$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.mft File: 3oqNpw4WUAnRQNn2JFJNxNR51eg.mft (raw, json) Hash identifier: OW6IrYkW1vgFAYIK+QWSx/+QZhJ2OQp1vssEAPKakBs= Subject key identifier: 55:CD:31:FF:C6:79:11:40:B8:7B:B0:26:32:90:15:3A:D3:24:65:98 Authority key identifier: DE:8A:8D:A7:0E:16:50:09:D1:40:D9:F6:24:52:4D:C4:D4:79:D5:E8 Certificate issuer: /CN=A91DA13E/serialNumber=DE8A8DA70E165009D140D9F624524DC4D479D5E8 Certificate serial: 07F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oqNpw4WUAnRQNn2JFJNxNR51eg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.mft Manifest number: 07DF Signing time: Fri 22 Aug 2025 21:18:31 +0000 Manifest this update: Fri 22 Aug 2025 21:18:30 +0000 Manifest next update: Fri 29 Aug 2025 21:18:30 +0000 Files and hashes: 1: 3oqNpw4WUAnRQNn2JFJNxNR51eg.crl (hash: LMLg3oeZbegnfTKsQnz+UXjNe2nY+LC1BFlZFDxk2OE=) 2: 29D6DCB2849211EE8F9C5870C4F9AE02.roa (hash: Rw6zEr6DY5Vp9Hj5tF7TI5Kq9ScA3GH+aMoga9/kLfs=) 3: B9A51B1AFA4F11EDB82FCB1FC4F9AE02.roa (hash: 5YYK0YKoDCpaklYir4k5rIBA5wPjwgrEAbtRskRmQT8=) 4: 298965AC06B611EBBBFD6B2CC4F9AE02.roa (hash: TH9JF4+CN1WO9NYgkx1yWi97+W1C48OFIwRdTh3Mt1Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.crl rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oqNpw4WUAnRQNn2JFJNxNR51eg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:18:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2038 (0x7f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA13E, serialNumber=DE8A8DA70E165009D140D9F624524DC4D479D5E8 Validity Not Before: Aug 22 21:18:30 2025 GMT Not After : Aug 29 21:18:30 2025 GMT Subject: CN=68a8dea6-2e40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:0b:71:66:e8:64:92:38:b9:99:42:20:73:ba: 4d:05:56:4a:55:e8:20:2c:be:74:b2:49:43:20:8c: 1b:a7:20:a0:7a:d0:5a:4c:05:87:d1:38:dc:25:8b: 6c:ee:74:a4:b5:d2:be:d3:37:bc:f2:66:e0:05:6f: dd:4e:8d:71:05:d1:96:c4:7d:e0:39:e6:23:08:bd: 18:ca:fc:90:07:5a:c0:cb:8e:c0:fd:e8:90:3d:f3: 43:f5:71:d9:5e:27:f9:e9:98:86:ef:ed:4c:0d:84: f2:47:a3:63:01:68:8a:73:6c:23:7f:95:72:3d:dc: d5:f8:05:3e:06:66:e0:5f:dd:66:96:b5:84:8a:b5: 41:c7:fe:df:c7:48:c1:23:18:06:34:50:e0:75:02: 5b:0b:c9:68:f3:23:50:cf:9e:e3:69:b7:16:05:5b: a2:12:a7:35:5e:1f:04:86:2a:2c:14:8d:fb:59:9a: ef:a7:61:f2:60:7b:0a:46:e9:2b:af:50:56:f7:32: b1:e2:0d:04:18:79:1e:f4:e1:e1:7c:34:cb:e1:80: e5:d8:00:53:40:68:f6:16:1a:9b:1e:15:c9:6e:49: 20:0c:54:0d:40:a5:ff:e2:67:08:48:65:c3:36:a4: a4:e1:d8:f9:3b:97:f0:c6:0d:73:72:3c:9e:d0:c2: 34:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:CD:31:FF:C6:79:11:40:B8:7B:B0:26:32:90:15:3A:D3:24:65:98 X509v3 Authority Key Identifier: keyid:DE:8A:8D:A7:0E:16:50:09:D1:40:D9:F6:24:52:4D:C4:D4:79:D5:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oqNpw4WUAnRQNn2JFJNxNR51eg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:88:71:08:e8:7f:ec:a1:51:e6:ed:74:2e:2b:df:d0:41:3f: ad:78:7f:9a:3d:78:32:df:fc:2b:52:a9:89:22:d8:20:0f:41: 2a:2e:8f:65:e3:98:16:cd:8f:8c:de:89:ac:47:95:82:ac:7b: f6:4c:d3:f3:cd:7a:f7:45:da:8c:06:88:b2:cb:4b:82:fb:8c: 84:e9:09:48:1d:8f:5a:d6:c7:0b:27:52:cc:27:c6:c8:73:d1: 2d:24:2e:73:47:1e:46:8e:1d:68:04:1a:d3:6b:de:d6:15:3c: ce:c0:6c:80:10:8b:63:a1:7a:60:90:98:25:41:3c:d0:78:2b: 17:60:cc:04:bb:fc:74:7f:5e:b5:53:e5:a4:fc:24:54:42:c0: 6c:ac:8d:f5:41:b6:f0:b8:20:a3:4b:e1:2e:90:74:b3:1c:4a: 32:49:6e:ce:cf:6b:34:c9:26:0d:ad:f6:9d:cc:7e:b9:02:9e: 93:55:bb:f4:69:ef:ed:83:36:e2:2a:24:92:87:2a:a9:cd:84: 46:fa:74:a0:dd:f6:ec:06:45:34:a5:61:f6:c9:3c:8c:f6:cb: 62:11:84:67:fe:d6:3b:98:32:ed:47:a6:ad:78:fb:d0:91:a9: 09:f3:97:1e:95:e0:e9:34:21:45:e1:11:d8:fc:eb:71:16:cb: 1f:38:64:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REExM0UxMTAvBgNVBAUTKERFOEE4REE3MEUxNjUwMDlEMTQwRDlGNjI0NTI0REM0 RDQ3OUQ1RTgwHhcNMjUwODIyMjExODMwWhcNMjUwODI5MjExODMwWjAYMRYwFAYD VQQDEw02OGE4ZGVhNi0yZTQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0gtxZuhkkji5mUIgc7pNBVZKVeggLL50sklDIIwbpyCgetBaTAWH0TjcJYts 7nSktdK+0ze88mbgBW/dTo1xBdGWxH3gOeYjCL0YyvyQB1rAy47A/eiQPfND9XHZ Xif56ZiG7+1MDYTyR6NjAWiKc2wjf5VyPdzV+AU+BmbgX91mlrWEirVBx/7fx0jB IxgGNFDgdQJbC8lo8yNQz57jabcWBVuiEqc1Xh8EhiosFI37WZrvp2HyYHsKRukr r1BW9zKx4g0EGHke9OHhfDTL4YDl2ABTQGj2FhqbHhXJbkkgDFQNQKX/4mcISGXD NqSk4dj5O5fwxg1zcjye0MI0EwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFXNMf/G eRFAuHuwJjKQFTrTJGWYMB8GA1UdIwQYMBaAFN6KjacOFlAJ0UDZ9iRSTcTUedXo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTEzRS81NEQ2QTUwRTA2 QjUxMUVCOTM3MkQzMkJDNEY5QUUwMi8zb3FOcHc0V1VBblJRTm4ySkZKTnhOUjUx ZWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNvcU5wdzRXVUFuUlFObjJKRkpOeE5SNTFlZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTEzRS81NEQ2QTUwRTA2QjUxMUVCOTM3MkQzMkJDNEY5QUUwMi8zb3FOcHc0V1VB blJRTm4ySkZKTnhOUjUxZWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBziHEI6H/soVHm7XQuK9/QQT+teH+aPXgy3/wrUqmJItggD0EqLo9l 45gWzY+M3omsR5WCrHv2TNPzzXr3RdqMBoiyy0uC+4yE6QlIHY9a1scLJ1LMJ8bI c9EtJC5zRx5Gjh1oBBrTa97WFTzOwGyAEItjoXpgkJglQTzQeCsXYMwEu/x0f161 U+Wk/CRUQsBsrI31QbbwuCCjS+EukHSzHEoySW7Oz2s0ySYNrfadzH65Ap6TVbv0 ae/tgzbiKiSShyqpzYRG+nSg3fbsBkU0pWH2yTyM9stiEYRn/tY7mDLtR6atePvQ kakJ85celeDpNCFF4RHY/OtxFssfOGTy -----END CERTIFICATE-----Generated at Sat Aug 23 14:26:23 2025 by rpki-client