$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.mft File: Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.mft (raw, json) Hash identifier: za1bm7A/WxPqTvz208MlRjC0AT7vz8YZaqYcDD8ErH0= Subject key identifier: 40:A2:DB:F7:EE:20:78:97:3A:FD:35:DB:43:76:D0:BD:6F:CD:01:B4 Authority key identifier: 3D:BD:D7:ED:41:24:80:E9:35:5C:27:F3:C1:13:B5:64:0D:31:86:B3 Certificate issuer: /CN=A91A3399/serialNumber=3DBDD7ED412480E9355C27F3C113B5640D3186B3 Certificate serial: 0177 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.mft Manifest number: 016E Signing time: Sat 23 Aug 2025 04:04:34 +0000 Manifest this update: Sat 23 Aug 2025 04:04:34 +0000 Manifest next update: Sat 30 Aug 2025 04:04:34 +0000 Files and hashes: 1: Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.crl (hash: LoE1glbV/d2YPgmIM7qq0RNKe0M9xt6HfSdSHbvj3yo=) 2: 553596D65DB511EE841C151FC4F9AE02.roa (hash: 5aNVVXrrk5+fzIwBo8UDYAZxVOdmHrz5HqTDIZHkN8o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.crl rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:04:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 375 (0x177) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3399, serialNumber=3DBDD7ED412480E9355C27F3C113B5640D3186B3 Validity Not Before: Aug 23 04:04:34 2025 GMT Not After : Aug 30 04:04:34 2025 GMT Subject: CN=68a93dd2-e50f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:6c:6d:11:d9:f6:e2:20:c3:8a:be:ec:95:67: 3c:ef:a3:b5:47:60:ba:7e:66:a3:b9:60:bf:37:6a: c9:a1:d1:ec:75:06:ed:7e:a5:eb:87:04:bb:60:db: b3:3d:bf:df:10:27:f1:4e:7c:01:e8:0c:55:8a:10: c6:bd:ec:70:96:21:82:e1:43:5d:4a:d9:5d:66:f0: aa:35:a3:c2:db:11:de:f1:e4:24:c1:b6:c5:62:8c: 2b:b2:8b:69:48:8d:a2:79:6c:0d:90:da:75:26:ea: 86:b2:80:88:2c:1c:7c:00:72:9e:2f:d8:e7:38:da: 4b:db:31:48:6d:96:b9:6a:5a:f5:dd:de:09:df:e4: be:67:2d:21:e2:70:71:34:18:7e:04:6b:f2:1f:f9: 83:31:2f:37:22:31:3f:be:d5:1e:8f:54:b7:db:d0: d9:99:33:9b:d0:eb:d5:08:23:20:7e:61:0e:86:6c: 38:7a:45:77:28:04:3a:66:68:66:00:44:3f:1f:05: c1:23:dd:06:fd:71:75:a2:b3:01:aa:60:20:ce:0f: ed:53:5c:7b:b0:84:12:ce:27:9a:6c:42:13:a8:d3: bf:59:c8:10:e6:58:99:6a:71:15:e6:7b:c2:94:c6: 59:14:3b:fd:71:33:06:5b:0a:fe:93:7f:26:97:fe: 09:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:A2:DB:F7:EE:20:78:97:3A:FD:35:DB:43:76:D0:BD:6F:CD:01:B4 X509v3 Authority Key Identifier: keyid:3D:BD:D7:ED:41:24:80:E9:35:5C:27:F3:C1:13:B5:64:0D:31:86:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:73:28:fc:63:1d:08:3d:9e:33:dd:76:cf:b1:3a:4f:20:8b: 54:ec:c5:59:d0:e0:cf:43:eb:27:cf:ee:d0:8f:01:24:9b:c3: e9:97:e2:0a:6d:17:89:b1:79:1f:0a:27:79:e3:06:ce:e8:16: 22:d6:3b:5b:7c:d6:62:6e:f5:26:f2:27:91:35:47:d0:ce:ff: 26:c8:e7:6c:b2:2a:1e:05:82:b0:38:82:b9:46:0c:b5:87:3b: 51:52:b1:8e:7b:e0:0f:23:07:65:86:9b:8d:38:d9:79:25:59: a1:62:22:91:53:a4:13:b1:24:8f:ab:d7:c0:89:e1:cd:c8:9d: c6:6b:0c:1a:98:aa:48:c2:92:86:65:a7:40:e1:c3:3e:7d:e6: 1c:ba:d5:1d:98:c5:3d:1a:95:0e:be:7f:b2:09:b4:83:3e:44: 59:f3:df:3f:87:1a:b8:9c:4b:ca:84:e9:da:a0:e6:5c:30:fe: 4a:20:fa:74:f6:e0:29:71:57:42:97:57:62:49:98:77:03:2b: 7e:20:bb:b0:64:d4:e4:e4:48:32:38:ea:0f:08:92:77:d6:04: bd:16:2b:55:ee:10:6c:44:d4:fd:c7:69:9b:58:b8:3a:41:b7: d2:0d:d2:9a:38:60:39:08:27:47:01:7c:30:67:7b:5a:8e:5b: 9a:0a:df:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTMzOTkxMTAvBgNVBAUTKDNEQkREN0VENDEyNDgwRTkzNTVDMjdGM0MxMTNCNTY0 MEQzMTg2QjMwHhcNMjUwODIzMDQwNDM0WhcNMjUwODMwMDQwNDM0WjAYMRYwFAYD VQQDEw02OGE5M2RkMi1lNTBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxmxtEdn24iDDir7slWc876O1R2C6fmajuWC/N2rJodHsdQbtfqXrhwS7YNuz Pb/fECfxTnwB6AxVihDGvexwliGC4UNdStldZvCqNaPC2xHe8eQkwbbFYowrsotp SI2ieWwNkNp1JuqGsoCILBx8AHKeL9jnONpL2zFIbZa5alr13d4J3+S+Zy0h4nBx NBh+BGvyH/mDMS83IjE/vtUej1S329DZmTOb0OvVCCMgfmEOhmw4ekV3KAQ6Zmhm AEQ/HwXBI90G/XF1orMBqmAgzg/tU1x7sIQSzieabEITqNO/WcgQ5liZanEV5nvC lMZZFDv9cTMGWwr+k38ml/4JzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFECi2/fu IHiXOv0120N20L1vzQG0MB8GA1UdIwQYMBaAFD291+1BJIDpNVwn88ETtWQNMYaz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzM5OS9CQTY4QzMyODVD QjgxMUVFODUyM0JDN0FDNEY5QUUwMi9QYjNYN1VFa2dPazFYQ2Z6d1JPMVpBMHho ck0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BiM1g3VUVrZ09rMVhDZnp3Uk8xWkEweGhyTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzM5OS9CQTY4QzMyODVDQjgxMUVFODUyM0JDN0FDNEY5QUUwMi9QYjNYN1VFa2dP azFYQ2Z6d1JPMVpBMHhock0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGcyj8Yx0IPZ4z3XbPsTpPIItU7MVZ0ODPQ+snz+7QjwEkm8Ppl+IK bReJsXkfCid54wbO6BYi1jtbfNZibvUm8ieRNUfQzv8myOdssioeBYKwOIK5Rgy1 hztRUrGOe+APIwdlhpuNONl5JVmhYiKRU6QTsSSPq9fAieHNyJ3GawwamKpIwpKG ZadA4cM+feYcutUdmMU9GpUOvn+yCbSDPkRZ898/hxq4nEvKhOnaoOZcMP5KIPp0 9uApcVdCl1diSZh3Ayt+ILuwZNTk5EgyOOoPCJJ31gS9FitV7hBsRNT9x2mbWLg6 QbfSDdKaOGA5CCdHAXwwZ3tajluaCt8B -----END CERTIFICATE-----Generated at Sat Aug 23 21:26:38 2025 by rpki-client