$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/9R3GadtZYYTQv5SqHkHl3hWejaU.mft File: 9R3GadtZYYTQv5SqHkHl3hWejaU.mft (raw, json) Hash identifier: WHE/BfcrsNaHK1PU8mh5tcEbJ4l7HaxsMHOPjYrJRnY= Subject key identifier: 0C:36:4E:15:DE:05:93:19:A0:65:D7:A8:29:F0:56:19:C6:F5:01:2D Authority key identifier: F5:1D:C6:69:DB:59:61:84:D0:BF:94:AA:1E:41:E5:DE:15:9E:8D:A5 Certificate issuer: /CN=A91D3D50/serialNumber=F51DC669DB596184D0BF94AA1E41E5DE159E8DA5 Certificate serial: 0C81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9R3GadtZYYTQv5SqHkHl3hWejaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/9R3GadtZYYTQv5SqHkHl3hWejaU.mft Manifest number: 0C77 Signing time: Sun 24 Aug 2025 18:20:28 +0000 Manifest this update: Sun 24 Aug 2025 18:20:27 +0000 Manifest next update: Sun 31 Aug 2025 18:20:27 +0000 Files and hashes: 1: 9R3GadtZYYTQv5SqHkHl3hWejaU.crl (hash: OyjlXwtKQqRC54ZTWHDFumxHU7iZsixwjySKjt1zni0=) 2: 2DE1069C050311EA93648E33C4F9AE02.roa (hash: lPRimtAIP991qjg2zYQ9MB+u2MSznOVIg7X2f5y/SnM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/9R3GadtZYYTQv5SqHkHl3hWejaU.crl rsync://rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/9R3GadtZYYTQv5SqHkHl3hWejaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9R3GadtZYYTQv5SqHkHl3hWejaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 18:20:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3201 (0xc81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3D50, serialNumber=F51DC669DB596184D0BF94AA1E41E5DE159E8DA5 Validity Not Before: Aug 24 18:20:27 2025 GMT Not After : Aug 31 18:20:27 2025 GMT Subject: CN=68ab57eb-2b74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:9b:25:d9:cd:f0:6c:74:bc:0d:0b:03:1f:92: e1:d0:b8:90:18:77:d0:b7:38:b1:ef:00:48:a4:4b: 28:0a:b9:10:b7:66:be:cd:bc:9f:be:1d:be:a4:03: ca:26:7e:f6:90:9a:c0:16:8a:1a:a0:2e:b3:6d:e8: ee:5e:37:6d:b4:89:c6:fb:64:36:9b:20:02:74:6e: 0b:61:ce:4c:0b:66:87:cf:f5:44:ae:60:e1:f7:f4: 06:01:c2:ee:fd:c9:a7:dd:40:c1:05:b0:2e:7e:b0: 2e:e8:ea:d6:11:36:98:65:ae:2a:09:80:f2:f3:7c: a0:b8:44:c5:f9:31:f8:ab:bd:29:30:bf:4b:b0:f2: 8c:2f:4c:01:ad:55:09:f3:52:17:5c:75:be:d5:ff: bd:3e:c4:f3:b0:20:87:74:f1:43:6b:97:b2:61:02: ce:ed:84:22:8e:81:f7:c2:f8:fb:29:50:12:d2:a6: db:2d:cc:56:a7:95:1b:37:fa:13:dd:3a:46:b8:10: 13:fe:e4:fe:27:a6:cd:b1:7b:2c:ac:08:14:56:39: 7f:98:e3:45:a8:6c:7f:82:fa:5d:35:20:70:38:39: ba:41:e7:68:5b:3f:d5:03:8f:65:e1:bd:77:f4:2c: 43:5f:0d:10:22:9a:b9:42:ce:e4:db:f3:e2:37:e5: 2d:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:36:4E:15:DE:05:93:19:A0:65:D7:A8:29:F0:56:19:C6:F5:01:2D X509v3 Authority Key Identifier: keyid:F5:1D:C6:69:DB:59:61:84:D0:BF:94:AA:1E:41:E5:DE:15:9E:8D:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/9R3GadtZYYTQv5SqHkHl3hWejaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9R3GadtZYYTQv5SqHkHl3hWejaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/9R3GadtZYYTQv5SqHkHl3hWejaU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c2:ca:c4:4e:3a:07:6f:e0:3a:62:22:81:ce:49:b2:e7:1f:f4: 21:11:03:57:62:90:8d:1c:6b:c0:70:d2:d9:2e:69:80:46:50: 1c:f2:ac:47:10:19:7a:e6:d5:e9:3b:eb:57:ca:49:22:26:be: b2:bb:15:38:8b:a5:d4:3f:64:b4:f4:91:3f:0b:3a:57:65:59: 77:fd:2a:13:73:c1:79:e1:20:2f:62:81:32:92:df:c5:fe:22: cb:62:15:16:63:d5:46:36:1d:c0:3a:9b:84:96:79:af:e5:82: 87:98:c9:85:3c:5c:e4:77:25:96:8a:0a:6f:15:80:b4:8a:32: a2:b4:b8:ce:a0:0a:51:30:6f:24:37:b3:6f:6b:18:c9:74:94: 40:b1:f8:63:ce:54:50:ac:21:c3:cf:e1:b7:d2:1a:63:e8:a0: e6:de:0c:60:e5:87:e8:28:eb:ad:99:a8:f1:d2:34:ed:8f:38: 9e:80:51:1f:fa:27:7f:df:a9:f5:9c:55:a8:bd:ad:7a:fb:87: 98:8b:a8:31:6e:9c:07:fc:5b:1e:59:e6:87:07:04:e4:6c:47: ed:c0:d5:5b:36:b0:3f:58:4a:53:06:d7:ad:12:f2:8f:51:a8: be:2d:75:a3:62:42:4e:e5:ba:e2:1c:bd:06:ca:09:29:04:7d: 16:4f:98:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDNENTAxMTAvBgNVBAUTKEY1MURDNjY5REI1OTYxODREMEJGOTRBQTFFNDFFNURF MTU5RThEQTUwHhcNMjUwODI0MTgyMDI3WhcNMjUwODMxMTgyMDI3WjAYMRYwFAYD VQQDEw02OGFiNTdlYi0yYjc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9Zsl2c3wbHS8DQsDH5Lh0LiQGHfQtzix7wBIpEsoCrkQt2a+zbyfvh2+pAPK Jn72kJrAFooaoC6zbejuXjdttInG+2Q2myACdG4LYc5MC2aHz/VErmDh9/QGAcLu /cmn3UDBBbAufrAu6OrWETaYZa4qCYDy83yguETF+TH4q70pML9LsPKML0wBrVUJ 81IXXHW+1f+9PsTzsCCHdPFDa5eyYQLO7YQijoH3wvj7KVAS0qbbLcxWp5UbN/oT 3TpGuBAT/uT+J6bNsXssrAgUVjl/mONFqGx/gvpdNSBwODm6QedoWz/VA49l4b13 9CxDXw0QIpq5Qs7k2/PiN+UtrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAw2ThXe BZMZoGXXqCnwVhnG9QEtMB8GA1UdIwQYMBaAFPUdxmnbWWGE0L+Uqh5B5d4Vno2l MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEM0Q1MC8xNTQ2NEZENjA1 MDExMUVBQUQ5NzI1MkNDNEY5QUUwMi85UjNHYWR0WllZVFF2NVNxSGtIbDNoV2Vq YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlSM0dhZHRaWVlUUXY1U3FIa0hsM2hXZWphVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE M0Q1MC8xNTQ2NEZENjA1MDExMUVBQUQ5NzI1MkNDNEY5QUUwMi85UjNHYWR0WllZ VFF2NVNxSGtIbDNoV2VqYVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDCysROOgdv4DpiIoHOSbLnH/QhEQNXYpCNHGvAcNLZLmmARlAc8qxH EBl65tXpO+tXykkiJr6yuxU4i6XUP2S09JE/CzpXZVl3/SoTc8F54SAvYoEykt/F /iLLYhUWY9VGNh3AOpuElnmv5YKHmMmFPFzkdyWWigpvFYC0ijKitLjOoApRMG8k N7NvaxjJdJRAsfhjzlRQrCHDz+G30hpj6KDm3gxg5YfoKOutmajx0jTtjziegFEf +id/36n1nFWova16+4eYi6gxbpwH/FseWeaHBwTkbEftwNVbNrA/WEpTBtetEvKP Uai+LXWjYkJO5briHL0GygkpBH0WT5gu -----END CERTIFICATE-----Generated at Sun Aug 24 22:07:06 2025 by rpki-client