$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.mft File: UT3TCM11FCJ69R2AXlVApqn10zk.mft (raw, json) Hash identifier: RRvtlPBmWtVy+KOYkxmsP159F4j937MH0gVj5fqS5AY= Subject key identifier: AC:A9:AE:18:BC:E8:C3:20:ED:18:3D:CB:6D:17:A6:DD:5C:7B:4E:9C Authority key identifier: 51:3D:D3:08:CD:75:14:22:7A:F5:1D:80:5E:55:40:A6:A9:F5:D3:39 Certificate issuer: /CN=A91F8119/serialNumber=513DD308CD7514227AF51D805E5540A6A9F5D339 Certificate serial: 0FFA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UT3TCM11FCJ69R2AXlVApqn10zk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.mft Manifest number: 0FF3 Signing time: Fri 18 Jul 2025 15:49:38 +0000 Manifest this update: Fri 18 Jul 2025 15:49:37 +0000 Manifest next update: Fri 25 Jul 2025 15:49:37 +0000 Files and hashes: 1: UT3TCM11FCJ69R2AXlVApqn10zk.crl (hash: wVGlVGgRpJJZfeMxI6HEjYibnFdJCyPMltgRmbQAMq8=) 2: 8BCB105015EA11EC86834E2FC4F9AE02.roa (hash: OwotHwrsvHfL9c2xwdii3HVlS9hQiSq8fqoBsWtp67U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.crl rsync://rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UT3TCM11FCJ69R2AXlVApqn10zk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 15:49:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4090 (0xffa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8119, serialNumber=513DD308CD7514227AF51D805E5540A6A9F5D339 Validity Not Before: Jul 18 15:49:37 2025 GMT Not After : Jul 25 15:49:37 2025 GMT Subject: CN=687a6d12-6d99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:1c:25:d6:e8:c7:5a:d6:1f:76:d7:06:56:13: 75:2d:c9:4a:e6:f1:7f:4a:08:b3:ec:bf:0b:c7:9d: 85:62:63:8f:f1:16:8c:39:fd:f2:42:e6:51:4e:0d: 57:43:cb:a7:1a:b7:0e:2a:41:e9:e4:c5:93:58:f5: ff:2e:fb:4f:bf:3e:cf:4c:91:20:13:eb:02:fb:ae: 02:59:fd:04:f7:fa:23:ca:20:c8:4d:1a:81:56:53: 42:e1:1b:17:bf:88:c1:48:a4:b1:bc:29:00:b7:2a: 90:8c:0f:f0:c3:91:5b:cd:54:d9:ed:27:b0:2a:88: 82:5d:06:5e:e1:62:23:c7:9f:94:5a:59:d9:0a:33: 94:7a:ef:75:ae:7e:a0:2a:da:bd:6f:d7:17:63:84: 79:e6:8d:61:aa:0d:89:3a:e1:3e:e6:13:5b:69:f7: 89:fb:49:f9:1d:6e:a4:3b:9a:c3:88:16:e8:57:f5: e8:24:29:eb:9c:e3:ff:b5:db:ef:90:23:68:a4:da: f3:9d:36:b3:0d:22:56:1d:cd:bf:17:65:29:14:2f: 03:9a:97:88:b2:87:9a:18:d1:f3:26:60:83:d1:31: 7b:1a:10:c7:27:f7:a7:b1:90:e7:9a:cd:7f:40:f6: 4a:19:3b:84:09:01:47:70:08:37:e1:c1:45:35:c6: ec:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:A9:AE:18:BC:E8:C3:20:ED:18:3D:CB:6D:17:A6:DD:5C:7B:4E:9C X509v3 Authority Key Identifier: keyid:51:3D:D3:08:CD:75:14:22:7A:F5:1D:80:5E:55:40:A6:A9:F5:D3:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UT3TCM11FCJ69R2AXlVApqn10zk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:25:da:c1:81:3a:ee:92:d6:c1:fe:41:c2:13:88:24:f6:4d: 95:24:20:6e:21:d8:b7:31:4b:c6:8d:60:78:0e:4d:8c:fb:a3: f2:c3:37:6c:f6:91:25:8c:80:ff:8f:92:92:3b:98:35:f0:9c: 8d:80:17:24:61:5c:c3:1e:0a:ab:52:a1:43:5f:a2:6e:ef:38: f2:15:2c:45:56:e8:fd:1c:bc:f0:d7:b3:93:94:65:7d:38:32: d8:f5:75:24:d4:6b:86:29:83:fd:45:3b:3f:19:92:e6:0f:31: 6b:1a:16:46:5a:f0:8d:00:19:c5:25:39:c7:49:f1:2e:1f:5c: db:1e:c8:d7:aa:70:47:a2:e4:b3:b3:7c:cf:f7:b4:94:55:b9: aa:1d:a5:60:97:c9:96:70:e0:60:28:ec:db:8b:96:84:96:ff: 09:5c:ac:c4:cd:28:20:35:98:0b:56:b5:74:72:c2:87:68:a8: dd:52:ff:e9:ba:50:63:09:f2:6d:4a:54:7e:a8:f1:31:cc:1d: 4f:da:02:0f:a2:a4:90:40:dd:dd:eb:2f:61:48:51:b1:92:66: c3:40:03:09:68:5a:ab:55:0c:ef:48:d2:32:d0:e1:09:ce:b7: d5:4a:2b:f5:d9:79:4d:e6:da:d4:52:de:31:80:29:1f:4d:8c: 91:be:9f:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD/owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgxMTkxMTAvBgNVBAUTKDUxM0REMzA4Q0Q3NTE0MjI3QUY1MUQ4MDVFNTU0MEE2 QTlGNUQzMzkwHhcNMjUwNzE4MTU0OTM3WhcNMjUwNzI1MTU0OTM3WjAYMRYwFAYD VQQDEw02ODdhNmQxMi02ZDk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArRwl1ujHWtYfdtcGVhN1LclK5vF/Sgiz7L8Lx52FYmOP8RaMOf3yQuZRTg1X Q8unGrcOKkHp5MWTWPX/LvtPvz7PTJEgE+sC+64CWf0E9/ojyiDITRqBVlNC4RsX v4jBSKSxvCkAtyqQjA/ww5FbzVTZ7SewKoiCXQZe4WIjx5+UWlnZCjOUeu91rn6g Ktq9b9cXY4R55o1hqg2JOuE+5hNbafeJ+0n5HW6kO5rDiBboV/XoJCnrnOP/tdvv kCNopNrznTazDSJWHc2/F2UpFC8DmpeIsoeaGNHzJmCD0TF7GhDHJ/ensZDnms1/ QPZKGTuECQFHcAg34cFFNcbstwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKyprhi8 6MMg7Rg9y20Xpt1ce06cMB8GA1UdIwQYMBaAFFE90wjNdRQievUdgF5VQKap9dM5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODExOS80RTJEN0EzODUx NDAxMUU5OEQ5ODNCNjFDNEY5QUUwMi9VVDNUQ00xMUZDSjY5UjJBWGxWQXBxbjEw emsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1VUM1RDTTExRkNKNjlSMkFYbFZBcHFuMTB6ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODExOS80RTJEN0EzODUxNDAxMUU5OEQ5ODNCNjFDNEY5QUUwMi9VVDNUQ00xMUZD SjY5UjJBWGxWQXBxbjEwemsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEJdrBgTruktbB/kHCE4gk9k2VJCBuIdi3MUvGjWB4Dk2M+6Pywzds 9pEljID/j5KSO5g18JyNgBckYVzDHgqrUqFDX6Ju7zjyFSxFVuj9HLzw17OTlGV9 ODLY9XUk1GuGKYP9RTs/GZLmDzFrGhZGWvCNABnFJTnHSfEuH1zbHsjXqnBHouSz s3zP97SUVbmqHaVgl8mWcOBgKOzbi5aElv8JXKzEzSggNZgLVrV0csKHaKjdUv/p ulBjCfJtSlR+qPExzB1P2gIPoqSQQN3d6y9hSFGxkmbDQAMJaFqrVQzvSNIy0OEJ zrfVSiv12XlN5trUUt4xgCkfTYyRvp9l -----END CERTIFICATE-----Generated at Sun Jul 20 11:21:28 2025 by rpki-client