$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/v3H1vxFop4QFduAAbzu8ZfxINAs.mft File: v3H1vxFop4QFduAAbzu8ZfxINAs.mft (raw, json) Hash identifier: sSUEMOedSa8mejmFFTaojO4+U6GYnhgtlQeQJisQ5y8= Subject key identifier: 91:6B:EA:AE:F6:DB:90:E1:C0:DA:BB:10:F0:6A:3B:15:BF:84:68:28 Authority key identifier: BF:71:F5:BF:11:68:A7:84:05:76:E0:00:6F:3B:BC:65:FC:48:34:0B Certificate issuer: /CN=A91ED596/serialNumber=BF71F5BF1168A7840576E0006F3BBC65FC48340B Certificate serial: C3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/v3H1vxFop4QFduAAbzu8ZfxINAs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/v3H1vxFop4QFduAAbzu8ZfxINAs.mft Manifest number: C1 Signing time: Sat 23 Aug 2025 05:59:23 +0000 Manifest this update: Sat 23 Aug 2025 05:59:22 +0000 Manifest next update: Sat 30 Aug 2025 05:59:22 +0000 Files and hashes: 1: v3H1vxFop4QFduAAbzu8ZfxINAs.crl (hash: HlFc2ZhZGobKTvIA7Ym6ETp87aKExnz7IAKCnORPebo=) 2: 8580DC705AE311EF86351430C4F9AE02.roa (hash: 27On7VhpG5fhZmLnd0n/w+EKAhYgslmits5+QsN4KvA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/v3H1vxFop4QFduAAbzu8ZfxINAs.crl rsync://rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/v3H1vxFop4QFduAAbzu8ZfxINAs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/v3H1vxFop4QFduAAbzu8ZfxINAs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:59:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 195 (0xc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED596, serialNumber=BF71F5BF1168A7840576E0006F3BBC65FC48340B Validity Not Before: Aug 23 05:59:22 2025 GMT Not After : Aug 30 05:59:22 2025 GMT Subject: CN=68a958bb-a0a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:79:ab:b0:a9:55:40:7e:39:83:fd:1c:a1:0f: f3:46:1d:d5:e8:80:cd:a7:4a:23:bd:4b:94:7c:f4: 51:d3:94:85:3c:f2:62:73:cc:e0:50:dd:72:c9:e2: 26:5d:a7:01:41:0b:bd:e7:aa:22:7b:2a:1c:f3:43: 1d:d7:bd:f7:18:02:bb:08:60:1b:72:65:4c:4f:11: df:ed:80:67:4f:54:f7:dd:7c:a5:80:08:2b:7d:58: 98:8d:3a:f3:33:60:5c:fc:38:b7:16:31:59:bc:4a: 1d:72:3d:33:b4:45:5e:f5:4a:50:d5:a6:35:8d:13: 18:24:91:bd:6b:e8:d5:4b:3a:90:d9:5b:27:d4:a7: 9c:76:c1:b5:ee:52:ed:d8:ed:04:00:73:0e:ff:08: 62:2d:c0:4d:9d:ba:fd:9d:07:f7:0d:55:20:4d:96: 33:f2:1f:2a:e6:b1:e8:dc:f2:d8:83:d2:37:a5:b1: 54:dd:8b:a0:d1:60:d4:8b:21:55:74:a0:4f:37:fe: 49:5d:26:9b:f9:66:f2:94:64:a8:6e:34:89:cf:16: a6:bc:ff:f5:17:30:a7:00:30:6f:36:ec:99:0f:c8: 9f:9e:33:d8:f8:aa:21:bb:7a:50:16:de:8a:a4:1f: 85:eb:3b:b9:f9:05:56:1a:c7:09:fd:b0:9c:e5:f8: 66:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:6B:EA:AE:F6:DB:90:E1:C0:DA:BB:10:F0:6A:3B:15:BF:84:68:28 X509v3 Authority Key Identifier: keyid:BF:71:F5:BF:11:68:A7:84:05:76:E0:00:6F:3B:BC:65:FC:48:34:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/v3H1vxFop4QFduAAbzu8ZfxINAs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/v3H1vxFop4QFduAAbzu8ZfxINAs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/v3H1vxFop4QFduAAbzu8ZfxINAs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:67:41:08:db:67:72:81:46:d9:a2:a8:a5:68:06:aa:c2:8b: 74:00:cc:ba:c7:3e:e7:78:72:fe:e7:28:3d:5c:ad:cc:b6:64: 35:aa:9b:1f:d5:2e:d3:53:04:cf:ef:8d:2a:6e:33:bf:4f:6b: 00:73:af:6d:56:a3:5e:10:71:43:0e:a0:c6:3a:66:f8:e4:e8: 57:2c:ee:85:cd:b6:fa:1b:0d:ff:0a:68:87:3e:9e:40:4d:b0: 14:51:ed:58:00:2c:6f:11:68:4a:d1:3f:0e:60:9b:f5:19:11: ac:dc:a0:45:01:cc:58:9f:67:c3:84:dc:f2:ad:6c:84:aa:59: bf:d3:90:ae:db:13:9b:64:c2:b1:cc:09:9f:2b:b4:40:1d:4e: 9e:81:1b:7c:e0:bb:b5:bc:ad:ab:a1:ea:42:64:eb:3e:10:5e: 37:df:b7:38:1e:56:2a:de:fb:f9:ae:1b:5e:cb:ce:93:cf:e4: be:10:b6:eb:d8:9b:38:71:2c:57:61:cd:0e:33:b3:e5:7e:ad: 19:6f:d0:b6:45:22:b4:99:9e:8b:ed:98:81:4c:31:75:51:0a: fd:62:f9:a8:3c:9a:45:c5:95:3d:12:30:a7:3e:c8:98:57:b4: 93:04:74:3c:37:95:cc:18:89:a8:c3:fb:60:ec:c3:a1:f6:9f: 58:13:47:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ1OTYxMTAvBgNVBAUTKEJGNzFGNUJGMTE2OEE3ODQwNTc2RTAwMDZGM0JCQzY1 RkM0ODM0MEIwHhcNMjUwODIzMDU1OTIyWhcNMjUwODMwMDU1OTIyWjAYMRYwFAYD VQQDEw02OGE5NThiYi1hMGE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA13mrsKlVQH45g/0coQ/zRh3V6IDNp0ojvUuUfPRR05SFPPJic8zgUN1yyeIm XacBQQu956oieyoc80Md1733GAK7CGAbcmVMTxHf7YBnT1T33XylgAgrfViYjTrz M2Bc/Di3FjFZvEodcj0ztEVe9UpQ1aY1jRMYJJG9a+jVSzqQ2Vsn1KecdsG17lLt 2O0EAHMO/whiLcBNnbr9nQf3DVUgTZYz8h8q5rHo3PLYg9I3pbFU3Yug0WDUiyFV dKBPN/5JXSab+WbylGSobjSJzxamvP/1FzCnADBvNuyZD8ifnjPY+Kohu3pQFt6K pB+F6zu5+QVWGscJ/bCc5fhmMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJFr6q72 25DhwNq7EPBqOxW/hGgoMB8GA1UdIwQYMBaAFL9x9b8RaKeEBXbgAG87vGX8SDQL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDU5Ni8wNTcyREQ4QTVB RTMxMUVGOTMyQzIzMkZDNEY5QUUwMi92M0gxdnhGb3A0UUZkdUFBYnp1OFpmeElO QXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3YzSDF2eEZvcDRRRmR1QUFienU4WmZ4SU5Bcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDU5Ni8wNTcyREQ4QTVBRTMxMUVGOTMyQzIzMkZDNEY5QUUwMi92M0gxdnhGb3A0 UUZkdUFBYnp1OFpmeElOQXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxZ0EI22dygUbZoqilaAaqwot0AMy6xz7neHL+5yg9XK3MtmQ1qpsf 1S7TUwTP740qbjO/T2sAc69tVqNeEHFDDqDGOmb45OhXLO6Fzbb6Gw3/CmiHPp5A TbAUUe1YACxvEWhK0T8OYJv1GRGs3KBFAcxYn2fDhNzyrWyEqlm/05Cu2xObZMKx zAmfK7RAHU6egRt84Lu1vK2roepCZOs+EF4337c4HlYq3vv5rhtey86Tz+S+ELbr 2Js4cSxXYc0OM7Plfq0Zb9C2RSK0mZ6L7ZiBTDF1UQr9YvmoPJpFxZU9EjCnPsiY V7STBHQ8N5XMGImow/tg7MOh9p9YE0fd -----END CERTIFICATE-----Generated at Sat Aug 23 10:27:28 2025 by rpki-client