$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.mft File: 3SNdNwiQmzPViUtMzckQXGH9Fq4.mft (raw, json) Hash identifier: cFe0lW5Uciy6xkHjDwcDvHGRo8mH49B6iwv9mB/DB08= Subject key identifier: 1C:14:D4:2B:B1:7C:B9:38:DF:50:59:C3:FF:FD:A1:E6:53:CA:DF:1A Authority key identifier: DD:23:5D:37:08:90:9B:33:D5:89:4B:4C:CD:C9:10:5C:61:FD:16:AE Certificate issuer: /CN=A91B8C13/serialNumber=DD235D3708909B33D5894B4CCDC9105C61FD16AE Certificate serial: 01A1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3SNdNwiQmzPViUtMzckQXGH9Fq4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.mft Manifest number: 01A0 Signing time: Fri 22 Aug 2025 15:19:27 +0000 Manifest this update: Fri 22 Aug 2025 15:19:26 +0000 Manifest next update: Fri 29 Aug 2025 15:19:26 +0000 Files and hashes: 1: 3SNdNwiQmzPViUtMzckQXGH9Fq4.crl (hash: 8lx4sXahUbZobw3RB3Efrzqs6hh1U/QnkukFIwwT4pU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.crl rsync://rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3SNdNwiQmzPViUtMzckQXGH9Fq4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:19:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 417 (0x1a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8C13, serialNumber=DD235D3708909B33D5894B4CCDC9105C61FD16AE Validity Not Before: Aug 22 15:19:26 2025 GMT Not After : Aug 29 15:19:26 2025 GMT Subject: CN=68a88a7e-8763 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:81:ac:e5:0a:2a:df:2a:61:e9:ff:19:8c:19: 4f:e7:a2:ff:f9:94:ee:27:d9:61:dc:2c:d4:d4:ab: e5:fe:82:d0:e3:eb:d0:16:fc:c8:3f:21:db:03:eb: 9f:78:3a:11:47:e1:66:ed:2a:9c:19:0d:88:3f:b2: 6d:66:91:a9:a0:2c:6c:fd:05:e8:19:06:27:60:8f: 05:28:48:8c:da:be:62:bb:2f:5e:b6:77:6c:cb:37: d4:dd:b4:7e:e8:5e:12:84:f3:66:7e:16:b7:e7:74: 0c:31:81:30:a8:30:e4:e8:9b:7c:23:fe:fb:0e:31: db:5b:d5:d0:64:4a:8c:e1:8a:0a:96:ff:2e:1c:a9: 75:12:39:1e:3d:66:14:dd:8d:c8:d4:92:9d:16:cd: 3d:f1:d3:0c:fb:a1:2d:09:cf:8b:42:83:48:be:c5: 27:63:f1:e5:ee:40:29:48:60:c3:6f:01:aa:ea:42: ca:05:2e:ef:ef:cd:a2:55:69:09:76:b8:ed:a8:63: ab:46:c0:74:24:89:f0:46:51:7a:03:73:99:78:83: bc:d5:cb:fd:39:7a:b1:a7:4d:26:ee:a4:b5:c8:49: d7:1d:38:55:ea:c0:a3:ee:ea:52:44:2d:13:df:50: 23:e2:c2:d9:12:df:bd:6b:cd:37:09:d3:07:43:0c: 35:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:14:D4:2B:B1:7C:B9:38:DF:50:59:C3:FF:FD:A1:E6:53:CA:DF:1A X509v3 Authority Key Identifier: keyid:DD:23:5D:37:08:90:9B:33:D5:89:4B:4C:CD:C9:10:5C:61:FD:16:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3SNdNwiQmzPViUtMzckQXGH9Fq4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:8a:0c:be:d3:63:1f:0b:4e:87:2a:46:c9:30:92:8d:4f:3a: cd:72:6f:1d:f1:56:8b:4f:09:f8:83:0c:1b:9d:ab:1b:df:02: 5f:6d:c9:8e:a7:03:d7:83:81:ac:1f:06:a1:72:76:37:41:16: 30:34:66:ce:52:54:24:3c:cd:3d:f0:7d:2e:57:0f:d4:9d:b4: d9:34:bd:37:4b:db:b6:bb:36:19:55:ad:21:ec:23:bb:46:68: c3:0a:be:d8:55:e1:73:be:1c:e9:99:7a:d9:39:e5:e5:75:1e: 2c:e5:66:f4:40:fa:cf:11:07:89:82:8f:5c:b6:61:ab:59:cf: 40:68:ef:b4:b9:59:e9:f7:a4:ff:d2:09:1f:b0:42:80:9a:a3: bd:67:16:86:87:71:81:83:5a:9d:a9:e6:fa:8c:75:1d:61:9a: 74:a4:e6:25:66:16:ab:05:28:43:ae:38:98:5c:dc:8c:78:4c: c9:4a:63:cb:c7:2c:e4:72:3f:0c:fe:1d:9d:62:d3:17:65:10: 15:1c:1d:15:d9:12:d9:d2:21:e4:c8:70:a9:fc:02:11:ac:ab: d0:60:8d:06:50:97:3b:20:b8:72:6a:f5:f3:8e:c2:73:b8:a3: 57:80:3d:59:ff:11:f4:ac:9b:ac:41:a6:7d:fd:c8:95:17:6e: af:e0:2d:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhDMTMxMTAvBgNVBAUTKEREMjM1RDM3MDg5MDlCMzNENTg5NEI0Q0NEQzkxMDVD NjFGRDE2QUUwHhcNMjUwODIyMTUxOTI2WhcNMjUwODI5MTUxOTI2WjAYMRYwFAYD VQQDEw02OGE4OGE3ZS04NzYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvIGs5Qoq3yph6f8ZjBlP56L/+ZTuJ9lh3CzU1Kvl/oLQ4+vQFvzIPyHbA+uf eDoRR+Fm7SqcGQ2IP7JtZpGpoCxs/QXoGQYnYI8FKEiM2r5iuy9etndsyzfU3bR+ 6F4ShPNmfha353QMMYEwqDDk6Jt8I/77DjHbW9XQZEqM4YoKlv8uHKl1EjkePWYU 3Y3I1JKdFs098dMM+6EtCc+LQoNIvsUnY/Hl7kApSGDDbwGq6kLKBS7v782iVWkJ drjtqGOrRsB0JInwRlF6A3OZeIO81cv9OXqxp00m7qS1yEnXHThV6sCj7upSRC0T 31Aj4sLZEt+9a803CdMHQww1jQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBwU1Cux fLk431BZw//9oeZTyt8aMB8GA1UdIwQYMBaAFN0jXTcIkJsz1YlLTM3JEFxh/Rau MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEMxMy9EMDYxMTcxNjBC MkQxMUVFODY3RTZBMTdDNEY5QUUwMi8zU05kTndpUW16UFZpVXRNemNrUVhHSDlG cTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzNTTmROd2lRbXpQVmlVdE16Y2tRWEdIOUZxNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEMxMy9EMDYxMTcxNjBCMkQxMUVFODY3RTZBMTdDNEY5QUUwMi8zU05kTndpUW16 UFZpVXRNemNrUVhHSDlGcTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZigy+02MfC06HKkbJMJKNTzrNcm8d8VaLTwn4gwwbnasb3wJfbcmO pwPXg4GsHwahcnY3QRYwNGbOUlQkPM098H0uVw/UnbTZNL03S9u2uzYZVa0h7CO7 RmjDCr7YVeFzvhzpmXrZOeXldR4s5Wb0QPrPEQeJgo9ctmGrWc9AaO+0uVnp96T/ 0gkfsEKAmqO9ZxaGh3GBg1qdqeb6jHUdYZp0pOYlZharBShDrjiYXNyMeEzJSmPL xyzkcj8M/h2dYtMXZRAVHB0V2RLZ0iHkyHCp/AIRrKvQYI0GUJc7ILhyavXzjsJz uKNXgD1Z/xH0rJusQaZ9/ciVF26v4C1r -----END CERTIFICATE-----Generated at Sat Aug 23 16:06:34 2025 by rpki-client