$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.mft File: 3xHpJo0GrlO6-3QTvTT_OHjk7tA.mft (raw, json) Hash identifier: VVPKbooFd/DwdwHuj9WZOjtkU6IYTfYq8xYcXYcGwHc= Subject key identifier: 92:B0:9A:1C:08:11:B1:02:6C:56:28:48:8E:B1:EE:1C:8B:FD:FC:66 Authority key identifier: DF:11:E9:26:8D:06:AE:53:BA:FB:74:13:BD:34:FF:38:78:E4:EE:D0 Certificate issuer: /CN=A91BC64D/serialNumber=DF11E9268D06AE53BAFB7413BD34FF3878E4EED0 Certificate serial: 0673 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3xHpJo0GrlO6-3QTvTT_OHjk7tA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.mft Manifest number: 0668 Signing time: Mon 08 Sep 2025 22:35:34 +0000 Manifest this update: Mon 08 Sep 2025 22:35:34 +0000 Manifest next update: Mon 15 Sep 2025 22:35:34 +0000 Files and hashes: 1: 3xHpJo0GrlO6-3QTvTT_OHjk7tA.crl (hash: jP8HQyxw7USlbxAW3b+6HzZXq4oxAT+JHUEHggKW1Q4=) 2: FC583AC6CC8511EC8D238672C4F9AE02.roa (hash: 4nQWYZbXWSJ3PqE4ZBiXzBzUwOjlbjDx0Oq7v5W8vCQ=) 3: FD987A54CC8511EC8D238672C4F9AE02.roa (hash: MzEQJvzOJlRcf4tMcorSrwSuzHCC7BZBlDirsliZQdI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.crl rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3xHpJo0GrlO6-3QTvTT_OHjk7tA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 22:35:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1651 (0x673) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC64D, serialNumber=DF11E9268D06AE53BAFB7413BD34FF3878E4EED0 Validity Not Before: Sep 8 22:35:34 2025 GMT Not After : Sep 15 22:35:34 2025 GMT Subject: CN=68bf5a36-f152 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:99:12:a8:97:42:fd:b8:d2:97:86:fd:47:12: 49:ad:68:cf:6c:64:7b:3d:1a:62:52:43:c3:36:ce: 9b:76:d7:57:cb:e5:d1:4b:91:84:2b:f7:73:95:5d: 07:73:3c:d8:a5:7d:a0:17:d2:da:2d:90:1b:3c:9f: b2:7a:14:b7:61:3e:2c:34:b5:8e:c5:08:1b:3e:ff: df:27:af:d3:b1:bc:91:52:e2:7c:fb:5c:fd:09:c3: c7:5b:ba:7b:8f:f4:f6:7e:8c:52:75:b2:41:26:29: 04:cb:68:cb:08:8e:39:05:9a:06:07:4e:24:48:1c: 6c:d9:2e:c7:fd:7e:00:95:a7:12:7d:f3:cd:1e:a5: 40:fe:19:dc:b6:1c:1b:4a:52:2c:f7:b8:66:0e:b4: 0b:25:06:9d:f6:99:f9:b7:62:13:e5:b1:17:af:ad: af:22:01:4c:91:f6:9c:d1:1e:2b:77:bc:d2:a5:d3: 19:cb:42:7e:7f:81:eb:d5:6a:ed:e1:7f:da:d1:bc: 6f:e9:d5:d3:b7:b3:e8:14:9d:c4:4c:7d:cd:b2:9c: 29:9d:95:6e:fd:7c:00:0d:86:c2:ef:cf:02:21:96: 05:32:97:1a:3f:74:3e:dd:28:31:db:e1:01:0e:8b: 6d:3f:4d:08:ed:91:59:28:f2:64:1c:8e:3a:90:94: 0f:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:B0:9A:1C:08:11:B1:02:6C:56:28:48:8E:B1:EE:1C:8B:FD:FC:66 X509v3 Authority Key Identifier: keyid:DF:11:E9:26:8D:06:AE:53:BA:FB:74:13:BD:34:FF:38:78:E4:EE:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3xHpJo0GrlO6-3QTvTT_OHjk7tA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption db:12:4a:61:b7:33:cb:35:11:5d:9e:3a:e9:dc:8e:cd:66:09: eb:5f:64:89:61:02:5c:57:c7:b9:b8:0a:11:dc:e8:b9:42:27: 92:8e:c2:15:df:eb:bd:1a:c6:35:73:9c:cf:07:03:b9:9d:1b: 0f:fb:b5:9b:a6:03:42:79:5b:9e:46:cf:5d:16:42:27:ac:f9: e9:86:81:29:20:aa:10:d9:76:be:27:f8:58:72:0a:77:17:e6: 50:fd:27:1b:e5:90:d8:e0:b3:34:d0:09:ec:16:51:a1:67:5e: aa:be:96:78:35:c1:e9:2b:8d:25:f7:72:2a:e8:f9:03:c4:03: fa:c2:de:86:b4:28:61:dc:4c:d9:cd:b1:cd:c5:fe:0e:7d:2f: 02:34:f7:7e:a8:1e:df:0e:26:a8:73:76:d4:f7:b8:45:1a:a8: 6b:db:d3:34:0f:27:d7:7c:de:5e:d8:54:85:56:ad:31:9a:80: 2e:47:77:b5:28:b4:76:8c:80:b0:a2:ce:49:f6:59:b8:8d:1f: d0:50:10:ef:f0:00:85:b2:1f:37:27:dc:6a:ae:cc:85:e4:e6: 0b:92:29:61:d3:a3:c7:48:c3:54:80:4d:3b:78:c6:96:b4:eb: 4c:24:33:03:f1:60:f6:ea:8c:b8:d6:25:49:8c:d5:47:2c:55: 21:93:11:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkM2NEQxMTAvBgNVBAUTKERGMTFFOTI2OEQwNkFFNTNCQUZCNzQxM0JEMzRGRjM4 NzhFNEVFRDAwHhcNMjUwOTA4MjIzNTM0WhcNMjUwOTE1MjIzNTM0WjAYMRYwFAYD VQQDEw02OGJmNWEzNi1mMTUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtZkSqJdC/bjSl4b9RxJJrWjPbGR7PRpiUkPDNs6bdtdXy+XRS5GEK/dzlV0H czzYpX2gF9LaLZAbPJ+yehS3YT4sNLWOxQgbPv/fJ6/TsbyRUuJ8+1z9CcPHW7p7 j/T2foxSdbJBJikEy2jLCI45BZoGB04kSBxs2S7H/X4AlacSffPNHqVA/hncthwb SlIs97hmDrQLJQad9pn5t2IT5bEXr62vIgFMkfac0R4rd7zSpdMZy0J+f4Hr1Wrt 4X/a0bxv6dXTt7PoFJ3ETH3NspwpnZVu/XwADYbC788CIZYFMpcaP3Q+3Sgx2+EB DottP00I7ZFZKPJkHI46kJQPIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJKwmhwI EbECbFYoSI6x7hyL/fxmMB8GA1UdIwQYMBaAFN8R6SaNBq5Tuvt0E700/zh45O7Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzY0RC9CMkVGM0UzNDk1 RDYxMUVCOTgyMTVDMThDNEY5QUUwMi8zeEhwSm8wR3JsTzYtM1FUdlRUX09Iams3 dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzN4SHBKbzBHcmxPNi0zUVR2VFRfT0hqazd0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QzY0RC9CMkVGM0UzNDk1RDYxMUVCOTgyMTVDMThDNEY5QUUwMi8zeEhwSm8wR3Js TzYtM1FUdlRUX09Iams3dEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDbEkphtzPLNRFdnjrp3I7NZgnrX2SJYQJcV8e5uAoR3Oi5QieSjsIV 3+u9GsY1c5zPBwO5nRsP+7WbpgNCeVueRs9dFkInrPnphoEpIKoQ2Xa+J/hYcgp3 F+ZQ/Scb5ZDY4LM00AnsFlGhZ16qvpZ4NcHpK40l93Iq6PkDxAP6wt6GtChh3EzZ zbHNxf4OfS8CNPd+qB7fDiaoc3bU97hFGqhr29M0DyfXfN5e2FSFVq0xmoAuR3e1 KLR2jICwos5J9lm4jR/QUBDv8ACFsh83J9xqrsyF5OYLkilh06PHSMNUgE07eMaW tOtMJDMD8WD26oy41iVJjNVHLFUhkxEG -----END CERTIFICATE-----Generated at Tue Sep 9 14:19:46 2025 by rpki-client