$ rpki-client -vvf rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.mft File: 3K6HG3xct5vH7PZ5s7LTyVan2eM.mft (raw, json) Hash identifier: 0FxMfgwEcQnkcitTbf7cVVL6WHnwf2yXp401Lqd6aVI= Subject key identifier: C6:5E:19:14:C8:FA:89:63:1F:37:F1:65:17:9B:E4:2B:A2:2C:74:14 Authority key identifier: DC:AE:87:1B:7C:5C:B7:9B:C7:EC:F6:79:B3:B2:D3:C9:56:A7:D9:E3 Certificate issuer: /CN=A91604AC/serialNumber=DCAE871B7C5CB79BC7ECF679B3B2D3C956A7D9E3 Certificate serial: 06A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3K6HG3xct5vH7PZ5s7LTyVan2eM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.mft Manifest number: 0699 Signing time: Tue 12 Aug 2025 22:42:13 +0000 Manifest this update: Tue 12 Aug 2025 22:42:13 +0000 Manifest next update: Tue 19 Aug 2025 22:42:12 +0000 Files and hashes: 1: 3K6HG3xct5vH7PZ5s7LTyVan2eM.crl (hash: 80MKywxuNnizIP59oWVPngUhYOFEtIMEEPJ5EJolumU=) 2: 0081F3D6F22111EE8EEC070EC4F9AE02.roa (hash: FOS9hpfhSMJ/5W+e+NFkrecUhC86TAOPH0uxsIPYP4A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.crl rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3K6HG3xct5vH7PZ5s7LTyVan2eM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 22:42:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1701 (0x6a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91604AC, serialNumber=DCAE871B7C5CB79BC7ECF679B3B2D3C956A7D9E3 Validity Not Before: Aug 12 22:42:13 2025 GMT Not After : Aug 19 22:42:12 2025 GMT Subject: CN=689bc345-6a42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:c4:75:b1:7c:bd:49:15:7f:d2:f3:71:c7:48: e2:e7:dd:49:40:f6:b0:9c:21:1c:f1:ad:57:32:fc: 1f:d0:bd:07:57:2e:b6:9f:66:c3:c9:08:28:ef:86: 02:c6:ef:c6:be:5f:d4:b2:d2:4a:6e:c1:c6:24:0c: a9:67:55:96:96:27:33:c2:d6:25:1a:f5:db:5c:72: dd:63:8e:53:8d:ce:e4:6a:39:8d:88:6f:91:69:7f: 67:23:87:be:87:6b:1c:bb:9b:e2:44:99:94:24:15: 64:d8:bb:34:00:c6:e9:ae:78:a9:5f:09:92:bc:a4: 5d:ae:14:8e:cb:69:75:ea:51:53:fe:c1:19:49:3f: ad:1c:19:82:d2:40:40:2d:08:ad:ae:c3:92:b7:5e: 8d:b4:2e:cb:56:92:4c:bf:6b:b3:6f:93:52:09:27: 44:57:0d:5d:21:45:ca:47:b9:62:fb:a8:56:0e:a8: 55:2e:4b:f8:4d:63:62:41:42:f7:9c:94:91:69:40: a7:87:1a:a8:01:3a:7b:02:2c:6c:4a:6e:21:fe:f6: 64:e6:b1:bc:6a:96:60:e0:65:e5:53:1b:78:6c:68: 3d:e2:a3:f8:69:03:f9:ff:bb:64:4a:cf:1f:19:b7: 1e:57:bc:49:42:4e:e7:c6:e3:af:bb:90:69:90:a5: 1f:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:5E:19:14:C8:FA:89:63:1F:37:F1:65:17:9B:E4:2B:A2:2C:74:14 X509v3 Authority Key Identifier: keyid:DC:AE:87:1B:7C:5C:B7:9B:C7:EC:F6:79:B3:B2:D3:C9:56:A7:D9:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3K6HG3xct5vH7PZ5s7LTyVan2eM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:a6:d2:8e:92:9f:3c:5e:01:32:6b:be:87:a0:08:41:8c:dc: f8:41:9b:54:72:ec:eb:f6:c2:e0:cd:c3:61:9c:9d:c3:85:d0: 60:57:0c:8e:a6:d5:78:1f:d6:12:95:4e:b5:29:4f:bc:68:ee: 85:b2:42:f4:c2:95:a9:63:32:06:08:9f:40:ac:63:db:e8:be: be:f4:25:a4:f7:ab:df:db:9c:d0:47:0c:4a:17:73:e8:c0:3a: 5f:9a:fa:db:c3:12:61:96:c6:05:3d:77:80:63:eb:ac:9e:b7: 3b:74:ba:8d:13:0d:0a:ed:77:26:54:e4:8c:fc:26:64:5c:39: 8a:52:9f:da:ed:1f:2a:1e:d8:90:13:b0:a4:73:89:16:cb:7c: dc:7e:12:0d:39:2a:85:db:ca:64:c3:19:85:71:53:09:6c:9f: 39:87:0f:d7:04:a5:32:0a:32:4a:7d:ef:cc:47:3e:5e:ed:71: e2:a8:2e:84:af:dc:c5:86:25:fa:a0:cd:8c:9a:17:9c:30:f0: c8:6b:c2:7b:03:9a:90:de:6d:d4:7c:8d:27:76:4e:1b:35:74: 1c:b4:11:92:87:23:bc:0f:f2:ee:a4:6c:d3:30:39:9f:d1:e8: ef:1f:08:6d:ab:ff:73:c3:34:07:92:12:98:d1:02:11:29:e0: 0f:46:06:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA0QUMxMTAvBgNVBAUTKERDQUU4NzFCN0M1Q0I3OUJDN0VDRjY3OUIzQjJEM0M5 NTZBN0Q5RTMwHhcNMjUwODEyMjI0MjEzWhcNMjUwODE5MjI0MjEyWjAYMRYwFAYD VQQDEw02ODliYzM0NS02YTQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo8R1sXy9SRV/0vNxx0ji591JQPawnCEc8a1XMvwf0L0HVy62n2bDyQgo74YC xu/Gvl/UstJKbsHGJAypZ1WWliczwtYlGvXbXHLdY45Tjc7kajmNiG+RaX9nI4e+ h2scu5viRJmUJBVk2Ls0AMbprnipXwmSvKRdrhSOy2l16lFT/sEZST+tHBmC0kBA LQitrsOSt16NtC7LVpJMv2uzb5NSCSdEVw1dIUXKR7li+6hWDqhVLkv4TWNiQUL3 nJSRaUCnhxqoATp7AixsSm4h/vZk5rG8apZg4GXlUxt4bGg94qP4aQP5/7tkSs8f GbceV7xJQk7nxuOvu5BpkKUfAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMZeGRTI +oljHzfxZReb5CuiLHQUMB8GA1UdIwQYMBaAFNyuhxt8XLebx+z2ebOy08lWp9nj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDRBQy80OTcyMDk5Njgx NDUxMUVCQjJERDVENEJDNEY5QUUwMi8zSzZIRzN4Y3Q1dkg3UFo1czdMVHlWYW4y ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNLNkhHM3hjdDV2SDdQWjVzN0xUeVZhbjJlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDRBQy80OTcyMDk5NjgxNDUxMUVCQjJERDVENEJDNEY5QUUwMi8zSzZIRzN4Y3Q1 dkg3UFo1czdMVHlWYW4yZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASptKOkp88XgEya76HoAhBjNz4QZtUcuzr9sLgzcNhnJ3DhdBgVwyO ptV4H9YSlU61KU+8aO6FskL0wpWpYzIGCJ9ArGPb6L6+9CWk96vf25zQRwxKF3Po wDpfmvrbwxJhlsYFPXeAY+usnrc7dLqNEw0K7XcmVOSM/CZkXDmKUp/a7R8qHtiQ E7Ckc4kWy3zcfhINOSqF28pkwxmFcVMJbJ85hw/XBKUyCjJKfe/MRz5e7XHiqC6E r9zFhiX6oM2MmhecMPDIa8J7A5qQ3m3UfI0ndk4bNXQctBGShyO8D/LupGzTMDmf 0ejvHwhtq/9zwzQHkhKY0QIRKeAPRgZ8 -----END CERTIFICATE-----Generated at Wed Aug 13 04:28:51 2025 by rpki-client