$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0049/7EC909760DFC11EBB2F1381BC4F9AE02/F3JfretEo_qLMf_wpjy8UVWpB9g.mft File: F3JfretEo_qLMf_wpjy8UVWpB9g.mft (raw, json) Hash identifier: lU1xDKHs0mQ9mJZFe/5i66euxXrG9EeSsd3ZlaJ9ces= Subject key identifier: CC:FA:26:E6:08:B4:56:D8:26:99:D9:E4:60:EC:8B:68:16:91:88:9C Authority key identifier: 17:72:5F:AD:EB:44:A3:FA:8B:31:FF:F0:A6:3C:BC:51:55:A9:07:D8 Certificate issuer: /CN=A91B0049/serialNumber=17725FADEB44A3FA8B31FFF0A63CBC5155A907D8 Certificate serial: 07CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F3JfretEo_qLMf_wpjy8UVWpB9g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0049/7EC909760DFC11EBB2F1381BC4F9AE02/F3JfretEo_qLMf_wpjy8UVWpB9g.mft Manifest number: 07C4 Signing time: Thu 18 Sep 2025 21:30:30 +0000 Manifest this update: Thu 18 Sep 2025 21:30:29 +0000 Manifest next update: Thu 25 Sep 2025 21:30:29 +0000 Files and hashes: 1: F3JfretEo_qLMf_wpjy8UVWpB9g.crl (hash: MbUvmH1shtkIoeCLyGEaAzvZYwqTVdU8nMpbmfOffrY=) 2: C6591C620DFD11EBAD63A21CC4F9AE02.roa (hash: wiuGLfhX4Abp89BeKvQrP2ym0zYLw1999qfgLcOKlHk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0049/7EC909760DFC11EBB2F1381BC4F9AE02/F3JfretEo_qLMf_wpjy8UVWpB9g.crl rsync://rpki.apnic.net/member_repository/A91B0049/7EC909760DFC11EBB2F1381BC4F9AE02/F3JfretEo_qLMf_wpjy8UVWpB9g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F3JfretEo_qLMf_wpjy8UVWpB9g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 21:30:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1994 (0x7ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0049, serialNumber=17725FADEB44A3FA8B31FFF0A63CBC5155A907D8 Validity Not Before: Sep 18 21:30:29 2025 GMT Not After : Sep 25 21:30:29 2025 GMT Subject: CN=68cc79f5-dbec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:2b:31:8d:f6:0e:cf:42:37:95:2c:bb:ec:ba: 1a:40:94:06:74:26:01:b7:24:48:d1:d3:e0:0c:49: b3:9a:42:5a:cd:fa:6c:2e:45:8a:3a:3f:0e:76:3b: 5d:0b:c1:ad:6f:06:59:ee:18:e2:f3:0a:d1:19:f6: 59:25:4f:72:3a:92:61:45:e3:6d:4d:ea:90:1b:ee: a9:f3:3c:e8:da:56:7f:af:09:e8:2f:80:ba:52:42: 72:81:cd:52:6c:6d:98:e0:f2:a3:c9:e7:c3:d3:da: 10:85:6f:13:e1:49:4b:57:11:fb:d6:22:c1:1a:f4: 68:64:9c:d5:22:03:d2:34:06:62:7e:2b:58:4d:e9: 3d:17:af:e4:31:1d:32:11:87:2c:0c:67:19:4d:8e: 91:77:09:99:44:ca:a0:32:74:e0:42:d5:b8:3f:b4: 23:27:72:d4:b1:69:f3:8d:70:fc:f1:20:4f:3e:6e: bf:5d:ca:51:44:dd:93:a4:1c:58:aa:8c:2c:d3:e9: b7:41:5f:ac:5c:54:11:80:2b:c8:1e:d3:6f:2f:36: 73:2c:e2:37:99:2f:25:b5:07:f6:bb:f9:26:6a:c1: 54:e3:b7:c1:df:cb:ce:81:7d:9b:6f:82:b6:c4:b4: 2c:ee:f7:c6:55:23:07:fb:9f:ff:3e:74:de:4a:33: b0:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:FA:26:E6:08:B4:56:D8:26:99:D9:E4:60:EC:8B:68:16:91:88:9C X509v3 Authority Key Identifier: keyid:17:72:5F:AD:EB:44:A3:FA:8B:31:FF:F0:A6:3C:BC:51:55:A9:07:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0049/7EC909760DFC11EBB2F1381BC4F9AE02/F3JfretEo_qLMf_wpjy8UVWpB9g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F3JfretEo_qLMf_wpjy8UVWpB9g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0049/7EC909760DFC11EBB2F1381BC4F9AE02/F3JfretEo_qLMf_wpjy8UVWpB9g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:ea:04:0c:3f:4e:6c:c7:a3:c9:d8:16:51:11:a2:9e:89:e9: d4:43:12:18:f4:28:86:ea:17:6c:e7:43:c6:7b:7e:72:e2:2e: 92:dd:62:56:59:97:72:00:b0:a2:cb:62:17:f6:d3:bc:c5:ad: 15:dd:ee:50:3e:3e:89:89:7c:23:64:c7:b7:d6:b2:a6:29:91: 2b:b8:e6:65:2a:9e:72:de:be:16:f2:ae:7e:37:c4:d2:52:c5: fe:56:68:dd:bb:2c:ea:9e:dd:56:5e:13:cd:be:44:c6:0e:01: d9:f7:4a:31:50:db:12:08:f0:67:f9:94:d9:eb:df:45:dd:6a: a4:65:79:56:cc:22:b8:dd:5d:ef:4e:8b:9c:fe:1d:d2:53:18: 01:91:2f:89:95:57:00:11:6e:d8:04:8f:f6:76:d6:fe:c1:96: b1:9b:13:f3:3d:fe:61:e0:e0:ae:73:0b:40:a5:2b:3c:a1:22: b3:3b:4a:4d:fb:b8:53:68:fe:3b:02:98:12:a4:a7:a6:87:e0: 8f:a5:35:7b:33:ab:69:62:ef:38:14:b1:c0:6c:19:10:02:06: d2:69:97:03:d7:93:9e:fe:c2:69:02:36:1f:96:1c:d6:ba:11: 96:e5:02:4e:13:22:45:7c:24:65:f9:a8:35:54:f1:30:f3:a1: f5:82:c9:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB8owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjAwNDkxMTAvBgNVBAUTKDE3NzI1RkFERUI0NEEzRkE4QjMxRkZGMEE2M0NCQzUx NTVBOTA3RDgwHhcNMjUwOTE4MjEzMDI5WhcNMjUwOTI1MjEzMDI5WjAYMRYwFAYD VQQDEw02OGNjNzlmNS1kYmVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxCsxjfYOz0I3lSy77LoaQJQGdCYBtyRI0dPgDEmzmkJazfpsLkWKOj8Odjtd C8GtbwZZ7hji8wrRGfZZJU9yOpJhReNtTeqQG+6p8zzo2lZ/rwnoL4C6UkJygc1S bG2Y4PKjyefD09oQhW8T4UlLVxH71iLBGvRoZJzVIgPSNAZifitYTek9F6/kMR0y EYcsDGcZTY6RdwmZRMqgMnTgQtW4P7QjJ3LUsWnzjXD88SBPPm6/XcpRRN2TpBxY qows0+m3QV+sXFQRgCvIHtNvLzZzLOI3mS8ltQf2u/kmasFU47fB38vOgX2bb4K2 xLQs7vfGVSMH+5//PnTeSjOw6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMz6JuYI tFbYJpnZ5GDsi2gWkYicMB8GA1UdIwQYMBaAFBdyX63rRKP6izH/8KY8vFFVqQfY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDA0OS83RUM5MDk3NjBE RkMxMUVCQjJGMTM4MUJDNEY5QUUwMi9GM0pmcmV0RW9fcUxNZl93cGp5OFVWV3BC OWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0YzSmZyZXRFb19xTE1mX3dwank4VVZXcEI5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDA0OS83RUM5MDk3NjBERkMxMUVCQjJGMTM4MUJDNEY5QUUwMi9GM0pmcmV0RW9f cUxNZl93cGp5OFVWV3BCOWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBs6gQMP05sx6PJ2BZREaKeienUQxIY9CiG6hds50PGe35y4i6S3WJW WZdyALCiy2IX9tO8xa0V3e5QPj6JiXwjZMe31rKmKZEruOZlKp5y3r4W8q5+N8TS UsX+Vmjduyzqnt1WXhPNvkTGDgHZ90oxUNsSCPBn+ZTZ699F3WqkZXlWzCK43V3v Touc/h3SUxgBkS+JlVcAEW7YBI/2dtb+wZaxmxPzPf5h4OCucwtApSs8oSKzO0pN +7hTaP47ApgSpKemh+CPpTV7M6tpYu84FLHAbBkQAgbSaZcD15Oe/sJpAjYflhzW uhGW5QJOEyJFfCRl+ag1VPEw86H1gslD -----END CERTIFICATE-----Generated at Fri Sep 19 00:47:59 2025 by rpki-client