$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft File: 3af4p0oKdM_262MEKLbJ1w1XvXY.mft (raw, json) Hash identifier: Bl8rb79yr6EMDfeIrd2gSOn8dL4R2lPGN9I+YJgrXRA= Subject key identifier: A5:7C:0E:61:60:24:B2:BC:81:EC:36:70:BE:A2:FE:AF:76:92:D4:48 Authority key identifier: DD:A7:F8:A7:4A:0A:74:CF:F6:EB:63:04:28:B6:C9:D7:0D:57:BD:76 Certificate issuer: /CN=A91E7BC4/serialNumber=DDA7F8A74A0A74CFF6EB630428B6C9D70D57BD76 Certificate serial: 0DD3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3af4p0oKdM_262MEKLbJ1w1XvXY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft Manifest number: 0D99 Signing time: Fri 22 Aug 2025 18:05:46 +0000 Manifest this update: Fri 22 Aug 2025 18:05:45 +0000 Manifest next update: Fri 29 Aug 2025 18:05:45 +0000 Files and hashes: 1: 3af4p0oKdM_262MEKLbJ1w1XvXY.crl (hash: Yh+4sEGsQmr786bNR7nf/tBqAcJxlYPRcBHOaLPYC94=) 2: CE83F0E6F0E411EAA47C3968C4F9AE02.roa (hash: ZQBdoWyO873LcT1vKoBchR3Mc6PGkjTHNlXwZK5KBUA=) 3: E69AF38AB11C11EAACC28D2EC4F9AE02.roa (hash: vmjmVmXjdkD0vxVvLQigcrFyWXDcETievw8r2QIVv8s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.crl rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3af4p0oKdM_262MEKLbJ1w1XvXY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:05:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3539 (0xdd3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7BC4, serialNumber=DDA7F8A74A0A74CFF6EB630428B6C9D70D57BD76 Validity Not Before: Aug 22 18:05:45 2025 GMT Not After : Aug 29 18:05:45 2025 GMT Subject: CN=68a8b17a-999a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:7f:f6:17:25:dd:b4:35:0e:ce:71:62:e8:14: c0:29:cd:ed:5b:fe:c1:8b:8c:e6:e2:5e:78:11:dc: 30:e9:66:3d:d8:26:08:e9:b6:76:72:9e:0f:f4:a4: 09:b9:ed:e2:67:e1:6d:72:5e:e2:70:34:93:61:c1: 31:63:61:52:b2:15:28:62:2f:67:c6:29:89:d1:68: 51:6c:cd:c8:3d:b3:2f:f2:1c:f6:23:ae:b0:01:f5: c0:fa:1f:b6:32:0d:6f:06:4a:a7:ed:7b:e1:b4:55: 50:95:87:73:36:22:bd:12:b9:be:53:90:cd:fe:59: e9:f5:8e:41:c3:dc:2f:c7:c8:2c:cc:09:cb:1d:27: 75:d2:3e:a1:8e:d0:f6:d7:ae:81:8f:25:da:f5:12: 2e:36:ed:2c:3b:02:2b:db:71:de:61:a4:de:40:b8: 09:c0:c7:bd:dc:4a:56:cf:20:82:6c:ff:19:44:2a: 6e:b0:a7:ac:c9:c5:80:ea:a0:51:75:fa:bc:45:06: 2e:e2:94:84:c8:31:4d:1e:bc:13:db:ef:50:89:46: 81:cb:81:2c:ae:09:85:a9:a7:4b:5f:e7:ae:23:7e: 40:99:82:81:1a:26:8c:01:4b:90:ba:b9:a7:42:c1: 5f:f2:4f:ef:2b:66:9b:fb:85:3c:6c:23:63:1f:2f: ab:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:7C:0E:61:60:24:B2:BC:81:EC:36:70:BE:A2:FE:AF:76:92:D4:48 X509v3 Authority Key Identifier: keyid:DD:A7:F8:A7:4A:0A:74:CF:F6:EB:63:04:28:B6:C9:D7:0D:57:BD:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3af4p0oKdM_262MEKLbJ1w1XvXY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:96:13:f5:51:ff:63:c3:ef:5c:d2:22:66:ad:f5:f7:64:b9: 6e:6a:fe:ef:2a:88:33:65:3d:9d:c7:3c:a7:86:39:a2:47:23: d4:34:a5:3b:99:0e:67:16:4a:88:0b:23:36:77:dc:9b:1a:ef: c2:3a:01:c9:64:08:e1:dd:01:a8:a8:11:35:95:61:ae:ae:db: f4:41:07:8d:00:7c:6c:2f:f1:06:56:3c:bd:98:3b:92:3e:c0: 2b:e5:f5:50:74:7a:54:ea:bb:e2:34:9e:a0:ce:4b:5f:d5:14: 1e:0e:a7:82:13:85:7c:8b:2f:5b:8a:16:3a:f6:97:43:e1:6c: 71:a2:c8:24:c4:32:a6:a4:2e:77:f9:9b:5b:8c:7b:f6:9f:63: b3:42:b2:84:f4:01:ae:3b:5c:ca:88:97:9f:2c:8b:80:88:16: 8d:23:56:32:0b:4f:af:7e:56:a3:64:90:a8:48:4a:46:3e:8a: b4:50:fa:7e:cb:61:62:3d:56:49:a0:b1:12:47:7b:88:ac:17: b7:76:70:a4:bf:69:ed:eb:20:5a:cc:73:09:d7:ff:e9:97:8d: 20:98:4a:aa:74:6f:ec:e5:10:b7:8e:ce:11:09:26:15:c4:77: 47:07:d0:f6:5f:1c:2e:e8:3c:f7:e5:34:58:52:59:bb:66:b5: 27:28:6d:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDdMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdCQzQxMTAvBgNVBAUTKEREQTdGOEE3NEEwQTc0Q0ZGNkVCNjMwNDI4QjZDOUQ3 MEQ1N0JENzYwHhcNMjUwODIyMTgwNTQ1WhcNMjUwODI5MTgwNTQ1WjAYMRYwFAYD VQQDEw02OGE4YjE3YS05OTlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmH/2FyXdtDUOznFi6BTAKc3tW/7Bi4zm4l54Edww6WY92CYI6bZ2cp4P9KQJ ue3iZ+Ftcl7icDSTYcExY2FSshUoYi9nximJ0WhRbM3IPbMv8hz2I66wAfXA+h+2 Mg1vBkqn7XvhtFVQlYdzNiK9Erm+U5DN/lnp9Y5Bw9wvx8gszAnLHSd10j6hjtD2 166BjyXa9RIuNu0sOwIr23HeYaTeQLgJwMe93EpWzyCCbP8ZRCpusKesycWA6qBR dfq8RQYu4pSEyDFNHrwT2+9QiUaBy4EsrgmFqadLX+euI35AmYKBGiaMAUuQurmn QsFf8k/vK2ab+4U8bCNjHy+rGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKV8DmFg JLK8gew2cL6i/q92ktRIMB8GA1UdIwQYMBaAFN2n+KdKCnTP9utjBCi2ydcNV712 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0JDNC8yRDFBNTk1QUQ1 MEQxMUU5QkFENkMyMjZDNEY5QUUwMi8zYWY0cDBvS2RNXzI2Mk1FS0xiSjF3MVh2 WFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNhZjRwMG9LZE1fMjYyTUVLTGJKMXcxWHZYWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0JDNC8yRDFBNTk1QUQ1MEQxMUU5QkFENkMyMjZDNEY5QUUwMi8zYWY0cDBvS2RN XzI2Mk1FS0xiSjF3MVh2WFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2lhP1Uf9jw+9c0iJmrfX3ZLluav7vKogzZT2dxzynhjmiRyPUNKU7 mQ5nFkqICyM2d9ybGu/COgHJZAjh3QGoqBE1lWGurtv0QQeNAHxsL/EGVjy9mDuS PsAr5fVQdHpU6rviNJ6gzktf1RQeDqeCE4V8iy9bihY69pdD4WxxosgkxDKmpC53 +ZtbjHv2n2OzQrKE9AGuO1zKiJefLIuAiBaNI1YyC0+vflajZJCoSEpGPoq0UPp+ y2FiPVZJoLESR3uIrBe3dnCkv2nt6yBazHMJ1//pl40gmEqqdG/s5RC3js4RCSYV xHdHB9D2Xxwu6Dz35TRYUlm7ZrUnKG3S -----END CERTIFICATE-----Generated at Sun Aug 24 03:34:29 2025 by rpki-client