$ rpki-client -vvf rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.mft File: 3Y89lj-o0fItV_Tfspq9cNJVjjc.mft (raw, json) Hash identifier: 4efd7Gf9AyzUtwtRQa67qWYn8XmI+GOKpXHoGy+qxYc= Subject key identifier: 36:12:F4:9F:F1:6C:B4:87:C5:A0:12:4D:53:EE:63:4F:4E:50:49:F5 Authority key identifier: DD:8F:3D:96:3F:A8:D1:F2:2D:57:F4:DF:B2:9A:BD:70:D2:55:8E:37 Certificate issuer: /CN=A91D506C/serialNumber=DD8F3D963FA8D1F22D57F4DFB29ABD70D2558E37 Certificate serial: 02E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Y89lj-o0fItV_Tfspq9cNJVjjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.mft Manifest number: 02E3 Signing time: Thu 21 Aug 2025 01:28:57 +0000 Manifest this update: Thu 21 Aug 2025 01:28:56 +0000 Manifest next update: Thu 28 Aug 2025 01:28:56 +0000 Files and hashes: 1: 3Y89lj-o0fItV_Tfspq9cNJVjjc.crl (hash: aoV34tq1kjUP2Stvar772bcwePgVWubs9c7vJnoKzf0=) 2: 76C5241CF47311EC8721C33DC4F9AE02.roa (hash: k+SbCpllhZI/PId+36V/JG+wlkp2Gdvk2xv/XzOQ3v8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.crl rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Y89lj-o0fItV_Tfspq9cNJVjjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 01:28:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 743 (0x2e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D506C, serialNumber=DD8F3D963FA8D1F22D57F4DFB29ABD70D2558E37 Validity Not Before: Aug 21 01:28:56 2025 GMT Not After : Aug 28 01:28:56 2025 GMT Subject: CN=68a67659-fb98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:49:54:56:54:15:77:dd:9b:aa:a6:af:2c:5d: 77:a6:42:e3:90:5e:37:c8:36:91:65:0f:f1:a0:18: ab:fe:34:83:a0:f7:9f:ae:fa:01:a7:a0:9d:fa:a2: 50:6e:31:1a:e5:e2:c8:87:ac:38:79:03:9b:23:15: 90:74:7d:7b:64:a0:7a:80:9c:9d:58:48:4d:2b:51: 65:80:77:40:50:da:ba:39:79:5c:d4:9a:d3:03:30: 4c:d1:83:3d:b3:2a:b7:b5:8c:dc:1c:c6:24:02:00: 16:39:71:8a:15:bc:22:2e:de:56:74:d3:fa:92:41: 94:1a:75:97:88:70:f2:52:03:a9:54:04:4b:bc:da: af:34:14:50:28:b3:0a:e2:d1:8c:ab:09:63:62:67: da:f9:63:bf:7f:ee:8c:6a:9d:f5:c5:b5:c3:be:84: f2:3d:8d:07:8a:96:7a:a0:0e:a5:90:6e:0a:92:c2: 80:36:3e:19:39:9b:27:be:f4:4e:c6:da:50:23:00: 41:07:28:16:fe:80:63:38:62:b0:5a:02:11:c6:3c: 5e:8a:ff:9a:1a:d6:8f:57:ef:af:6b:d5:97:f8:6c: 3f:a3:f2:24:94:8d:19:52:b9:bf:ac:71:ab:ff:02: 75:8a:3c:0b:85:d6:2d:b9:77:f8:8d:f3:dc:a5:46: 24:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:12:F4:9F:F1:6C:B4:87:C5:A0:12:4D:53:EE:63:4F:4E:50:49:F5 X509v3 Authority Key Identifier: keyid:DD:8F:3D:96:3F:A8:D1:F2:2D:57:F4:DF:B2:9A:BD:70:D2:55:8E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Y89lj-o0fItV_Tfspq9cNJVjjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:f7:c7:b4:0a:bf:58:2c:57:8d:d3:63:f3:8a:c6:6e:82:d7: 13:16:d4:4a:f4:e9:69:9b:93:be:5c:22:dc:f1:80:94:11:bb: 18:7f:6a:e8:3d:ca:da:7e:38:95:a9:35:31:b8:74:f5:5e:80: 6d:e9:34:a6:78:c8:37:a4:e2:d1:b2:d6:3f:ad:07:67:12:f6: 46:94:8e:19:04:39:29:46:09:f6:9b:48:60:5b:86:88:9e:aa: af:91:a0:86:4a:ad:77:4a:af:15:34:6f:dc:97:93:e2:ae:c8: 45:b2:07:c6:5e:e2:cd:84:d9:a3:af:84:54:e3:3f:2e:22:28: ef:52:51:7b:4b:e7:ab:5f:9d:51:ed:3d:6f:1d:2c:36:37:c9: 1c:a8:82:31:0b:22:ac:99:fd:ea:e7:aa:a0:39:32:58:5d:fb: be:3d:6a:1e:bb:7c:98:fd:ce:a8:e8:8c:b3:ac:42:cc:d2:94: 5a:31:92:35:ab:a4:53:ef:2c:fc:7b:72:88:7f:d6:e9:9e:02: 4c:cd:c2:f1:1e:85:e5:5c:a9:6a:52:84:fd:52:b4:9d:2c:6e: cc:ca:47:b4:00:cf:a0:15:ca:41:04:0c:a0:e5:bf:0e:eb:89: c2:82:fe:11:1e:76:98:f9:9a:81:ea:1c:88:87:3d:a9:f5:3c: b7:13:4f:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAucwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUwNkMxMTAvBgNVBAUTKEREOEYzRDk2M0ZBOEQxRjIyRDU3RjRERkIyOUFCRDcw RDI1NThFMzcwHhcNMjUwODIxMDEyODU2WhcNMjUwODI4MDEyODU2WjAYMRYwFAYD VQQDEw02OGE2NzY1OS1mYjk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvUlUVlQVd92bqqavLF13pkLjkF43yDaRZQ/xoBir/jSDoPefrvoBp6Cd+qJQ bjEa5eLIh6w4eQObIxWQdH17ZKB6gJydWEhNK1FlgHdAUNq6OXlc1JrTAzBM0YM9 syq3tYzcHMYkAgAWOXGKFbwiLt5WdNP6kkGUGnWXiHDyUgOpVARLvNqvNBRQKLMK 4tGMqwljYmfa+WO/f+6Map31xbXDvoTyPY0HipZ6oA6lkG4KksKANj4ZOZsnvvRO xtpQIwBBBygW/oBjOGKwWgIRxjxeiv+aGtaPV++va9WX+Gw/o/IklI0ZUrm/rHGr /wJ1ijwLhdYtuXf4jfPcpUYkyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDYS9J/x bLSHxaASTVPuY09OUEn1MB8GA1UdIwQYMBaAFN2PPZY/qNHyLVf037KavXDSVY43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTA2Qy80NjYxOEIxQ0Y0 NkUxMUVDOEM2MDcwMEZDNEY5QUUwMi8zWTg5bGotbzBmSXRWX1Rmc3BxOWNOSlZq amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNZODlsai1vMGZJdFZfVGZzcHE5Y05KVmpqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTA2Qy80NjYxOEIxQ0Y0NkUxMUVDOEM2MDcwMEZDNEY5QUUwMi8zWTg5bGotbzBm SXRWX1Rmc3BxOWNOSlZqamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBD98e0Cr9YLFeN02PzisZugtcTFtRK9Olpm5O+XCLc8YCUEbsYf2ro PcrafjiVqTUxuHT1XoBt6TSmeMg3pOLRstY/rQdnEvZGlI4ZBDkpRgn2m0hgW4aI nqqvkaCGSq13Sq8VNG/cl5PirshFsgfGXuLNhNmjr4RU4z8uIijvUlF7S+erX51R 7T1vHSw2N8kcqIIxCyKsmf3q56qgOTJYXfu+PWoeu3yY/c6o6IyzrELM0pRaMZI1 q6RT7yz8e3KIf9bpngJMzcLxHoXlXKlqUoT9UrSdLG7Myke0AM+gFcpBBAyg5b8O 64nCgv4RHnaY+ZqB6hyIhz2p9Ty3E0/h -----END CERTIFICATE-----Generated at Fri Aug 22 16:18:19 2025 by rpki-client