$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC7AA/D22EDA342A8811F0A30D9159C4F9AE02/df43qD7agAphAmCFh-30CJ2CQOA.mft File: df43qD7agAphAmCFh-30CJ2CQOA.mft (raw, json) Hash identifier: Gt4oTvDyAJ3JmiAlyJuhQQYhdCSmeeJTMifLIZvXmqY= Subject key identifier: 11:58:39:F6:3A:AB:81:3B:EB:00:1F:E3:23:96:9E:BC:12:F5:B5:B2 Authority key identifier: 75:FE:37:A8:3E:DA:80:0A:61:02:60:85:87:ED:F4:08:9D:82:40:E0 Certificate issuer: /CN=A91DC7AA/serialNumber=75FE37A83EDA800A6102608587EDF4089D8240E0 Certificate serial: 3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/df43qD7agAphAmCFh-30CJ2CQOA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC7AA/D22EDA342A8811F0A30D9159C4F9AE02/df43qD7agAphAmCFh-30CJ2CQOA.mft Manifest number: 39 Signing time: Sat 23 Aug 2025 07:47:35 +0000 Manifest this update: Sat 23 Aug 2025 07:47:34 +0000 Manifest next update: Sat 30 Aug 2025 07:47:34 +0000 Files and hashes: 1: df43qD7agAphAmCFh-30CJ2CQOA.crl (hash: 7ecNVpdOZHfH4kVopUaGEM0oNDGUK7eyMXmW+SWTngY=) 2: A7C7EF962A8911F09526D35BC4F9AE02.roa (hash: q6DsrTnHuS/+1sVBywXv85oiJzaT3sKc0CSqiWHXn5c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC7AA/D22EDA342A8811F0A30D9159C4F9AE02/df43qD7agAphAmCFh-30CJ2CQOA.crl rsync://rpki.apnic.net/member_repository/A91DC7AA/D22EDA342A8811F0A30D9159C4F9AE02/df43qD7agAphAmCFh-30CJ2CQOA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/df43qD7agAphAmCFh-30CJ2CQOA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:47:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59 (0x3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC7AA, serialNumber=75FE37A83EDA800A6102608587EDF4089D8240E0 Validity Not Before: Aug 23 07:47:34 2025 GMT Not After : Aug 30 07:47:34 2025 GMT Subject: CN=68a97217-a33b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:2c:b7:d7:ae:8d:ac:08:ee:89:8a:fc:e5:1a: 9d:67:11:e3:24:19:81:6e:20:ed:7b:9b:4f:7b:f2: 0c:df:de:ed:76:50:ef:48:c1:de:b5:cb:33:9f:99: 0c:d9:13:74:9e:92:77:e4:18:1b:03:e3:9a:1a:af: 8b:b5:ec:e8:e2:cc:21:05:6f:6c:78:a0:33:62:06: 0a:c7:ad:a8:7d:dd:8f:27:f9:c6:18:8a:b3:86:74: e2:35:d7:03:83:3d:2a:26:c3:d8:c6:0f:6c:b7:9c: 1a:e4:fe:96:12:1e:f3:6e:63:33:97:84:85:9a:2f: d1:c4:f4:c3:12:a4:c5:ec:6a:ed:4d:bf:3c:de:d6: e3:c6:28:c0:6c:d0:b9:4c:e7:1f:93:6f:37:cb:4b: 21:60:3e:ce:4a:9c:40:d5:79:ec:af:1f:62:87:1b: 77:1b:8e:3c:f7:84:10:eb:ec:7f:c7:6c:60:6a:9b: 7c:bd:69:3f:ce:50:d3:ee:31:86:11:cf:ba:84:a7: 79:0f:d6:14:d8:e7:8a:6d:fe:ee:e7:4e:fe:ce:b3: 1c:98:70:f0:6c:74:23:62:f9:8a:88:07:d7:14:e9: 3d:de:11:f8:c3:2e:a0:ae:19:60:6a:cd:00:21:8e: 28:8e:c4:c1:5d:0b:55:34:7b:4d:db:1b:a1:a1:31: 6c:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:58:39:F6:3A:AB:81:3B:EB:00:1F:E3:23:96:9E:BC:12:F5:B5:B2 X509v3 Authority Key Identifier: keyid:75:FE:37:A8:3E:DA:80:0A:61:02:60:85:87:ED:F4:08:9D:82:40:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC7AA/D22EDA342A8811F0A30D9159C4F9AE02/df43qD7agAphAmCFh-30CJ2CQOA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/df43qD7agAphAmCFh-30CJ2CQOA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC7AA/D22EDA342A8811F0A30D9159C4F9AE02/df43qD7agAphAmCFh-30CJ2CQOA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:24:56:80:04:a3:f6:7c:3b:e8:fc:86:04:a7:d4:27:c7:29: 02:9d:0c:03:51:d3:a6:a3:45:f7:be:7f:9f:6f:2b:63:f0:f2: 6d:c4:bb:f8:93:81:39:aa:37:11:9e:22:52:7a:e0:1b:28:74: f2:04:86:6f:6c:85:a1:bb:8f:ca:b8:f7:68:e9:f5:23:49:67: 01:3f:0c:15:69:c0:2b:92:fb:02:66:b0:af:91:a3:32:16:ad: aa:14:55:41:90:50:2f:03:b2:bd:28:c9:ff:55:b1:d3:7a:c1: 58:bb:39:ae:36:9a:77:ad:a6:0e:c5:36:58:04:b2:0c:b1:63: 61:c2:e6:5f:cc:e8:5a:22:8b:ac:2f:f7:66:c7:53:20:7c:ec: 00:46:48:7a:33:ae:50:49:80:1f:8e:37:67:8c:38:01:ae:b0: ee:4d:34:a1:e1:99:dd:d1:c3:a7:56:72:e2:d1:66:ff:13:04: 83:69:bd:ec:07:dc:e4:aa:7a:6b:e3:3f:1f:d8:73:b6:76:e9: a2:4c:b3:22:95:42:99:a7:2d:33:2b:07:f5:9d:c8:df:0e:73: c0:fb:9e:e4:f3:b7:ca:ca:84:eb:32:9f:70:24:97:43:63:a5: dd:02:d4:e5:de:14:b8:57:85:7d:c2:ae:a7:b3:48:ce:a2:66: bc:08:f0:13 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE QzdBQTExMC8GA1UEBRMoNzVGRTM3QTgzRURBODAwQTYxMDI2MDg1ODdFREY0MDg5 RDgyNDBFMDAeFw0yNTA4MjMwNzQ3MzRaFw0yNTA4MzAwNzQ3MzRaMBgxFjAUBgNV BAMTDTY4YTk3MjE3LWEzM2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCLLfXro2sCO6JivzlGp1nEeMkGYFuIO17m0978gzf3u12UO9Iwd61yzOfmQzZ E3SeknfkGBsD45oar4u17OjizCEFb2x4oDNiBgrHrah93Y8n+cYYirOGdOI11wOD PSomw9jGD2y3nBrk/pYSHvNuYzOXhIWaL9HE9MMSpMXsau1Nvzze1uPGKMBs0LlM 5x+TbzfLSyFgPs5KnEDVeeyvH2KHG3cbjjz3hBDr7H/HbGBqm3y9aT/OUNPuMYYR z7qEp3kP1hTY54pt/u7nTv7OsxyYcPBsdCNi+YqIB9cU6T3eEfjDLqCuGWBqzQAh jiiOxMFdC1U0e03bG6GhMWxbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUEVg59jqr gTvrAB/jI5aevBL1tbIwHwYDVR0jBBgwFoAUdf43qD7agAphAmCFh+30CJ2CQOAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURDN0FBL0QyMkVEQTM0MkE4 ODExRjBBMzBEOTE1OUM0RjlBRTAyL2RmNDNxRDdhZ0FwaEFtQ0ZoLTMwQ0oyQ1FP QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZGY0M3FEN2FnQXBoQW1DRmgtMzBDSjJDUU9BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURD N0FBL0QyMkVEQTM0MkE4ODExRjBBMzBEOTE1OUM0RjlBRTAyL2RmNDNxRDdhZ0Fw aEFtQ0ZoLTMwQ0oyQ1FPQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJYkVoAEo/Z8O+j8hgSn1CfHKQKdDANR06ajRfe+f59vK2Pw8m3Eu/iT gTmqNxGeIlJ64BsodPIEhm9shaG7j8q492jp9SNJZwE/DBVpwCuS+wJmsK+RozIW raoUVUGQUC8Dsr0oyf9VsdN6wVi7Oa42mnetpg7FNlgEsgyxY2HC5l/M6Foii6wv 92bHUyB87ABGSHozrlBJgB+ON2eMOAGusO5NNKHhmd3Rw6dWcuLRZv8TBINpvewH 3OSqemvjPx/Yc7Z26aJMsyKVQpmnLTMrB/WdyN8Oc8D7nuTzt8rKhOsyn3Akl0Nj pd0C1OXeFLhXhX3CrqezSM6iZrwI8BM= -----END CERTIFICATE-----Generated at Sat Aug 23 21:23:23 2025 by rpki-client