$ rpki-client -vvf rpki.apnic.net/member_repository/A91168B5/32C6568CF6E011E692A20B87C4F9AE02/3JAYFdyRlzyvoZqLV2-GjphBPjk.mft File: 3JAYFdyRlzyvoZqLV2-GjphBPjk.mft (raw, json) Hash identifier: +F8Na5jpK9WySjM1xmTb+O+DINVCIG4MopbsAKxA6Q0= Subject key identifier: 89:7E:4A:70:B2:CA:40:AB:02:67:6C:21:C6:E0:B6:63:54:51:42:96 Authority key identifier: DC:90:18:15:DC:91:97:3C:AF:A1:9A:8B:57:6F:86:8E:98:41:3E:39 Certificate issuer: /CN=A91168B5/serialNumber=DC901815DC91973CAFA19A8B576F868E98413E39 Certificate serial: 1BE8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3JAYFdyRlzyvoZqLV2-GjphBPjk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91168B5/32C6568CF6E011E692A20B87C4F9AE02/3JAYFdyRlzyvoZqLV2-GjphBPjk.mft Manifest number: 1BE8 Signing time: Sun 20 Jul 2025 16:14:55 +0000 Manifest this update: Sun 20 Jul 2025 16:14:54 +0000 Manifest next update: Sun 27 Jul 2025 16:14:54 +0000 Files and hashes: 1: 3JAYFdyRlzyvoZqLV2-GjphBPjk.crl (hash: F4fCKWSX501NjQeX4OQB3ltmxF6I/DW592zBdajffNQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91168B5/32C6568CF6E011E692A20B87C4F9AE02/3JAYFdyRlzyvoZqLV2-GjphBPjk.crl rsync://rpki.apnic.net/member_repository/A91168B5/32C6568CF6E011E692A20B87C4F9AE02/3JAYFdyRlzyvoZqLV2-GjphBPjk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3JAYFdyRlzyvoZqLV2-GjphBPjk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 16:14:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7144 (0x1be8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91168B5, serialNumber=DC901815DC91973CAFA19A8B576F868E98413E39 Validity Not Before: Jul 20 16:14:54 2025 GMT Not After : Jul 27 16:14:54 2025 GMT Subject: CN=687d15fe-84a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:20:ee:42:0b:70:b5:02:28:30:b6:25:68:73: 95:d5:c5:f6:d7:e7:78:28:b1:6f:84:62:89:71:11: 61:6d:f0:fc:6a:2d:08:07:02:a1:34:7b:6e:22:c5: 1c:8c:d9:ea:a7:6a:17:61:2d:eb:22:8e:9d:e8:26: 3b:7d:47:de:cc:cd:1a:c2:98:e5:09:1f:8d:cc:c0: 35:40:18:ca:c4:be:b3:3e:1c:21:9c:8b:2d:17:de: 4c:c8:b9:63:96:30:89:4b:77:12:44:bf:5f:53:b2: dd:51:19:af:4e:4a:b3:53:10:a7:b6:61:46:29:ad: c5:fc:a9:bf:6d:3a:3e:65:e4:2e:f2:34:44:7a:6c: 64:b6:ee:88:77:0b:0f:ff:d0:ba:cd:65:a2:72:73: d5:5b:3e:e2:03:5a:67:be:23:2c:44:4c:f9:d9:89: f1:94:1e:08:d6:6e:4c:b0:1f:24:75:42:42:72:9c: f3:d9:7b:62:8a:1d:8a:f8:4c:8d:ac:e3:c1:4a:c9: 2b:8b:ab:7a:16:6f:cd:54:ba:0c:d2:ed:9a:d2:26: c5:92:3c:65:6e:59:6b:4a:fd:68:10:dc:6e:55:9a: 18:18:a5:50:13:1a:5e:11:0e:e7:3f:df:f7:04:f3: e4:22:b5:27:46:8f:d5:a0:bd:fd:36:19:27:15:69: fa:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:7E:4A:70:B2:CA:40:AB:02:67:6C:21:C6:E0:B6:63:54:51:42:96 X509v3 Authority Key Identifier: keyid:DC:90:18:15:DC:91:97:3C:AF:A1:9A:8B:57:6F:86:8E:98:41:3E:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91168B5/32C6568CF6E011E692A20B87C4F9AE02/3JAYFdyRlzyvoZqLV2-GjphBPjk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3JAYFdyRlzyvoZqLV2-GjphBPjk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91168B5/32C6568CF6E011E692A20B87C4F9AE02/3JAYFdyRlzyvoZqLV2-GjphBPjk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:3f:4e:e8:db:79:ef:d1:fb:7c:72:b4:06:62:c6:82:cc:77: 53:b4:26:8b:f3:dd:4f:e4:7d:7a:4d:95:93:95:15:f8:5f:e0: 20:92:6f:3d:30:05:7f:7e:c0:2d:58:aa:82:c7:84:f8:6c:81: c0:28:e3:e4:32:86:64:5a:11:09:64:37:46:b0:0d:b6:12:ab: 19:7b:5e:13:fa:cf:9e:27:38:f6:25:a5:00:c0:a0:52:c5:92: 5d:63:1c:81:a0:58:0f:e2:c7:d9:d0:15:27:e5:4a:4b:40:81: bc:0a:0d:39:8c:44:a3:b4:85:d4:fa:c2:1f:1d:8e:bc:a5:5e: 3b:0d:11:01:d0:de:37:4a:33:6d:2c:0a:30:0c:12:a3:8d:12: 76:ee:ab:ff:12:bd:fd:84:4b:b7:d9:8b:53:44:4b:fe:40:89: 24:4a:3c:0e:9c:d7:34:20:db:f3:e7:20:46:fa:23:85:66:eb: db:9b:d3:9f:36:18:b2:38:ea:3d:0a:90:d8:53:da:13:92:5c: 1c:22:5f:ee:81:54:ff:de:b6:f2:a4:b2:08:5f:1e:58:90:a0: 92:da:56:04:88:9e:43:62:1f:d2:2e:54:7c:77:45:08:92:74: b9:2a:89:3a:91:f5:88:a1:b4:99:53:8c:a3:cf:a5:a3:1f:4e: 46:81:e3:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG+gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY4QjUxMTAvBgNVBAUTKERDOTAxODE1REM5MTk3M0NBRkExOUE4QjU3NkY4NjhF OTg0MTNFMzkwHhcNMjUwNzIwMTYxNDU0WhcNMjUwNzI3MTYxNDU0WjAYMRYwFAYD VQQDEw02ODdkMTVmZS04NGEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyCDuQgtwtQIoMLYlaHOV1cX21+d4KLFvhGKJcRFhbfD8ai0IBwKhNHtuIsUc jNnqp2oXYS3rIo6d6CY7fUfezM0awpjlCR+NzMA1QBjKxL6zPhwhnIstF95MyLlj ljCJS3cSRL9fU7LdURmvTkqzUxCntmFGKa3F/Km/bTo+ZeQu8jREemxktu6IdwsP /9C6zWWicnPVWz7iA1pnviMsREz52YnxlB4I1m5MsB8kdUJCcpzz2Xtiih2K+EyN rOPBSskri6t6Fm/NVLoM0u2a0ibFkjxlbllrSv1oENxuVZoYGKVQExpeEQ7nP9/3 BPPkIrUnRo/VoL39NhknFWn6wwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIl+SnCy ykCrAmdsIcbgtmNUUUKWMB8GA1UdIwQYMBaAFNyQGBXckZc8r6Gai1dvho6YQT45 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjhCNS8zMkM2NTY4Q0Y2 RTAxMUU2OTJBMjBCODdDNEY5QUUwMi8zSkFZRmR5Umx6eXZvWnFMVjItR2pwaEJQ amsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNKQVlGZHlSbHp5dm9acUxWMi1HanBoQlBqay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjhCNS8zMkM2NTY4Q0Y2RTAxMUU2OTJBMjBCODdDNEY5QUUwMi8zSkFZRmR5Umx6 eXZvWnFMVjItR2pwaEJQamsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtP07o23nv0ft8crQGYsaCzHdTtCaL891P5H16TZWTlRX4X+Agkm89 MAV/fsAtWKqCx4T4bIHAKOPkMoZkWhEJZDdGsA22EqsZe14T+s+eJzj2JaUAwKBS xZJdYxyBoFgP4sfZ0BUn5UpLQIG8Cg05jESjtIXU+sIfHY68pV47DREB0N43SjNt LAowDBKjjRJ27qv/Er39hEu32YtTREv+QIkkSjwOnNc0INvz5yBG+iOFZuvbm9Of NhiyOOo9CpDYU9oTklwcIl/ugVT/3rbypLIIXx5YkKCS2lYEiJ5DYh/SLlR8d0UI knS5Kok6kfWIobSZU4yjz6WjH05GgePm -----END CERTIFICATE-----Generated at Mon Jul 21 07:13:10 2025 by rpki-client