$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA447/5F4C6CF2426211EA94C5C466C4F9AE02/3Ji1RLFsSamN0Fhc-WckJkFVLqQ.mft File: 3Ji1RLFsSamN0Fhc-WckJkFVLqQ.mft (raw, json) Hash identifier: aPHzJeSvncFYdu82FWaMEiw23Es2Wbgb3EGbydBzrL8= Subject key identifier: 23:D1:EB:DC:EA:1F:CE:25:EC:21:8A:F6:37:06:D5:17:99:A7:62:88 Authority key identifier: DC:98:B5:44:B1:6C:49:A9:8D:D0:58:5C:F9:67:24:26:41:55:2E:A4 Certificate issuer: /CN=A91BA447/serialNumber=DC98B544B16C49A98DD0585CF967242641552EA4 Certificate serial: 0B3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Ji1RLFsSamN0Fhc-WckJkFVLqQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA447/5F4C6CF2426211EA94C5C466C4F9AE02/3Ji1RLFsSamN0Fhc-WckJkFVLqQ.mft Manifest number: 0B35 Signing time: Fri 22 Aug 2025 19:21:28 +0000 Manifest this update: Fri 22 Aug 2025 19:21:27 +0000 Manifest next update: Fri 29 Aug 2025 19:21:27 +0000 Files and hashes: 1: 3Ji1RLFsSamN0Fhc-WckJkFVLqQ.crl (hash: nmxAX7ttp5TQmuB5SikBeK1O9u9ZiKz22LN3VItW6QA=) 2: 07F14B9C426411EABA91B569C4F9AE02.roa (hash: F4BgB3+37H1vj4fhyDwAENhQ6lWTOrd3il938AR6caY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA447/5F4C6CF2426211EA94C5C466C4F9AE02/3Ji1RLFsSamN0Fhc-WckJkFVLqQ.crl rsync://rpki.apnic.net/member_repository/A91BA447/5F4C6CF2426211EA94C5C466C4F9AE02/3Ji1RLFsSamN0Fhc-WckJkFVLqQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Ji1RLFsSamN0Fhc-WckJkFVLqQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:21:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2876 (0xb3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA447, serialNumber=DC98B544B16C49A98DD0585CF967242641552EA4 Validity Not Before: Aug 22 19:21:27 2025 GMT Not After : Aug 29 19:21:27 2025 GMT Subject: CN=68a8c338-44c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:9b:9d:a4:dd:b9:19:a4:b2:fd:65:d3:f7:6d: 3e:9d:62:66:52:2d:ed:97:7e:17:fc:f1:cd:21:51: 72:40:8f:62:90:8a:44:31:72:3d:aa:a7:43:69:14: 9d:fb:f8:b6:53:ca:e5:a0:7b:e3:fe:73:d5:d9:ba: 82:9e:fa:bf:b3:d2:3d:93:18:f5:0a:80:41:e1:0f: a6:27:43:10:8c:cc:b7:fe:e3:2b:3d:c3:4c:4b:23: 4b:1f:ea:40:e4:ca:6b:92:86:19:e9:e9:6e:d7:6b: 58:80:2a:d7:13:7f:ac:75:b9:6d:46:c4:5a:80:a7: 06:71:53:50:b9:16:8a:52:8b:02:d9:e9:ef:68:26: 56:cc:0f:ff:53:10:3e:06:b1:e3:57:d7:27:d1:fc: 87:2c:ae:76:ab:cd:57:26:c6:d9:0d:58:c0:c7:33: d5:4f:9b:65:21:e6:65:89:91:05:1e:76:2f:0a:6f: a7:29:3f:c3:05:e2:06:62:6b:b6:d0:4a:46:5b:46: 87:17:25:f2:a2:28:93:63:97:3e:41:8e:61:9a:54: ec:cb:39:ec:89:cc:e4:ea:a2:5b:4c:aa:6b:02:d4: 87:b7:7c:bd:b4:a2:84:c7:d4:87:c8:91:a4:ac:3e: d4:ee:7a:90:b0:ec:56:aa:77:10:ed:ba:f8:68:5d: ab:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:D1:EB:DC:EA:1F:CE:25:EC:21:8A:F6:37:06:D5:17:99:A7:62:88 X509v3 Authority Key Identifier: keyid:DC:98:B5:44:B1:6C:49:A9:8D:D0:58:5C:F9:67:24:26:41:55:2E:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA447/5F4C6CF2426211EA94C5C466C4F9AE02/3Ji1RLFsSamN0Fhc-WckJkFVLqQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Ji1RLFsSamN0Fhc-WckJkFVLqQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA447/5F4C6CF2426211EA94C5C466C4F9AE02/3Ji1RLFsSamN0Fhc-WckJkFVLqQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:bc:27:bf:21:91:cf:22:70:1a:5c:2b:dc:4d:6b:b4:4a:28: 71:d4:98:63:b0:eb:af:5f:dd:85:61:cc:19:ae:13:8f:4c:1f: b7:66:0e:87:d4:62:b4:1e:78:36:19:85:b2:c5:d0:48:dc:62: bb:1b:79:0b:a3:33:7f:45:d4:89:be:04:ef:2e:d2:e0:58:44: 40:92:88:5b:22:6d:6b:a9:07:f8:a2:81:d1:53:ae:d9:b1:b2: d1:d5:c5:ea:f5:a4:d7:a6:34:7f:bd:c6:43:f1:e3:27:ec:75: bc:58:89:12:e7:6f:f3:ec:3e:f5:9f:2a:76:14:a5:fe:d8:3e: 36:30:9a:12:b4:aa:7b:33:8f:e8:6e:e0:89:02:f0:b8:1a:7f: 2c:45:e9:be:a6:5f:94:bb:d1:c5:1e:48:63:67:97:41:a6:12: 63:60:da:ad:bd:95:c7:da:7b:aa:0a:40:c6:51:e0:c9:16:22: 26:9e:38:f3:e6:2f:0b:96:64:48:22:23:27:06:e8:03:5a:c8: 83:73:c8:b1:3a:7f:70:9d:68:64:e0:f1:c8:36:7a:82:ea:37: 9c:01:a3:b7:b9:4e:8b:2e:3f:f0:2c:18:1d:16:0e:22:a3:e7: 1d:02:5b:20:84:ed:d0:9a:29:f0:56:6a:2c:54:20:12:26:ac: 99:3b:9c:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCzwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkE0NDcxMTAvBgNVBAUTKERDOThCNTQ0QjE2QzQ5QTk4REQwNTg1Q0Y5NjcyNDI2 NDE1NTJFQTQwHhcNMjUwODIyMTkyMTI3WhcNMjUwODI5MTkyMTI3WjAYMRYwFAYD VQQDEw02OGE4YzMzOC00NGMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAupudpN25GaSy/WXT920+nWJmUi3tl34X/PHNIVFyQI9ikIpEMXI9qqdDaRSd +/i2U8rloHvj/nPV2bqCnvq/s9I9kxj1CoBB4Q+mJ0MQjMy3/uMrPcNMSyNLH+pA 5MprkoYZ6elu12tYgCrXE3+sdbltRsRagKcGcVNQuRaKUosC2envaCZWzA//UxA+ BrHjV9cn0fyHLK52q81XJsbZDVjAxzPVT5tlIeZliZEFHnYvCm+nKT/DBeIGYmu2 0EpGW0aHFyXyoiiTY5c+QY5hmlTsyznsiczk6qJbTKprAtSHt3y9tKKEx9SHyJGk rD7U7nqQsOxWqncQ7br4aF2rFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCPR69zq H84l7CGK9jcG1ReZp2KIMB8GA1UdIwQYMBaAFNyYtUSxbEmpjdBYXPlnJCZBVS6k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTQ0Ny81RjRDNkNGMjQy NjIxMUVBOTRDNUM0NjZDNEY5QUUwMi8zSmkxUkxGc1NhbU4wRmhjLVdja0prRlZM cVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNKaTFSTEZzU2FtTjBGaGMtV2NrSmtGVkxxUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTQ0Ny81RjRDNkNGMjQyNjIxMUVBOTRDNUM0NjZDNEY5QUUwMi8zSmkxUkxGc1Nh bU4wRmhjLVdja0prRlZMcVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMvCe/IZHPInAaXCvcTWu0Sihx1JhjsOuvX92FYcwZrhOPTB+3Zg6H 1GK0Hng2GYWyxdBI3GK7G3kLozN/RdSJvgTvLtLgWERAkohbIm1rqQf4ooHRU67Z sbLR1cXq9aTXpjR/vcZD8eMn7HW8WIkS52/z7D71nyp2FKX+2D42MJoStKp7M4/o buCJAvC4Gn8sRem+pl+Uu9HFHkhjZ5dBphJjYNqtvZXH2nuqCkDGUeDJFiImnjjz 5i8LlmRIIiMnBugDWsiDc8ixOn9wnWhk4PHINnqC6jecAaO3uU6LLj/wLBgdFg4i o+cdAlsghO3QminwVmosVCASJqyZO5xN -----END CERTIFICATE-----Generated at Sat Aug 23 16:44:04 2025 by rpki-client