$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.mft File: r3mHQ9q2R4aKtmZzr3oTbC6g6ls.mft (raw, json) Hash identifier: VVU6b0/4Qj9V8WuCn584PVYJNwAgQlqRT5g0m6O82jY= Subject key identifier: B3:0D:07:4F:16:EB:F3:1E:A5:3D:24:53:BA:F3:57:B0:BF:31:A4:88 Authority key identifier: AF:79:87:43:DA:B6:47:86:8A:B6:66:73:AF:7A:13:6C:2E:A0:EA:5B Certificate issuer: /CN=A91F5972/serialNumber=AF798743DAB647868AB66673AF7A136C2EA0EA5B Certificate serial: 057F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.mft Manifest number: 0579 Signing time: Fri 22 Aug 2025 23:28:44 +0000 Manifest this update: Fri 22 Aug 2025 23:28:43 +0000 Manifest next update: Fri 29 Aug 2025 23:28:43 +0000 Files and hashes: 1: r3mHQ9q2R4aKtmZzr3oTbC6g6ls.crl (hash: xt9DN3n9m4xktt4tDvUZuFvTf9o9CaEJZuAKFFvBCho=) 2: B52EA19A6E0B11ECA6057963C4F9AE02.roa (hash: sRAPrM6e/yJbsGZwUamXGzz2TWejjmVOjZsdsTU0i6Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.crl rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:28:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1407 (0x57f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5972, serialNumber=AF798743DAB647868AB66673AF7A136C2EA0EA5B Validity Not Before: Aug 22 23:28:43 2025 GMT Not After : Aug 29 23:28:43 2025 GMT Subject: CN=68a8fd2b-2478 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:f3:c6:93:22:7d:46:c3:64:7f:25:31:c4:cd: 65:31:0f:92:79:05:e7:4d:93:22:59:03:cc:5c:82: c7:b8:ad:dc:7c:7f:31:05:3f:ca:1a:87:c8:9f:c8: b6:57:17:e2:40:8f:a1:56:2b:40:0a:63:df:37:9d: f2:47:11:89:f8:0f:61:a0:c6:e5:44:c4:0a:87:8e: 91:94:23:28:3a:9b:29:b6:59:e2:ec:64:27:6c:a2: ba:6a:77:52:59:42:c4:7f:a7:1c:bc:6a:5f:52:68: db:05:af:59:c2:40:b2:3e:1f:12:fa:45:6a:bc:2a: be:16:10:f9:fa:4d:c3:80:a5:0b:eb:8b:bb:40:4b: c2:68:43:26:42:5a:cc:04:a3:f1:34:c0:b0:f9:08: e7:bb:b8:16:a4:f5:cc:03:07:cf:47:82:24:a0:e6: 43:fc:ae:fe:6b:07:3c:be:e6:d1:d9:51:6c:fc:7e: 8a:f8:52:64:6b:39:54:ea:aa:e7:60:6e:c5:a2:37: 85:d4:9a:c8:84:48:48:7e:6f:08:df:60:4b:c1:d8: 45:6a:f2:93:11:c8:7a:67:4d:80:68:9d:d2:dd:dc: 78:5d:1b:3b:0a:20:c0:a1:98:3f:6a:13:4b:3c:f9: 82:ad:75:e6:c4:b1:ad:63:73:95:28:23:fe:76:06: bd:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:0D:07:4F:16:EB:F3:1E:A5:3D:24:53:BA:F3:57:B0:BF:31:A4:88 X509v3 Authority Key Identifier: keyid:AF:79:87:43:DA:B6:47:86:8A:B6:66:73:AF:7A:13:6C:2E:A0:EA:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:49:4b:e6:91:e9:63:b8:7f:61:7c:d0:0f:22:f0:dd:a6:72: b6:97:d9:cb:a0:36:97:8e:59:be:0c:b4:35:d2:21:54:55:02: c0:a0:95:95:c7:ed:48:e4:5f:dc:99:07:7a:7b:e8:ac:82:81: 07:fe:38:a8:26:e5:48:f0:38:a9:e4:97:a8:2b:f6:c3:3a:ce: 13:d0:a2:73:44:7d:12:39:54:12:43:3b:82:df:3c:55:65:bc: d8:ff:22:bc:0c:a8:7f:a1:b0:c0:46:15:2e:28:7e:10:2f:61: 5a:a6:40:bd:27:7b:c2:ca:86:e0:e8:fc:9c:6c:b0:e2:8c:88: 35:22:bf:cf:fb:80:67:fe:49:1a:76:78:49:55:2a:58:c8:93: 2a:47:3b:11:cf:e5:1f:18:44:38:25:70:1c:3c:3d:66:0a:64: 56:c6:e9:52:d8:bf:80:c1:63:3a:0a:e7:5b:04:40:63:99:2d: 79:80:92:0a:91:6f:66:3d:bb:38:c8:f4:0f:fd:d7:b0:fc:b5: c0:85:d7:93:fd:a2:29:fe:a8:9b:3d:b9:70:ee:2c:c9:b1:ee: b8:e6:9a:9a:3e:16:c9:3c:75:e1:10:21:f7:ec:3a:af:c3:75: 7c:cf:a2:16:03:c6:0a:30:78:43:06:88:a0:1d:6c:b5:1e:3c: 8f:ef:36:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBX8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU5NzIxMTAvBgNVBAUTKEFGNzk4NzQzREFCNjQ3ODY4QUI2NjY3M0FGN0ExMzZD MkVBMEVBNUIwHhcNMjUwODIyMjMyODQzWhcNMjUwODI5MjMyODQzWjAYMRYwFAYD VQQDEw02OGE4ZmQyYi0yNDc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+vPGkyJ9RsNkfyUxxM1lMQ+SeQXnTZMiWQPMXILHuK3cfH8xBT/KGofIn8i2 VxfiQI+hVitACmPfN53yRxGJ+A9hoMblRMQKh46RlCMoOpsptlni7GQnbKK6andS WULEf6ccvGpfUmjbBa9ZwkCyPh8S+kVqvCq+FhD5+k3DgKUL64u7QEvCaEMmQlrM BKPxNMCw+Qjnu7gWpPXMAwfPR4IkoOZD/K7+awc8vubR2VFs/H6K+FJkazlU6qrn YG7FojeF1JrIhEhIfm8I32BLwdhFavKTEch6Z02AaJ3S3dx4XRs7CiDAoZg/ahNL PPmCrXXmxLGtY3OVKCP+dga9/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLMNB08W 6/MepT0kU7rzV7C/MaSIMB8GA1UdIwQYMBaAFK95h0PatkeGirZmc696E2wuoOpb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTk3Mi85QkY2QzQ0RUYw MzExMUVCOTVGNzY3NDhDNEY5QUUwMi9yM21IUTlxMlI0YUt0bVp6cjNvVGJDNmc2 bHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3IzbUhROXEyUjRhS3RtWnpyM29UYkM2ZzZscy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTk3Mi85QkY2QzQ0RUYwMzExMUVCOTVGNzY3NDhDNEY5QUUwMi9yM21IUTlxMlI0 YUt0bVp6cjNvVGJDNmc2bHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSSUvmkeljuH9hfNAPIvDdpnK2l9nLoDaXjlm+DLQ10iFUVQLAoJWV x+1I5F/cmQd6e+isgoEH/jioJuVI8Dip5JeoK/bDOs4T0KJzRH0SOVQSQzuC3zxV ZbzY/yK8DKh/obDARhUuKH4QL2FapkC9J3vCyobg6PycbLDijIg1Ir/P+4Bn/kka dnhJVSpYyJMqRzsRz+UfGEQ4JXAcPD1mCmRWxulS2L+AwWM6CudbBEBjmS15gJIK kW9mPbs4yPQP/dew/LXAhdeT/aIp/qibPblw7izJse645pqaPhbJPHXhECH37Dqv w3V8z6IWA8YKMHhDBoigHWy1HjyP7za5 -----END CERTIFICATE-----Generated at Sat Aug 23 02:13:58 2025 by rpki-client