$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.mft File: 3W8BT4rUXahdDhbys3aHZ5REhbM.mft (raw, json) Hash identifier: hYq2rgxwn75ToIVxje3dO7lNLV33Y95I5idhQ6AWexY= Subject key identifier: 72:F5:C7:04:35:00:F5:74:51:3E:29:10:00:04:F3:CF:56:59:67:F2 Authority key identifier: DD:6F:01:4F:8A:D4:5D:A8:5D:0E:16:F2:B3:76:87:67:94:44:85:B3 Certificate issuer: /CN=A91E8458/serialNumber=DD6F014F8AD45DA85D0E16F2B3768767944485B3 Certificate serial: 0805 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3W8BT4rUXahdDhbys3aHZ5REhbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.mft Manifest number: 07FF Signing time: Tue 16 Sep 2025 21:11:44 +0000 Manifest this update: Tue 16 Sep 2025 21:11:42 +0000 Manifest next update: Tue 23 Sep 2025 21:11:42 +0000 Files and hashes: 1: 3W8BT4rUXahdDhbys3aHZ5REhbM.crl (hash: bhysK5ehAdvqZXuDlVoi5yFExLSnvRjrzpgqSrGhyPQ=) 2: FAE7339CF7B911EA91318653C4F9AE02.roa (hash: AWPlkT/VPOlTrND3SaqX87pYECk2GQcIiP0u70mzoFk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.crl rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3W8BT4rUXahdDhbys3aHZ5REhbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Sep 2025 21:11:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2053 (0x805) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8458, serialNumber=DD6F014F8AD45DA85D0E16F2B3768767944485B3 Validity Not Before: Sep 16 21:11:42 2025 GMT Not After : Sep 23 21:11:42 2025 GMT Subject: CN=68c9d28f-3d88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:e8:98:e8:71:f5:e9:69:ae:31:6a:db:33:97: 3b:d2:cc:86:4f:13:ff:e6:ec:ee:2e:1b:e8:c3:27: ae:d0:03:d6:a6:fa:9b:97:16:2c:8f:6a:36:d3:3a: bc:61:54:2c:cc:a0:92:69:31:f2:1a:f3:02:05:f8: 77:24:37:aa:f0:61:54:00:63:d8:8f:70:8d:7f:ec: 91:b1:a2:27:53:61:f0:5b:e8:1e:14:39:14:ec:0d: 77:c3:8b:5c:0a:4b:66:a6:59:00:5a:fe:be:aa:ae: d1:46:3c:d6:ec:b4:2e:ac:0c:46:8e:1d:07:73:8d: 8a:98:eb:9d:e2:a5:30:cb:28:01:e4:e8:48:6e:ed: f1:f2:35:5d:7b:28:00:fd:20:09:66:f8:2f:a4:00: 8e:75:eb:63:d3:31:ad:c8:e8:aa:92:6f:86:1f:22: 00:a0:5c:6d:86:8a:b3:1d:f8:58:4b:9b:53:e2:03: c5:3a:0e:dd:81:ee:1e:57:a7:ba:25:c2:22:8b:22: 00:d6:32:2b:d3:72:f1:ac:6d:92:8f:7b:a3:9c:27: 1a:f8:8d:6d:b3:83:63:cd:5d:2b:a8:d1:a7:69:fe: 26:c9:10:fa:5e:e0:c1:bd:36:fb:58:e2:31:a7:99: 21:62:d2:98:96:ac:0d:65:ed:85:44:6f:04:a1:ad: d4:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:F5:C7:04:35:00:F5:74:51:3E:29:10:00:04:F3:CF:56:59:67:F2 X509v3 Authority Key Identifier: keyid:DD:6F:01:4F:8A:D4:5D:A8:5D:0E:16:F2:B3:76:87:67:94:44:85:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3W8BT4rUXahdDhbys3aHZ5REhbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:80:c3:bf:96:ff:e1:e2:57:42:71:b1:58:46:1b:a8:37:1c: 41:73:e5:a8:f3:3f:f6:e9:cd:c9:c3:70:97:41:63:84:52:1c: b4:d8:30:55:36:83:71:fc:a8:78:df:69:3a:29:6d:98:40:88: e6:ea:c2:ef:5d:ba:c7:80:76:15:92:e8:9c:d7:e3:a4:8c:c2: b6:8a:c2:25:c3:4c:0c:6e:2f:4e:d2:85:ec:28:67:e3:d7:3e: 59:31:2e:8d:e1:ad:c5:79:eb:e2:d1:d4:c0:4b:01:36:50:a9: d0:ec:a7:8f:3e:3f:13:3c:9c:d9:71:80:ee:3a:e6:fc:06:b0: d4:be:d2:93:94:47:3b:44:7f:48:d5:49:b5:96:90:9a:55:bc: d6:10:e6:ad:bc:48:2c:0f:a7:03:4a:c8:54:46:1e:82:fb:7f: df:b6:c7:74:04:97:eb:b0:9b:3b:cc:ef:dc:4d:b0:93:6f:dc: c6:6c:d4:bb:e7:3a:13:ff:49:6e:9f:dc:43:73:da:a0:8c:e6: b1:d1:af:bf:74:2a:9e:d2:6d:7f:d1:40:b4:3c:67:ba:4c:12: 2f:f3:7b:fc:63:2b:51:db:d3:7f:12:8e:7f:67:ea:73:d2:5f: e8:66:16:dd:48:1c:69:59:21:84:fc:6d:79:8c:2d:54:98:8a: 15:ed:e4:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCAUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg0NTgxMTAvBgNVBAUTKERENkYwMTRGOEFENDVEQTg1RDBFMTZGMkIzNzY4NzY3 OTQ0NDg1QjMwHhcNMjUwOTE2MjExMTQyWhcNMjUwOTIzMjExMTQyWjAYMRYwFAYD VQQDEw02OGM5ZDI4Zi0zZDg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz+iY6HH16WmuMWrbM5c70syGTxP/5uzuLhvowyeu0APWpvqblxYsj2o20zq8 YVQszKCSaTHyGvMCBfh3JDeq8GFUAGPYj3CNf+yRsaInU2HwW+geFDkU7A13w4tc CktmplkAWv6+qq7RRjzW7LQurAxGjh0Hc42KmOud4qUwyygB5OhIbu3x8jVdeygA /SAJZvgvpACOdetj0zGtyOiqkm+GHyIAoFxthoqzHfhYS5tT4gPFOg7dge4eV6e6 JcIiiyIA1jIr03LxrG2Sj3ujnCca+I1ts4NjzV0rqNGnaf4myRD6XuDBvTb7WOIx p5khYtKYlqwNZe2FRG8Eoa3UjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHL1xwQ1 APV0UT4pEAAE889WWWfyMB8GA1UdIwQYMBaAFN1vAU+K1F2oXQ4W8rN2h2eURIWz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODQ1OC9GOEFGMTIwMkY2 MTUxMUVBODM3NzAwNkNDNEY5QUUwMi8zVzhCVDRyVVhhaGREaGJ5czNhSFo1UkVo Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNXOEJUNHJVWGFoZERoYnlzM2FIWjVSRWhiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODQ1OC9GOEFGMTIwMkY2MTUxMUVBODM3NzAwNkNDNEY5QUUwMi8zVzhCVDRyVVhh aGREaGJ5czNhSFo1UkVoYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAngMO/lv/h4ldCcbFYRhuoNxxBc+Wo8z/26c3Jw3CXQWOEUhy02DBV NoNx/Kh432k6KW2YQIjm6sLvXbrHgHYVkuic1+OkjMK2isIlw0wMbi9O0oXsKGfj 1z5ZMS6N4a3Feevi0dTASwE2UKnQ7KePPj8TPJzZcYDuOub8BrDUvtKTlEc7RH9I 1Um1lpCaVbzWEOatvEgsD6cDSshURh6C+3/ftsd0BJfrsJs7zO/cTbCTb9zGbNS7 5zoT/0lun9xDc9qgjOax0a+/dCqe0m1/0UC0PGe6TBIv83v8YytR29N/Eo5/Z+pz 0l/oZhbdSBxpWSGE/G15jC1UmIoV7eTc -----END CERTIFICATE-----Generated at Thu Sep 18 19:13:27 2025 by rpki-client