$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft File: gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft (raw, json) Hash identifier: GmPs0rPjUulUkdhihKPYNbmXiMah+wLGo2hRhnVssUw= Subject key identifier: C1:89:26:62:5C:16:69:05:71:4B:FD:7A:EC:1C:73:84:2E:4B:8E:67 Authority key identifier: 81:1D:E1:1E:7E:DC:1C:10:76:05:59:EE:B3:9B:FD:66:D6:9A:EA:46 Certificate issuer: /CN=A91E6BEF/serialNumber=811DE11E7EDC1C10760559EEB39BFD66D69AEA46 Certificate serial: 0DCA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gR3hHn7cHBB2BVnus5v9Ztaa6kY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft Manifest number: 0DC1 Signing time: Mon 08 Sep 2025 17:55:39 +0000 Manifest this update: Mon 08 Sep 2025 17:55:38 +0000 Manifest next update: Mon 15 Sep 2025 17:55:38 +0000 Files and hashes: 1: gR3hHn7cHBB2BVnus5v9Ztaa6kY.crl (hash: qAflqz3Bbeg66MlVxguVCgh+MDLvxn36ra4cZ0E5sVM=) 2: FEBD6C62C4B511E9B7D53A7FC4F9AE02.roa (hash: UdehkLAzVXoFe5wUis48zru/UMqEMsZcDt54OS7NI9c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.crl rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gR3hHn7cHBB2BVnus5v9Ztaa6kY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 17:55:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3530 (0xdca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6BEF, serialNumber=811DE11E7EDC1C10760559EEB39BFD66D69AEA46 Validity Not Before: Sep 8 17:55:38 2025 GMT Not After : Sep 15 17:55:38 2025 GMT Subject: CN=68bf189a-c760 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:ec:a4:e2:1a:6f:62:8d:eb:20:86:7f:0b:f8: f2:a5:ee:9c:d3:be:14:ab:32:57:d2:d4:40:97:67: 5a:4c:e7:e3:50:96:36:14:ff:09:01:39:8c:0a:dd: 1f:ab:c5:09:a4:e3:11:7e:5e:32:72:fe:73:07:e8: 06:bb:d9:5b:82:9c:7a:8f:45:6e:a0:54:9a:fa:8f: fb:4a:f0:d6:39:f0:d4:f1:54:e6:b0:b9:be:b5:b7: 6d:a5:b0:02:e0:e6:0e:d6:0b:35:52:96:a3:e0:6f: 59:a5:8d:4b:56:01:88:bd:f9:95:85:90:93:d3:96: de:c8:8b:16:9d:0c:34:58:d2:da:aa:d3:f1:c5:8b: 86:a4:18:b1:c7:71:7b:02:b3:6e:81:ce:b4:1f:a9: 8e:98:c1:90:19:e7:9a:bd:24:7b:98:9c:68:82:0d: c8:4f:f4:6f:50:df:e1:41:e9:4d:2d:53:ed:f5:d5: c4:f7:77:66:25:ce:49:06:75:9b:7d:21:db:28:47: 17:94:92:37:6c:03:c7:8f:bb:c9:18:05:08:5b:60: 37:35:d3:d3:9a:43:eb:36:e6:bb:d0:57:86:f0:51: fe:20:c8:c6:12:90:f2:7c:93:dc:bc:b3:6a:69:4e: b5:34:17:3e:62:9a:69:88:c5:b6:62:75:f1:1d:eb: ff:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:89:26:62:5C:16:69:05:71:4B:FD:7A:EC:1C:73:84:2E:4B:8E:67 X509v3 Authority Key Identifier: keyid:81:1D:E1:1E:7E:DC:1C:10:76:05:59:EE:B3:9B:FD:66:D6:9A:EA:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gR3hHn7cHBB2BVnus5v9Ztaa6kY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:3b:b2:7e:f7:e7:e0:e1:47:b4:30:4b:07:d5:ec:0c:d7:37: d3:d4:db:55:40:88:0a:44:a3:d5:71:7e:4a:6f:e7:b3:20:39: e5:60:b3:8a:27:50:f4:df:18:c1:3f:14:1d:36:29:cc:c1:20: e6:2d:92:73:3e:ab:1e:35:22:3a:cf:43:78:69:eb:05:07:98: 75:34:08:f0:3c:bc:e1:9c:db:07:5d:05:aa:4e:3f:ea:9a:bd: 94:dc:28:82:c3:e0:7f:2f:36:eb:06:c3:02:c1:35:52:cb:f4: 9e:3e:40:9e:45:37:2e:30:ea:ab:92:dd:fa:8b:a7:06:5c:c3: 5d:b1:da:25:89:36:41:86:a1:03:9d:f9:82:65:5a:48:89:18: 3b:20:a3:91:7c:d5:15:63:63:88:eb:9a:16:1e:ac:cb:fc:3c: 43:5d:04:f3:64:b9:f4:17:d7:39:64:26:e3:fb:91:80:7a:18: 8f:d9:88:7d:3c:31:8e:15:67:db:cc:eb:66:4f:16:dc:54:61: 96:4d:08:dc:81:0b:fb:07:98:a5:56:74:59:a7:e9:7f:94:7b: 5c:bc:fb:66:31:83:e4:a5:21:bb:1a:68:ac:93:cf:de:fa:a1: 3a:12:6e:4d:2f:5b:2d:d1:26:33:c3:36:ea:88:92:ca:78:12: 6c:31:4b:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDcowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZCRUYxMTAvBgNVBAUTKDgxMURFMTFFN0VEQzFDMTA3NjA1NTlFRUIzOUJGRDY2 RDY5QUVBNDYwHhcNMjUwOTA4MTc1NTM4WhcNMjUwOTE1MTc1NTM4WjAYMRYwFAYD VQQDEw02OGJmMTg5YS1jNzYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxuyk4hpvYo3rIIZ/C/jype6c074UqzJX0tRAl2daTOfjUJY2FP8JATmMCt0f q8UJpOMRfl4ycv5zB+gGu9lbgpx6j0VuoFSa+o/7SvDWOfDU8VTmsLm+tbdtpbAC 4OYO1gs1Upaj4G9ZpY1LVgGIvfmVhZCT05beyIsWnQw0WNLaqtPxxYuGpBixx3F7 ArNugc60H6mOmMGQGeeavSR7mJxogg3IT/RvUN/hQelNLVPt9dXE93dmJc5JBnWb fSHbKEcXlJI3bAPHj7vJGAUIW2A3NdPTmkPrNua70FeG8FH+IMjGEpDyfJPcvLNq aU61NBc+YpppiMW2YnXxHev/wwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMGJJmJc FmkFcUv9euwcc4QuS45nMB8GA1UdIwQYMBaAFIEd4R5+3BwQdgVZ7rOb/WbWmupG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkJFRi80RUE4NjZDNEM0 NDIxMUU5OTQ3N0UyMUZDNEY5QUUwMi9nUjNoSG43Y0hCQjJCVm51czV2OVp0YWE2 a1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dSM2hIbjdjSEJCMkJWbnVzNXY5WnRhYTZrWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkJFRi80RUE4NjZDNEM0NDIxMUU5OTQ3N0UyMUZDNEY5QUUwMi9nUjNoSG43Y0hC QjJCVm51czV2OVp0YWE2a1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3O7J+9+fg4Ue0MEsH1ewM1zfT1NtVQIgKRKPVcX5Kb+ezIDnlYLOK J1D03xjBPxQdNinMwSDmLZJzPqseNSI6z0N4aesFB5h1NAjwPLzhnNsHXQWqTj/q mr2U3CiCw+B/LzbrBsMCwTVSy/SePkCeRTcuMOqrkt36i6cGXMNdsdoliTZBhqED nfmCZVpIiRg7IKORfNUVY2OI65oWHqzL/DxDXQTzZLn0F9c5ZCbj+5GAehiP2Yh9 PDGOFWfbzOtmTxbcVGGWTQjcgQv7B5ilVnRZp+l/lHtcvPtmMYPkpSG7Gmisk8/e +qE6Em5NL1st0SYzwzbqiJLKeBJsMUti -----END CERTIFICATE-----Generated at Wed Sep 10 13:45:17 2025 by rpki-client