$ rpki-client -vvf rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.mft File: fT3bIK_-cUyPNUllHB7oD1VgEbg.mft (raw, json) Hash identifier: 3sQ3UkrW/rSzaVPgR4clewbxkD/1S7RzRYtVJZFbSx0= Subject key identifier: 4C:A6:82:39:92:DE:C2:6A:DD:FB:63:B3:82:A1:57:AF:3C:7D:67:A5 Authority key identifier: 7D:3D:DB:20:AF:FE:71:4C:8F:35:49:65:1C:1E:E8:0F:55:60:11:B8 Certificate issuer: /CN=A91319EA/serialNumber=7D3DDB20AFFE714C8F3549651C1EE80F556011B8 Certificate serial: 02E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fT3bIK_-cUyPNUllHB7oD1VgEbg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.mft Manifest number: 02E4 Signing time: Wed 17 Sep 2025 01:47:05 +0000 Manifest this update: Wed 17 Sep 2025 01:47:05 +0000 Manifest next update: Wed 24 Sep 2025 01:47:05 +0000 Files and hashes: 1: fT3bIK_-cUyPNUllHB7oD1VgEbg.crl (hash: 1rzZzS3NeFgPXUgVh1Sk3SQLClO0Aglhn29YkbVWESw=) 2: BFD5E8EAF8EB11EC9C39C677C4F9AE02.roa (hash: 42NoXRc68AJI33l+b1k0SiSR1RteYpJ6pHpYeUhh2BI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.crl rsync://rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fT3bIK_-cUyPNUllHB7oD1VgEbg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 01:47:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 744 (0x2e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91319EA, serialNumber=7D3DDB20AFFE714C8F3549651C1EE80F556011B8 Validity Not Before: Sep 17 01:47:05 2025 GMT Not After : Sep 24 01:47:05 2025 GMT Subject: CN=68ca1319-4ef5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:a7:46:88:55:fa:0c:ac:00:b0:2b:de:f7:ed: db:15:bf:3f:46:86:bd:63:f6:aa:e4:e7:1f:02:42: ca:67:6e:ae:48:48:7d:bd:63:26:81:ff:5c:30:c7: 53:96:a0:bf:84:48:b4:2c:b4:b0:0c:c7:de:b2:75: e6:fe:1e:86:a5:1e:7a:52:d0:72:25:fb:b3:0a:73: 3c:ae:09:49:41:1e:47:66:86:a8:a2:49:5f:81:06: e5:b6:c9:39:31:ba:40:75:fa:fd:ab:2b:ff:3f:95: 42:39:3f:9b:90:f1:92:c4:c2:99:83:77:5b:62:e9: b2:98:c1:bd:90:4a:64:9e:5c:97:7b:84:2f:03:bd: 1c:16:28:b2:ee:f4:03:1e:90:f2:48:a1:08:76:b7: e2:0c:38:31:94:2b:c5:6f:24:dc:e2:af:c2:86:ea: 84:17:be:80:26:42:d0:1f:1c:31:ae:a8:e9:c8:a0: c7:65:43:a8:f9:98:e8:6e:af:14:78:3e:ea:70:86: b7:9c:0a:c1:31:76:63:4e:cb:47:7b:99:fc:96:68: 07:04:98:d9:c5:6b:ac:42:37:b5:d4:7f:68:ad:4d: 6c:34:73:40:de:5c:2e:01:bb:b3:98:77:1b:2f:94: cf:44:7f:ee:0e:bf:36:2a:71:52:a7:d7:bd:22:4a: f4:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:A6:82:39:92:DE:C2:6A:DD:FB:63:B3:82:A1:57:AF:3C:7D:67:A5 X509v3 Authority Key Identifier: keyid:7D:3D:DB:20:AF:FE:71:4C:8F:35:49:65:1C:1E:E8:0F:55:60:11:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fT3bIK_-cUyPNUllHB7oD1VgEbg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:5d:60:99:52:af:b7:10:02:50:0b:c6:75:62:21:3f:36:fb: 53:77:7a:58:6a:1e:a4:86:22:2f:0a:bd:84:c8:ca:4b:c5:c2: 32:85:d5:b4:84:1e:21:7a:7e:2e:10:34:0a:49:5d:a1:99:e1: a8:62:8e:38:9d:3e:8c:92:a4:bf:a4:c0:bc:7d:d2:4b:84:28: 35:e3:ce:34:e5:59:0d:e9:d0:b8:4c:8f:dc:b1:3e:dc:10:64: 43:b9:74:82:b9:df:6a:48:c7:fe:eb:21:bb:fa:ea:a3:cb:c1: 61:db:4e:8f:f8:e5:0e:c0:57:1d:dc:39:ce:5d:17:19:58:01: b9:08:03:4e:a7:b9:20:aa:22:6a:41:8c:6f:1a:c8:ea:1d:16: c1:05:d1:e5:41:c4:52:b3:89:d0:c9:c3:8c:dc:f1:9e:54:aa: 7d:52:6e:fb:6a:66:51:e8:59:35:f2:9b:6e:f3:29:50:9a:31: 54:84:1b:fc:8b:50:a0:32:2a:26:8d:48:3f:3c:63:8e:ab:6a: 13:90:b2:6e:6a:92:cd:03:37:95:8c:2c:c5:a3:de:09:09:d6: 74:85:94:76:12:33:c8:d2:6e:24:4d:93:e2:22:8b:6c:f5:06: 1e:a4:76:a7:30:16:ad:74:22:75:4a:08:56:dd:52:0f:36:f1: 98:ac:a6:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAugwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE5RUExMTAvBgNVBAUTKDdEM0REQjIwQUZGRTcxNEM4RjM1NDk2NTFDMUVFODBG NTU2MDExQjgwHhcNMjUwOTE3MDE0NzA1WhcNMjUwOTI0MDE0NzA1WjAYMRYwFAYD VQQDEw02OGNhMTMxOS00ZWY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4adGiFX6DKwAsCve9+3bFb8/Roa9Y/aq5OcfAkLKZ26uSEh9vWMmgf9cMMdT lqC/hEi0LLSwDMfesnXm/h6GpR56UtByJfuzCnM8rglJQR5HZoaooklfgQbltsk5 MbpAdfr9qyv/P5VCOT+bkPGSxMKZg3dbYumymMG9kEpknlyXe4QvA70cFiiy7vQD HpDySKEIdrfiDDgxlCvFbyTc4q/ChuqEF76AJkLQHxwxrqjpyKDHZUOo+Zjobq8U eD7qcIa3nArBMXZjTstHe5n8lmgHBJjZxWusQje11H9orU1sNHNA3lwuAbuzmHcb L5TPRH/uDr82KnFSp9e9Ikr0pwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEymgjmS 3sJq3ftjs4KhV688fWelMB8GA1UdIwQYMBaAFH092yCv/nFMjzVJZRwe6A9VYBG4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTlFQS9EMjZDNDEyOEY4 RTgxMUVDOEI1NzcyNzFDNEY5QUUwMi9mVDNiSUtfLWNVeVBOVWxsSEI3b0QxVmdF YmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZUM2JJS18tY1V5UE5VbGxIQjdvRDFWZ0ViZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTlFQS9EMjZDNDEyOEY4RTgxMUVDOEI1NzcyNzFDNEY5QUUwMi9mVDNiSUtfLWNV eVBOVWxsSEI3b0QxVmdFYmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFXWCZUq+3EAJQC8Z1YiE/NvtTd3pYah6khiIvCr2EyMpLxcIyhdW0 hB4hen4uEDQKSV2hmeGoYo44nT6MkqS/pMC8fdJLhCg148405VkN6dC4TI/csT7c EGRDuXSCud9qSMf+6yG7+uqjy8Fh206P+OUOwFcd3DnOXRcZWAG5CANOp7kgqiJq QYxvGsjqHRbBBdHlQcRSs4nQycOM3PGeVKp9Um77amZR6Fk18ptu8ylQmjFUhBv8 i1CgMiomjUg/PGOOq2oTkLJuapLNAzeVjCzFo94JCdZ0hZR2EjPI0m4kTZPiIots 9QYepHanMBatdCJ1SghW3VIPNvGYrKYo -----END CERTIFICATE-----Generated at Thu Sep 18 22:06:38 2025 by rpki-client