$ rpki-client -vvf rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.mft File: 3K6HG3xct5vH7PZ5s7LTyVan2eM.mft (raw, json) Hash identifier: dHbMjesFCS9uxSUA5mlD1nY+nF26KrDgf4MAdD6BSl4= Subject key identifier: 24:A4:DE:DC:1E:C7:B8:F7:27:F5:82:03:04:15:BA:D0:2A:1F:89:32 Authority key identifier: DC:AE:87:1B:7C:5C:B7:9B:C7:EC:F6:79:B3:B2:D3:C9:56:A7:D9:E3 Certificate issuer: /CN=A91604AC/serialNumber=DCAE871B7C5CB79BC7ECF679B3B2D3C956A7D9E3 Certificate serial: 0698 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3K6HG3xct5vH7PZ5s7LTyVan2eM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.mft Manifest number: 068C Signing time: Fri 18 Jul 2025 22:40:03 +0000 Manifest this update: Fri 18 Jul 2025 22:40:03 +0000 Manifest next update: Fri 25 Jul 2025 22:40:03 +0000 Files and hashes: 1: 3K6HG3xct5vH7PZ5s7LTyVan2eM.crl (hash: cCE/Warv9kevDzWngmGQVcr1IKGIURXiDICVWnZjmKo=) 2: 0081F3D6F22111EE8EEC070EC4F9AE02.roa (hash: FOS9hpfhSMJ/5W+e+NFkrecUhC86TAOPH0uxsIPYP4A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.crl rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3K6HG3xct5vH7PZ5s7LTyVan2eM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 22:40:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1688 (0x698) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91604AC, serialNumber=DCAE871B7C5CB79BC7ECF679B3B2D3C956A7D9E3 Validity Not Before: Jul 18 22:40:03 2025 GMT Not After : Jul 25 22:40:03 2025 GMT Subject: CN=687acd43-2a2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:96:3c:74:7b:5f:6b:6a:1a:66:f1:e1:00:e5: 30:cc:fe:9d:46:d7:b3:b3:43:f1:92:6d:b8:5b:bb: 1b:6b:1e:e6:51:d1:68:d3:75:b8:8f:d6:0f:94:07: 76:fc:e4:22:24:73:d4:eb:ce:5a:15:e2:0f:41:3a: a2:5a:12:84:c4:9c:ff:58:19:aa:9d:f8:3f:00:f4: d7:48:b4:0f:8e:5d:56:b2:14:05:1e:ef:01:2b:49: 42:1c:f5:dc:a9:cf:78:61:8c:71:aa:bf:69:ac:3f: 73:78:ea:b9:1f:47:b5:93:84:86:e7:17:e7:29:66: 2a:7f:b1:14:d1:70:e9:96:97:d2:d7:2a:16:6f:6f: 7b:cd:ba:c5:9b:04:5e:a4:6b:83:b3:60:e1:74:7c: 2e:d5:54:14:f4:c4:03:50:86:7a:28:27:d3:4f:2d: d5:93:3f:9c:31:b3:2b:d2:da:4f:17:7c:c4:75:45: 52:14:ae:1a:d5:29:9d:8b:ea:e8:13:07:04:15:8e: 84:b7:b5:83:0b:82:3d:50:06:88:51:6f:36:1e:e1: e8:19:9c:55:f5:61:05:6e:7b:c1:10:4d:83:7a:e4: f9:6c:d9:1c:06:6f:d2:38:10:1f:7c:79:11:98:80: 5b:36:5a:7a:a4:2a:c0:bb:44:fe:af:a9:9d:94:e7: f4:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:A4:DE:DC:1E:C7:B8:F7:27:F5:82:03:04:15:BA:D0:2A:1F:89:32 X509v3 Authority Key Identifier: keyid:DC:AE:87:1B:7C:5C:B7:9B:C7:EC:F6:79:B3:B2:D3:C9:56:A7:D9:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3K6HG3xct5vH7PZ5s7LTyVan2eM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:5a:26:31:23:74:5d:02:35:0c:5f:a8:d4:63:90:53:73:5b: d4:20:d5:f5:29:48:3b:6a:5f:6e:73:ca:c1:ed:0e:fe:57:71: 35:36:3a:1d:c3:14:f1:b1:64:55:f6:52:50:d6:6d:9c:8e:80: b9:0c:e9:ab:d1:23:60:25:a5:66:cb:43:51:16:48:7a:3c:ed: 32:a5:d0:03:b0:58:ae:f3:2b:86:78:d4:f0:3f:c8:95:08:f7: 4e:51:5c:49:be:23:43:ff:1b:db:e6:4e:09:41:86:d2:c6:2d: 78:52:d5:29:58:d8:c4:5d:39:a6:e2:d9:f3:0e:e6:fd:2b:db: 7e:03:c1:3a:ca:b4:73:d9:05:5b:e6:14:5b:52:58:01:85:62: 3f:4f:16:e5:bb:18:d9:34:cf:09:c4:51:9e:16:84:09:f6:16: 8d:b9:23:cb:c8:6d:9d:2a:c7:ac:39:59:2c:b7:12:9b:be:ca: 2e:3a:49:3a:eb:6b:23:fe:ec:e2:ec:94:95:79:dc:31:41:1e: c1:af:5e:ea:a4:18:0e:13:45:38:78:20:6d:48:c2:b9:e8:6b: 67:85:2f:bc:60:e5:fa:d3:d9:98:95:17:9e:41:6c:13:ae:9d: 9d:fe:a9:19:48:75:c6:e7:00:ae:8c:bc:24:90:ea:bb:49:db: 11:46:fd:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA0QUMxMTAvBgNVBAUTKERDQUU4NzFCN0M1Q0I3OUJDN0VDRjY3OUIzQjJEM0M5 NTZBN0Q5RTMwHhcNMjUwNzE4MjI0MDAzWhcNMjUwNzI1MjI0MDAzWjAYMRYwFAYD VQQDEw02ODdhY2Q0My0yYTJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0pY8dHtfa2oaZvHhAOUwzP6dRtezs0Pxkm24W7sbax7mUdFo03W4j9YPlAd2 /OQiJHPU685aFeIPQTqiWhKExJz/WBmqnfg/APTXSLQPjl1WshQFHu8BK0lCHPXc qc94YYxxqr9prD9zeOq5H0e1k4SG5xfnKWYqf7EU0XDplpfS1yoWb297zbrFmwRe pGuDs2DhdHwu1VQU9MQDUIZ6KCfTTy3Vkz+cMbMr0tpPF3zEdUVSFK4a1Smdi+ro EwcEFY6Et7WDC4I9UAaIUW82HuHoGZxV9WEFbnvBEE2DeuT5bNkcBm/SOBAffHkR mIBbNlp6pCrAu0T+r6mdlOf0kQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCSk3twe x7j3J/WCAwQVutAqH4kyMB8GA1UdIwQYMBaAFNyuhxt8XLebx+z2ebOy08lWp9nj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDRBQy80OTcyMDk5Njgx NDUxMUVCQjJERDVENEJDNEY5QUUwMi8zSzZIRzN4Y3Q1dkg3UFo1czdMVHlWYW4y ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNLNkhHM3hjdDV2SDdQWjVzN0xUeVZhbjJlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDRBQy80OTcyMDk5NjgxNDUxMUVCQjJERDVENEJDNEY5QUUwMi8zSzZIRzN4Y3Q1 dkg3UFo1czdMVHlWYW4yZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIWiYxI3RdAjUMX6jUY5BTc1vUINX1KUg7al9uc8rB7Q7+V3E1Njod wxTxsWRV9lJQ1m2cjoC5DOmr0SNgJaVmy0NRFkh6PO0ypdADsFiu8yuGeNTwP8iV CPdOUVxJviND/xvb5k4JQYbSxi14UtUpWNjEXTmm4tnzDub9K9t+A8E6yrRz2QVb 5hRbUlgBhWI/TxbluxjZNM8JxFGeFoQJ9haNuSPLyG2dKsesOVkstxKbvsouOkk6 62sj/uzi7JSVedwxQR7Br17qpBgOE0U4eCBtSMK56GtnhS+8YOX609mYlReeQWwT rp2d/qkZSHXG5wCujLwkkOq7SdsRRv34 -----END CERTIFICATE-----Generated at Sun Jul 20 03:11:21 2025 by rpki-client