$ rpki-client -vvf rpki.apnic.net/member_repository/A91C799C/A2DFB336135711EB8D13B215C4F9AE02/3CH4ZzeyOX3SsmCej7QGhuPI92E.mft File: 3CH4ZzeyOX3SsmCej7QGhuPI92E.mft (raw, json) Hash identifier: sUfTXbSHIo4DVWUqOE6D/ezvhvtR06fdmv4MK22tHRs= Subject key identifier: 27:F4:8D:9F:91:AA:30:5F:C4:BF:00:C0:6D:55:EC:C8:B0:CA:A3:52 Authority key identifier: DC:21:F8:67:37:B2:39:7D:D2:B2:60:9E:8F:B4:06:86:E3:C8:F7:61 Certificate issuer: /CN=A91C799C/serialNumber=DC21F86737B2397DD2B2609E8FB40686E3C8F761 Certificate serial: 07B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3CH4ZzeyOX3SsmCej7QGhuPI92E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C799C/A2DFB336135711EB8D13B215C4F9AE02/3CH4ZzeyOX3SsmCej7QGhuPI92E.mft Manifest number: 07AD Signing time: Sat 06 Sep 2025 21:33:55 +0000 Manifest this update: Sat 06 Sep 2025 21:33:55 +0000 Manifest next update: Sat 13 Sep 2025 21:33:55 +0000 Files and hashes: 1: 3CH4ZzeyOX3SsmCej7QGhuPI92E.crl (hash: uF1epoaHxQAeQqTgDF8FziS0u9oAAhKodZ5yThPvE8c=) 2: 9F5F0EC6135911EBBC97C718C4F9AE02.roa (hash: SiUJ7SYlbA21+yPfD2uZbgHjH4MPfQViyjJFRbUxFiY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C799C/A2DFB336135711EB8D13B215C4F9AE02/3CH4ZzeyOX3SsmCej7QGhuPI92E.crl rsync://rpki.apnic.net/member_repository/A91C799C/A2DFB336135711EB8D13B215C4F9AE02/3CH4ZzeyOX3SsmCej7QGhuPI92E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3CH4ZzeyOX3SsmCej7QGhuPI92E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 21:33:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1970 (0x7b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C799C, serialNumber=DC21F86737B2397DD2B2609E8FB40686E3C8F761 Validity Not Before: Sep 6 21:33:55 2025 GMT Not After : Sep 13 21:33:55 2025 GMT Subject: CN=68bca8c3-ad5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:f1:2e:bf:31:19:35:31:1e:9b:b6:a0:83:df: b5:05:29:68:d4:bd:17:4a:72:d0:1b:03:f8:7f:bc: af:03:67:d2:3c:56:35:ce:96:7a:21:b8:40:7c:14: 68:e6:42:5d:42:d9:67:f1:38:97:2a:e7:99:61:1d: 8c:6d:cb:e1:35:68:16:8e:bc:d4:3e:4b:93:b2:31: 93:be:31:10:8d:32:5c:dc:29:cc:b7:3c:5c:e8:8b: 6c:9d:68:bd:82:c3:2e:53:7d:d1:74:d2:77:95:96: 97:79:1c:a3:51:73:ae:21:96:b7:18:a2:b0:0d:1b: 3d:2c:63:63:25:4a:22:c9:f6:32:35:7e:77:37:bf: 68:6f:ae:35:d8:32:9c:d1:7c:f3:ff:0b:a4:90:1c: d4:8b:6b:74:c5:92:d6:68:cc:0b:b5:c7:4b:a5:d8: d2:0f:29:97:95:ba:2c:39:00:d7:0b:d0:2a:86:be: b1:c7:b5:5e:c1:56:ac:61:96:6a:a6:ca:a7:34:17: bb:00:5c:e5:6f:e9:c9:44:1d:fe:86:d8:7b:60:5c: 5a:d3:89:98:da:a5:f0:a8:f4:b3:6d:35:e7:c7:ee: f4:64:4c:75:85:97:36:ce:48:62:20:54:15:c7:f9: 77:bb:76:89:ba:70:1d:33:32:f7:f6:9c:7a:bf:aa: 56:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:F4:8D:9F:91:AA:30:5F:C4:BF:00:C0:6D:55:EC:C8:B0:CA:A3:52 X509v3 Authority Key Identifier: keyid:DC:21:F8:67:37:B2:39:7D:D2:B2:60:9E:8F:B4:06:86:E3:C8:F7:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C799C/A2DFB336135711EB8D13B215C4F9AE02/3CH4ZzeyOX3SsmCej7QGhuPI92E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3CH4ZzeyOX3SsmCej7QGhuPI92E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C799C/A2DFB336135711EB8D13B215C4F9AE02/3CH4ZzeyOX3SsmCej7QGhuPI92E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:1b:fd:28:3f:40:fb:4b:0d:4c:59:d3:53:c3:78:9c:2f:9d: 2c:32:b2:6f:f5:be:18:68:ff:1a:a1:8d:9c:6e:e6:91:af:7e: f5:14:f4:7e:e9:a2:59:04:c1:78:2d:70:b1:6b:cd:bd:e8:85: 98:cf:3c:20:37:f8:f6:60:2b:75:78:ce:d9:1e:b2:c2:bb:0c: dc:4c:55:82:33:b4:e7:61:a5:16:e0:b1:5d:7c:d8:35:f7:1c: 5d:c0:52:62:a2:e6:4f:51:64:2e:1d:f1:89:4a:4b:0e:2b:03: b7:cd:26:75:d6:f2:65:d5:4b:03:54:9f:3f:5b:31:b5:4b:c8: 51:64:70:6a:b7:04:a1:f0:a5:bf:91:eb:c2:8e:86:a8:e9:32: 2d:42:91:c8:9b:f8:de:28:49:90:73:a5:67:88:5f:37:ec:e5: c2:93:d1:64:76:52:cb:0d:61:24:b8:a4:cc:ac:7b:86:3f:c3: 32:27:60:ed:76:ba:35:b1:5d:a9:2c:77:cf:1e:55:d7:5e:e0: 15:94:7b:30:6f:9a:47:71:04:e8:df:7a:65:a9:f0:13:cf:e7: 43:d0:db:2e:9d:af:30:7e:de:e9:0c:79:c5:1f:c1:e3:f2:db: 00:b1:58:71:b1:30:f9:b7:e8:4c:02:40:d1:f3:48:e5:2f:48: 7c:b8:fb:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB7IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc5OUMxMTAvBgNVBAUTKERDMjFGODY3MzdCMjM5N0REMkIyNjA5RThGQjQwNjg2 RTNDOEY3NjEwHhcNMjUwOTA2MjEzMzU1WhcNMjUwOTEzMjEzMzU1WjAYMRYwFAYD VQQDEw02OGJjYThjMy1hZDVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxPEuvzEZNTEem7agg9+1BSlo1L0XSnLQGwP4f7yvA2fSPFY1zpZ6IbhAfBRo 5kJdQtln8TiXKueZYR2MbcvhNWgWjrzUPkuTsjGTvjEQjTJc3CnMtzxc6ItsnWi9 gsMuU33RdNJ3lZaXeRyjUXOuIZa3GKKwDRs9LGNjJUoiyfYyNX53N79ob6412DKc 0Xzz/wukkBzUi2t0xZLWaMwLtcdLpdjSDymXlbosOQDXC9Aqhr6xx7VewVasYZZq psqnNBe7AFzlb+nJRB3+hth7YFxa04mY2qXwqPSzbTXnx+70ZEx1hZc2zkhiIFQV x/l3u3aJunAdMzL39px6v6pWbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCf0jZ+R qjBfxL8AwG1V7MiwyqNSMB8GA1UdIwQYMBaAFNwh+Gc3sjl90rJgno+0BobjyPdh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzk5Qy9BMkRGQjMzNjEz NTcxMUVCOEQxM0IyMTVDNEY5QUUwMi8zQ0g0WnpleU9YM1NzbUNlajdRR2h1UEk5 MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNDSDRaemV5T1gzU3NtQ2VqN1FHaHVQSTkyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Nzk5Qy9BMkRGQjMzNjEzNTcxMUVCOEQxM0IyMTVDNEY5QUUwMi8zQ0g0WnpleU9Y M1NzbUNlajdRR2h1UEk5MkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3G/0oP0D7Sw1MWdNTw3icL50sMrJv9b4YaP8aoY2cbuaRr371FPR+ 6aJZBMF4LXCxa8296IWYzzwgN/j2YCt1eM7ZHrLCuwzcTFWCM7TnYaUW4LFdfNg1 9xxdwFJiouZPUWQuHfGJSksOKwO3zSZ11vJl1UsDVJ8/WzG1S8hRZHBqtwSh8KW/ kevCjoao6TItQpHIm/jeKEmQc6VniF837OXCk9FkdlLLDWEkuKTMrHuGP8MyJ2Dt dro1sV2pLHfPHlXXXuAVlHswb5pHcQTo33plqfATz+dD0Nsuna8wft7pDHnFH8Hj 8tsAsVhxsTD5t+hMAkDR80jlL0h8uPtF -----END CERTIFICATE-----Generated at Mon Sep 8 10:05:11 2025 by rpki-client