58:b3:6a:21:34:2b:6c: 31:35:51:b6:b3:e2:ca:93:60:51:a4:10:e7:ea:f9: 1b:93:df:5a:3d:7f:78:7f:54:78:45:61:72:c7:62: c1:0e:90:df:59:61:11:f9:69:7b:f6:ac:e9:cf:44: 47:b5:ec:1b:43:d2:bf:95:94:54:37:ab:f5:6e:33: 05:6f:22:c9:bf:11:2a:c1:1e:ec:b7:b1:9d:26:a4: c0:01:7c:fc:4d:7b:bd:92:83:b1:61:3d:f9:86:6f: 3e:9c:7d:fb:62:17:25:95:be:ef:9b:60:58:84:c4: dc:51:8a:bf:33:26:c6:1c:0e:93:98:a0:37:f8:e5: 5e:3e:2f:fa:0c:05:d4:39:c7:65:c3:6b:28:a1:7f: 48:df:d8:30:c5:2a:e5:1b:a1:da:a9:cd:30:ec:e7: bd:3d:1d:81:8a:41:f3:55:aa:a9:e6:8d:42:5d:c4: b8:53:ba:1a:38:c5:1e:e6:89:40:fe:a1:3b:84:9a: bb:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:1B:BD:A7:07:FD:BE:BC:E8:1C:41:5C:27:96:AC:FE:0B:50:99:A8 X509v3 Authority Key Identifier: keyid:03:77:B9:3C:91:FD:AF:46:9A:59:1B:4C:52:D2:4C:B1:55:5D:2B:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:a2:bb:2d:08:c2:b1:9b:d3:07:dc:d0:4a:b2:1d:c0:f5:3d: 2d:51:df:65:f0:55:9f:dd:0a:5f:19:bf:bf:b9:a1:ed:e5:16: 70:8a:e8:75:3e:01:0f:26:32:e8:15:9a:80:5e:4d:37:18:5c: 62:72:8e:ec:75:b9:04:15:55:95:31:de:e6:a4:c5:a6:c8:61: 6b:e7:60:44:27:a5:26:86:87:df:eb:21:82:3c:f2:17:4e:2c: ca:fc:2b:3e:c7:e9:20:f4:b9:f0:0e:4c:74:e2:be:96:b3:fc: 7b:75:c2:6f:4a:7e:da:49:5e:e8:1f:6b:fe:ad:ac:8f:b3:08: ee:b3:93:38:41:ef:f0:40:4a:89:75:91:46:1d:16:b5:c1:2d: 17:b6:32:69:80:31:ba:3d:13:50:a1:e2:5a:ec:72:b0:e8:69: 2a:29:57:8d:1a:26:62:2c:fd:03:54:66:9e:e1:ac:40:d6:18: ef:a0:0c:8a:10:ab:8f:29:ad:a0:d6:79:9b:8d:5f:3b:8b:db: f0:af:b4:48:eb:40:d4:49:25:3a:47:0d:9f:7f:2b:70:16:8b: af:e9:11:8a:42:56:8a:83:20:3a:93:c4:f5:5e:dd:11:60:e5: c4:60:65:ed:69:11:e4:1a:9f:28:7f:98:94:09:b7:d5:a5:cc: 7d:8f:95:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODIyQkYxMTAvBgNVBAUTKDAzNzdCOTNDOTFGREFGNDY5QTU5MUI0QzUyRDI0Q0Ix NTU1RDJCRDQwHhcNMjUwNjMwMTg1ODMwWhcNMjUwNzA3MTg1ODMwWjAYMRYwFAYD VQQDEw02ODYyZGU1Ni04Yzk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzx2vOw1vvvpxwJw5PH6ORfqSHFn94CJxwE6eotIEv8kcVaqXPCRnurNW/aEe 64JHY5va9D3cWv9+I5D0EDPXeKGRL1izaiE0K2wxNVG2s+LKk2BRpBDn6vkbk99a PX94f1R4RWFyx2LBDpDfWWER+Wl79qzpz0RHtewbQ9K/lZRUN6v1bjMFbyLJvxEq wR7st7GdJqTAAXz8TXu9koOxYT35hm8+nH37Yhcllb7vm2BYhMTcUYq/MybGHA6T mKA3+OVePi/6DAXUOcdlw2sooX9I39gwxSrlG6Haqc0w7Oe9PR2BikHzVaqp5o1C XcS4U7oaOMUe5olA/qE7hJq7bQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL4bvacH /b686BxBXCeWrP4LUJmoMB8GA1UdIwQYMBaAFAN3uTyR/a9GmlkbTFLSTLFVXSvU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjJCRi8xMDM5QkM0MDFB REIxMUVBQUEzQTgyMzVDNEY5QUUwMi9BM2U1UEpIOXIwYWFXUnRNVXRKTXNWVmRL OVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EzZTVQSkg5cjBhYVdSdE1VdEpNc1ZWZEs5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjJCRi8xMDM5QkM0MDFBREIxMUVBQUEzQTgyMzVDNEY5QUUwMi9BM2U1UEpIOXIw YWFXUnRNVXRKTXNWVmRLOVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmorstCMKxm9MH3NBKsh3A9T0tUd9l8FWf3QpfGb+/uaHt5RZwiuh1 PgEPJjLoFZqAXk03GFxico7sdbkEFVWVMd7mpMWmyGFr52BEJ6Umhoff6yGCPPIX TizK/Cs+x+kg9LnwDkx04r6Ws/x7dcJvSn7aSV7oH2v+rayPswjus5M4Qe/wQEqJ dZFGHRa1wS0XtjJpgDG6PRNQoeJa7HKw6GkqKVeNGiZiLP0DVGae4axA1hjvoAyK EKuPKa2g1nmbjV87i9vwr7RI60DUSSU6Rw2ffytwFouv6RGKQlaKgyA6k8T1Xt0R YOXEYGXtaRHkGp8of5iUCbfVpcx9j5Wu -----END CERTIFICATE-----Generated at Tue Jul 1 20:36:26 2025 by rpki-client