$ rpki-client -vvf rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft File: A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft (raw, json) Hash identifier: u1Y476rI8Cz9iYzLTaewpU6yBWX1F5LTvlD2uX8pW7g= Subject key identifier: 51:A3:AB:FB:9F:E5:66:B2:61:CB:93:AC:38:EC:F8:FA:17:D9:FB:1D Authority key identifier: 03:77:B9:3C:91:FD:AF:46:9A:59:1B:4C:52:D2:4C:B1:55:5D:2B:D4 Certificate issuer: /CN=A91822BF/serialNumber=0377B93C91FDAF469A591B4C52D24CB1555D2BD4 Certificate serial: 0C03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft Manifest number: 0BFB Signing time: Fri 22 Aug 2025 18:53:39 +0000 Manifest this update: Fri 22 Aug 2025 18:53:39 +0000 Manifest next update: Fri 29 Aug 2025 18:53:39 +0000 Files and hashes: 1: A3e5PJH9r0aaWRtMUtJMsVVdK9Q.crl (hash: +zaqrHFVCxCiRF8Y8syxBNOHvom6fQ+HU3/FiA1HCvs=) 2: 37EA3E261ADC11EA8EB46F37C4F9AE02.roa (hash: ELFkrkGvrGXpvAeGB34G/wdhCkAvgz4ejLB+gQtN8Ps=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.crl rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:53:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3075 (0xc03) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91822BF, serialNumber=0377B93C91FDAF469A591B4C52D24CB1555D2BD4 Validity Not Before: Aug 22 18:53:39 2025 GMT Not After : Aug 29 18:53:39 2025 GMT Subject: CN=68a8bcb3-520b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:fc:90:94:96:d7:54:2a:73:9d:39:b7:d7:fe: af:e7:3c:50:8d:26:7c:f0:09:8a:78:91:ec:46:83: a3:4d:fe:b2:03:76:e0:c7:c0:7c:95:25:51:87:3b: b6:3b:0f:25:fa:52:ab:60:dd:7b:1b:a7:93:29:61: e4:14:ad:68:c7:8e:f4:d6:dd:7d:51:23:74:fc:11: 59:c3:08:e1:f8:dc:88:81:62:03:c5:f0:81:e6:6f: a0:36:c1:cb:f7:60:f6:bd:8a:75:f3:fc:14:ed:00: ed:86:e9:bf:e0:fd:2c:d3:62:94:6f:b7:8d:ea:30: cf:ff:51:64:a6:a1:c6:71:14:6b:69:ce:21:5e:f9: 0a:a8:22:94:24:c4:9c:7d:51:e6:fb:9c:5f:a1:0d: 9b:76:aa:b1:a2:2f:7b:ce:e8:0a:d7:4c:20:56:c0: a7:2a:05:a7:ce:a3:fd:16:14:60:57:0f:2d:b4:1f: 51:42:da:47:57:bc:d7:77:db:57:b1:73:52:c8:da: c1:c8:bf:72:95:b8:e8:63:69:5e:a6:8e:49:51:7a: 8f:ff:59:a1:cb:0f:0c:40:85:20:56:17:be:4a:1c: 16:d3:8b:6e:d4:4e:9a:c8:ae:d3:a6:50:6c:3c:70: ec:28:57:47:f7:45:01:d1:4a:bc:fd:ce:90:68:6d: 15:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:A3:AB:FB:9F:E5:66:B2:61:CB:93:AC:38:EC:F8:FA:17:D9:FB:1D X509v3 Authority Key Identifier: keyid:03:77:B9:3C:91:FD:AF:46:9A:59:1B:4C:52:D2:4C:B1:55:5D:2B:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:bf:5d:43:5b:92:dc:c2:25:39:4b:ba:79:57:3e:c3:20:37: 14:55:cf:62:43:a1:95:c8:0b:af:95:1a:70:d7:7b:47:28:07: 64:ed:7d:66:83:a4:aa:fb:a0:6f:1c:8f:88:b9:19:aa:79:3a: 38:2f:44:b2:de:c3:57:90:89:d1:52:17:c4:76:88:22:4e:33: 9b:1c:80:b2:de:16:83:e1:f2:32:cd:d7:d9:c4:ec:ea:0f:1f: a4:a3:72:07:17:71:22:dc:5e:bc:48:bb:03:e6:8c:5d:34:3a: ef:64:e1:e8:a9:3e:9c:e7:e4:0a:2e:ab:ae:14:22:73:30:75: e3:b1:cb:9b:b8:de:90:0c:6b:cb:1c:2e:58:b2:31:e4:c7:c4: ff:b0:7f:5d:f6:75:50:6a:42:32:27:a6:43:0c:2a:e9:6c:a7: 63:c2:e0:1b:42:a4:3e:53:3d:76:08:c5:52:31:16:97:c0:6e: cd:08:c2:c0:c4:a7:39:a7:a5:0f:58:65:bf:2a:7b:25:b2:a0: af:1a:6a:ec:0a:1b:03:e6:27:9b:e5:26:1f:a1:6c:fa:3b:8a: e1:ea:a9:87:9b:1c:e1:5b:7f:7e:c9:e1:0c:28:29:32:44:f3: 6a:1f:02:ba:94:40:d8:a2:cc:b9:f7:af:cd:73:1d:a6:48:be: 40:e3:26:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDAMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODIyQkYxMTAvBgNVBAUTKDAzNzdCOTNDOTFGREFGNDY5QTU5MUI0QzUyRDI0Q0Ix NTU1RDJCRDQwHhcNMjUwODIyMTg1MzM5WhcNMjUwODI5MTg1MzM5WjAYMRYwFAYD VQQDEw02OGE4YmNiMy01MjBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+PyQlJbXVCpznTm31/6v5zxQjSZ88AmKeJHsRoOjTf6yA3bgx8B8lSVRhzu2 Ow8l+lKrYN17G6eTKWHkFK1ox4701t19USN0/BFZwwjh+NyIgWIDxfCB5m+gNsHL 92D2vYp18/wU7QDthum/4P0s02KUb7eN6jDP/1FkpqHGcRRrac4hXvkKqCKUJMSc fVHm+5xfoQ2bdqqxoi97zugK10wgVsCnKgWnzqP9FhRgVw8ttB9RQtpHV7zXd9tX sXNSyNrByL9ylbjoY2lepo5JUXqP/1mhyw8MQIUgVhe+ShwW04tu1E6ayK7TplBs PHDsKFdH90UB0Uq8/c6QaG0VLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFGjq/uf 5WayYcuTrDjs+PoX2fsdMB8GA1UdIwQYMBaAFAN3uTyR/a9GmlkbTFLSTLFVXSvU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjJCRi8xMDM5QkM0MDFB REIxMUVBQUEzQTgyMzVDNEY5QUUwMi9BM2U1UEpIOXIwYWFXUnRNVXRKTXNWVmRL OVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EzZTVQSkg5cjBhYVdSdE1VdEpNc1ZWZEs5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjJCRi8xMDM5QkM0MDFBREIxMUVBQUEzQTgyMzVDNEY5QUUwMi9BM2U1UEpIOXIw YWFXUnRNVXRKTXNWVmRLOVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfv11DW5LcwiU5S7p5Vz7DIDcUVc9iQ6GVyAuvlRpw13tHKAdk7X1m g6Sq+6BvHI+IuRmqeTo4L0Sy3sNXkInRUhfEdogiTjObHICy3haD4fIyzdfZxOzq Dx+ko3IHF3Ei3F68SLsD5oxdNDrvZOHoqT6c5+QKLquuFCJzMHXjscubuN6QDGvL HC5YsjHkx8T/sH9d9nVQakIyJ6ZDDCrpbKdjwuAbQqQ+Uz12CMVSMRaXwG7NCMLA xKc5p6UPWGW/KnslsqCvGmrsChsD5ieb5SYfoWz6O4rh6qmHmxzhW39+yeEMKCky RPNqHwK6lEDYosy596/Ncx2mSL5A4yap -----END CERTIFICATE-----Generated at Sat Aug 23 14:24:36 2025 by rpki-client