$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6DB3/53AA1BD4C60811EC9B31446DC4F9AE02/A3JG1RS4I0Dt4GKJvxvIxFnb_OU.mft File: A3JG1RS4I0Dt4GKJvxvIxFnb_OU.mft (raw, json) Hash identifier: yiKofWPDTgRyRKIQ4bnoEop6JBXB1kK43BfU36qql1k= Subject key identifier: 01:7E:54:0E:4A:DE:C5:CA:D1:2D:D7:94:7D:AC:30:64:00:F2:1F:70 Authority key identifier: 03:72:46:D5:14:B8:23:40:ED:E0:62:89:BF:1B:C8:C4:59:DB:FC:E5 Certificate issuer: /CN=A91E6DB3/serialNumber=037246D514B82340EDE06289BF1BC8C459DBFCE5 Certificate serial: 0365 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3JG1RS4I0Dt4GKJvxvIxFnb_OU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6DB3/53AA1BD4C60811EC9B31446DC4F9AE02/A3JG1RS4I0Dt4GKJvxvIxFnb_OU.mft Manifest number: 035D Signing time: Sat 23 Aug 2025 01:13:35 +0000 Manifest this update: Sat 23 Aug 2025 01:13:35 +0000 Manifest next update: Sat 30 Aug 2025 01:13:35 +0000 Files and hashes: 1: A3JG1RS4I0Dt4GKJvxvIxFnb_OU.crl (hash: gf040muRa25P8YAdMan8PmB6Qw5Y8fLHZsSRH2k8L2E=) 2: 67A55414D56911EFB3E08134C4F9AE02.roa (hash: rSusYrdxwzMZ/h0NAAbSd/+Fpawy/2pH16Z/11B0adc=) 3: 671C31AAC6C811ECA5A9AB33C4F9AE02.roa (hash: 0dwKgZ8jlIMiRytgvBci6vNzPpvAs9BdKSq60BEmluY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6DB3/53AA1BD4C60811EC9B31446DC4F9AE02/A3JG1RS4I0Dt4GKJvxvIxFnb_OU.crl rsync://rpki.apnic.net/member_repository/A91E6DB3/53AA1BD4C60811EC9B31446DC4F9AE02/A3JG1RS4I0Dt4GKJvxvIxFnb_OU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3JG1RS4I0Dt4GKJvxvIxFnb_OU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:13:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 869 (0x365) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6DB3, serialNumber=037246D514B82340EDE06289BF1BC8C459DBFCE5 Validity Not Before: Aug 23 01:13:35 2025 GMT Not After : Aug 30 01:13:35 2025 GMT Subject: CN=68a915bf-353e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:9f:c0:3f:c7:3e:0b:86:0b:8b:f5:ad:9f:f8: 38:6b:7a:76:8b:85:d4:3b:84:91:5e:16:89:3f:8f: b0:77:49:a7:c1:e6:18:7c:9d:ec:68:da:a8:bc:cf: 54:4c:e2:af:b9:92:a2:10:37:03:7f:f8:8b:0e:d5: ca:d1:57:ef:d3:7a:77:78:7e:d5:6d:0e:3e:a8:f8: 76:74:b9:93:82:41:65:47:0b:41:81:17:65:14:33: 41:a8:1a:01:3b:83:aa:eb:1d:c6:47:48:d7:5c:63: 38:24:fa:cd:64:48:e3:78:db:0a:1b:6b:82:04:f7: 65:9f:5e:ac:49:28:10:22:e5:de:ac:5c:87:84:26: 8d:14:bf:51:6e:5b:90:46:5d:e2:95:b3:6c:38:75: b1:98:7a:69:f8:f8:56:bf:18:66:8b:eb:26:c5:63: b9:00:5a:a0:db:de:85:4f:79:8f:b1:c7:b7:4c:3a: ee:35:76:83:f0:76:4c:12:f8:1e:fd:8e:30:2d:c4: 42:e9:6e:54:a4:3d:45:00:19:5e:ef:21:5b:d5:12: 03:d4:1f:ff:dc:c3:12:4f:41:72:53:c4:02:fb:c0: 57:9b:43:ea:ca:1b:da:e3:7a:0a:3c:3d:e0:9d:76: 98:f9:70:ef:61:fd:82:9a:31:cb:6d:9f:c7:5a:76: cf:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:7E:54:0E:4A:DE:C5:CA:D1:2D:D7:94:7D:AC:30:64:00:F2:1F:70 X509v3 Authority Key Identifier: keyid:03:72:46:D5:14:B8:23:40:ED:E0:62:89:BF:1B:C8:C4:59:DB:FC:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6DB3/53AA1BD4C60811EC9B31446DC4F9AE02/A3JG1RS4I0Dt4GKJvxvIxFnb_OU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3JG1RS4I0Dt4GKJvxvIxFnb_OU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6DB3/53AA1BD4C60811EC9B31446DC4F9AE02/A3JG1RS4I0Dt4GKJvxvIxFnb_OU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:cd:fd:70:52:6e:8e:c9:af:6e:0b:c2:20:42:6c:95:33:4c: f6:0b:a4:ea:ed:9f:77:90:49:9a:10:82:58:fc:1a:bd:5a:38: 46:e7:a1:b1:f3:58:66:91:5e:c1:cf:23:c0:14:d8:98:df:9c: 61:bc:b9:77:7f:7c:d8:13:06:19:47:61:48:22:4f:8f:3a:a4: d6:44:a7:cc:3b:2d:af:8b:25:2a:d7:7a:8e:ed:21:ea:86:8b: 5c:38:6c:fe:d1:77:ce:cc:6b:be:15:a7:33:82:c4:7f:3d:9a: 14:69:5b:54:7e:d2:36:8d:d0:3b:d5:98:5f:2e:cc:41:1a:0a: 13:74:d4:09:5b:fa:33:7b:aa:f1:5a:65:9f:02:ad:c9:d3:8e: 6a:0b:a5:3c:8f:0b:a1:68:00:e4:7b:64:9e:47:55:ca:89:cb: b4:b3:fd:31:63:1c:fb:dd:d2:63:0a:c6:b9:7e:09:b5:11:3f: 4b:01:f3:d3:43:5c:dc:9d:a2:b3:91:40:24:e7:88:12:a3:34: 3d:97:a2:19:6c:f6:0a:94:90:22:74:a5:7e:9b:45:69:d6:24: ed:75:05:c7:cf:52:18:7a:32:17:89:ae:9a:1f:fc:d1:42:b6: 0c:ce:99:3b:86:f0:02:ce:58:08:07:64:13:4f:42:5d:3c:11: 28:1c:2c:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA2UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZEQjMxMTAvBgNVBAUTKDAzNzI0NkQ1MTRCODIzNDBFREUwNjI4OUJGMUJDOEM0 NTlEQkZDRTUwHhcNMjUwODIzMDExMzM1WhcNMjUwODMwMDExMzM1WjAYMRYwFAYD VQQDEw02OGE5MTViZi0zNTNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyZ/AP8c+C4YLi/Wtn/g4a3p2i4XUO4SRXhaJP4+wd0mnweYYfJ3saNqovM9U TOKvuZKiEDcDf/iLDtXK0Vfv03p3eH7VbQ4+qPh2dLmTgkFlRwtBgRdlFDNBqBoB O4Oq6x3GR0jXXGM4JPrNZEjjeNsKG2uCBPdln16sSSgQIuXerFyHhCaNFL9RbluQ Rl3ilbNsOHWxmHpp+PhWvxhmi+smxWO5AFqg296FT3mPsce3TDruNXaD8HZMEvge /Y4wLcRC6W5UpD1FABle7yFb1RID1B//3MMST0FyU8QC+8BXm0Pqyhva43oKPD3g nXaY+XDvYf2CmjHLbZ/HWnbPSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAF+VA5K 3sXK0S3XlH2sMGQA8h9wMB8GA1UdIwQYMBaAFANyRtUUuCNA7eBiib8byMRZ2/zl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkRCMy81M0FBMUJENEM2 MDgxMUVDOUIzMTQ0NkRDNEY5QUUwMi9BM0pHMVJTNEkwRHQ0R0tKdnh2SXhGbmJf T1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EzSkcxUlM0STBEdDRHS0p2eHZJeEZuYl9PVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkRCMy81M0FBMUJENEM2MDgxMUVDOUIzMTQ0NkRDNEY5QUUwMi9BM0pHMVJTNEkw RHQ0R0tKdnh2SXhGbmJfT1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjzf1wUm6Oya9uC8IgQmyVM0z2C6Tq7Z93kEmaEIJY/Bq9WjhG56Gx 81hmkV7BzyPAFNiY35xhvLl3f3zYEwYZR2FIIk+POqTWRKfMOy2viyUq13qO7SHq hotcOGz+0XfOzGu+FaczgsR/PZoUaVtUftI2jdA71ZhfLsxBGgoTdNQJW/oze6rx WmWfAq3J045qC6U8jwuhaADke2SeR1XKicu0s/0xYxz73dJjCsa5fgm1ET9LAfPT Q1zcnaKzkUAk54gSozQ9l6IZbPYKlJAidKV+m0Vp1iTtdQXHz1IYejIXia6aH/zR QrYMzpk7hvACzlgIB2QTT0JdPBEoHCyT -----END CERTIFICATE-----Generated at Sat Aug 23 17:13:59 2025 by rpki-client