$ rpki-client -vvf rpki.apnic.net/member_repository/A91D74A6/7171BBF2D19C11EF83CEAD3CC4F9AE02/3IDIXlEBCJqyQl0_yRd5haASXG4.mft File: 3IDIXlEBCJqyQl0_yRd5haASXG4.mft (raw, json) Hash identifier: NkulVy6DWYSlub1gU9Pf+LCCWwYNknWpI//Ng8WWhoE= Subject key identifier: B6:2C:3A:58:B1:82:3E:5B:0F:CC:64:77:5D:4B:0B:1F:0F:92:DA:54 Authority key identifier: DC:80:C8:5E:51:01:08:9A:B2:42:5D:3F:C9:17:79:85:A0:12:5C:6E Certificate issuer: /CN=A91D74A6/serialNumber=DC80C85E5101089AB2425D3FC9177985A0125C6E Certificate serial: 87 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3IDIXlEBCJqyQl0_yRd5haASXG4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D74A6/7171BBF2D19C11EF83CEAD3CC4F9AE02/3IDIXlEBCJqyQl0_yRd5haASXG4.mft Manifest number: 7F Signing time: Sat 23 Aug 2025 07:05:21 +0000 Manifest this update: Sat 23 Aug 2025 07:05:21 +0000 Manifest next update: Sat 30 Aug 2025 07:05:21 +0000 Files and hashes: 1: 3IDIXlEBCJqyQl0_yRd5haASXG4.crl (hash: tv9tsvMQX8++XqguP7TfXlX0kZjOuJLUviqtGHvy4js=) 2: 727850D8D3EF11EFB596E00CC4F9AE02.roa (hash: hvte1LGzH8lQs5HlVIeT4otbezAzwXIr7d7vqIECmd8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D74A6/7171BBF2D19C11EF83CEAD3CC4F9AE02/3IDIXlEBCJqyQl0_yRd5haASXG4.crl rsync://rpki.apnic.net/member_repository/A91D74A6/7171BBF2D19C11EF83CEAD3CC4F9AE02/3IDIXlEBCJqyQl0_yRd5haASXG4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3IDIXlEBCJqyQl0_yRd5haASXG4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:05:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 135 (0x87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D74A6, serialNumber=DC80C85E5101089AB2425D3FC9177985A0125C6E Validity Not Before: Aug 23 07:05:21 2025 GMT Not After : Aug 30 07:05:21 2025 GMT Subject: CN=68a96831-3853 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:d8:d7:41:2f:76:8c:7e:ae:e9:bc:f6:6c:f3: fa:0e:b0:81:88:6b:8d:56:e1:be:fd:70:44:e0:97: 34:31:79:85:72:6d:94:7a:21:6b:aa:ae:fa:ab:f6: 10:be:fe:2a:91:98:8b:68:f0:cd:9d:61:8b:79:9e: e7:dd:41:aa:5a:0e:5c:b0:30:8e:7e:25:ce:c1:29: 2f:7e:fe:3e:de:37:32:57:4c:d1:d4:d7:5e:1b:77: 37:8d:12:d0:ad:de:4a:65:c0:36:ab:b1:cb:8e:df: 98:46:2c:5a:0c:b2:18:d4:66:cb:47:a5:ab:2f:76: 71:d1:76:6d:9b:ec:62:98:34:4d:77:ae:0a:8f:20: 38:94:87:5e:f6:6c:1d:fb:e2:bc:ef:dc:59:29:0c: 1f:c1:6f:33:b2:c0:c5:24:cf:8b:28:ce:83:ce:72: 87:ab:fe:2e:4b:7c:82:fb:66:21:b1:86:cf:f8:d8: 03:95:26:9f:8f:3a:3a:06:03:28:63:c0:e2:8a:47: 88:d6:15:33:1b:f4:db:0c:9f:12:5d:cb:87:e0:7d: 50:dd:4a:5d:4c:58:63:67:6f:bb:d8:bb:af:4a:18: f4:68:19:44:c9:3d:0d:c7:4c:1c:ea:19:91:ee:d5: bb:f9:2a:fe:d6:ce:27:17:c1:d2:e7:5d:65:26:80: 31:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:2C:3A:58:B1:82:3E:5B:0F:CC:64:77:5D:4B:0B:1F:0F:92:DA:54 X509v3 Authority Key Identifier: keyid:DC:80:C8:5E:51:01:08:9A:B2:42:5D:3F:C9:17:79:85:A0:12:5C:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D74A6/7171BBF2D19C11EF83CEAD3CC4F9AE02/3IDIXlEBCJqyQl0_yRd5haASXG4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3IDIXlEBCJqyQl0_yRd5haASXG4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D74A6/7171BBF2D19C11EF83CEAD3CC4F9AE02/3IDIXlEBCJqyQl0_yRd5haASXG4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:5c:03:6c:75:99:50:89:11:06:a0:15:28:36:72:84:13:98: b4:cb:30:be:79:f1:03:7f:28:3c:a0:a7:28:37:4a:54:f1:f0: b5:27:f8:7d:66:d3:85:43:99:e1:aa:23:7d:26:d8:43:8e:ed: d5:a3:02:1c:46:8d:b9:62:6e:ec:26:4f:5b:9d:f2:fe:85:5d: d4:31:68:72:8c:21:8c:3c:02:b8:25:ad:0e:01:b8:a9:1f:18: 5f:3d:16:1b:81:7e:24:7c:05:96:3f:50:fe:83:d2:f2:30:ad: 77:a2:76:61:27:28:df:6e:97:7d:96:7b:9e:98:7a:1e:34:7f: a5:bf:6d:7c:5c:f5:5f:bb:ac:6f:55:7a:86:c9:70:78:81:7c: c8:58:58:8d:15:15:fb:f1:05:38:3c:ca:43:ff:e9:91:9b:16: 19:c6:ba:bf:c3:fa:fe:ba:d5:ae:b4:5c:f8:40:c7:da:cd:16: d4:90:73:59:db:37:6e:54:50:cc:d5:94:c6:89:74:8a:31:4e: db:4c:20:f3:6c:97:8e:c1:78:6b:0f:a8:ac:27:4c:44:7b:d8: a7:c8:79:32:bb:63:03:8c:d2:b3:b9:07:66:82:0c:27:43:4c: b6:13:f4:0b:b1:6b:24:98:8b:cb:14:6c:e7:a1:e1:c8:17:dd: e5:f8:fe:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDc0QTYxMTAvBgNVBAUTKERDODBDODVFNTEwMTA4OUFCMjQyNUQzRkM5MTc3OTg1 QTAxMjVDNkUwHhcNMjUwODIzMDcwNTIxWhcNMjUwODMwMDcwNTIxWjAYMRYwFAYD VQQDEw02OGE5NjgzMS0zODUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3NjXQS92jH6u6bz2bPP6DrCBiGuNVuG+/XBE4Jc0MXmFcm2UeiFrqq76q/YQ vv4qkZiLaPDNnWGLeZ7n3UGqWg5csDCOfiXOwSkvfv4+3jcyV0zR1NdeG3c3jRLQ rd5KZcA2q7HLjt+YRixaDLIY1GbLR6WrL3Zx0XZtm+ximDRNd64KjyA4lIde9mwd ++K879xZKQwfwW8zssDFJM+LKM6DznKHq/4uS3yC+2YhsYbP+NgDlSafjzo6BgMo Y8DiikeI1hUzG/TbDJ8SXcuH4H1Q3UpdTFhjZ2+72LuvShj0aBlEyT0Nx0wc6hmR 7tW7+Sr+1s4nF8HS511lJoAxZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLYsOlix gj5bD8xkd11LCx8PktpUMB8GA1UdIwQYMBaAFNyAyF5RAQiaskJdP8kXeYWgElxu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzRBNi83MTcxQkJGMkQx OUMxMUVGODNDRUFEM0NDNEY5QUUwMi8zSURJWGxFQkNKcXlRbDBfeVJkNWhhQVNY RzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzNJRElYbEVCQ0pxeVFsMF95UmQ1aGFBU1hHNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NzRBNi83MTcxQkJGMkQxOUMxMUVGODNDRUFEM0NDNEY5QUUwMi8zSURJWGxFQkNK cXlRbDBfeVJkNWhhQVNYRzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbXANsdZlQiREGoBUoNnKEE5i0yzC+efEDfyg8oKcoN0pU8fC1J/h9 ZtOFQ5nhqiN9JthDju3VowIcRo25Ym7sJk9bnfL+hV3UMWhyjCGMPAK4Ja0OAbip HxhfPRYbgX4kfAWWP1D+g9LyMK13onZhJyjfbpd9lnuemHoeNH+lv218XPVfu6xv VXqGyXB4gXzIWFiNFRX78QU4PMpD/+mRmxYZxrq/w/r+utWutFz4QMfazRbUkHNZ 2zduVFDM1ZTGiXSKMU7bTCDzbJeOwXhrD6isJ0xEe9inyHkyu2MDjNKzuQdmggwn Q0y2E/QLsWskmIvLFGznoeHIF93l+P6n -----END CERTIFICATE-----Generated at Sat Aug 23 12:34:39 2025 by rpki-client