$ rpki-client -vvf rpki.apnic.net/member_repository/A91F39A9/525486B8566211ECB8EC7331C4F9AE02/u3-5V71tGEoIkjFpTPg4nbaI_lM.mft File: u3-5V71tGEoIkjFpTPg4nbaI_lM.mft (raw, json) Hash identifier: tNslMplg9kFiF7ZFuNIu8JUvhcj8NuJk7of3ptt0ZI0= Subject key identifier: 90:E9:82:82:54:F7:9C:F8:80:1F:0D:7F:EA:90:EE:8C:00:4E:3C:47 Authority key identifier: BB:7F:B9:57:BD:6D:18:4A:08:92:31:69:4C:F8:38:9D:B6:88:FE:53 Certificate issuer: /CN=A91F39A9/serialNumber=BB7FB957BD6D184A089231694CF8389DB688FE53 Certificate serial: 0483 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u3-5V71tGEoIkjFpTPg4nbaI_lM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F39A9/525486B8566211ECB8EC7331C4F9AE02/u3-5V71tGEoIkjFpTPg4nbaI_lM.mft Manifest number: 047D Signing time: Sat 23 Aug 2025 00:18:47 +0000 Manifest this update: Sat 23 Aug 2025 00:18:46 +0000 Manifest next update: Sat 30 Aug 2025 00:18:46 +0000 Files and hashes: 1: u3-5V71tGEoIkjFpTPg4nbaI_lM.crl (hash: ziHq0FLHgcAeFgLvpz1pfPPmnucq2Fz0u/TXwh3pUKk=) 2: 12702794577711ECB7FD0C6FC4F9AE02.roa (hash: 7OgpQvkBU6+tUiHR/xeuBjYzt4Evz4MreUzB4Ql4bWc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F39A9/525486B8566211ECB8EC7331C4F9AE02/u3-5V71tGEoIkjFpTPg4nbaI_lM.crl rsync://rpki.apnic.net/member_repository/A91F39A9/525486B8566211ECB8EC7331C4F9AE02/u3-5V71tGEoIkjFpTPg4nbaI_lM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u3-5V71tGEoIkjFpTPg4nbaI_lM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:18:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1155 (0x483) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F39A9, serialNumber=BB7FB957BD6D184A089231694CF8389DB688FE53 Validity Not Before: Aug 23 00:18:46 2025 GMT Not After : Aug 30 00:18:46 2025 GMT Subject: CN=68a908e7-900c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:19:98:c4:1c:6e:73:a5:1f:4b:b6:33:e6:6f: 37:31:d0:3c:9d:c4:bc:13:92:e3:b6:f2:dc:95:29: fb:91:9a:59:80:54:2c:c6:ab:dc:ba:b0:01:85:2d: a6:65:df:44:e5:ca:ab:2a:3a:3a:85:3a:c1:a9:68: 2c:0a:20:31:88:a4:97:6f:11:10:4f:84:57:9c:30: 4c:69:97:42:6c:d9:f8:61:50:a0:46:8d:8b:d4:be: 97:95:e1:00:9c:1b:a3:a9:0b:f5:c3:1f:3e:de:15: 1d:23:a9:54:98:f2:95:68:69:11:de:92:ad:b0:c1: 92:25:03:78:57:43:d4:84:b6:4b:41:b2:d7:c9:eb: 73:f1:24:b5:63:de:0c:14:b9:84:49:c0:80:2c:b1: 49:18:c9:67:35:92:db:24:90:07:a9:e3:25:a7:3c: 2b:76:5f:95:67:3f:c5:5f:18:79:01:29:cd:a5:6b: b4:fe:91:bb:89:22:33:b1:5a:e8:14:06:fa:86:4d: 29:d1:62:4e:2f:9b:a9:ea:80:9d:50:82:49:83:93: e6:ba:8b:9d:05:a2:4f:9f:bc:a1:6c:78:59:60:7f: 7e:e5:fd:62:32:fb:26:bf:c2:d3:57:43:95:e5:7b: 41:d8:54:a0:13:0a:bb:f0:eb:14:fb:b7:d7:b2:0a: 45:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:E9:82:82:54:F7:9C:F8:80:1F:0D:7F:EA:90:EE:8C:00:4E:3C:47 X509v3 Authority Key Identifier: keyid:BB:7F:B9:57:BD:6D:18:4A:08:92:31:69:4C:F8:38:9D:B6:88:FE:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F39A9/525486B8566211ECB8EC7331C4F9AE02/u3-5V71tGEoIkjFpTPg4nbaI_lM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u3-5V71tGEoIkjFpTPg4nbaI_lM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F39A9/525486B8566211ECB8EC7331C4F9AE02/u3-5V71tGEoIkjFpTPg4nbaI_lM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:2f:f9:ed:89:13:df:68:88:64:23:a6:c8:fc:3d:05:89:3b: 42:41:98:c0:1a:68:a2:50:61:fd:17:0f:55:6f:c7:7e:ae:d6: ae:d4:1a:f3:e4:16:97:cb:c2:34:9c:e7:63:35:a0:aa:c4:51: 12:7a:17:fd:63:15:ef:8a:88:c6:49:3b:f2:b6:04:db:52:cd: 6a:5e:94:64:42:76:86:40:2e:fa:ac:22:06:4f:94:4f:c3:2a: 91:70:2c:05:0d:b8:5e:5e:30:f7:c7:45:be:10:60:7e:23:be: f6:55:da:78:d8:b6:4e:55:89:09:c4:bd:e8:dd:0e:fb:fa:00: 94:a9:0c:f0:34:2e:c2:bd:b4:cb:bb:8e:fd:e3:e8:e4:ad:0d: 5d:63:41:c0:ba:42:5f:42:5f:08:87:f6:77:2a:e7:f9:3f:77: 02:0a:b8:41:d8:6c:4f:e5:09:87:28:b2:37:13:f0:2c:de:29: 09:f6:62:aa:9d:ee:6d:2c:9e:db:f8:7e:e6:eb:12:2c:9a:73: e5:f2:65:f0:42:5a:e0:8e:90:cd:de:16:95:7c:0a:9d:82:66: 10:28:78:b3:3a:b1:c5:06:6c:61:53:9f:7a:d7:b2:f3:56:f4: 6a:05:04:35:71:12:c1:c6:c5:fd:97:8e:80:28:9a:c4:e3:a4: a6:ce:00:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjM5QTkxMTAvBgNVBAUTKEJCN0ZCOTU3QkQ2RDE4NEEwODkyMzE2OTRDRjgzODlE QjY4OEZFNTMwHhcNMjUwODIzMDAxODQ2WhcNMjUwODMwMDAxODQ2WjAYMRYwFAYD VQQDEw02OGE5MDhlNy05MDBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2RmYxBxuc6UfS7Yz5m83MdA8ncS8E5LjtvLclSn7kZpZgFQsxqvcurABhS2m Zd9E5cqrKjo6hTrBqWgsCiAxiKSXbxEQT4RXnDBMaZdCbNn4YVCgRo2L1L6XleEA nBujqQv1wx8+3hUdI6lUmPKVaGkR3pKtsMGSJQN4V0PUhLZLQbLXyetz8SS1Y94M FLmEScCALLFJGMlnNZLbJJAHqeMlpzwrdl+VZz/FXxh5ASnNpWu0/pG7iSIzsVro FAb6hk0p0WJOL5up6oCdUIJJg5PmuoudBaJPn7yhbHhZYH9+5f1iMvsmv8LTV0OV 5XtB2FSgEwq78OsU+7fXsgpFaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJDpgoJU 95z4gB8Nf+qQ7owATjxHMB8GA1UdIwQYMBaAFLt/uVe9bRhKCJIxaUz4OJ22iP5T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzlBOS81MjU0ODZCODU2 NjIxMUVDQjhFQzczMzFDNEY5QUUwMi91My01VjcxdEdFb0lrakZwVFBnNG5iYUlf bE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UzLTVWNzF0R0VvSWtqRnBUUGc0bmJhSV9sTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MzlBOS81MjU0ODZCODU2NjIxMUVDQjhFQzczMzFDNEY5QUUwMi91My01VjcxdEdF b0lrakZwVFBnNG5iYUlfbE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANL/ntiRPfaIhkI6bI/D0FiTtCQZjAGmiiUGH9Fw9Vb8d+rtau1Brz 5BaXy8I0nOdjNaCqxFESehf9YxXviojGSTvytgTbUs1qXpRkQnaGQC76rCIGT5RP wyqRcCwFDbheXjD3x0W+EGB+I772Vdp42LZOVYkJxL3o3Q77+gCUqQzwNC7CvbTL u4794+jkrQ1dY0HAukJfQl8Ih/Z3Kuf5P3cCCrhB2GxP5QmHKLI3E/As3ikJ9mKq ne5tLJ7b+H7m6xIsmnPl8mXwQlrgjpDN3haVfAqdgmYQKHizOrHFBmxhU59617Lz VvRqBQQ1cRLBxsX9l46AKJrE46SmzgCs -----END CERTIFICATE-----Generated at Sun Aug 24 00:47:34 2025 by rpki-client