$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC4E1/2004F144160111E7A8AC225DC4F9AE02/3Bs5tU9giRrHeKkxbXGwvoAGOW4.mft File: 3Bs5tU9giRrHeKkxbXGwvoAGOW4.mft (raw, json) Hash identifier: KBTHWo5fAO9gKcVn63HA/bAX5eOG7tKqosptqMvabGc= Subject key identifier: C8:8B:86:3A:6D:76:9B:E0:5B:51:7E:60:2E:2B:1B:5E:C3:F0:C5:78 Authority key identifier: DC:1B:39:B5:4F:60:89:1A:C7:78:A9:31:6D:71:B0:BE:80:06:39:6E Certificate issuer: /CN=A91DC4E1/serialNumber=DC1B39B54F60891AC778A9316D71B0BE8006396E Certificate serial: 1B88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bs5tU9giRrHeKkxbXGwvoAGOW4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC4E1/2004F144160111E7A8AC225DC4F9AE02/3Bs5tU9giRrHeKkxbXGwvoAGOW4.mft Manifest number: 1B66 Signing time: Fri 22 Aug 2025 16:21:28 +0000 Manifest this update: Fri 22 Aug 2025 16:21:28 +0000 Manifest next update: Fri 29 Aug 2025 16:21:28 +0000 Files and hashes: 1: 3Bs5tU9giRrHeKkxbXGwvoAGOW4.crl (hash: tMd7Ra//e50ZVgfDm55fRmQFa5VJU1Br3jxnRQ/uOiY=) 2: D129428E25DF11E7AC03C03EC4F9AE02.roa (hash: 26Hx4AkbPRTYM9L9rQHlirDpC55IRFhPxlOYhEhXmNA=) 3: 20772F82207611E7AD8F8459C4F9AE02.roa (hash: ItkNWWq8nRtDa6uB2Q8iwUXsM5xJRUOh/lTQOL6uROM=) 4: 920126A625F011E7AB40BB69C4F9AE02.roa (hash: VGx79HjfctMAH3951trK9IBgyFBPVt62lhijc0hOVt4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC4E1/2004F144160111E7A8AC225DC4F9AE02/3Bs5tU9giRrHeKkxbXGwvoAGOW4.crl rsync://rpki.apnic.net/member_repository/A91DC4E1/2004F144160111E7A8AC225DC4F9AE02/3Bs5tU9giRrHeKkxbXGwvoAGOW4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bs5tU9giRrHeKkxbXGwvoAGOW4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:21:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7048 (0x1b88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC4E1, serialNumber=DC1B39B54F60891AC778A9316D71B0BE8006396E Validity Not Before: Aug 22 16:21:28 2025 GMT Not After : Aug 29 16:21:28 2025 GMT Subject: CN=68a89908-0a07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:00:26:c4:c2:04:74:eb:a6:7d:87:49:a8:97: c1:f3:0c:83:34:42:de:a4:98:80:e7:9b:fe:74:e2: 78:d0:ce:d6:83:4b:83:61:3f:54:20:14:2d:77:3a: 7b:a6:71:1e:44:98:33:6f:84:32:d4:ad:ea:65:4b: 34:3b:63:3a:f5:09:99:a8:58:e6:72:2c:bb:9f:54: 21:f8:f4:81:13:7e:9f:2c:21:95:ad:50:3e:23:55: 92:8b:01:6f:98:b1:f4:33:a9:d9:6d:32:07:d4:9f: 70:45:bc:f5:2e:7a:3a:33:cf:6a:0c:48:3a:e6:fa: 87:3e:6f:7b:2d:55:3b:10:cd:05:98:3b:51:f1:b7: 25:f7:21:c4:14:46:a5:78:d1:bc:c9:d3:66:0f:8d: dd:8f:8c:34:97:54:5f:df:90:3d:fa:74:84:fe:ff: 3a:23:5f:b6:76:db:5e:51:35:58:69:4c:6e:44:3e: f4:44:1a:ea:82:c8:de:f9:26:ef:29:94:12:06:5d: ac:4b:89:2a:54:d7:64:19:74:83:7a:cf:d1:b6:32: 0c:a7:06:2c:d7:dd:15:d5:7b:cd:f3:11:38:b9:e2: 1b:b6:47:a5:b3:e5:ec:dc:7f:be:9b:e8:86:7a:8c: 79:ea:9e:34:6d:30:9e:c0:90:7a:b4:82:03:42:bd: eb:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:8B:86:3A:6D:76:9B:E0:5B:51:7E:60:2E:2B:1B:5E:C3:F0:C5:78 X509v3 Authority Key Identifier: keyid:DC:1B:39:B5:4F:60:89:1A:C7:78:A9:31:6D:71:B0:BE:80:06:39:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC4E1/2004F144160111E7A8AC225DC4F9AE02/3Bs5tU9giRrHeKkxbXGwvoAGOW4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bs5tU9giRrHeKkxbXGwvoAGOW4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC4E1/2004F144160111E7A8AC225DC4F9AE02/3Bs5tU9giRrHeKkxbXGwvoAGOW4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:b1:17:c3:7b:58:14:05:43:5e:3b:fd:92:91:6c:60:f8:ea: 7d:94:f0:57:80:b6:0c:be:d4:e2:03:9a:55:b9:54:91:e3:47: 51:09:7e:ab:e7:02:03:58:d7:6e:9b:ac:38:40:fd:a7:61:42: bd:fb:f2:b4:f1:dc:63:b5:e8:43:2f:2d:a4:74:a6:5f:91:6d: 6b:f2:78:0e:2c:f7:32:6e:e7:36:35:d8:33:f6:0d:25:19:f7: ac:1b:65:04:84:0f:e7:30:c9:61:38:bc:b0:14:3e:84:29:80: 85:8b:8a:18:9c:89:aa:1d:81:01:ff:0d:96:68:5b:3c:28:1d: c3:7a:4d:b5:a5:b9:09:06:68:ea:c1:cc:b7:d7:21:57:c4:65: bb:fd:9d:63:05:f7:f2:ac:7d:95:97:73:14:de:ea:83:b5:fa: b1:10:31:77:6e:73:07:9a:2c:2d:22:06:5e:48:db:7e:a5:f2: 85:98:2a:5c:4b:62:b2:91:e2:a5:e5:d3:14:c5:e8:a8:9d:02: b6:4b:9f:89:48:c4:07:c9:e6:58:b2:1f:f6:ef:72:38:ae:74: 01:15:8a:b8:ab:60:1d:e9:31:aa:bb:62:08:40:81:52:5e:d8: 59:08:fa:64:b5:11:2c:3f:be:5d:28:44:63:79:60:5b:41:11: 4c:14:d2:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG4gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM0RTExMTAvBgNVBAUTKERDMUIzOUI1NEY2MDg5MUFDNzc4QTkzMTZENzFCMEJF ODAwNjM5NkUwHhcNMjUwODIyMTYyMTI4WhcNMjUwODI5MTYyMTI4WjAYMRYwFAYD VQQDEw02OGE4OTkwOC0wYTA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzAAmxMIEdOumfYdJqJfB8wyDNELepJiA55v+dOJ40M7Wg0uDYT9UIBQtdzp7 pnEeRJgzb4Qy1K3qZUs0O2M69QmZqFjmciy7n1Qh+PSBE36fLCGVrVA+I1WSiwFv mLH0M6nZbTIH1J9wRbz1Lno6M89qDEg65vqHPm97LVU7EM0FmDtR8bcl9yHEFEal eNG8ydNmD43dj4w0l1Rf35A9+nSE/v86I1+2dtteUTVYaUxuRD70RBrqgsje+Sbv KZQSBl2sS4kqVNdkGXSDes/RtjIMpwYs190V1XvN8xE4ueIbtkels+Xs3H++m+iG eox56p40bTCewJB6tIIDQr3rxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMiLhjpt dpvgW1F+YC4rG17D8MV4MB8GA1UdIwQYMBaAFNwbObVPYIkax3ipMW1xsL6ABjlu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzRFMS8yMDA0RjE0NDE2 MDExMUU3QThBQzIyNURDNEY5QUUwMi8zQnM1dFU5Z2lSckhlS2t4YlhHd3ZvQUdP VzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNCczV0VTlnaVJySGVLa3hiWEd3dm9BR09XNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzRFMS8yMDA0RjE0NDE2MDExMUU3QThBQzIyNURDNEY5QUUwMi8zQnM1dFU5Z2lS ckhlS2t4YlhHd3ZvQUdPVzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3sRfDe1gUBUNeO/2SkWxg+Op9lPBXgLYMvtTiA5pVuVSR40dRCX6r 5wIDWNdum6w4QP2nYUK9+/K08dxjtehDLy2kdKZfkW1r8ngOLPcybuc2Ndgz9g0l GfesG2UEhA/nMMlhOLywFD6EKYCFi4oYnImqHYEB/w2WaFs8KB3Dek21pbkJBmjq wcy31yFXxGW7/Z1jBffyrH2Vl3MU3uqDtfqxEDF3bnMHmiwtIgZeSNt+pfKFmCpc S2KykeKl5dMUxeionQK2S5+JSMQHyeZYsh/273I4rnQBFYq4q2Ad6TGqu2IIQIFS XthZCPpktREsP75dKERjeWBbQRFMFNI1 -----END CERTIFICATE-----Generated at Sat Aug 23 16:37:23 2025 by rpki-client