$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft File: 3af4p0oKdM_262MEKLbJ1w1XvXY.mft (raw, json) Hash identifier: MlKoV/jc1/y5JnLAO7yrpBVAtz8FnzWaAClJDqQKTBs= Subject key identifier: 9A:C8:42:3F:18:62:23:A6:9A:B4:5E:CD:38:B5:E5:70:7D:9C:A6:48 Authority key identifier: DD:A7:F8:A7:4A:0A:74:CF:F6:EB:63:04:28:B6:C9:D7:0D:57:BD:76 Certificate issuer: /CN=A91E7BC4/serialNumber=DDA7F8A74A0A74CFF6EB630428B6C9D70D57BD76 Certificate serial: 0DDA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3af4p0oKdM_262MEKLbJ1w1XvXY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft Manifest number: 0DA0 Signing time: Thu 04 Sep 2025 18:09:10 +0000 Manifest this update: Thu 04 Sep 2025 18:09:10 +0000 Manifest next update: Thu 11 Sep 2025 18:09:10 +0000 Files and hashes: 1: 3af4p0oKdM_262MEKLbJ1w1XvXY.crl (hash: TlKJqNmwd6f2P+2j4PB4t+AeimDIU/XEWZUp5o+iMHU=) 2: CE83F0E6F0E411EAA47C3968C4F9AE02.roa (hash: ZQBdoWyO873LcT1vKoBchR3Mc6PGkjTHNlXwZK5KBUA=) 3: E69AF38AB11C11EAACC28D2EC4F9AE02.roa (hash: vmjmVmXjdkD0vxVvLQigcrFyWXDcETievw8r2QIVv8s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.crl rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3af4p0oKdM_262MEKLbJ1w1XvXY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 18:09:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3546 (0xdda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7BC4, serialNumber=DDA7F8A74A0A74CFF6EB630428B6C9D70D57BD76 Validity Not Before: Sep 4 18:09:10 2025 GMT Not After : Sep 11 18:09:10 2025 GMT Subject: CN=68b9d5c6-8840 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:1e:38:2e:14:4f:d1:f8:29:9d:d7:3a:3c:ae: db:c9:ea:b7:a6:7a:7e:94:42:39:17:b8:c4:de:21: b6:ad:44:38:13:2a:2a:ad:07:c0:3d:8d:dc:19:8a: c8:b5:18:cd:c4:84:e4:4d:b2:5f:04:23:54:02:1b: 06:ac:92:71:2d:ad:a5:89:53:5b:c3:59:bb:55:07: bb:31:7f:fc:13:50:28:98:f3:14:cd:95:3f:b3:29: 39:1a:36:5f:d9:85:a9:4c:66:13:25:d9:4c:86:19: f1:9d:21:c5:ae:fe:10:f1:d4:26:34:98:92:68:9a: f3:e1:76:89:6b:4f:09:0f:1a:05:bf:a4:72:36:cd: 2e:47:80:f3:f0:c0:df:91:96:01:99:bc:d6:1e:15: ad:08:90:c8:be:be:44:79:ca:44:ca:a9:60:58:56: 45:cd:c5:55:dd:60:77:8a:58:3f:af:79:1d:3e:8a: ac:ce:03:22:a9:06:47:47:5a:48:ab:ad:96:86:e6: a6:f8:28:09:ea:9e:d8:72:af:37:e0:e5:35:00:c1: fb:f0:67:a8:30:66:d7:5d:01:f5:4f:45:04:62:5d: 4c:bf:a9:c3:19:e0:06:43:8f:d0:7e:c2:c1:d1:d0: 85:58:a7:0b:fd:bf:4c:14:69:33:1e:d2:f9:75:d5: 3e:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:C8:42:3F:18:62:23:A6:9A:B4:5E:CD:38:B5:E5:70:7D:9C:A6:48 X509v3 Authority Key Identifier: keyid:DD:A7:F8:A7:4A:0A:74:CF:F6:EB:63:04:28:B6:C9:D7:0D:57:BD:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3af4p0oKdM_262MEKLbJ1w1XvXY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:aa:80:87:d1:e4:34:f1:f6:3c:8a:cb:16:0a:1c:15:e2:96: c0:06:7e:fe:b3:77:44:9f:7c:73:cf:53:a8:f8:ad:a3:ca:51: 3d:b4:72:a2:10:99:45:26:f6:af:dc:06:8a:c4:1a:76:ea:9a: 69:05:33:10:1b:57:3e:c7:52:1d:3e:f0:d6:d2:d3:e0:8c:10: ab:02:4d:53:d8:30:ad:2f:56:7d:aa:48:dc:0e:0c:87:04:78: 13:de:2f:f6:08:71:39:3c:50:03:bd:3c:17:1c:a1:57:03:68: 14:0e:60:cb:25:ec:3f:c7:ac:b5:88:cf:82:cf:db:78:b5:ec: 6e:c3:92:71:65:6b:de:d6:d7:5e:29:d7:7f:fe:ec:07:fc:2e: 5f:72:50:19:d3:c4:27:26:37:29:3b:ef:04:d8:53:89:fc:45: aa:8f:ff:f4:3b:2a:e3:7c:e2:b0:b0:44:0b:a7:c1:bc:c8:b6: c9:8e:72:06:76:3e:3f:33:3b:61:c0:1e:7e:94:f6:ae:7e:e5: 2e:38:e5:9b:bf:a8:e9:ae:65:0f:9f:54:a9:14:d2:9f:32:4a: e6:db:36:36:a1:1c:60:d0:12:7d:52:25:61:df:90:e1:6f:8f: c1:f0:b9:ed:21:15:a5:f6:83:69:d0:13:2a:fb:29:76:bd:ec: ea:33:fa:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDdowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdCQzQxMTAvBgNVBAUTKEREQTdGOEE3NEEwQTc0Q0ZGNkVCNjMwNDI4QjZDOUQ3 MEQ1N0JENzYwHhcNMjUwOTA0MTgwOTEwWhcNMjUwOTExMTgwOTEwWjAYMRYwFAYD VQQDEw02OGI5ZDVjNi04ODQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7B44LhRP0fgpndc6PK7byeq3pnp+lEI5F7jE3iG2rUQ4EyoqrQfAPY3cGYrI tRjNxITkTbJfBCNUAhsGrJJxLa2liVNbw1m7VQe7MX/8E1AomPMUzZU/syk5GjZf 2YWpTGYTJdlMhhnxnSHFrv4Q8dQmNJiSaJrz4XaJa08JDxoFv6RyNs0uR4Dz8MDf kZYBmbzWHhWtCJDIvr5EecpEyqlgWFZFzcVV3WB3ilg/r3kdPoqszgMiqQZHR1pI q62Whuam+CgJ6p7Ycq834OU1AMH78GeoMGbXXQH1T0UEYl1Mv6nDGeAGQ4/QfsLB 0dCFWKcL/b9MFGkzHtL5ddU+lwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJrIQj8Y YiOmmrRezTi15XB9nKZIMB8GA1UdIwQYMBaAFN2n+KdKCnTP9utjBCi2ydcNV712 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0JDNC8yRDFBNTk1QUQ1 MEQxMUU5QkFENkMyMjZDNEY5QUUwMi8zYWY0cDBvS2RNXzI2Mk1FS0xiSjF3MVh2 WFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNhZjRwMG9LZE1fMjYyTUVLTGJKMXcxWHZYWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0JDNC8yRDFBNTk1QUQ1MEQxMUU5QkFENkMyMjZDNEY5QUUwMi8zYWY0cDBvS2RN XzI2Mk1FS0xiSjF3MVh2WFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVqoCH0eQ08fY8issWChwV4pbABn7+s3dEn3xzz1Oo+K2jylE9tHKi EJlFJvav3AaKxBp26pppBTMQG1c+x1IdPvDW0tPgjBCrAk1T2DCtL1Z9qkjcDgyH BHgT3i/2CHE5PFADvTwXHKFXA2gUDmDLJew/x6y1iM+Cz9t4texuw5JxZWve1tde Kdd//uwH/C5fclAZ08QnJjcpO+8E2FOJ/EWqj//0OyrjfOKwsEQLp8G8yLbJjnIG dj4/MzthwB5+lPaufuUuOOWbv6jprmUPn1SpFNKfMkrm2zY2oRxg0BJ9UiVh35Dh b4/B8LntIRWl9oNp0BMq+yl2vezqM/r5 -----END CERTIFICATE-----Generated at Sat Sep 6 08:26:06 2025 by rpki-client