$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.mft File: 3lWjaa7ZGGmMLWPDLvYb28WYBZY.mft (raw, json) Hash identifier: HrmkPYbOltgdsgFQpKu7y+N7NqdUCvTQvBV5BfKl6gc= Subject key identifier: 3D:07:3D:84:78:89:DF:2F:26:E2:80:4D:35:07:BA:E4:76:20:C7:AC Authority key identifier: DE:55:A3:69:AE:D9:18:69:8C:2D:63:C3:2E:F6:1B:DB:C5:98:05:96 Certificate issuer: /CN=A91A5CC3/serialNumber=DE55A369AED918698C2D63C32EF61BDBC5980596 Certificate serial: 0197 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3lWjaa7ZGGmMLWPDLvYb28WYBZY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.mft Manifest number: 0194 Signing time: Sat 23 Aug 2025 03:32:16 +0000 Manifest this update: Sat 23 Aug 2025 03:32:15 +0000 Manifest next update: Sat 30 Aug 2025 03:32:15 +0000 Files and hashes: 1: 3lWjaa7ZGGmMLWPDLvYb28WYBZY.crl (hash: loNbA5xOz7neg92VMBSKyQzNUGkphfrAtp8cbcXVG7o=) 2: F287261014C311EE89C2C021C4F9AE02.roa (hash: OFdCpcqmoBow8dq1SGBZY5AJXKW9hjQG9lmYnQqhjrc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.crl rsync://rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3lWjaa7ZGGmMLWPDLvYb28WYBZY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:32:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 407 (0x197) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5CC3, serialNumber=DE55A369AED918698C2D63C32EF61BDBC5980596 Validity Not Before: Aug 23 03:32:15 2025 GMT Not After : Aug 30 03:32:15 2025 GMT Subject: CN=68a9363f-867a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:68:c9:7a:77:83:36:e9:73:3b:0c:1d:02:b8: 96:b4:0c:77:be:9a:e5:29:7a:bd:59:18:14:f8:a9: 98:74:54:d9:c1:57:56:0c:b3:84:93:09:9c:14:c3: 77:98:81:1c:e9:39:a9:bf:de:6b:43:c2:2b:92:83: 08:02:3a:49:98:93:08:f6:66:76:47:f9:4f:ef:b2: cd:fb:26:6e:8e:ee:fa:cc:d9:20:78:4e:61:27:cf: 62:46:28:46:ab:75:89:db:9f:2b:52:8b:6a:49:cd: f3:b4:ed:dd:fb:38:36:0f:ee:ef:3f:fe:ae:91:d0: 34:db:fa:c6:17:7f:ee:2f:77:71:b0:e7:7a:2a:09: c2:ab:25:38:35:25:1e:8c:a2:04:6b:3c:a1:6b:16: e9:31:f3:ae:02:eb:ee:02:49:86:2f:5e:41:70:fe: 72:c9:83:f1:cc:5e:7a:74:54:9d:cf:c2:2c:84:62: 74:eb:1e:fd:8e:c1:89:05:2a:e6:89:a3:fb:7d:89: 5a:7a:c6:48:c3:17:48:1f:df:76:35:8e:bd:ec:63: 3f:cc:ba:39:72:90:c2:79:7f:0d:49:f9:fb:2c:75: 14:91:f5:2b:75:65:3f:b6:37:aa:fc:92:8c:4c:6a: 80:fb:71:12:3f:a1:a4:73:3d:6b:d0:cb:00:d0:e6: 60:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:07:3D:84:78:89:DF:2F:26:E2:80:4D:35:07:BA:E4:76:20:C7:AC X509v3 Authority Key Identifier: keyid:DE:55:A3:69:AE:D9:18:69:8C:2D:63:C3:2E:F6:1B:DB:C5:98:05:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3lWjaa7ZGGmMLWPDLvYb28WYBZY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:fb:66:e1:72:4f:3d:81:9a:7c:11:ad:3d:8a:34:36:97:65: 5d:7c:c7:26:07:3c:6d:e7:b2:50:97:11:ec:8f:84:e4:21:5c: 80:42:7e:f0:b4:8c:dd:af:d9:33:71:22:f3:fd:3b:1b:fb:a7: 89:73:eb:16:8e:c3:7b:99:98:b5:62:71:62:8b:3f:79:cb:bc: 3e:58:ab:9e:67:6e:35:b4:08:3b:bf:7b:6d:a8:19:86:09:73: 24:59:5e:92:5e:5a:72:00:95:dd:89:4b:09:22:1b:4b:c7:e7: 90:a0:fa:2e:73:5b:2c:a9:63:75:33:2f:2c:c8:56:20:39:8b: 06:38:02:69:cc:ad:5b:b5:ba:60:5c:23:2b:68:af:82:6d:d8: cc:cd:55:8b:be:d8:c1:ce:0a:0a:71:9a:53:6d:eb:5d:f4:8a: 04:bb:a0:00:1f:d0:9a:93:a5:93:94:79:cd:d4:75:53:b6:94: a0:aa:8d:95:7f:87:c8:17:9f:20:d3:8e:fb:43:97:c8:e7:0f: 4a:b2:c8:6c:2d:05:fa:3f:cf:60:66:eb:0e:8e:2a:a2:48:f1: ae:52:d4:64:12:13:2b:98:4e:ab:44:b3:a4:2f:43:32:a6:df: 52:b6:68:89:87:a3:7f:e8:be:7c:64:9c:19:dc:d7:7d:a2:56: dc:e4:98:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVDQzMxMTAvBgNVBAUTKERFNTVBMzY5QUVEOTE4Njk4QzJENjNDMzJFRjYxQkRC QzU5ODA1OTYwHhcNMjUwODIzMDMzMjE1WhcNMjUwODMwMDMzMjE1WjAYMRYwFAYD VQQDEw02OGE5MzYzZi04NjdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2mjJeneDNulzOwwdAriWtAx3vprlKXq9WRgU+KmYdFTZwVdWDLOEkwmcFMN3 mIEc6Tmpv95rQ8IrkoMIAjpJmJMI9mZ2R/lP77LN+yZuju76zNkgeE5hJ89iRihG q3WJ258rUotqSc3ztO3d+zg2D+7vP/6ukdA02/rGF3/uL3dxsOd6KgnCqyU4NSUe jKIEazyhaxbpMfOuAuvuAkmGL15BcP5yyYPxzF56dFSdz8IshGJ06x79jsGJBSrm iaP7fYlaesZIwxdIH992NY697GM/zLo5cpDCeX8NSfn7LHUUkfUrdWU/tjeq/JKM TGqA+3ESP6Gkcz1r0MsA0OZgowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD0HPYR4 id8vJuKATTUHuuR2IMesMB8GA1UdIwQYMBaAFN5Vo2mu2RhpjC1jwy72G9vFmAWW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUNDMy82NDE2RDgzODE0 QzAxMUVFOTZFQTU0MjFDNEY5QUUwMi8zbFdqYWE3WkdHbU1MV1BETHZZYjI4V1lC WlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNsV2phYTdaR0dtTUxXUERMdlliMjhXWUJaWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUNDMy82NDE2RDgzODE0QzAxMUVFOTZFQTU0MjFDNEY5QUUwMi8zbFdqYWE3WkdH bU1MV1BETHZZYjI4V1lCWlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAM+2bhck89gZp8Ea09ijQ2l2VdfMcmBzxt57JQlxHsj4TkIVyAQn7w tIzdr9kzcSLz/Tsb+6eJc+sWjsN7mZi1YnFiiz95y7w+WKueZ241tAg7v3ttqBmG CXMkWV6SXlpyAJXdiUsJIhtLx+eQoPouc1ssqWN1My8syFYgOYsGOAJpzK1btbpg XCMraK+CbdjMzVWLvtjBzgoKcZpTbetd9IoEu6AAH9Cak6WTlHnN1HVTtpSgqo2V f4fIF58g0477Q5fI5w9KsshsLQX6P89gZusOjiqiSPGuUtRkEhMrmE6rRLOkL0My pt9StmiJh6N/6L58ZJwZ3Nd9olbc5JgQ -----END CERTIFICATE-----Generated at Sun Aug 24 00:45:13 2025 by rpki-client