$ rpki-client -vvf rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft File: A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft (raw, json) Hash identifier: oMcTXUEHa4fY85+0YxT44KtklVzt2O7d+mWEolJphnI= Subject key identifier: 63:06:77:59:CE:A1:DA:FD:8B:00:B9:BF:C7:EC:82:03:40:4D:3F:4F Authority key identifier: 03:77:B9:3C:91:FD:AF:46:9A:59:1B:4C:52:D2:4C:B1:55:5D:2B:D4 Certificate issuer: /CN=A91822BF/serialNumber=0377B93C91FDAF469A591B4C52D24CB1555D2BD4 Certificate serial: 0C11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft Manifest number: 0C09 Signing time: Thu 18 Sep 2025 18:56:20 +0000 Manifest this update: Thu 18 Sep 2025 18:56:19 +0000 Manifest next update: Thu 25 Sep 2025 18:56:19 +0000 Files and hashes: 1: A3e5PJH9r0aaWRtMUtJMsVVdK9Q.crl (hash: tXv2DV4lfM1zgvQzFRLibHI+9DjVh1b8MMjsUnd9zuw=) 2: 37EA3E261ADC11EA8EB46F37C4F9AE02.roa (hash: ELFkrkGvrGXpvAeGB34G/wdhCkAvgz4ejLB+gQtN8Ps=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.crl rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 18:56:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3089 (0xc11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91822BF, serialNumber=0377B93C91FDAF469A591B4C52D24CB1555D2BD4 Validity Not Before: Sep 18 18:56:19 2025 GMT Not After : Sep 25 18:56:19 2025 GMT Subject: CN=68cc55d4-b5cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:62:3b:c8:62:44:d5:db:78:e3:9a:b9:ed:72: 5c:3e:5a:8b:b4:74:37:47:6b:cc:e5:9b:74:9c:2e: 16:1c:86:f8:ad:89:c6:21:a6:09:0f:d3:9a:7d:3f: 5d:ff:37:38:c6:34:8b:72:a0:9d:b3:15:f4:7f:03: 8c:03:43:a8:27:6d:34:30:b4:1d:1d:81:66:a1:c4: 7d:58:16:ab:4d:bf:df:0d:95:86:9f:e7:8b:8b:f0: cc:f7:6c:57:66:a9:50:4b:54:46:41:a7:06:94:7f: ae:f8:a0:49:f1:5f:94:1f:cd:6e:4a:cc:84:7b:f5: 25:53:55:57:57:8c:70:65:40:7c:25:e1:b7:d5:35: 8c:57:7a:f0:f6:39:68:2e:69:c3:57:fc:90:96:97: d8:c4:c2:9a:9d:60:98:4d:0e:70:e7:c9:02:6c:fd: 2a:46:21:49:a6:59:80:ec:4d:4a:b4:0d:6a:f6:6b: 59:b3:9e:cc:a4:d4:cb:e5:6a:ae:6e:30:83:43:35: 05:59:64:9d:3a:e4:43:bd:8d:42:aa:f3:cc:68:b3: a3:d1:16:3e:8c:79:78:9b:e4:15:fc:bc:06:f1:9a: 3b:51:93:30:77:eb:f1:9b:47:87:f3:7f:9b:2b:4d: 74:83:b8:54:2e:35:a0:34:0f:ab:bd:37:05:51:d1: c3:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:06:77:59:CE:A1:DA:FD:8B:00:B9:BF:C7:EC:82:03:40:4D:3F:4F X509v3 Authority Key Identifier: keyid:03:77:B9:3C:91:FD:AF:46:9A:59:1B:4C:52:D2:4C:B1:55:5D:2B:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:3c:b3:4f:f2:3a:d0:0a:1a:ba:f0:6a:58:79:fb:88:d7:52: 37:2e:86:3a:13:1e:a5:a3:e0:fc:e4:c3:cb:f1:a7:a7:08:2e: ff:f9:2e:33:00:c7:6d:44:69:7a:b9:12:26:85:2d:1c:34:e7: 34:52:4e:5d:cd:73:b5:1f:61:ad:55:14:47:5a:61:95:7f:81: 4d:cf:12:0f:d6:70:75:02:4e:77:15:c3:ea:dc:aa:73:9a:b6: e7:61:bc:e6:36:98:23:da:36:5e:99:83:44:ef:76:4d:d4:ec: 01:ef:12:f0:10:a7:31:03:a0:98:3c:66:51:13:c0:68:f5:ec: f2:85:e9:99:a1:a8:dc:bf:be:75:ce:5b:59:9c:57:26:5d:6c: 3f:2a:6d:13:fb:86:28:08:35:6e:7b:6f:5f:06:b7:ef:96:fa: 01:ef:ce:8c:a7:29:a1:23:a3:b7:84:fe:0d:70:5b:4f:a2:70: 2e:76:b4:70:15:e5:e1:1f:68:d2:45:82:da:15:62:01:5b:c9: 9d:23:a7:bb:84:cf:c8:50:b6:0c:54:35:28:ef:54:ae:d7:71: e0:12:73:fb:92:6b:6a:a8:93:7e:d9:4f:f6:7f:32:50:98:35: d7:db:39:34:55:6b:58:b3:cc:b2:57:8c:08:a2:21:23:bb:9f: bc:d0:24:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDBEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODIyQkYxMTAvBgNVBAUTKDAzNzdCOTNDOTFGREFGNDY5QTU5MUI0QzUyRDI0Q0Ix NTU1RDJCRDQwHhcNMjUwOTE4MTg1NjE5WhcNMjUwOTI1MTg1NjE5WjAYMRYwFAYD VQQDEw02OGNjNTVkNC1iNWNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4WI7yGJE1dt445q57XJcPlqLtHQ3R2vM5Zt0nC4WHIb4rYnGIaYJD9OafT9d /zc4xjSLcqCdsxX0fwOMA0OoJ200MLQdHYFmocR9WBarTb/fDZWGn+eLi/DM92xX ZqlQS1RGQacGlH+u+KBJ8V+UH81uSsyEe/UlU1VXV4xwZUB8JeG31TWMV3rw9jlo LmnDV/yQlpfYxMKanWCYTQ5w58kCbP0qRiFJplmA7E1KtA1q9mtZs57MpNTL5Wqu bjCDQzUFWWSdOuRDvY1CqvPMaLOj0RY+jHl4m+QV/LwG8Zo7UZMwd+vxm0eH83+b K010g7hULjWgNA+rvTcFUdHD/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGMGd1nO odr9iwC5v8fsggNATT9PMB8GA1UdIwQYMBaAFAN3uTyR/a9GmlkbTFLSTLFVXSvU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjJCRi8xMDM5QkM0MDFB REIxMUVBQUEzQTgyMzVDNEY5QUUwMi9BM2U1UEpIOXIwYWFXUnRNVXRKTXNWVmRL OVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EzZTVQSkg5cjBhYVdSdE1VdEpNc1ZWZEs5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjJCRi8xMDM5QkM0MDFBREIxMUVBQUEzQTgyMzVDNEY5QUUwMi9BM2U1UEpIOXIw YWFXUnRNVXRKTXNWVmRLOVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVPLNP8jrQChq68GpYefuI11I3LoY6Ex6lo+D85MPL8aenCC7/+S4z AMdtRGl6uRImhS0cNOc0Uk5dzXO1H2GtVRRHWmGVf4FNzxIP1nB1Ak53FcPq3Kpz mrbnYbzmNpgj2jZemYNE73ZN1OwB7xLwEKcxA6CYPGZRE8Bo9ezyhemZoajcv751 zltZnFcmXWw/Km0T+4YoCDVue29fBrfvlvoB786MpymhI6O3hP4NcFtPonAudrRw FeXhH2jSRYLaFWIBW8mdI6e7hM/IULYMVDUo71Su13HgEnP7kmtqqJN+2U/2fzJQ mDXX2zk0VWtYs8yyV4wIoiEju5+80CSO -----END CERTIFICATE-----Generated at Fri Sep 19 10:38:02 2025 by rpki-client