$ rpki-client -vvf rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/t3KDxTMROjkeMdlFJxhqz4OZol8.mft File: t3KDxTMROjkeMdlFJxhqz4OZol8.mft (raw, json) Hash identifier: b7JknEDKdGqf/WJv/OGPGrukGYNacT/KSWnaAJsDm8c= Subject key identifier: 40:44:A9:85:07:A0:FC:D3:85:3A:2B:C5:21:F8:4A:EB:29:F0:EE:69 Authority key identifier: B7:72:83:C5:33:11:3A:39:1E:31:D9:45:27:18:6A:CF:83:99:A2:5F Certificate issuer: /CN=A91AEE4B/serialNumber=B77283C533113A391E31D94527186ACF8399A25F Certificate serial: 0B2F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t3KDxTMROjkeMdlFJxhqz4OZol8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/t3KDxTMROjkeMdlFJxhqz4OZol8.mft Manifest number: 0B25 Signing time: Fri 22 Aug 2025 19:24:42 +0000 Manifest this update: Fri 22 Aug 2025 19:24:41 +0000 Manifest next update: Fri 29 Aug 2025 19:24:41 +0000 Files and hashes: 1: t3KDxTMROjkeMdlFJxhqz4OZol8.crl (hash: ZSh/KBf8l/OS/mv1OQAA3R1vR05yazWqXjFW5t/JZmY=) 2: 02F1850E45A611EA81CD145AC4F9AE02.roa (hash: 58+0TyNKJb4Dhk7ED+Dg5ahFyoV+/K06n+R45NAzh68=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/t3KDxTMROjkeMdlFJxhqz4OZol8.crl rsync://rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/t3KDxTMROjkeMdlFJxhqz4OZol8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t3KDxTMROjkeMdlFJxhqz4OZol8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:24:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2863 (0xb2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AEE4B, serialNumber=B77283C533113A391E31D94527186ACF8399A25F Validity Not Before: Aug 22 19:24:41 2025 GMT Not After : Aug 29 19:24:41 2025 GMT Subject: CN=68a8c3f9-4a29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:43:c4:9d:41:82:0c:16:f7:6b:f0:a2:1e:a0: 95:97:d3:96:50:bb:52:25:ce:37:a1:be:1d:cf:10: e0:f1:a1:da:bd:eb:5b:cb:68:f9:75:ee:5a:63:e7: f3:22:0e:e9:fa:07:38:02:bf:bd:a8:fc:c2:83:2a: 7f:87:9a:0b:0d:9c:f5:d3:a3:36:b4:b6:2a:e4:ba: 9c:b6:0c:bd:97:52:98:58:2a:c7:26:c3:70:94:5c: 84:80:6a:f1:d6:da:59:9a:ac:8e:12:0e:e2:26:16: 77:ef:2d:da:40:e7:20:3d:4b:24:a8:48:be:67:86: b0:65:13:21:f8:34:c9:0e:2e:4b:28:89:80:f2:d4: 23:6c:4f:51:7c:3a:5f:d2:7c:36:bf:5b:25:d2:4e: 64:f0:38:95:8e:05:15:71:15:df:9c:af:de:26:6c: 8f:f8:6c:38:12:66:ae:68:ae:62:19:34:15:c6:01: 3c:16:e4:86:58:94:dc:d5:b1:29:33:d4:b8:e9:04: 18:67:9a:df:3b:69:a1:47:a4:7c:d9:cf:fa:c6:83: c7:54:50:b3:33:6c:59:4e:30:39:97:13:1b:c1:6f: 96:9b:1b:c0:6b:36:0b:73:c8:a6:8e:26:70:20:13: 42:08:f2:57:06:7c:9d:0f:4c:d4:32:b7:f2:67:86: 3d:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:44:A9:85:07:A0:FC:D3:85:3A:2B:C5:21:F8:4A:EB:29:F0:EE:69 X509v3 Authority Key Identifier: keyid:B7:72:83:C5:33:11:3A:39:1E:31:D9:45:27:18:6A:CF:83:99:A2:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/t3KDxTMROjkeMdlFJxhqz4OZol8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t3KDxTMROjkeMdlFJxhqz4OZol8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/t3KDxTMROjkeMdlFJxhqz4OZol8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:6a:4c:4f:a2:41:ba:f9:a6:d5:15:b0:bc:f0:a6:4a:f1:10: b4:01:e8:43:82:63:9e:42:4b:7e:5a:ea:61:94:02:61:6e:b3: 33:52:c3:b2:68:2c:66:43:97:e9:b4:21:6b:cb:6e:50:1e:95: c1:78:23:37:84:f9:3b:49:68:1b:05:12:ec:e0:f2:0a:a0:29: a6:20:96:54:bb:8a:83:c5:b7:77:e5:ff:03:ee:32:b2:e0:5d: c7:2d:aa:a3:45:93:e0:fd:8c:eb:03:e8:b1:06:82:26:63:55: e3:63:97:ed:02:12:81:d6:97:aa:a1:99:7b:10:af:dc:30:c9: 68:e4:cd:33:ac:95:bc:e8:ce:e9:46:a1:77:47:7e:db:0e:37: 31:b8:42:44:0e:46:77:0d:85:ba:83:f4:24:4f:06:97:35:59: d1:70:db:d2:5e:eb:0b:f2:1b:40:3f:39:ad:81:e0:3e:a5:2c: 09:d5:66:3d:fa:6f:50:ed:d3:51:3a:48:96:47:69:cb:83:e1: 53:a9:d8:d1:9b:c1:a3:4b:8c:f6:9e:10:41:a5:cf:3a:10:13: 6b:e9:27:27:46:98:4c:77:d9:3e:8d:7a:ba:fe:ee:35:60:36: f9:a3:02:81:c3:eb:91:1f:44:aa:b8:02:9a:50:75:53:26:29: 29:83:0f:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCy8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUVFNEIxMTAvBgNVBAUTKEI3NzI4M0M1MzMxMTNBMzkxRTMxRDk0NTI3MTg2QUNG ODM5OUEyNUYwHhcNMjUwODIyMTkyNDQxWhcNMjUwODI5MTkyNDQxWjAYMRYwFAYD VQQDEw02OGE4YzNmOS00YTI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt0PEnUGCDBb3a/CiHqCVl9OWULtSJc43ob4dzxDg8aHavetby2j5de5aY+fz Ig7p+gc4Ar+9qPzCgyp/h5oLDZz106M2tLYq5Lqctgy9l1KYWCrHJsNwlFyEgGrx 1tpZmqyOEg7iJhZ37y3aQOcgPUskqEi+Z4awZRMh+DTJDi5LKImA8tQjbE9RfDpf 0nw2v1sl0k5k8DiVjgUVcRXfnK/eJmyP+Gw4EmauaK5iGTQVxgE8FuSGWJTc1bEp M9S46QQYZ5rfO2mhR6R82c/6xoPHVFCzM2xZTjA5lxMbwW+WmxvAazYLc8imjiZw IBNCCPJXBnydD0zUMrfyZ4Y9yQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEBEqYUH oPzThTorxSH4Susp8O5pMB8GA1UdIwQYMBaAFLdyg8UzETo5HjHZRScYas+DmaJf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRUU0Qi82M0RGRjgwMjQ1 QTQxMUVBOTQyRTA5NTdDNEY5QUUwMi90M0tEeFRNUk9qa2VNZGxGSnhocXo0T1pv bDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3QzS0R4VE1ST2prZU1kbEZKeGhxejRPWm9sOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RUU0Qi82M0RGRjgwMjQ1QTQxMUVBOTQyRTA5NTdDNEY5QUUwMi90M0tEeFRNUk9q a2VNZGxGSnhocXo0T1pvbDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVakxPokG6+abVFbC88KZK8RC0AehDgmOeQkt+WuphlAJhbrMzUsOy aCxmQ5fptCFry25QHpXBeCM3hPk7SWgbBRLs4PIKoCmmIJZUu4qDxbd35f8D7jKy 4F3HLaqjRZPg/YzrA+ixBoImY1XjY5ftAhKB1peqoZl7EK/cMMlo5M0zrJW86M7p RqF3R37bDjcxuEJEDkZ3DYW6g/QkTwaXNVnRcNvSXusL8htAPzmtgeA+pSwJ1WY9 +m9Q7dNROkiWR2nLg+FTqdjRm8GjS4z2nhBBpc86EBNr6ScnRphMd9k+jXq6/u41 YDb5owKBw+uRH0SquAKaUHVTJikpgw90 -----END CERTIFICATE-----Generated at Sun Aug 24 00:40:11 2025 by rpki-client