$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE6B9/526E16A4044E11EA8442D40FC4F9AE02/3qLQJgwXCVFn4eO81lmJ_nZHy2o.mft File: 3qLQJgwXCVFn4eO81lmJ_nZHy2o.mft (raw, json) Hash identifier: BCnlbTyx1qW337XThfIirT3VetGoZo1CLmPba+FiqvE= Subject key identifier: 71:B1:FF:33:1C:3C:78:37:6B:94:BC:E7:BF:A1:D7:A6:7A:84:4A:4E Authority key identifier: DE:A2:D0:26:0C:17:09:51:67:E1:E3:BC:D6:59:89:FE:76:47:CB:6A Certificate issuer: /CN=A91AE6B9/serialNumber=DEA2D0260C17095167E1E3BCD65989FE7647CB6A Certificate serial: 0C6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3qLQJgwXCVFn4eO81lmJ_nZHy2o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE6B9/526E16A4044E11EA8442D40FC4F9AE02/3qLQJgwXCVFn4eO81lmJ_nZHy2o.mft Manifest number: 0C63 Signing time: Tue 22 Jul 2025 18:32:15 +0000 Manifest this update: Tue 22 Jul 2025 18:32:14 +0000 Manifest next update: Tue 29 Jul 2025 18:32:14 +0000 Files and hashes: 1: 3qLQJgwXCVFn4eO81lmJ_nZHy2o.crl (hash: SEpXcg7EwpmoenQCGwZrZQ89aMuLPLHGXWOpqsipBUg=) 2: D91746DE044F11EA8C37D012C4F9AE02.roa (hash: alyiVZNnvo5j+FeNDvZT50h35M8ryhRQyKsBnyLFnkg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE6B9/526E16A4044E11EA8442D40FC4F9AE02/3qLQJgwXCVFn4eO81lmJ_nZHy2o.crl rsync://rpki.apnic.net/member_repository/A91AE6B9/526E16A4044E11EA8442D40FC4F9AE02/3qLQJgwXCVFn4eO81lmJ_nZHy2o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3qLQJgwXCVFn4eO81lmJ_nZHy2o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 18:32:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3178 (0xc6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE6B9, serialNumber=DEA2D0260C17095167E1E3BCD65989FE7647CB6A Validity Not Before: Jul 22 18:32:14 2025 GMT Not After : Jul 29 18:32:14 2025 GMT Subject: CN=687fd92e-96b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:84:77:5d:d1:85:d2:fc:aa:53:71:50:0d:44: e6:7f:17:f4:46:bd:7e:fa:98:9d:87:f9:c9:01:32: 89:3a:15:7a:a2:d2:06:d1:4f:60:b4:02:10:2a:52: 06:5b:c3:2c:e5:61:97:68:f4:06:e1:c2:fe:d4:a6: 7c:60:ff:7e:b8:f6:ac:4d:12:35:73:44:5b:f3:c6: 4a:91:55:9c:32:b6:65:da:6e:6f:9f:25:27:64:0e: e9:24:a4:b1:e8:df:ee:2f:82:11:c0:66:15:df:03: b6:05:5e:e1:bb:7b:e3:ac:e8:c5:f5:30:83:f4:77: 05:da:65:78:58:1d:a4:8e:6b:be:35:e3:02:ad:0f: 2c:bd:b2:71:c4:db:87:7c:73:63:68:37:21:b2:20: 36:fe:3e:2c:f1:8a:a7:80:d9:76:89:87:f2:c2:47: 52:1a:1a:08:79:5f:ae:6a:67:6d:3a:53:8d:77:94: f7:d4:06:66:b9:ef:ed:27:ef:c5:54:37:ac:88:b6: b9:37:2d:08:f4:bd:62:5d:00:82:08:37:22:c7:73: ef:1a:04:fc:8e:e0:4b:0a:45:02:2a:a4:72:8f:34: 60:4d:ed:5c:f0:29:c1:f3:b6:6d:53:a2:a7:c7:2c: 16:15:9d:97:7e:69:29:2c:0b:a3:e4:19:e7:c1:5a: da:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:B1:FF:33:1C:3C:78:37:6B:94:BC:E7:BF:A1:D7:A6:7A:84:4A:4E X509v3 Authority Key Identifier: keyid:DE:A2:D0:26:0C:17:09:51:67:E1:E3:BC:D6:59:89:FE:76:47:CB:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE6B9/526E16A4044E11EA8442D40FC4F9AE02/3qLQJgwXCVFn4eO81lmJ_nZHy2o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3qLQJgwXCVFn4eO81lmJ_nZHy2o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE6B9/526E16A4044E11EA8442D40FC4F9AE02/3qLQJgwXCVFn4eO81lmJ_nZHy2o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:f5:98:21:8b:28:2c:5b:04:2c:b4:a1:6f:75:3f:c6:9c:a4: dd:bf:2f:10:76:6c:22:fc:df:16:52:ef:fc:75:3a:3c:33:09: bc:ff:68:c1:e9:3a:31:df:d1:cb:37:07:d7:f5:9a:98:d7:01: ab:35:85:55:89:46:15:7d:46:9b:79:e9:50:41:5f:ec:1e:36: b3:7f:e0:00:68:3e:26:37:2b:5a:7d:08:f7:b7:85:69:ae:28: 6a:06:49:f2:85:bb:56:b0:44:37:f6:63:bc:5b:01:bf:f7:92: ae:aa:d9:c1:e1:dc:ec:9b:d0:64:ab:02:20:27:86:30:64:60: c4:04:b3:eb:c0:e3:6d:f0:0e:45:cc:fe:af:fa:6d:86:84:8c: 18:89:01:7b:2a:e2:2e:ae:3a:76:66:c7:59:66:6c:bf:84:4a: e3:3e:a2:aa:bf:53:42:24:1a:0b:d9:f3:fa:c4:ef:3a:dc:6f: 1f:e1:df:4d:94:a5:78:49:45:e9:07:c6:ea:a6:51:3d:d2:e3: 21:5e:4f:2b:1d:40:da:7f:33:36:4c:32:bb:46:b3:03:ba:dc: 8e:8c:10:91:8b:c4:1c:8b:ef:a0:03:9f:20:28:9e:3b:46:5a: 02:93:85:6b:c9:d0:b2:f9:e8:4f:d1:2a:7d:27:05:41:0b:ea: 6b:d0:e8:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDGowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUU2QjkxMTAvBgNVBAUTKERFQTJEMDI2MEMxNzA5NTE2N0UxRTNCQ0Q2NTk4OUZF NzY0N0NCNkEwHhcNMjUwNzIyMTgzMjE0WhcNMjUwNzI5MTgzMjE0WjAYMRYwFAYD VQQDEw02ODdmZDkyZS05NmI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtoR3XdGF0vyqU3FQDUTmfxf0Rr1++pidh/nJATKJOhV6otIG0U9gtAIQKlIG W8Ms5WGXaPQG4cL+1KZ8YP9+uPasTRI1c0Rb88ZKkVWcMrZl2m5vnyUnZA7pJKSx 6N/uL4IRwGYV3wO2BV7hu3vjrOjF9TCD9HcF2mV4WB2kjmu+NeMCrQ8svbJxxNuH fHNjaDchsiA2/j4s8YqngNl2iYfywkdSGhoIeV+uamdtOlONd5T31AZmue/tJ+/F VDesiLa5Ny0I9L1iXQCCCDcix3PvGgT8juBLCkUCKqRyjzRgTe1c8CnB87ZtU6Kn xywWFZ2XfmkpLAuj5BnnwVraeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHGx/zMc PHg3a5S857+h16Z6hEpOMB8GA1UdIwQYMBaAFN6i0CYMFwlRZ+HjvNZZif52R8tq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTZCOS81MjZFMTZBNDA0 NEUxMUVBODQ0MkQ0MEZDNEY5QUUwMi8zcUxRSmd3WENWRm40ZU84MWxtSl9uWkh5 Mm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNxTFFKZ3dYQ1ZGbjRlTzgxbG1KX25aSHkyby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTZCOS81MjZFMTZBNDA0NEUxMUVBODQ0MkQ0MEZDNEY5QUUwMi8zcUxRSmd3WENW Rm40ZU84MWxtSl9uWkh5Mm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCE9ZghiygsWwQstKFvdT/GnKTdvy8Qdmwi/N8WUu/8dTo8Mwm8/2jB 6Tox39HLNwfX9ZqY1wGrNYVViUYVfUabeelQQV/sHjazf+AAaD4mNytafQj3t4Vp rihqBknyhbtWsEQ39mO8WwG/95KuqtnB4dzsm9BkqwIgJ4YwZGDEBLPrwONt8A5F zP6v+m2GhIwYiQF7KuIurjp2ZsdZZmy/hErjPqKqv1NCJBoL2fP6xO863G8f4d9N lKV4SUXpB8bqplE90uMhXk8rHUDafzM2TDK7RrMDutyOjBCRi8Qci++gA58gKJ47 RloCk4VrydCy+ehP0Sp9JwVBC+pr0OhR -----END CERTIFICATE-----Generated at Wed Jul 23 12:18:13 2025 by rpki-client