$ rpki-client -vvf rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/1j3oKnWfllf48HOyUSUarme6S6Y.mft File: 1j3oKnWfllf48HOyUSUarme6S6Y.mft (raw, json) Hash identifier: T4P4VPqoR85BXlbsHjA4YY5qfRvEHZzwyiLPpx+3VLU= Subject key identifier: 5C:43:43:0F:12:4D:7E:1F:9E:E0:E5:82:9A:69:E3:4A:8F:02:27:FE Authority key identifier: D6:3D:E8:2A:75:9F:96:57:F8:F0:73:B2:51:25:1A:AE:67:BA:4B:A6 Certificate issuer: /CN=A91262CA/serialNumber=D63DE82A759F9657F8F073B251251AAE67BA4BA6 Certificate serial: 04A2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1j3oKnWfllf48HOyUSUarme6S6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/1j3oKnWfllf48HOyUSUarme6S6Y.mft Manifest number: 043A Signing time: Fri 05 Sep 2025 00:47:48 +0000 Manifest this update: Fri 05 Sep 2025 00:47:47 +0000 Manifest next update: Fri 12 Sep 2025 00:47:47 +0000 Files and hashes: 1: 1j3oKnWfllf48HOyUSUarme6S6Y.crl (hash: NrWzX/HSnASOeNPxTsxUogLYohm/eTH4l/Yqk9W55Jc=) 2: ABE3468CBB5611EE936F4785C4F9AE02.roa (hash: kNSRGelQeR661p/seibqDgqqXH+dLwJkNc/ESxx+yZ8=) 3: A15115E6DF3E11EC83CCFE1EC4F9AE02.roa (hash: abj/lLGFaHcnznksM80abqsRFzwo6V6mDWUcL5ZKF2Y=) 4: 9FEE9516DF3E11EC83CCFE1EC4F9AE02.roa (hash: xXSyKHJ3NBPSi2dne5M9cyAkwhzfAyBhVMB+xnu2wEw=) 5: A09F8E52DF3E11EC83CCFE1EC4F9AE02.roa (hash: BGVu1jIpiElRBOykLyn1hbruAkUCwbhE94Wkt2miz84=) 6: BA39BBAE524E11F099DE067AC4F9AE02.roa (hash: +3Z3o9JekC+LGEyEOl3WT5vRlSduXk5lWhpRA5yPV1E=) 7: 1DFB74B4693511F098DA961FC4F9AE02.roa (hash: P1znYhl/eQ/i09BqcFgYUncqu9PsKuk8MGDDrGmikWA=) 8: F563D916248D11EF93237035C4F9AE02.roa (hash: VCFvtvA9YE6AwHB0R1pkgWrJ/+HVkrKuimdliRgUT8Y=) 9: 9DEFF2FADF3E11EC83CCFE1EC4F9AE02.roa (hash: sHzhZYgKFDSrJep2AA9b5WnbHJBUPXm7OpsiWNM3z8U=) 10: B5036DB4694211F08D05BF0AC4F9AE02.roa (hash: Wpf+grxS494Kl48brRQfPg+4hbzaXuWnS4JVs5+US7M=) 11: 86C8EBA2B12A11EF985A2D32C4F9AE02.roa (hash: BId9IUS1+4nSQcy9VYkqTv0EYMTtK2hCnt14fFjrgA0=) 12: 9F598EEEDF3E11EC83CCFE1EC4F9AE02.roa (hash: +LYfza0pA5mBToccYjjpbZ76FKkIwdZ+QclyNNezPE8=) 13: 9D13F282DF3E11EC83CCFE1EC4F9AE02.roa (hash: ziC/UsLbhf5/G3tuI/q+osXhJiEj6DXrnZAE7DlftT0=) 14: 56EC4CB4927911EFABEC2D46C4F9AE02.roa (hash: CTXvWQi/OeMyxftPSgVzExxmXcWLLYeJDivCjES+ABw=) 15: A1FED136DF3E11EC83CCFE1EC4F9AE02.roa (hash: JU4szI7h2fyO1JL8D+jKobys4IJjxvAjtFvc+97hytM=) 16: 05163DEADD8711EC9BF56E5BC4F9AE02.roa (hash: 04IkSuQjN5iNoBHNEnhW0185UxD8n8l9rsTvIawl80g=) 17: 9EB0F9FADF3E11EC83CCFE1EC4F9AE02.roa (hash: SFtqEei/cNuFxoRwcmV0ulAeh3eMTUDtIcuJGqQ9i50=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/1j3oKnWfllf48HOyUSUarme6S6Y.crl rsync://rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/1j3oKnWfllf48HOyUSUarme6S6Y.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1j3oKnWfllf48HOyUSUarme6S6Y.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 00:47:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1186 (0x4a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91262CA, serialNumber=D63DE82A759F9657F8F073B251251AAE67BA4BA6 Validity Not Before: Sep 5 00:47:47 2025 GMT Not After : Sep 12 00:47:47 2025 GMT Subject: CN=68ba3333-2ea0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:13:54:41:b3:4b:31:bb:da:b7:a4:57:96:74: b0:83:f5:75:73:c8:1a:3b:b9:83:b3:5a:92:60:b7: e3:ab:1d:76:1e:a3:7c:ac:b9:9c:c9:ca:cd:e1:7e: e1:09:4a:95:39:d4:3e:38:13:7d:50:c7:34:04:30: b0:1c:a1:f7:7a:5d:5b:1a:66:7e:1b:9d:26:05:3a: be:81:c4:79:7d:f5:da:db:a1:6c:38:bb:98:88:ab: 07:bd:22:31:46:21:3d:84:4d:88:06:0e:cc:b4:6c: 06:64:9a:9c:a7:ef:82:97:66:6c:14:ef:37:1b:dc: be:63:bb:f5:18:f5:5e:bf:14:7c:0f:7d:6c:6b:b1: 94:62:06:a5:bd:e2:4d:9c:6b:a5:24:1a:e5:4d:ea: b9:5a:f7:6b:d3:7e:48:c6:7c:c6:7d:32:56:b6:3a: e5:d4:69:4e:59:86:7f:ed:e3:7d:a7:db:00:ed:c8: 20:e3:9b:93:80:ab:39:44:9d:cd:91:88:d1:ec:1e: 94:32:53:09:1d:80:f4:df:25:51:2d:ad:30:0b:1e: f7:4a:e1:a0:fa:16:2d:71:ec:18:b4:a1:ca:42:cc: d5:d6:17:6d:b8:da:cf:fa:9f:dd:1d:25:c1:01:08: e3:32:1f:f3:67:3b:9b:c1:3c:d2:08:21:0d:df:74: 23:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:43:43:0F:12:4D:7E:1F:9E:E0:E5:82:9A:69:E3:4A:8F:02:27:FE X509v3 Authority Key Identifier: keyid:D6:3D:E8:2A:75:9F:96:57:F8:F0:73:B2:51:25:1A:AE:67:BA:4B:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/1j3oKnWfllf48HOyUSUarme6S6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1j3oKnWfllf48HOyUSUarme6S6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/1j3oKnWfllf48HOyUSUarme6S6Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:e2:c0:a7:8c:8c:67:9b:7a:80:06:1b:b3:76:35:27:dc:f5: a3:00:c1:31:b6:e9:f4:ab:e9:a3:7d:92:d8:b9:13:b9:d5:70: 3a:6d:77:aa:19:fb:1c:fb:fd:30:10:26:94:2b:bd:2f:9a:b9: ad:a2:5f:c9:c6:f2:bb:0d:68:ff:ed:35:b1:b9:cb:30:89:78: 64:7d:a2:8c:97:57:f4:5b:40:1b:ba:93:e2:8f:51:b0:06:c9: 75:75:cc:07:a9:a1:8d:47:ab:43:f5:ae:26:ae:83:2b:78:a6: d3:3b:53:c4:f7:a6:20:40:c3:b3:d9:65:6a:40:80:57:73:e9: 53:e9:c3:23:ae:c1:8c:58:43:9f:98:08:48:b0:50:46:6b:0a: 0d:9e:de:d7:7d:4f:b0:e4:bc:99:f1:da:d3:ad:b1:1a:1e:e1: c5:1e:ab:3d:d8:03:04:5f:4f:67:ab:b1:4f:54:9a:75:39:3a: 00:0f:dd:1c:a9:ad:31:a6:5d:d0:18:81:37:60:30:f6:c4:ea: 4f:88:a4:c5:c5:35:13:e4:b7:30:07:ee:50:92:b2:2c:7a:9c: 7e:f5:a9:9a:e9:b3:a5:e8:d6:75:08:6d:d7:32:20:fc:59:0b: 53:06:ff:e8:4a:c8:a9:d6:cc:f9:dd:b6:f3:f0:ef:99:85:09: 55:f1:f4:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjYyQ0ExMTAvBgNVBAUTKEQ2M0RFODJBNzU5Rjk2NTdGOEYwNzNCMjUxMjUxQUFF NjdCQTRCQTYwHhcNMjUwOTA1MDA0NzQ3WhcNMjUwOTEyMDA0NzQ3WjAYMRYwFAYD VQQDEw02OGJhMzMzMy0yZWEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwxNUQbNLMbvat6RXlnSwg/V1c8gaO7mDs1qSYLfjqx12HqN8rLmcycrN4X7h CUqVOdQ+OBN9UMc0BDCwHKH3el1bGmZ+G50mBTq+gcR5ffXa26FsOLuYiKsHvSIx RiE9hE2IBg7MtGwGZJqcp++Cl2ZsFO83G9y+Y7v1GPVevxR8D31sa7GUYgalveJN nGulJBrlTeq5Wvdr035IxnzGfTJWtjrl1GlOWYZ/7eN9p9sA7cgg45uTgKs5RJ3N kYjR7B6UMlMJHYD03yVRLa0wCx73SuGg+hYtcewYtKHKQszV1hdtuNrP+p/dHSXB AQjjMh/zZzubwTzSCCEN33QjBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFxDQw8S TX4fnuDlgppp40qPAif+MB8GA1UdIwQYMBaAFNY96Cp1n5ZX+PBzslElGq5nukum MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNjJDQS9FQzFFRTY1MjhB NTcxMUVDOTZFQkMwMTRDNEY5QUUwMi8xajNvS25XZmxsZjQ4SE95VVNVYXJtZTZT NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzFqM29LbldmbGxmNDhIT3lVU1Vhcm1lNlM2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NjJDQS9FQzFFRTY1MjhBNTcxMUVDOTZFQkMwMTRDNEY5QUUwMi8xajNvS25XZmxs ZjQ4SE95VVNVYXJtZTZTNlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAN4sCnjIxnm3qABhuzdjUn3PWjAMExtun0q+mjfZLYuRO51XA6bXeq Gfsc+/0wECaUK70vmrmtol/JxvK7DWj/7TWxucswiXhkfaKMl1f0W0AbupPij1Gw Bsl1dcwHqaGNR6tD9a4mroMreKbTO1PE96YgQMOz2WVqQIBXc+lT6cMjrsGMWEOf mAhIsFBGawoNnt7XfU+w5LyZ8drTrbEaHuHFHqs92AMEX09nq7FPVJp1OToAD90c qa0xpl3QGIE3YDD2xOpPiKTFxTUT5LcwB+5QkrIsepx+9ama6bOl6NZ1CG3XMiD8 WQtTBv/oSsip1sz53bbz8O+ZhQlV8fTc -----END CERTIFICATE-----Generated at Sat Sep 6 14:26:07 2025 by rpki-client