$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1F27/F77C109AFBA511ED88D0C96DC4F9AE02/nC3RgnBi24kuOEZaEK_kkWg1wCc.mft File: nC3RgnBi24kuOEZaEK_kkWg1wCc.mft (raw, json) Hash identifier: J8R6pIHV4B1R2etm8UUJqmPAXwl1BdUg1HMTu8EkKJ4= Subject key identifier: 48:20:0C:04:EA:DF:B5:0B:38:E9:A8:2D:0B:55:10:64:52:15:03:B5 Authority key identifier: 9C:2D:D1:82:70:62:DB:89:2E:38:46:5A:10:AF:E4:91:68:35:C0:27 Certificate issuer: /CN=A91B1F27/serialNumber=9C2DD1827062DB892E38465A10AFE4916835C027 Certificate serial: 01AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nC3RgnBi24kuOEZaEK_kkWg1wCc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1F27/F77C109AFBA511ED88D0C96DC4F9AE02/nC3RgnBi24kuOEZaEK_kkWg1wCc.mft Manifest number: 01A6 Signing time: Sat 23 Aug 2025 03:22:20 +0000 Manifest this update: Sat 23 Aug 2025 03:22:20 +0000 Manifest next update: Sat 30 Aug 2025 03:22:20 +0000 Files and hashes: 1: nC3RgnBi24kuOEZaEK_kkWg1wCc.crl (hash: X4Kr6Kjm+TWdNiHHjHyWlYkk7qZN5Y9G6lqnFHIwq28=) 2: ED31BA0AFBAE11ED977DEA10C4F9AE02.roa (hash: g1uCchBmIBLD1E0+vKSufURkU4LgiCkDHjxG4EF465I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1F27/F77C109AFBA511ED88D0C96DC4F9AE02/nC3RgnBi24kuOEZaEK_kkWg1wCc.crl rsync://rpki.apnic.net/member_repository/A91B1F27/F77C109AFBA511ED88D0C96DC4F9AE02/nC3RgnBi24kuOEZaEK_kkWg1wCc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nC3RgnBi24kuOEZaEK_kkWg1wCc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:22:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 426 (0x1aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1F27, serialNumber=9C2DD1827062DB892E38465A10AFE4916835C027 Validity Not Before: Aug 23 03:22:20 2025 GMT Not After : Aug 30 03:22:20 2025 GMT Subject: CN=68a933ec-aea6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:00:b3:c9:f0:ab:bd:d9:25:ce:ba:b7:6a:2d: 12:8f:c3:b7:ff:9e:e2:65:8f:b3:db:f4:7e:7e:44: 5a:d4:7b:3c:9b:cc:5e:60:49:24:1f:cb:cc:ab:39: 59:0a:72:43:a4:2c:1b:ff:a4:ec:58:e2:87:c0:55: 1d:e6:b8:a9:01:20:66:77:6a:85:0e:27:0f:49:8d: 0c:3d:d9:fb:04:a2:ba:77:c1:73:e7:a7:98:20:d4: 4d:e9:97:ee:d1:e4:70:4b:c1:52:70:df:50:52:c1: 36:f6:d5:f8:49:7d:8c:9d:0c:78:42:9f:0b:af:90: 6e:d1:f1:5c:52:9c:96:55:0c:f8:ff:0c:44:47:6f: f2:42:94:05:10:1b:da:2c:8a:64:29:ba:d8:7a:97: bc:1a:cc:c9:38:41:3b:61:e8:cf:5c:47:84:b3:26: 90:f5:a3:cf:6b:6f:83:9e:ed:d2:34:a9:b1:be:a5: 49:22:50:b3:ae:03:02:34:9e:43:a0:3c:52:49:65: 43:0b:32:6a:f9:2b:89:ee:b8:11:54:6b:bd:bd:b5: 48:73:2a:6c:ce:e9:ce:33:57:9c:ee:1f:88:4e:df: 64:ef:ac:53:71:a8:40:c2:bb:c8:a8:0c:17:d7:3b: 16:a2:d9:c1:96:98:c7:fc:af:c0:27:ab:27:cb:69: da:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:20:0C:04:EA:DF:B5:0B:38:E9:A8:2D:0B:55:10:64:52:15:03:B5 X509v3 Authority Key Identifier: keyid:9C:2D:D1:82:70:62:DB:89:2E:38:46:5A:10:AF:E4:91:68:35:C0:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1F27/F77C109AFBA511ED88D0C96DC4F9AE02/nC3RgnBi24kuOEZaEK_kkWg1wCc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nC3RgnBi24kuOEZaEK_kkWg1wCc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1F27/F77C109AFBA511ED88D0C96DC4F9AE02/nC3RgnBi24kuOEZaEK_kkWg1wCc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:2d:c4:04:80:06:80:2c:70:dc:de:82:56:1b:cc:99:a6:d9: 53:ed:9d:e8:05:3a:52:42:15:44:df:23:07:1e:86:fd:b2:d3: 11:b9:2d:0b:f5:9c:28:33:52:52:97:bd:75:15:46:ff:fc:47: d1:74:0f:ec:85:35:dd:9e:73:e1:e9:4b:10:d6:cf:bc:fe:0e: 59:e8:d6:fe:d9:90:29:e9:3c:5f:14:7e:3c:7e:d6:4f:7d:8a: 3d:f5:dd:23:84:f3:e1:5a:6b:e9:14:7e:e9:bb:be:1d:a3:48: e5:80:cc:2c:c3:d4:b2:01:9c:05:cb:ad:d4:f3:a1:74:35:61: e7:65:ee:8e:00:49:86:13:2f:e6:dc:b5:5a:6e:72:8e:ae:75: 82:52:a0:ed:81:7c:0b:e9:54:d4:c2:47:9d:c1:77:88:83:55: fa:df:e8:1a:4b:77:f0:b8:ec:83:07:2d:4f:2e:3e:63:4d:a3: f1:e1:ca:72:fc:f1:5c:8b:5c:45:94:97:22:35:cc:ac:cb:6b: 21:1d:f8:29:1b:a8:35:e5:fe:1c:9e:1e:f9:d7:7a:29:3c:7f: 5c:cf:24:e1:ce:8f:e9:ed:c3:27:c9:47:4c:ac:9a:1d:24:d4: f7:5b:90:4b:4b:f4:38:1d:d7:00:03:2d:5e:91:09:e9:04:c7: 89:85:33:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFGMjcxMTAvBgNVBAUTKDlDMkREMTgyNzA2MkRCODkyRTM4NDY1QTEwQUZFNDkx NjgzNUMwMjcwHhcNMjUwODIzMDMyMjIwWhcNMjUwODMwMDMyMjIwWjAYMRYwFAYD VQQDEw02OGE5MzNlYy1hZWE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzACzyfCrvdklzrq3ai0Sj8O3/57iZY+z2/R+fkRa1Hs8m8xeYEkkH8vMqzlZ CnJDpCwb/6TsWOKHwFUd5ripASBmd2qFDicPSY0MPdn7BKK6d8Fz56eYINRN6Zfu 0eRwS8FScN9QUsE29tX4SX2MnQx4Qp8Lr5Bu0fFcUpyWVQz4/wxER2/yQpQFEBva LIpkKbrYepe8GszJOEE7YejPXEeEsyaQ9aPPa2+Dnu3SNKmxvqVJIlCzrgMCNJ5D oDxSSWVDCzJq+SuJ7rgRVGu9vbVIcypszunOM1ec7h+ITt9k76xTcahAwrvIqAwX 1zsWotnBlpjH/K/AJ6sny2naDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEggDATq 37ULOOmoLQtVEGRSFQO1MB8GA1UdIwQYMBaAFJwt0YJwYtuJLjhGWhCv5JFoNcAn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUYyNy9GNzdDMTA5QUZC QTUxMUVEODhEMEM5NkRDNEY5QUUwMi9uQzNSZ25CaTI0a3VPRVphRUtfa2tXZzF3 Q2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25DM1JnbkJpMjRrdU9FWmFFS19ra1dnMXdDYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUYyNy9GNzdDMTA5QUZCQTUxMUVEODhEMEM5NkRDNEY5QUUwMi9uQzNSZ25CaTI0 a3VPRVphRUtfa2tXZzF3Q2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASLcQEgAaALHDc3oJWG8yZptlT7Z3oBTpSQhVE3yMHHob9stMRuS0L 9ZwoM1JSl711FUb//EfRdA/shTXdnnPh6UsQ1s+8/g5Z6Nb+2ZAp6TxfFH48ftZP fYo99d0jhPPhWmvpFH7pu74do0jlgMwsw9SyAZwFy63U86F0NWHnZe6OAEmGEy/m 3LVabnKOrnWCUqDtgXwL6VTUwkedwXeIg1X63+gaS3fwuOyDBy1PLj5jTaPx4cpy /PFci1xFlJciNcysy2shHfgpG6g15f4cnh7513opPH9czyThzo/p7cMnyUdMrJod JNT3W5BLS/Q4HdcAAy1ekQnpBMeJhTMg -----END CERTIFICATE-----Generated at Sun Aug 24 06:12:16 2025 by rpki-client