$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB4C2/B17E95D6037011EE9BB62C2FC4F9AE02/3COmnqHvwaN5SSwT6awUfEn1rQQ.mft File: 3COmnqHvwaN5SSwT6awUfEn1rQQ.mft (raw, json) Hash identifier: kG29xuoyXnWJxe5TaI7T7XAOJ1R3jL3+TPk1EkjQ9Wc= Subject key identifier: 80:3D:4C:BB:33:84:BF:AE:3F:07:25:19:24:7D:8F:4A:A3:F0:EF:FF Authority key identifier: DC:23:A6:9E:A1:EF:C1:A3:79:49:2C:13:E9:AC:14:7C:49:F5:AD:04 Certificate issuer: /CN=A91BB4C2/serialNumber=DC23A69EA1EFC1A379492C13E9AC147C49F5AD04 Certificate serial: 0205 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3COmnqHvwaN5SSwT6awUfEn1rQQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB4C2/B17E95D6037011EE9BB62C2FC4F9AE02/3COmnqHvwaN5SSwT6awUfEn1rQQ.mft Manifest number: 01D6 Signing time: Sat 23 Aug 2025 03:24:50 +0000 Manifest this update: Sat 23 Aug 2025 03:24:49 +0000 Manifest next update: Sat 30 Aug 2025 03:24:49 +0000 Files and hashes: 1: 3COmnqHvwaN5SSwT6awUfEn1rQQ.crl (hash: uZPIVK2XTQNa2qpoZk6TtIfZo1LYZW7RuwSHJMJsXLg=) 2: CBF7E2CE2D3611EEA81A490BC4F9AE02.roa (hash: 4yj8sZR6Z/FxcvXrPscntmMUZkXTFX7XG+1HhFVkn+I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB4C2/B17E95D6037011EE9BB62C2FC4F9AE02/3COmnqHvwaN5SSwT6awUfEn1rQQ.crl rsync://rpki.apnic.net/member_repository/A91BB4C2/B17E95D6037011EE9BB62C2FC4F9AE02/3COmnqHvwaN5SSwT6awUfEn1rQQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3COmnqHvwaN5SSwT6awUfEn1rQQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:24:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 517 (0x205) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB4C2, serialNumber=DC23A69EA1EFC1A379492C13E9AC147C49F5AD04 Validity Not Before: Aug 23 03:24:49 2025 GMT Not After : Aug 30 03:24:49 2025 GMT Subject: CN=68a93482-eb8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:04:e9:04:f1:6c:76:bf:a4:9f:96:4e:90:c4: 99:be:e0:67:95:9e:ae:4b:e0:bc:f9:66:b5:5c:f4: 86:5b:aa:8e:01:29:89:1b:e4:0c:c3:49:fc:c7:5c: 96:0f:bc:c1:a6:ee:a5:63:63:e0:05:5f:41:39:05: cd:c9:f8:da:c7:e8:e3:1c:7d:96:6e:4b:31:d8:0e: 6e:b2:93:59:8b:ca:05:ac:69:f5:f4:0e:78:a2:74: 1d:f6:e3:47:ad:ba:8f:78:9f:1f:e9:fa:10:56:13: 6e:0e:6c:51:27:cc:00:97:3a:4d:7b:0c:a7:52:be: 10:19:6e:e9:21:4b:f7:20:1d:f6:b8:7f:f1:25:72: 6d:4e:60:f6:b3:03:29:8b:6c:a8:68:ef:f1:0c:8a: 3d:f8:7a:ec:cc:e3:4a:66:08:29:cf:c7:23:76:06: 94:4c:01:f9:eb:fe:65:e2:12:2e:1f:12:06:af:c0: 42:3b:b6:7b:16:04:04:ec:c2:b7:d2:e6:b1:00:ca: 76:95:f2:d7:0b:ae:cb:d9:55:54:7c:3e:8b:dd:48: aa:f5:2f:d2:70:bf:09:22:28:9d:6c:51:ec:90:42: d9:65:d7:31:ea:d1:b1:59:0e:20:8e:d0:e4:1e:29: 51:ec:fa:80:4b:7d:46:ce:d1:bb:64:23:01:69:10: bc:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:3D:4C:BB:33:84:BF:AE:3F:07:25:19:24:7D:8F:4A:A3:F0:EF:FF X509v3 Authority Key Identifier: keyid:DC:23:A6:9E:A1:EF:C1:A3:79:49:2C:13:E9:AC:14:7C:49:F5:AD:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB4C2/B17E95D6037011EE9BB62C2FC4F9AE02/3COmnqHvwaN5SSwT6awUfEn1rQQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3COmnqHvwaN5SSwT6awUfEn1rQQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB4C2/B17E95D6037011EE9BB62C2FC4F9AE02/3COmnqHvwaN5SSwT6awUfEn1rQQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:51:e6:02:fb:7a:35:5c:46:23:63:95:75:cf:be:3e:2b:67: c6:9a:06:89:6b:dc:c8:b6:18:c9:54:54:a5:ce:f5:9e:60:7f: cd:4e:ba:ff:26:f0:8f:05:90:50:6d:75:ab:47:bd:97:24:13: d3:fa:50:70:81:3a:5d:42:d8:be:ba:b7:33:96:c5:c8:42:3d: 82:51:c6:d7:d5:4a:65:51:64:68:f2:6d:26:0f:77:9e:93:30: 28:ec:ec:5d:e4:69:8b:1f:67:1e:07:f7:23:d8:a4:65:aa:ef: 4a:8d:69:ce:d6:60:61:59:75:d2:51:a7:a8:15:fe:0b:ce:ed: 64:3e:7f:62:06:fb:9e:06:9c:8f:9e:5d:5a:b4:1d:1f:cf:f2: d2:16:99:11:f1:28:a3:f7:ae:98:7d:7a:cc:cf:0a:03:86:95: 8f:e8:0d:1e:23:ba:ac:05:fd:67:de:45:90:f0:c5:a3:12:b2: 07:12:94:1e:02:7f:28:53:bf:b6:3d:06:8b:7b:02:05:d1:3a: 69:80:43:fa:d0:d1:e6:3a:2a:bc:3e:95:66:7f:e9:29:0c:6f: d0:3e:fe:0d:75:a8:31:5e:e2:88:6f:cd:b6:3d:25:0c:0f:7d: d2:82:0b:b0:8b:ee:7a:f5:16:54:09:5a:0c:5d:63:35:92:b5: c7:bf:31:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI0QzIxMTAvBgNVBAUTKERDMjNBNjlFQTFFRkMxQTM3OTQ5MkMxM0U5QUMxNDdD NDlGNUFEMDQwHhcNMjUwODIzMDMyNDQ5WhcNMjUwODMwMDMyNDQ5WjAYMRYwFAYD VQQDEw02OGE5MzQ4Mi1lYjhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/ATpBPFsdr+kn5ZOkMSZvuBnlZ6uS+C8+Wa1XPSGW6qOASmJG+QMw0n8x1yW D7zBpu6lY2PgBV9BOQXNyfjax+jjHH2Wbksx2A5uspNZi8oFrGn19A54onQd9uNH rbqPeJ8f6foQVhNuDmxRJ8wAlzpNewynUr4QGW7pIUv3IB32uH/xJXJtTmD2swMp i2yoaO/xDIo9+HrszONKZggpz8cjdgaUTAH56/5l4hIuHxIGr8BCO7Z7FgQE7MK3 0uaxAMp2lfLXC67L2VVUfD6L3Uiq9S/ScL8JIiidbFHskELZZdcx6tGxWQ4gjtDk HilR7PqAS31GztG7ZCMBaRC8jwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIA9TLsz hL+uPwclGSR9j0qj8O//MB8GA1UdIwQYMBaAFNwjpp6h78GjeUksE+msFHxJ9a0E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjRDMi9CMTdFOTVENjAz NzAxMUVFOUJCNjJDMkZDNEY5QUUwMi8zQ09tbnFIdndhTjVTU3dUNmF3VWZFbjFy UVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNDT21ucUh2d2FONVNTd1Q2YXdVZkVuMXJRUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjRDMi9CMTdFOTVENjAzNzAxMUVFOUJCNjJDMkZDNEY5QUUwMi8zQ09tbnFIdndh TjVTU3dUNmF3VWZFbjFyUVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgUeYC+3o1XEYjY5V1z74+K2fGmgaJa9zIthjJVFSlzvWeYH/NTrr/ JvCPBZBQbXWrR72XJBPT+lBwgTpdQti+urczlsXIQj2CUcbX1UplUWRo8m0mD3ee kzAo7Oxd5GmLH2ceB/cj2KRlqu9KjWnO1mBhWXXSUaeoFf4Lzu1kPn9iBvueBpyP nl1atB0fz/LSFpkR8Sij966YfXrMzwoDhpWP6A0eI7qsBf1n3kWQ8MWjErIHEpQe An8oU7+2PQaLewIF0TppgEP60NHmOiq8PpVmf+kpDG/QPv4NdagxXuKIb822PSUM D33Sgguwi+569RZUCVoMXWM1krXHvzHF -----END CERTIFICATE-----Generated at Sun Aug 24 00:18:42 2025 by rpki-client