$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5201/45AAA1E81B5511F0A395B813C4F9AE02/3uW4vIUKW2vLRtfjtMl-i4Mop6A.mft File: 3uW4vIUKW2vLRtfjtMl-i4Mop6A.mft (raw, json) Hash identifier: pa72mtPV84iRhJ9CjOyBlYnw707bKTQeNFoP2JSah/c= Subject key identifier: EA:66:F0:91:B0:E0:93:5A:1B:8B:79:57:25:4C:10:8A:AB:05:6B:FB Authority key identifier: DE:E5:B8:BC:85:0A:5B:6B:CB:46:D7:E3:B4:C9:7E:8B:83:28:A7:A0 Certificate issuer: /CN=A91A5201/serialNumber=DEE5B8BC850A5B6BCB46D7E3B4C97E8B8328A7A0 Certificate serial: 4C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3uW4vIUKW2vLRtfjtMl-i4Mop6A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5201/45AAA1E81B5511F0A395B813C4F9AE02/3uW4vIUKW2vLRtfjtMl-i4Mop6A.mft Manifest number: 4B Signing time: Tue 09 Sep 2025 07:28:34 +0000 Manifest this update: Tue 09 Sep 2025 07:28:33 +0000 Manifest next update: Tue 16 Sep 2025 07:28:33 +0000 Files and hashes: 1: 3uW4vIUKW2vLRtfjtMl-i4Mop6A.crl (hash: 2h1OJZ8wNviEJ5aIeotKN3mR0DEqD9I+f8EAb2H3hOw=) 2: D0CA23541BC611F09FDAC047C4F9AE02.roa (hash: KE/ITB6hhJ+i5ZAAKHW4Wk+MiRqF5kXhTWgdF88Y+V8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5201/45AAA1E81B5511F0A395B813C4F9AE02/3uW4vIUKW2vLRtfjtMl-i4Mop6A.crl rsync://rpki.apnic.net/member_repository/A91A5201/45AAA1E81B5511F0A395B813C4F9AE02/3uW4vIUKW2vLRtfjtMl-i4Mop6A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3uW4vIUKW2vLRtfjtMl-i4Mop6A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 07:28:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76 (0x4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5201, serialNumber=DEE5B8BC850A5B6BCB46D7E3B4C97E8B8328A7A0 Validity Not Before: Sep 9 07:28:33 2025 GMT Not After : Sep 16 07:28:33 2025 GMT Subject: CN=68bfd721-7f7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:a7:6f:bd:75:00:f3:76:c8:a3:cb:2c:40:79: cf:8d:b6:bf:0f:6a:5d:1e:82:93:b4:2d:32:fc:79: 48:7c:4f:18:72:f8:d1:f5:d6:c4:ba:8e:e7:54:4e: 73:9b:8e:8a:e8:03:f9:68:7a:ae:68:f0:a6:27:2b: 6a:21:c6:43:9a:9e:c5:1f:01:f8:9c:4b:ef:3c:b6: 74:a4:60:51:ba:9f:fd:98:05:7e:93:84:e3:a6:a2: 76:b2:fc:73:4b:84:11:58:5d:ff:f5:9b:21:7b:2d: 0c:79:02:9b:14:2f:53:5f:1c:e3:44:ca:41:85:ae: 77:f5:e7:fc:48:7d:a8:c9:98:ab:46:d3:74:e3:a2: ab:1b:7b:7a:a2:30:b6:fe:24:ac:bf:e2:73:73:fd: 38:18:a8:fe:6a:b0:ba:97:11:62:20:23:58:ae:00: 09:a9:77:0f:34:8d:af:d3:e3:cf:6e:b0:45:b9:5b: 32:1b:70:eb:d0:04:0c:d1:2a:65:e4:19:5c:4b:cd: d1:f1:a9:34:ad:f4:eb:0b:0b:87:d6:3b:16:7c:6e: e2:af:e2:36:fc:eb:bb:52:de:08:68:ba:62:5b:e6: 71:d7:65:e0:e9:3e:a2:79:e4:32:f8:db:71:38:6e: 29:9c:48:82:7b:3c:7f:5d:b2:3b:75:93:17:12:25: f0:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:66:F0:91:B0:E0:93:5A:1B:8B:79:57:25:4C:10:8A:AB:05:6B:FB X509v3 Authority Key Identifier: keyid:DE:E5:B8:BC:85:0A:5B:6B:CB:46:D7:E3:B4:C9:7E:8B:83:28:A7:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5201/45AAA1E81B5511F0A395B813C4F9AE02/3uW4vIUKW2vLRtfjtMl-i4Mop6A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3uW4vIUKW2vLRtfjtMl-i4Mop6A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5201/45AAA1E81B5511F0A395B813C4F9AE02/3uW4vIUKW2vLRtfjtMl-i4Mop6A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:09:03:de:22:24:e9:cd:43:93:f3:05:d7:bd:ec:57:2a:57: e7:2a:85:45:c4:c3:08:85:81:82:49:22:0c:14:82:66:8f:9f: 8d:3c:b6:69:37:cd:fe:f3:73:61:32:4b:01:df:3c:0b:ec:5e: 60:b3:e5:3c:86:af:c7:67:e9:38:a7:3a:be:6f:d9:52:a6:5b: f3:c6:56:1a:9f:40:d0:15:8e:f0:73:3c:b3:98:81:44:e0:7f: ee:0f:89:6e:1c:c6:3e:95:08:9e:1c:6e:5c:ff:56:6a:be:42: d4:ea:20:6b:c1:b7:10:c7:b2:88:ae:0a:fc:c8:84:e8:e8:71: c7:ee:ea:58:ce:96:32:b7:f7:e8:4f:02:bf:fc:8c:31:5a:67: 5b:91:f4:0d:7c:76:36:86:2e:29:fa:24:d6:22:7b:35:1d:07: fc:6e:d2:2d:7f:35:a1:06:38:25:65:3c:9b:d7:21:b8:11:99: 06:ba:e5:64:88:b6:55:b7:5e:a1:c4:15:44:21:7d:a9:15:c4: 23:69:58:57:c8:3c:dc:66:f6:4a:79:ed:62:b6:70:0a:98:6e: 63:e2:e0:52:dd:b0:e6:26:10:09:39:88:3b:21:87:a7:5d:a7: 0f:6c:1e:76:7f:3e:2c:e0:77:b0:e5:d2:6d:c9:75:bd:cb:5f: f5:60:b4:95 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NTIwMTExMC8GA1UEBRMoREVFNUI4QkM4NTBBNUI2QkNCNDZEN0UzQjRDOTdFOEI4 MzI4QTdBMDAeFw0yNTA5MDkwNzI4MzNaFw0yNTA5MTYwNzI4MzNaMBgxFjAUBgNV BAMTDTY4YmZkNzIxLTdmN2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDhp2+9dQDzdsijyyxAec+Ntr8Pal0egpO0LTL8eUh8Txhy+NH11sS6judUTnOb joroA/loeq5o8KYnK2ohxkOansUfAficS+88tnSkYFG6n/2YBX6ThOOmonay/HNL hBFYXf/1myF7LQx5ApsUL1NfHONEykGFrnf15/xIfajJmKtG03Tjoqsbe3qiMLb+ JKy/4nNz/TgYqP5qsLqXEWIgI1iuAAmpdw80ja/T489usEW5WzIbcOvQBAzRKmXk GVxLzdHxqTSt9OsLC4fWOxZ8buKv4jb867tS3ghoumJb5nHXZeDpPqJ55DL423E4 bimcSIJ7PH9dsjt1kxcSJfAjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU6mbwkbDg k1obi3lXJUwQiqsFa/swHwYDVR0jBBgwFoAU3uW4vIUKW2vLRtfjtMl+i4Mop6Aw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1MjAxLzQ1QUFBMUU4MUI1 NTExRjBBMzk1QjgxM0M0RjlBRTAyLzN1VzR2SVVLVzJ2TFJ0Zmp0TWwtaTRNb3A2 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM3VXNHZJVUtXMnZMUnRmanRNbC1pNE1vcDZBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1 MjAxLzQ1QUFBMUU4MUI1NTExRjBBMzk1QjgxM0M0RjlBRTAyLzN1VzR2SVVLVzJ2 TFJ0Zmp0TWwtaTRNb3A2QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADkJA94iJOnNQ5PzBde97FcqV+cqhUXEwwiFgYJJIgwUgmaPn408tmk3 zf7zc2EySwHfPAvsXmCz5TyGr8dn6TinOr5v2VKmW/PGVhqfQNAVjvBzPLOYgUTg f+4PiW4cxj6VCJ4cblz/Vmq+QtTqIGvBtxDHsoiuCvzIhOjoccfu6ljOljK39+hP Ar/8jDFaZ1uR9A18djaGLin6JNYiezUdB/xu0i1/NaEGOCVlPJvXIbgRmQa65WSI tlW3XqHEFUQhfakVxCNpWFfIPNxm9kp57WK2cAqYbmPi4FLdsOYmEAk5iDshh6dd pw9sHnZ/Pizgd7Dl0m3Jdb3LX/VgtJU= -----END CERTIFICATE-----Generated at Wed Sep 10 12:24:13 2025 by rpki-client