$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB4C2/B17E95D6037011EE9BB62C2FC4F9AE02/3COmnqHvwaN5SSwT6awUfEn1rQQ.mft File: 3COmnqHvwaN5SSwT6awUfEn1rQQ.mft (raw, json) Hash identifier: Gs7dKK/C2JxGXpFipRXT8ZyDmb/fvf4ofzDZCBEm9/M= Subject key identifier: A3:C9:AC:E1:69:46:C9:97:32:A9:4D:6E:D7:0F:9E:F9:72:24:4F:4C Authority key identifier: DC:23:A6:9E:A1:EF:C1:A3:79:49:2C:13:E9:AC:14:7C:49:F5:AD:04 Certificate issuer: /CN=A91BB4C2/serialNumber=DC23A69EA1EFC1A379492C13E9AC147C49F5AD04 Certificate serial: 0213 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3COmnqHvwaN5SSwT6awUfEn1rQQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB4C2/B17E95D6037011EE9BB62C2FC4F9AE02/3COmnqHvwaN5SSwT6awUfEn1rQQ.mft Manifest number: 01E4 Signing time: Fri 19 Sep 2025 03:37:46 +0000 Manifest this update: Fri 19 Sep 2025 03:37:45 +0000 Manifest next update: Fri 26 Sep 2025 03:37:45 +0000 Files and hashes: 1: 3COmnqHvwaN5SSwT6awUfEn1rQQ.crl (hash: Z9n1G3uXroMshatbPMHSQ60RkVIKxELj66pqdl2kR+M=) 2: CBF7E2CE2D3611EEA81A490BC4F9AE02.roa (hash: 4yj8sZR6Z/FxcvXrPscntmMUZkXTFX7XG+1HhFVkn+I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB4C2/B17E95D6037011EE9BB62C2FC4F9AE02/3COmnqHvwaN5SSwT6awUfEn1rQQ.crl rsync://rpki.apnic.net/member_repository/A91BB4C2/B17E95D6037011EE9BB62C2FC4F9AE02/3COmnqHvwaN5SSwT6awUfEn1rQQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3COmnqHvwaN5SSwT6awUfEn1rQQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 03:37:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 531 (0x213) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB4C2, serialNumber=DC23A69EA1EFC1A379492C13E9AC147C49F5AD04 Validity Not Before: Sep 19 03:37:45 2025 GMT Not After : Sep 26 03:37:45 2025 GMT Subject: CN=68ccd00a-2e1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:0d:32:3c:48:24:c9:fc:07:a7:4d:73:d9:89: 0a:6c:e6:49:2e:29:98:74:8e:eb:3f:83:e0:bb:15: 25:44:2f:92:95:a2:91:47:e1:1d:3b:fd:48:ce:ce: 32:ac:01:d1:2c:ee:6d:c3:21:77:97:48:4c:6c:f6: 0a:a6:80:83:b1:e9:04:74:8c:4c:34:12:b6:e7:c1: 8d:a6:6b:fb:93:0b:c9:a2:80:2d:1a:3c:04:0f:15: d9:5a:09:fb:2b:72:7a:3c:98:65:0f:18:df:19:59: 8c:9b:db:82:65:0c:42:d3:77:c3:91:90:17:bc:80: 5f:c4:db:dc:8a:68:43:07:92:1c:f4:28:7e:d9:3f: c6:9d:b1:ba:a1:6c:fe:f5:03:bd:5a:d0:96:46:4f: d0:09:34:1c:02:33:62:22:ce:b0:46:c9:54:1e:72: 2d:09:8b:5e:4a:eb:6c:31:88:7c:a2:39:85:82:9d: d5:ca:39:ae:13:4f:dc:8a:1b:cf:54:fd:10:da:dc: 59:e4:90:f1:32:0e:a8:c1:59:39:e3:d9:39:ff:f4: ca:b0:fb:90:ae:ff:90:b1:3e:43:ad:43:0d:4b:22: ae:9c:29:43:78:0b:cf:f6:0c:6f:ec:7b:94:5d:eb: b7:e6:2d:33:48:68:72:13:8c:c9:d8:16:e0:ca:80: 0f:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:C9:AC:E1:69:46:C9:97:32:A9:4D:6E:D7:0F:9E:F9:72:24:4F:4C X509v3 Authority Key Identifier: keyid:DC:23:A6:9E:A1:EF:C1:A3:79:49:2C:13:E9:AC:14:7C:49:F5:AD:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB4C2/B17E95D6037011EE9BB62C2FC4F9AE02/3COmnqHvwaN5SSwT6awUfEn1rQQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3COmnqHvwaN5SSwT6awUfEn1rQQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB4C2/B17E95D6037011EE9BB62C2FC4F9AE02/3COmnqHvwaN5SSwT6awUfEn1rQQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:14:31:03:bc:6d:4b:d5:ef:ab:8d:30:56:36:5d:d1:ef:34: 23:c0:3c:10:b6:7b:29:2a:16:f8:f2:6e:d0:84:60:1f:2f:d2: d2:0c:64:60:8b:38:38:e6:7c:56:17:f8:0d:9a:da:f5:f6:49: 7c:5a:d5:f6:e3:1d:b3:c0:48:4c:4c:78:8c:0a:d6:d8:d5:06: 32:c1:13:7c:63:6b:c0:50:dd:16:c5:4a:e6:56:41:0c:c3:2d: 45:15:a3:1c:ec:59:52:73:2c:58:15:85:ec:9a:b3:83:93:63: 56:35:80:9c:c0:99:ef:76:1e:21:4b:d2:41:43:f0:ce:a5:fb: 6d:97:98:42:d6:68:4e:9d:78:55:ef:ec:f0:c9:1c:9c:91:13: 84:8f:b6:56:7a:13:50:1e:f1:18:e7:b7:29:15:64:30:82:ef: 22:01:fc:96:57:54:f8:18:4c:47:0c:96:94:cb:6d:61:d6:5a: de:0d:b1:91:5f:f6:e9:5a:af:40:b1:7e:e7:63:b9:74:87:e7: 70:9d:0c:a3:b3:ef:55:a8:de:77:45:27:76:f7:c6:de:d9:5c: f4:69:60:e2:11:a3:ad:62:18:66:a1:89:dc:33:e0:45:c3:33: b2:62:16:34:b9:50:23:be:88:de:16:1d:38:4d:4f:eb:a5:54: 43:32:68:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI0QzIxMTAvBgNVBAUTKERDMjNBNjlFQTFFRkMxQTM3OTQ5MkMxM0U5QUMxNDdD NDlGNUFEMDQwHhcNMjUwOTE5MDMzNzQ1WhcNMjUwOTI2MDMzNzQ1WjAYMRYwFAYD VQQDEw02OGNjZDAwYS0yZTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9A0yPEgkyfwHp01z2YkKbOZJLimYdI7rP4PguxUlRC+SlaKRR+EdO/1Izs4y rAHRLO5twyF3l0hMbPYKpoCDsekEdIxMNBK258GNpmv7kwvJooAtGjwEDxXZWgn7 K3J6PJhlDxjfGVmMm9uCZQxC03fDkZAXvIBfxNvcimhDB5Ic9Ch+2T/GnbG6oWz+ 9QO9WtCWRk/QCTQcAjNiIs6wRslUHnItCYteSutsMYh8ojmFgp3VyjmuE0/cihvP VP0Q2txZ5JDxMg6owVk549k5//TKsPuQrv+QsT5DrUMNSyKunClDeAvP9gxv7HuU Xeu35i0zSGhyE4zJ2BbgyoAPrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKPJrOFp RsmXMqlNbtcPnvlyJE9MMB8GA1UdIwQYMBaAFNwjpp6h78GjeUksE+msFHxJ9a0E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjRDMi9CMTdFOTVENjAz NzAxMUVFOUJCNjJDMkZDNEY5QUUwMi8zQ09tbnFIdndhTjVTU3dUNmF3VWZFbjFy UVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNDT21ucUh2d2FONVNTd1Q2YXdVZkVuMXJRUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjRDMi9CMTdFOTVENjAzNzAxMUVFOUJCNjJDMkZDNEY5QUUwMi8zQ09tbnFIdndh TjVTU3dUNmF3VWZFbjFyUVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9FDEDvG1L1e+rjTBWNl3R7zQjwDwQtnspKhb48m7QhGAfL9LSDGRg izg45nxWF/gNmtr19kl8WtX24x2zwEhMTHiMCtbY1QYywRN8Y2vAUN0WxUrmVkEM wy1FFaMc7FlScyxYFYXsmrODk2NWNYCcwJnvdh4hS9JBQ/DOpfttl5hC1mhOnXhV 7+zwyRyckROEj7ZWehNQHvEY57cpFWQwgu8iAfyWV1T4GExHDJaUy21h1lreDbGR X/bpWq9AsX7nY7l0h+dwnQyjs+9VqN53RSd298be2Vz0aWDiEaOtYhhmoYncM+BF wzOyYhY0uVAjvojeFh04TU/rpVRDMmgA -----END CERTIFICATE-----Generated at Sat Sep 20 00:27:53 2025 by rpki-client