$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.mft File: UT3TCM11FCJ69R2AXlVApqn10zk.mft (raw, json) Hash identifier: fJ50SVyQQ8+rJ8FL+yqab7uJtc8qgMlWDYmYtl6xK+c= Subject key identifier: 6D:F4:1B:40:29:AA:89:CF:31:85:56:77:A7:95:35:F6:34:CB:58:CE Authority key identifier: 51:3D:D3:08:CD:75:14:22:7A:F5:1D:80:5E:55:40:A6:A9:F5:D3:39 Certificate issuer: /CN=A91F8119/serialNumber=513DD308CD7514227AF51D805E5540A6A9F5D339 Certificate serial: 1017 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UT3TCM11FCJ69R2AXlVApqn10zk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.mft Manifest number: 100F Signing time: Sat 06 Sep 2025 15:45:34 +0000 Manifest this update: Sat 06 Sep 2025 15:45:34 +0000 Manifest next update: Sat 13 Sep 2025 15:45:34 +0000 Files and hashes: 1: UT3TCM11FCJ69R2AXlVApqn10zk.crl (hash: cRl+OQL1E8SNbaHgW/7N1PLSqMx0OVyUobKIaLGNVdA=) 2: 8BCB105015EA11EC86834E2FC4F9AE02.roa (hash: IX9d9TIKewpWNDigl1ZdHd+4/uZo37EA6gD3nX3eWyM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.crl rsync://rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UT3TCM11FCJ69R2AXlVApqn10zk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 15:45:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4119 (0x1017) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8119, serialNumber=513DD308CD7514227AF51D805E5540A6A9F5D339 Validity Not Before: Sep 6 15:45:34 2025 GMT Not After : Sep 13 15:45:34 2025 GMT Subject: CN=68bc571e-c7ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:19:93:d8:80:54:b0:f2:7d:76:24:1e:fe:83: 89:0b:c1:8c:46:64:3d:49:9d:1c:94:12:20:fc:7a: 7a:0a:b2:b1:de:b5:99:1c:aa:2a:7d:d3:1a:3a:12: 89:4e:41:71:57:8b:49:5c:22:8b:f4:b9:ea:56:c8: ba:ac:03:d8:2f:b4:85:c9:da:5c:40:cc:34:01:87: a1:44:c4:e7:77:7c:fd:8a:91:96:f3:79:8d:e6:8d: 45:cf:46:aa:23:92:70:07:b8:dd:f3:9d:5d:a7:cc: ee:70:ef:23:4a:65:a2:d3:3e:f1:d1:f5:ce:a2:0e: cc:cd:10:32:31:ad:81:d0:38:0e:81:30:59:7a:f9: 84:d5:ee:9d:34:8f:63:bc:63:38:ea:08:44:3c:7b: ec:fa:0e:0c:08:5d:be:dd:5c:c2:4f:fd:a4:fc:89: 5a:cd:02:a2:2e:11:12:34:9d:28:73:b1:46:99:59: f4:69:a4:78:f0:fd:a5:8f:98:ca:3d:52:85:60:ae: a1:04:13:1a:02:d3:0a:82:f5:46:95:04:81:0e:a9: 2b:0c:28:5f:d1:20:bc:d7:1a:50:ca:94:3e:98:f2: 9b:b8:5c:70:c4:00:9e:cc:52:03:2a:8f:21:94:90: fe:41:76:f0:2c:c3:64:3e:f2:26:8d:2d:67:8c:54: a2:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:F4:1B:40:29:AA:89:CF:31:85:56:77:A7:95:35:F6:34:CB:58:CE X509v3 Authority Key Identifier: keyid:51:3D:D3:08:CD:75:14:22:7A:F5:1D:80:5E:55:40:A6:A9:F5:D3:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UT3TCM11FCJ69R2AXlVApqn10zk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:86:fa:d7:6f:52:ab:49:8b:9f:d4:2a:e7:41:fe:5f:2c:f1: 19:66:af:84:75:a5:90:6f:7f:f5:fd:66:39:0e:31:18:80:9a: b2:97:2d:31:d0:28:b6:8d:60:57:e6:f8:72:93:30:98:ca:64: 73:74:fd:90:2c:74:da:16:50:94:30:06:32:e0:b6:d6:9f:f8: 58:e6:e8:e2:22:c2:6e:50:15:b8:b8:8a:88:33:b2:40:5f:82: 22:a7:8d:b1:f6:ac:c8:3e:13:0e:5c:93:6a:24:34:21:bf:62: 00:e1:cd:39:21:83:62:95:f2:ea:f5:cc:fc:af:1f:5c:68:2c: f1:31:81:59:9b:70:c4:6e:54:d5:03:eb:5a:8d:9e:d7:5b:b7: 92:aa:02:cc:32:41:12:81:3d:20:4a:ec:a1:04:a4:c9:ba:6b: ec:c6:e3:03:d2:a3:03:85:aa:4c:42:e6:77:13:b6:f3:da:b0: 61:bf:a7:5b:aa:92:3f:90:93:0b:ae:b6:91:52:77:de:bc:1a: 66:aa:57:db:a2:c0:cb:33:2e:d5:7c:4b:49:0e:7a:6e:c1:63: db:c3:2e:02:8a:28:39:db:b3:66:a5:62:36:c6:68:55:7b:f7: c1:13:1e:e3:54:50:2d:c8:56:d6:29:6b:b5:77:91:a8:63:5a: c4:14:9d:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEBcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgxMTkxMTAvBgNVBAUTKDUxM0REMzA4Q0Q3NTE0MjI3QUY1MUQ4MDVFNTU0MEE2 QTlGNUQzMzkwHhcNMjUwOTA2MTU0NTM0WhcNMjUwOTEzMTU0NTM0WjAYMRYwFAYD VQQDEw02OGJjNTcxZS1jN2FlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0BmT2IBUsPJ9diQe/oOJC8GMRmQ9SZ0clBIg/Hp6CrKx3rWZHKoqfdMaOhKJ TkFxV4tJXCKL9LnqVsi6rAPYL7SFydpcQMw0AYehRMTnd3z9ipGW83mN5o1Fz0aq I5JwB7jd851dp8zucO8jSmWi0z7x0fXOog7MzRAyMa2B0DgOgTBZevmE1e6dNI9j vGM46ghEPHvs+g4MCF2+3VzCT/2k/IlazQKiLhESNJ0oc7FGmVn0aaR48P2lj5jK PVKFYK6hBBMaAtMKgvVGlQSBDqkrDChf0SC81xpQypQ+mPKbuFxwxACezFIDKo8h lJD+QXbwLMNkPvImjS1njFSijwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG30G0Ap qonPMYVWd6eVNfY0y1jOMB8GA1UdIwQYMBaAFFE90wjNdRQievUdgF5VQKap9dM5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODExOS80RTJEN0EzODUx NDAxMUU5OEQ5ODNCNjFDNEY5QUUwMi9VVDNUQ00xMUZDSjY5UjJBWGxWQXBxbjEw emsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1VUM1RDTTExRkNKNjlSMkFYbFZBcHFuMTB6ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODExOS80RTJEN0EzODUxNDAxMUU5OEQ5ODNCNjFDNEY5QUUwMi9VVDNUQ00xMUZD SjY5UjJBWGxWQXBxbjEwemsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhhvrXb1KrSYuf1CrnQf5fLPEZZq+EdaWQb3/1/WY5DjEYgJqyly0x 0Ci2jWBX5vhykzCYymRzdP2QLHTaFlCUMAYy4LbWn/hY5ujiIsJuUBW4uIqIM7JA X4Iip42x9qzIPhMOXJNqJDQhv2IA4c05IYNilfLq9cz8rx9caCzxMYFZm3DEblTV A+tajZ7XW7eSqgLMMkESgT0gSuyhBKTJumvsxuMD0qMDhapMQuZ3E7bz2rBhv6db qpI/kJMLrraRUnfevBpmqlfbosDLMy7VfEtJDnpuwWPbwy4Ciig527NmpWI2xmhV e/fBEx7jVFAtyFbWKWu1d5GoY1rEFJ1s -----END CERTIFICATE-----Generated at Sat Sep 6 21:01:50 2025 by rpki-client