$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.mft File: 38UozwAG40FK-3_obR_er2SLXJ0.mft (raw, json) Hash identifier: vLBEwp1SteF/SK2h6O9D/5Tk+T8Bgdszb3DFw5JaG4s= Subject key identifier: A7:83:C2:49:7B:37:FD:02:C7:38:12:8C:5C:F5:31:DB:0B:41:5D:7E Authority key identifier: DF:C5:28:CF:00:06:E3:41:4A:FB:7F:E8:6D:1F:DE:AF:64:8B:5C:9D Certificate issuer: /CN=A91B1A3B/serialNumber=DFC528CF0006E3414AFB7FE86D1FDEAF648B5C9D Certificate serial: 9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38UozwAG40FK-3_obR_er2SLXJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.mft Manifest number: 9D Signing time: Sat 23 Aug 2025 06:32:12 +0000 Manifest this update: Sat 23 Aug 2025 06:32:12 +0000 Manifest next update: Sat 30 Aug 2025 06:32:12 +0000 Files and hashes: 1: 38UozwAG40FK-3_obR_er2SLXJ0.crl (hash: ZtwsWJHqyyWOu2Usrsq1xom23wuo6+NUrmFsn1ynD5g=) 2: 6CF3FF44901111EF922BFC29C4F9AE02.roa (hash: kYva9N1B9q6x51z8ic6e8oPHZgI7EM6Un1P8CXMlwJE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.crl rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38UozwAG40FK-3_obR_er2SLXJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:32:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 158 (0x9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1A3B, serialNumber=DFC528CF0006E3414AFB7FE86D1FDEAF648B5C9D Validity Not Before: Aug 23 06:32:12 2025 GMT Not After : Aug 30 06:32:12 2025 GMT Subject: CN=68a9606c-6e98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:04:ff:fb:0b:04:b3:be:88:7d:00:b0:ae:13: 8d:15:9f:e1:fe:de:f0:ba:99:3d:88:56:ee:18:b7: 56:47:3e:5e:45:60:ee:51:97:5c:67:d0:f3:f0:74: b8:50:5f:30:b7:8e:d8:bd:ae:a0:da:29:81:96:e4: 76:37:af:2e:12:90:c2:8b:32:5e:02:25:7a:de:e8: 8a:7d:5d:53:77:ed:74:21:16:c3:41:39:f9:37:d8: 6d:31:5a:0b:46:43:89:90:41:bd:64:9c:c2:ff:73: 9b:ee:39:39:85:1e:bb:22:8e:5e:cf:4f:84:1a:be: ec:a0:e8:33:e1:c9:18:a8:dd:b1:5e:7a:46:99:7e: 64:42:05:e7:b8:e6:b7:ea:ae:fd:c4:d3:42:25:eb: 1f:d4:51:51:40:14:ac:9b:65:e1:31:52:75:21:ec: 73:1d:97:80:98:e1:c1:bf:69:82:5e:63:cc:2a:fb: 53:16:a2:16:58:0b:57:9c:cf:ff:2a:f0:ef:a9:08: 4c:87:33:a5:a5:19:fd:b4:9f:9f:f4:93:a2:ab:2c: 54:74:37:23:12:dd:7b:2b:88:51:5e:e0:1e:8f:ab: 3b:3b:58:16:71:be:ee:84:7c:ee:4f:45:f2:cb:d0: bd:97:6f:5d:8e:6b:7d:85:b5:13:7d:44:77:da:c3: 0b:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:83:C2:49:7B:37:FD:02:C7:38:12:8C:5C:F5:31:DB:0B:41:5D:7E X509v3 Authority Key Identifier: keyid:DF:C5:28:CF:00:06:E3:41:4A:FB:7F:E8:6D:1F:DE:AF:64:8B:5C:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38UozwAG40FK-3_obR_er2SLXJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:18:f0:a3:95:30:e3:75:b8:be:c0:c0:b5:cd:e9:06:28:1d: 27:12:8c:ce:c5:8c:b9:4d:c5:30:e6:f1:cb:6f:f3:53:f5:30: 72:4b:47:81:d6:52:16:59:25:9c:df:c5:12:6a:5b:7a:e2:56: 1c:5f:bd:6a:87:45:25:4c:b3:81:8e:c6:6c:56:a4:2f:ae:74: 2e:4d:2b:ed:54:ab:df:96:7a:30:b6:aa:ac:8d:61:e2:cd:5c: 8c:96:e5:6b:ff:bf:02:cf:84:d9:a6:29:57:93:24:24:ca:73: 74:10:1d:4b:8d:ef:16:41:e1:bc:1f:50:50:21:35:e2:d3:b3: 3b:2c:39:83:9a:7d:59:2c:53:01:57:8c:2b:96:e8:a6:32:5b: b8:78:10:a5:32:71:0d:b3:81:9b:e9:45:b0:22:c8:72:ea:cc: 5f:44:d1:f3:4c:79:62:b8:91:ec:e5:2e:d8:40:6b:6a:fa:7e: ae:cb:ff:76:ce:a5:bf:09:99:a3:e9:0e:54:19:40:07:fb:4c: ee:84:b3:76:f1:72:86:01:e2:39:90:1f:f9:46:17:88:56:c2: 94:94:b1:9f:e6:66:0f:76:55:cd:84:fc:e4:3b:7f:70:97:76: 59:c5:48:91:99:84:3d:e1:8c:34:93:40:5f:3a:bc:e1:f0:01: b4:d4:f9:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFBM0IxMTAvBgNVBAUTKERGQzUyOENGMDAwNkUzNDE0QUZCN0ZFODZEMUZERUFG NjQ4QjVDOUQwHhcNMjUwODIzMDYzMjEyWhcNMjUwODMwMDYzMjEyWjAYMRYwFAYD VQQDEw02OGE5NjA2Yy02ZTk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuwT/+wsEs76IfQCwrhONFZ/h/t7wupk9iFbuGLdWRz5eRWDuUZdcZ9Dz8HS4 UF8wt47Yva6g2imBluR2N68uEpDCizJeAiV63uiKfV1Td+10IRbDQTn5N9htMVoL RkOJkEG9ZJzC/3Ob7jk5hR67Io5ez0+EGr7soOgz4ckYqN2xXnpGmX5kQgXnuOa3 6q79xNNCJesf1FFRQBSsm2XhMVJ1IexzHZeAmOHBv2mCXmPMKvtTFqIWWAtXnM// KvDvqQhMhzOlpRn9tJ+f9JOiqyxUdDcjEt17K4hRXuAej6s7O1gWcb7uhHzuT0Xy y9C9l29djmt9hbUTfUR32sMLIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKeDwkl7 N/0CxzgSjFz1MdsLQV1+MB8GA1UdIwQYMBaAFN/FKM8ABuNBSvt/6G0f3q9ki1yd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUEzQi8yMjcwMTlEQTkw MTExMUVGOUI4NUM5NkFDNEY5QUUwMi8zOFVvendBRzQwRkstM19vYlJfZXIyU0xY SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM4VW96d0FHNDBGSy0zX29iUl9lcjJTTFhKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUEzQi8yMjcwMTlEQTkwMTExMUVGOUI4NUM5NkFDNEY5QUUwMi8zOFVvendBRzQw RkstM19vYlJfZXIyU0xYSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzGPCjlTDjdbi+wMC1zekGKB0nEozOxYy5TcUw5vHLb/NT9TByS0eB 1lIWWSWc38USalt64lYcX71qh0UlTLOBjsZsVqQvrnQuTSvtVKvflnowtqqsjWHi zVyMluVr/78Cz4TZpilXkyQkynN0EB1Lje8WQeG8H1BQITXi07M7LDmDmn1ZLFMB V4wrluimMlu4eBClMnENs4Gb6UWwIshy6sxfRNHzTHliuJHs5S7YQGtq+n6uy/92 zqW/CZmj6Q5UGUAH+0zuhLN28XKGAeI5kB/5RheIVsKUlLGf5mYPdlXNhPzkO39w l3ZZxUiRmYQ94Yw0k0BfOrzh8AG01PmK -----END CERTIFICATE-----Generated at Sat Aug 23 19:10:36 2025 by rpki-client