$ rpki-client -vvf rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.mft File: 3Y89lj-o0fItV_Tfspq9cNJVjjc.mft (raw, json) Hash identifier: ADNEH8G2FfQr8917VtdSGZ1ENfdXGKO+XhakbIydmUE= Subject key identifier: 0B:B9:2B:07:23:4B:53:26:D5:98:ED:10:F1:8A:ED:D7:60:3C:D3:9D Authority key identifier: DD:8F:3D:96:3F:A8:D1:F2:2D:57:F4:DF:B2:9A:BD:70:D2:55:8E:37 Certificate issuer: /CN=A91D506C/serialNumber=DD8F3D963FA8D1F22D57F4DFB29ABD70D2558E37 Certificate serial: 02E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Y89lj-o0fItV_Tfspq9cNJVjjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.mft Manifest number: 02E4 Signing time: Sat 23 Aug 2025 01:33:33 +0000 Manifest this update: Sat 23 Aug 2025 01:33:32 +0000 Manifest next update: Sat 30 Aug 2025 01:33:32 +0000 Files and hashes: 1: 3Y89lj-o0fItV_Tfspq9cNJVjjc.crl (hash: Raqny6ZvIe6CLNa4w+cr8u3lURZW9Evyymp8yID4+t0=) 2: 76C5241CF47311EC8721C33DC4F9AE02.roa (hash: k+SbCpllhZI/PId+36V/JG+wlkp2Gdvk2xv/XzOQ3v8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.crl rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Y89lj-o0fItV_Tfspq9cNJVjjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:33:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 744 (0x2e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D506C, serialNumber=DD8F3D963FA8D1F22D57F4DFB29ABD70D2558E37 Validity Not Before: Aug 23 01:33:32 2025 GMT Not After : Aug 30 01:33:32 2025 GMT Subject: CN=68a91a6c-dcdd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:2a:5b:e8:42:6c:8b:7a:d9:f4:c1:63:63:b6: 0f:6c:36:56:ba:88:dc:52:be:fe:bf:77:fd:39:96: ff:67:cb:d1:56:3c:3f:e1:ec:37:a5:2f:35:b3:6c: 33:62:65:1e:76:1e:ef:a7:79:ab:bb:f9:8c:f1:72: f1:17:52:6c:ac:6b:60:04:07:67:ba:a2:20:0a:a9: 2f:a0:6a:9a:5f:d9:33:b3:58:bd:77:af:1e:91:3c: a0:af:84:f7:12:ff:46:fe:87:36:f3:f9:98:89:a1: 84:98:12:53:ba:27:d2:18:82:79:41:b1:b8:de:21: 2c:60:bc:3f:89:1f:cd:26:e2:53:dd:fc:c5:8a:54: 90:c9:a9:d0:9a:18:5d:3c:8c:6b:76:6a:73:50:00: ab:1e:6e:12:a8:96:77:41:c6:bd:c1:ee:be:e3:85: 7d:49:0b:03:bc:aa:f8:8b:c4:d4:04:56:63:cd:ce: ed:c1:3f:cc:2c:ce:90:a5:20:b3:f4:91:48:86:c9: d4:7d:72:4f:a8:2d:92:96:76:b7:04:20:4b:de:98: 82:8d:8e:ea:df:81:e1:54:2c:e5:bf:17:4f:d4:ab: 92:43:41:c9:6d:30:56:ba:e5:a8:25:67:d5:53:8d: d7:19:bd:0d:78:d8:3b:b7:fd:b6:eb:d1:5e:4a:e6: df:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:B9:2B:07:23:4B:53:26:D5:98:ED:10:F1:8A:ED:D7:60:3C:D3:9D X509v3 Authority Key Identifier: keyid:DD:8F:3D:96:3F:A8:D1:F2:2D:57:F4:DF:B2:9A:BD:70:D2:55:8E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Y89lj-o0fItV_Tfspq9cNJVjjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:ef:07:3d:08:53:37:da:6f:39:5f:8b:7a:58:9f:8d:4c:8f: 66:fc:6a:6c:73:c2:a0:f4:1e:bf:6c:8c:61:0a:ab:20:22:f6: 31:e5:a1:02:b4:bd:bc:9e:9c:d6:3d:99:22:26:01:c5:f5:f8: e7:84:0a:ba:5f:1c:7c:ce:b3:b9:ef:0e:92:74:0d:23:e0:0b: 17:14:9c:da:ba:94:99:c7:e6:b5:be:70:8e:eb:85:b5:02:43: cf:9b:e3:10:f5:36:d4:27:36:a1:ea:8c:b6:77:4c:80:05:c2: 1b:af:be:91:c3:e3:f0:ed:c6:ac:bd:03:1e:1e:ba:e2:70:aa: 62:9e:a2:4b:f7:d5:49:f4:e9:02:5d:97:77:18:7b:ab:97:40: c1:bb:ee:9e:b3:43:b7:5a:5a:69:a6:10:56:5d:fd:9d:bd:8d: e2:17:10:3f:f3:ca:ca:b7:df:b3:91:c9:6c:04:2b:43:c3:d8: 02:ff:c2:bd:52:8a:df:97:37:be:e1:46:9a:dd:43:1c:c8:be: 66:75:fe:60:51:5a:96:de:da:bc:18:ea:de:83:db:d2:1d:48: 93:40:8f:68:20:2c:ed:2f:16:fb:48:20:fc:0e:9d:b5:4a:e7: 15:9d:99:78:b6:63:67:83:87:68:ed:74:60:51:9f:df:1d:0c: 34:ea:86:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAugwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUwNkMxMTAvBgNVBAUTKEREOEYzRDk2M0ZBOEQxRjIyRDU3RjRERkIyOUFCRDcw RDI1NThFMzcwHhcNMjUwODIzMDEzMzMyWhcNMjUwODMwMDEzMzMyWjAYMRYwFAYD VQQDEw02OGE5MWE2Yy1kY2RkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqipb6EJsi3rZ9MFjY7YPbDZWuojcUr7+v3f9OZb/Z8vRVjw/4ew3pS81s2wz YmUedh7vp3mru/mM8XLxF1JsrGtgBAdnuqIgCqkvoGqaX9kzs1i9d68ekTygr4T3 Ev9G/oc28/mYiaGEmBJTuifSGIJ5QbG43iEsYLw/iR/NJuJT3fzFilSQyanQmhhd PIxrdmpzUACrHm4SqJZ3Qca9we6+44V9SQsDvKr4i8TUBFZjzc7twT/MLM6QpSCz 9JFIhsnUfXJPqC2Slna3BCBL3piCjY7q34HhVCzlvxdP1KuSQ0HJbTBWuuWoJWfV U43XGb0NeNg7t/2269FeSubf0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAu5Kwcj S1Mm1ZjtEPGK7ddgPNOdMB8GA1UdIwQYMBaAFN2PPZY/qNHyLVf037KavXDSVY43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTA2Qy80NjYxOEIxQ0Y0 NkUxMUVDOEM2MDcwMEZDNEY5QUUwMi8zWTg5bGotbzBmSXRWX1Rmc3BxOWNOSlZq amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNZODlsai1vMGZJdFZfVGZzcHE5Y05KVmpqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTA2Qy80NjYxOEIxQ0Y0NkUxMUVDOEM2MDcwMEZDNEY5QUUwMi8zWTg5bGotbzBm SXRWX1Rmc3BxOWNOSlZqamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBO7wc9CFM32m85X4t6WJ+NTI9m/Gpsc8Kg9B6/bIxhCqsgIvYx5aEC tL28npzWPZkiJgHF9fjnhAq6Xxx8zrO57w6SdA0j4AsXFJzaupSZx+a1vnCO64W1 AkPPm+MQ9TbUJzah6oy2d0yABcIbr76Rw+Pw7casvQMeHrricKpinqJL99VJ9OkC XZd3GHurl0DBu+6es0O3WlppphBWXf2dvY3iFxA/88rKt9+zkclsBCtDw9gC/8K9 Uorflze+4Uaa3UMcyL5mdf5gUVqW3tq8GOreg9vSHUiTQI9oICztLxb7SCD8Dp21 SucVnZl4tmNng4do7XRgUZ/fHQw06oZH -----END CERTIFICATE-----Generated at Sat Aug 23 17:13:06 2025 by rpki-client