$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.mft File: 3xHpJo0GrlO6-3QTvTT_OHjk7tA.mft (raw, json) Hash identifier: yV7PAHx+wYm3VvmgkjWvXIk5/s888sxOFnDQAIWFz3M= Subject key identifier: 85:89:C4:72:B8:5D:15:67:5A:16:11:A3:62:F2:66:9E:79:04:06:11 Authority key identifier: DF:11:E9:26:8D:06:AE:53:BA:FB:74:13:BD:34:FF:38:78:E4:EE:D0 Certificate issuer: /CN=A91BC64D/serialNumber=DF11E9268D06AE53BAFB7413BD34FF3878E4EED0 Certificate serial: 0658 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3xHpJo0GrlO6-3QTvTT_OHjk7tA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.mft Manifest number: 064D Signing time: Fri 18 Jul 2025 22:55:25 +0000 Manifest this update: Fri 18 Jul 2025 22:55:23 +0000 Manifest next update: Fri 25 Jul 2025 22:55:23 +0000 Files and hashes: 1: 3xHpJo0GrlO6-3QTvTT_OHjk7tA.crl (hash: gH4Sch5C8PZ+YgXMkbqRNxFoUdiawTTGFkT3mdihFek=) 2: FC583AC6CC8511EC8D238672C4F9AE02.roa (hash: 4nQWYZbXWSJ3PqE4ZBiXzBzUwOjlbjDx0Oq7v5W8vCQ=) 3: FD987A54CC8511EC8D238672C4F9AE02.roa (hash: MzEQJvzOJlRcf4tMcorSrwSuzHCC7BZBlDirsliZQdI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.crl rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3xHpJo0GrlO6-3QTvTT_OHjk7tA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 22:55:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1624 (0x658) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC64D, serialNumber=DF11E9268D06AE53BAFB7413BD34FF3878E4EED0 Validity Not Before: Jul 18 22:55:23 2025 GMT Not After : Jul 25 22:55:23 2025 GMT Subject: CN=687ad0dc-620e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:a2:ad:e8:5a:44:08:d3:56:d3:d4:db:c2:5c: 06:db:55:0a:54:6a:c7:23:a0:40:90:84:8e:6b:f9: 62:ce:47:f3:d9:24:f9:a8:9f:61:9d:b0:53:d1:f3: 04:cf:cf:88:fe:9a:c4:0a:c8:2e:21:a3:e3:d0:b8: af:b8:5a:f8:47:95:7f:6d:ef:19:cb:c8:60:b6:9e: 2c:68:e6:15:f2:83:c3:5c:f4:f4:43:d1:24:17:35: ed:1f:a0:06:88:31:46:9c:bb:ab:6d:26:38:06:3e: 46:6e:33:55:b7:a5:96:29:78:70:20:71:9b:5d:6e: ab:92:98:3c:2b:de:63:94:de:8e:67:2e:f7:7b:b8: 85:a4:81:5b:f3:00:53:ad:5a:e8:fe:31:9b:8c:b6: 92:83:a0:36:32:c4:66:4c:be:90:bc:28:35:b2:ac: 62:ea:4f:15:ba:3b:b9:87:27:bc:a4:19:12:51:f0: f4:ef:0a:b5:4e:13:33:8c:7c:e7:af:6e:a9:c7:45: 7a:76:80:77:c0:d5:cc:3d:e5:cc:db:59:42:b3:d6: 3a:8c:5e:bc:f7:26:8f:26:7f:ee:f0:6b:ee:81:9d: ca:2b:a6:24:bf:cd:88:fc:00:70:f5:39:c3:be:62: 09:43:2a:3b:07:8a:e4:11:6b:f7:93:07:d1:b7:15: 0d:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:89:C4:72:B8:5D:15:67:5A:16:11:A3:62:F2:66:9E:79:04:06:11 X509v3 Authority Key Identifier: keyid:DF:11:E9:26:8D:06:AE:53:BA:FB:74:13:BD:34:FF:38:78:E4:EE:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3xHpJo0GrlO6-3QTvTT_OHjk7tA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:1d:29:e9:5a:6a:dc:82:38:80:28:88:7f:20:67:6d:38:ba: 42:cf:76:ae:f9:b0:35:6c:ac:72:ab:66:e3:ce:43:b5:d6:a7: c2:47:ef:55:4d:7a:ff:06:d9:bd:20:d5:47:cf:f0:d0:5c:0b: 7b:03:aa:b0:e4:d2:af:97:56:be:d5:70:9e:77:9d:7f:10:ee: 3c:40:ca:5c:ff:05:21:0e:fa:6f:94:a2:e9:14:9b:ae:40:97: 4d:4a:5a:ec:eb:f4:3c:2d:af:20:d9:e3:99:88:d9:a4:ee:cb: fb:3a:45:de:db:10:e4:09:70:5a:2c:47:88:59:dd:ac:fc:d8: 18:50:6b:c1:55:fb:7f:46:0b:9c:5d:d9:83:46:7e:64:74:17: 3c:99:7d:94:1d:41:f3:48:c5:4e:01:03:f4:b2:87:c2:79:da: cc:77:59:82:14:45:94:d2:0f:16:85:52:49:cd:0b:a9:f1:a6: 0b:2a:7b:6c:4a:90:a0:35:23:b0:0a:53:cd:5c:4f:e5:9d:58: 13:92:e1:82:99:94:2a:14:a4:c8:1c:25:18:c0:76:49:3c:3f: dc:9f:66:5a:fe:44:dc:9b:59:4d:1a:f1:c1:08:dd:64:ac:d5: 50:46:97:08:e8:9c:88:13:a0:55:29:67:c3:e1:88:fa:24:e6: 67:f1:0e:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkM2NEQxMTAvBgNVBAUTKERGMTFFOTI2OEQwNkFFNTNCQUZCNzQxM0JEMzRGRjM4 NzhFNEVFRDAwHhcNMjUwNzE4MjI1NTIzWhcNMjUwNzI1MjI1NTIzWjAYMRYwFAYD VQQDEw02ODdhZDBkYy02MjBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtKKt6FpECNNW09TbwlwG21UKVGrHI6BAkISOa/lizkfz2ST5qJ9hnbBT0fME z8+I/prECsguIaPj0LivuFr4R5V/be8Zy8hgtp4saOYV8oPDXPT0Q9EkFzXtH6AG iDFGnLurbSY4Bj5GbjNVt6WWKXhwIHGbXW6rkpg8K95jlN6OZy73e7iFpIFb8wBT rVro/jGbjLaSg6A2MsRmTL6QvCg1sqxi6k8Vuju5hye8pBkSUfD07wq1ThMzjHzn r26px0V6doB3wNXMPeXM21lCs9Y6jF689yaPJn/u8GvugZ3KK6Ykv82I/ABw9TnD vmIJQyo7B4rkEWv3kwfRtxUN/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIWJxHK4 XRVnWhYRo2LyZp55BAYRMB8GA1UdIwQYMBaAFN8R6SaNBq5Tuvt0E700/zh45O7Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzY0RC9CMkVGM0UzNDk1 RDYxMUVCOTgyMTVDMThDNEY5QUUwMi8zeEhwSm8wR3JsTzYtM1FUdlRUX09Iams3 dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzN4SHBKbzBHcmxPNi0zUVR2VFRfT0hqazd0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QzY0RC9CMkVGM0UzNDk1RDYxMUVCOTgyMTVDMThDNEY5QUUwMi8zeEhwSm8wR3Js TzYtM1FUdlRUX09Iams3dEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtHSnpWmrcgjiAKIh/IGdtOLpCz3au+bA1bKxyq2bjzkO11qfCR+9V TXr/Btm9INVHz/DQXAt7A6qw5NKvl1a+1XCed51/EO48QMpc/wUhDvpvlKLpFJuu QJdNSlrs6/Q8La8g2eOZiNmk7sv7OkXe2xDkCXBaLEeIWd2s/NgYUGvBVft/Rguc XdmDRn5kdBc8mX2UHUHzSMVOAQP0sofCedrMd1mCFEWU0g8WhVJJzQup8aYLKnts SpCgNSOwClPNXE/lnVgTkuGCmZQqFKTIHCUYwHZJPD/cn2Za/kTcm1lNGvHBCN1k rNVQRpcI6JyIE6BVKWfD4Yj6JOZn8Q5k -----END CERTIFICATE-----Generated at Sun Jul 20 03:51:27 2025 by rpki-client