$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft File: 3rTAuQf6yhxdN3a9SUb0uqjKazA.mft (raw, json) Hash identifier: oxcFLxndxT728O2txs5qmc0c3nZO0AoADRmo8RmXnTI= Subject key identifier: E1:2C:11:C2:91:83:22:DD:5F:58:54:CC:C9:C7:62:E0:3F:EF:BD:1D Authority key identifier: DE:B4:C0:B9:07:FA:CA:1C:5D:37:76:BD:49:46:F4:BA:A8:CA:6B:30 Certificate issuer: /CN=A91F3B5F/serialNumber=DEB4C0B907FACA1C5D3776BD4946F4BAA8CA6B30 Certificate serial: 52 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3rTAuQf6yhxdN3a9SUb0uqjKazA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft Manifest number: 51 Signing time: Fri 05 Sep 2025 07:48:04 +0000 Manifest this update: Fri 05 Sep 2025 07:48:03 +0000 Manifest next update: Fri 12 Sep 2025 07:48:03 +0000 Files and hashes: 1: 3rTAuQf6yhxdN3a9SUb0uqjKazA.crl (hash: CFc9nxqziWOPVX8BKN6LMcWbn+0jr424OXffyMUr5tw=) 2: 0B65C980136D11F09F542C81C4F9AE02.roa (hash: VBqh2E7rkd2+euZfBVuvn8Wuy6ZridPl7cQmEbFqT/k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.crl rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3rTAuQf6yhxdN3a9SUb0uqjKazA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 07:48:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 82 (0x52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3B5F, serialNumber=DEB4C0B907FACA1C5D3776BD4946F4BAA8CA6B30 Validity Not Before: Sep 5 07:48:03 2025 GMT Not After : Sep 12 07:48:03 2025 GMT Subject: CN=68ba95b3-55cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:1d:7a:c1:40:0e:50:81:0c:1f:85:4f:55:9d: ba:1e:db:45:6c:3c:e5:e8:3f:54:3e:2e:29:03:4b: d1:2f:d0:7d:a4:ca:7a:86:42:80:d1:4b:a7:0f:c2: 24:6e:d9:2f:50:13:27:bc:d7:3a:82:70:f9:5a:12: 14:93:5c:10:59:b1:7f:d7:2b:39:38:78:89:55:c6: c9:57:86:cf:b0:ba:0b:6a:80:6d:2c:ed:d3:99:e8: 00:2c:e7:da:7d:8e:70:c1:41:3f:60:a0:b2:aa:a1: 2c:c6:40:e2:da:82:bf:73:c6:3a:a8:3e:98:b9:48: 25:dc:d0:ab:32:62:3d:99:f9:23:4d:29:d3:14:e4: 29:86:8b:72:d4:0e:cb:9d:a3:04:f1:85:db:16:3c: c4:ad:32:79:6f:a8:0d:f2:8e:9e:e5:53:e6:52:40: 28:29:94:4e:47:88:e8:fd:ab:75:88:08:41:2b:ce: 4e:69:6c:41:5a:97:e0:0c:7b:1d:cf:23:80:6e:9f: ac:e0:e2:41:28:62:52:14:1d:b6:38:63:6b:da:21: 60:b4:1d:a6:c4:c2:1f:ec:36:59:17:36:95:5c:c6: 33:83:eb:f7:d2:92:1b:69:8f:c5:d2:76:af:11:f9: 67:52:d5:01:ee:a4:d1:f0:82:1a:7e:40:37:19:02: f0:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:2C:11:C2:91:83:22:DD:5F:58:54:CC:C9:C7:62:E0:3F:EF:BD:1D X509v3 Authority Key Identifier: keyid:DE:B4:C0:B9:07:FA:CA:1C:5D:37:76:BD:49:46:F4:BA:A8:CA:6B:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3rTAuQf6yhxdN3a9SUb0uqjKazA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:a0:a7:82:34:69:e2:f3:bd:d4:dd:0d:f5:26:ec:fd:87:1c: f3:df:0a:a9:df:bc:19:8b:a5:9f:12:0b:21:c1:22:32:84:1d: 9c:1b:e2:ec:1a:53:48:24:72:1a:1f:2d:f7:ce:43:d0:5f:5d: 7b:fc:80:68:75:e5:f4:77:3a:a9:ed:9d:92:a1:4d:c8:1c:0e: dd:4e:9b:69:6a:d6:a2:21:5b:ba:54:ca:bc:c7:1b:6e:85:e3: 66:1d:ac:64:d8:b3:78:a2:c1:62:e7:83:f2:83:71:10:91:ab: d7:36:a1:a6:2f:b2:1e:02:4e:26:62:c3:f1:74:c2:33:95:81: d1:26:37:1a:34:52:dd:fb:b3:45:b3:ba:a4:57:4e:3f:8f:83: 70:4d:8b:7f:9c:94:84:95:7f:1d:77:89:da:be:d0:82:ba:64: 3a:70:09:87:8c:7a:cc:b2:27:65:f0:84:d2:70:9b:a8:7f:8c: 73:7c:bb:48:9d:4a:97:40:3b:b2:57:85:8e:53:74:2c:69:af: 9b:b6:2b:a3:13:80:1e:c2:a9:fa:f7:32:08:a0:1d:a9:c7:4a: dc:e8:e4:fd:25:b3:1a:c1:c9:e7:48:89:34:b4:32:5b:19:92: 76:49:85:c8:d1:b5:ff:b4:59:73:d3:89:c9:41:1c:bc:f6:a2: 04:f2:b8:fd -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG M0I1RjExMC8GA1UEBRMoREVCNEMwQjkwN0ZBQ0ExQzVEMzc3NkJENDk0NkY0QkFB OENBNkIzMDAeFw0yNTA5MDUwNzQ4MDNaFw0yNTA5MTIwNzQ4MDNaMBgxFjAUBgNV BAMTDTY4YmE5NWIzLTU1Y2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD2HXrBQA5QgQwfhU9Vnboe20VsPOXoP1Q+LikDS9Ev0H2kynqGQoDRS6cPwiRu 2S9QEye81zqCcPlaEhSTXBBZsX/XKzk4eIlVxslXhs+wugtqgG0s7dOZ6AAs59p9 jnDBQT9goLKqoSzGQOLagr9zxjqoPpi5SCXc0KsyYj2Z+SNNKdMU5CmGi3LUDsud owTxhdsWPMStMnlvqA3yjp7lU+ZSQCgplE5HiOj9q3WICEErzk5pbEFal+AMex3P I4Bun6zg4kEoYlIUHbY4Y2vaIWC0HabEwh/sNlkXNpVcxjOD6/fSkhtpj8XSdq8R +WdS1QHupNHwghp+QDcZAvCzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU4SwRwpGD It1fWFTMycdi4D/vvR0wHwYDVR0jBBgwFoAU3rTAuQf6yhxdN3a9SUb0uqjKazAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYzQjVGL0IxNzBDOTEyMTM2 NjExRjA4MkUzQzUwREM0RjlBRTAyLzNyVEF1UWY2eWh4ZE4zYTlTVWIwdXFqS2F6 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvM3JUQXVRZjZ5aHhkTjNhOVNVYjB1cWpLYXpBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYz QjVGL0IxNzBDOTEyMTM2NjExRjA4MkUzQzUwREM0RjlBRTAyLzNyVEF1UWY2eWh4 ZE4zYTlTVWIwdXFqS2F6QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAGgp4I0aeLzvdTdDfUm7P2HHPPfCqnfvBmLpZ8SCyHBIjKEHZwb4uwa U0gkchofLffOQ9BfXXv8gGh15fR3OqntnZKhTcgcDt1Om2lq1qIhW7pUyrzHG26F 42YdrGTYs3iiwWLng/KDcRCRq9c2oaYvsh4CTiZiw/F0wjOVgdEmNxo0Ut37s0Wz uqRXTj+Pg3BNi3+clISVfx13idq+0IK6ZDpwCYeMesyyJ2XwhNJwm6h/jHN8u0id SpdAO7JXhY5TdCxpr5u2K6MTgB7Cqfr3MgigHanHStzo5P0lsxrByedIiTS0MlsZ knZJhcjRtf+0WXPTiclBHLz2ogTyuP0= -----END CERTIFICATE-----Generated at Sat Sep 6 21:04:24 2025 by rpki-client