$ rpki-client -vvf rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.mft File: pi3nVqmxabvP97VW1DMAlV1A4yA.mft (raw, json) Hash identifier: SqfclSw0C2umv0P19YD3DltKD+UzD1yupPrZY8als74= Subject key identifier: 72:33:EA:EA:EC:FB:AA:4E:D0:67:3B:09:63:3D:53:47:FA:BA:43:0F Authority key identifier: A6:2D:E7:56:A9:B1:69:BB:CF:F7:B5:56:D4:33:00:95:5D:40:E3:20 Certificate issuer: /CN=A91104BD/serialNumber=A62DE756A9B169BBCFF7B556D43300955D40E320 Certificate serial: 0B74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pi3nVqmxabvP97VW1DMAlV1A4yA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.mft Manifest number: 0B6D Signing time: Sat 06 Sep 2025 19:14:24 +0000 Manifest this update: Sat 06 Sep 2025 19:14:23 +0000 Manifest next update: Sat 13 Sep 2025 19:14:23 +0000 Files and hashes: 1: pi3nVqmxabvP97VW1DMAlV1A4yA.crl (hash: BAEI7tk4KZrjXNEB2lgUjDBxPY1NJgVrdDS/EUXif78=) 2: D326CC30384411EA9D540B58C4F9AE02.roa (hash: y7gm3Ye3cCKsMlMiwHP3v0HJTLEmZvMTdt93lWQK5j4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.crl rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pi3nVqmxabvP97VW1DMAlV1A4yA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 19:14:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2932 (0xb74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91104BD, serialNumber=A62DE756A9B169BBCFF7B556D43300955D40E320 Validity Not Before: Sep 6 19:14:23 2025 GMT Not After : Sep 13 19:14:23 2025 GMT Subject: CN=68bc880f-d8a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:f6:9f:0d:20:36:ad:3d:97:40:29:f6:f2:cd: 9f:e9:dc:43:c1:9a:ef:a7:23:19:df:72:87:9c:1f: d9:2c:04:ce:a3:13:0c:ba:0a:00:93:44:dc:1f:66: 1b:2d:82:a8:70:58:e6:7a:be:e5:f4:bf:02:f9:90: 16:9d:6d:e4:ca:8f:f9:1a:df:a3:f6:4c:85:a9:df: a0:fe:c5:81:15:c2:1e:00:5c:03:af:66:58:16:1d: ca:a0:51:31:a2:3e:ac:e9:c9:88:fc:4d:e1:23:26: 5e:88:2a:5f:8d:78:3c:82:6f:d7:22:b7:e3:8e:90: 85:5c:cb:84:15:9d:86:4f:70:1a:b0:36:ac:b6:75: 28:39:b5:e7:8b:50:4e:2f:45:23:e5:6e:5a:4f:80: 07:09:44:3a:10:be:9b:7b:f1:5a:1d:c9:99:ab:6d: 51:3a:07:c8:94:65:3a:87:49:52:b5:78:7f:37:e9: d6:1b:d6:bb:92:6a:41:b1:a1:32:4e:61:3d:09:7b: 72:13:d5:ce:d0:74:84:58:42:b2:b9:5d:07:a3:09: 03:22:8b:bf:24:69:24:ea:1d:f1:d8:b5:12:13:61: 4d:88:2a:f2:e2:e2:44:a7:c6:fb:4f:96:e1:92:e7: 0e:31:0f:fb:3e:ce:72:75:fe:7e:a7:76:2a:0d:a7: cc:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:33:EA:EA:EC:FB:AA:4E:D0:67:3B:09:63:3D:53:47:FA:BA:43:0F X509v3 Authority Key Identifier: keyid:A6:2D:E7:56:A9:B1:69:BB:CF:F7:B5:56:D4:33:00:95:5D:40:E3:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pi3nVqmxabvP97VW1DMAlV1A4yA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:f3:78:22:b1:50:7e:a3:f7:d9:0b:fb:d9:11:60:0d:36:26: 4a:cf:f5:50:d3:45:8d:a1:4c:71:99:df:1e:9c:20:b6:c2:ad: 12:f0:d3:c8:0f:44:6c:52:40:6b:14:b0:c1:e1:c8:8c:08:7e: 60:f6:12:c2:38:3a:28:b6:ff:86:ce:2f:4f:f1:04:43:f9:e3: ba:56:99:e9:36:fe:c6:aa:df:fe:c8:e1:a1:35:41:11:e7:43: 86:29:14:50:ce:e3:8f:d9:66:c2:90:cd:5b:7a:49:e2:62:b1: f6:16:39:7e:86:5e:ac:6b:ef:8c:4c:fa:33:74:25:b6:f5:09: 76:43:3d:a6:ce:f0:30:b2:2d:00:82:05:48:cc:20:06:9d:81: 95:18:6a:f9:43:1a:94:d9:d0:ac:be:ed:31:91:64:a1:ca:9e: 66:fe:8e:d8:ce:83:ef:76:b3:ba:46:ce:e1:9f:21:bc:22:d6: 1f:51:3a:59:44:8a:9c:ac:dc:97:5a:4a:86:28:df:9a:9c:1e: 30:1a:fd:24:53:58:d1:ff:14:5a:3e:a6:54:59:23:a5:4e:08: a6:cb:e0:32:e7:a6:c2:fc:45:ee:0c:9e:91:b2:54:74:4c:d3: a8:13:bb:8b:22:c6:55:5e:aa:7a:09:8b:84:4e:2e:50:d1:d8: 71:24:8c:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC3QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTA0QkQxMTAvBgNVBAUTKEE2MkRFNzU2QTlCMTY5QkJDRkY3QjU1NkQ0MzMwMDk1 NUQ0MEUzMjAwHhcNMjUwOTA2MTkxNDIzWhcNMjUwOTEzMTkxNDIzWjAYMRYwFAYD VQQDEw02OGJjODgwZi1kOGEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7PafDSA2rT2XQCn28s2f6dxDwZrvpyMZ33KHnB/ZLATOoxMMugoAk0TcH2Yb LYKocFjmer7l9L8C+ZAWnW3kyo/5Gt+j9kyFqd+g/sWBFcIeAFwDr2ZYFh3KoFEx oj6s6cmI/E3hIyZeiCpfjXg8gm/XIrfjjpCFXMuEFZ2GT3AasDastnUoObXni1BO L0Uj5W5aT4AHCUQ6EL6be/FaHcmZq21ROgfIlGU6h0lStXh/N+nWG9a7kmpBsaEy TmE9CXtyE9XO0HSEWEKyuV0HowkDIou/JGkk6h3x2LUSE2FNiCry4uJEp8b7T5bh kucOMQ/7Ps5ydf5+p3YqDafM6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHIz6urs +6pO0Gc7CWM9U0f6ukMPMB8GA1UdIwQYMBaAFKYt51apsWm7z/e1VtQzAJVdQOMg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDRCRC80MzczRDUwQzM4 NDMxMUVBQTYxOTJFNTNDNEY5QUUwMi9waTNuVnFteGFidlA5N1ZXMURNQWxWMUE0 eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BpM25WcW14YWJ2UDk3VlcxRE1BbFYxQTR5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDRCRC80MzczRDUwQzM4NDMxMUVBQTYxOTJFNTNDNEY5QUUwMi9waTNuVnFteGFi dlA5N1ZXMURNQWxWMUE0eUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCD83gisVB+o/fZC/vZEWANNiZKz/VQ00WNoUxxmd8enCC2wq0S8NPI D0RsUkBrFLDB4ciMCH5g9hLCODootv+Gzi9P8QRD+eO6VpnpNv7Gqt/+yOGhNUER 50OGKRRQzuOP2WbCkM1bekniYrH2Fjl+hl6sa++MTPozdCW29Ql2Qz2mzvAwsi0A ggVIzCAGnYGVGGr5QxqU2dCsvu0xkWShyp5m/o7YzoPvdrO6Rs7hnyG8ItYfUTpZ RIqcrNyXWkqGKN+anB4wGv0kU1jR/xRaPqZUWSOlTgimy+Ay56bC/EXuDJ6RslR0 TNOoE7uLIsZVXqp6CYuETi5Q0dhxJIwl -----END CERTIFICATE-----Generated at Mon Sep 8 11:22:57 2025 by rpki-client