$ rpki-client -vvf rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft File: A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft (raw, json) Hash identifier: +8F1UB10XH/jPDgT+qrcTQBI/ou8BFU6fB0rzpR+2CU= Subject key identifier: 68:AD:8A:F4:C4:57:CF:A6:A7:62:4F:53:A4:15:31:7E:DA:D2:7A:C9 Authority key identifier: 03:77:B9:3C:91:FD:AF:46:9A:59:1B:4C:52:D2:4C:B1:55:5D:2B:D4 Certificate issuer: /CN=A91822BF/serialNumber=0377B93C91FDAF469A591B4C52D24CB1555D2BD4 Certificate serial: 0BFA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft Manifest number: 0BF2 Signing time: Mon 04 Aug 2025 19:00:18 +0000 Manifest this update: Mon 04 Aug 2025 19:00:17 +0000 Manifest next update: Mon 11 Aug 2025 19:00:17 +0000 Files and hashes: 1: A3e5PJH9r0aaWRtMUtJMsVVdK9Q.crl (hash: 7dXVK8WsCm0YgyUv/fY5Bfbu+BSlzOdm76o9JUZLXGs=) 2: 37EA3E261ADC11EA8EB46F37C4F9AE02.roa (hash: ELFkrkGvrGXpvAeGB34G/wdhCkAvgz4ejLB+gQtN8Ps=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.crl rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 19:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3066 (0xbfa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91822BF, serialNumber=0377B93C91FDAF469A591B4C52D24CB1555D2BD4 Validity Not Before: Aug 4 19:00:17 2025 GMT Not After : Aug 11 19:00:17 2025 GMT Subject: CN=68910342-6b9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:6e:33:8a:3a:f0:cb:ef:39:28:03:9d:45:8f: db:3b:82:73:e1:cf:ee:4b:67:a5:27:85:a7:72:74: c3:fa:d1:32:40:f8:f9:f9:d3:c3:a6:12:86:9b:85: bf:06:88:d0:9f:54:df:53:6e:07:cc:f2:5e:88:85: 5c:28:c8:01:38:72:af:63:71:c3:42:41:0f:a8:ac: b1:c0:13:05:06:ad:5e:b8:a8:97:f0:a8:5c:1b:f4: 98:e0:4a:8d:6e:a9:f9:55:e0:f8:c8:1b:13:5a:bb: 2e:e0:b0:0b:b6:41:fd:77:28:c4:59:34:f1:05:09: f7:3c:59:24:53:2b:8b:17:a3:9d:3e:74:74:51:46: db:e1:c8:6a:c5:22:af:bb:ea:2d:49:0a:01:e2:b1: 5e:bb:99:0f:5f:aa:e1:33:9c:08:74:48:61:e0:31: 15:ff:a5:02:85:0c:f6:99:65:83:44:a0:1b:8f:d8: 9f:e7:24:d3:cb:c4:b5:da:6d:9f:70:ee:e0:7d:7f: 8e:19:d5:5c:36:fc:e8:41:2c:5d:ec:1a:df:df:8b: 65:46:47:1b:b8:91:21:b8:71:96:97:e5:bf:09:af: cb:7e:30:0a:cb:e9:1c:34:3b:5d:05:08:b5:3b:44: 74:bb:bb:ce:5e:3f:d8:2a:3d:6c:a4:01:37:8e:7f: 6e:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:AD:8A:F4:C4:57:CF:A6:A7:62:4F:53:A4:15:31:7E:DA:D2:7A:C9 X509v3 Authority Key Identifier: keyid:03:77:B9:3C:91:FD:AF:46:9A:59:1B:4C:52:D2:4C:B1:55:5D:2B:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:23:ca:15:45:df:09:b3:2a:ec:c5:ed:2c:f8:ed:70:d7:ae: 22:0f:54:1b:af:9a:51:e1:14:5a:34:26:54:18:2d:ca:c5:d0: ca:e7:8e:26:73:a6:8f:f6:0f:0e:ea:ee:08:66:92:e3:25:4e: cf:a8:13:4f:f9:41:4f:b3:d3:41:1b:9e:26:bf:c6:fb:d9:f9: 95:f3:94:77:02:ab:73:cb:b0:6c:96:23:cc:46:e0:8b:8e:24: 49:c7:00:1f:e0:1e:c4:9f:eb:6b:72:df:bc:60:08:85:90:fd: 49:81:d7:fb:3b:82:a2:fe:38:19:93:8b:e4:68:63:1a:80:3d: 08:bb:51:b1:ed:76:8c:91:2d:ea:c0:8c:f6:ae:da:e2:56:ca: 52:0c:3a:62:8c:89:bc:84:06:8c:d3:29:b8:e9:d1:ab:52:09: 83:89:01:09:ff:fe:5a:2e:c9:18:5c:56:c6:05:fa:14:da:ac: 31:50:9e:9b:2d:a5:8f:06:93:4f:3c:52:5d:f7:9b:3c:11:0d: 01:33:92:34:88:9b:22:c9:07:92:25:e1:2f:65:4a:1a:c6:61: 41:8a:ad:fb:a7:9c:e3:a2:d6:97:98:07:4c:2d:83:0f:6e:86: 7a:9f:10:08:6b:21:4d:e2:67:a5:25:23:ce:37:4a:dd:ee:7b: 07:f1:70:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC/owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODIyQkYxMTAvBgNVBAUTKDAzNzdCOTNDOTFGREFGNDY5QTU5MUI0QzUyRDI0Q0Ix NTU1RDJCRDQwHhcNMjUwODA0MTkwMDE3WhcNMjUwODExMTkwMDE3WjAYMRYwFAYD VQQDEw02ODkxMDM0Mi02YjlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvm4zijrwy+85KAOdRY/bO4Jz4c/uS2elJ4WncnTD+tEyQPj5+dPDphKGm4W/ BojQn1TfU24HzPJeiIVcKMgBOHKvY3HDQkEPqKyxwBMFBq1euKiX8KhcG/SY4EqN bqn5VeD4yBsTWrsu4LALtkH9dyjEWTTxBQn3PFkkUyuLF6OdPnR0UUbb4chqxSKv u+otSQoB4rFeu5kPX6rhM5wIdEhh4DEV/6UChQz2mWWDRKAbj9if5yTTy8S12m2f cO7gfX+OGdVcNvzoQSxd7Brf34tlRkcbuJEhuHGWl+W/Ca/LfjAKy+kcNDtdBQi1 O0R0u7vOXj/YKj1spAE3jn9uRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGitivTE V8+mp2JPU6QVMX7a0nrJMB8GA1UdIwQYMBaAFAN3uTyR/a9GmlkbTFLSTLFVXSvU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjJCRi8xMDM5QkM0MDFB REIxMUVBQUEzQTgyMzVDNEY5QUUwMi9BM2U1UEpIOXIwYWFXUnRNVXRKTXNWVmRL OVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EzZTVQSkg5cjBhYVdSdE1VdEpNc1ZWZEs5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjJCRi8xMDM5QkM0MDFBREIxMUVBQUEzQTgyMzVDNEY5QUUwMi9BM2U1UEpIOXIw YWFXUnRNVXRKTXNWVmRLOVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/I8oVRd8Jsyrsxe0s+O1w164iD1Qbr5pR4RRaNCZUGC3KxdDK544m c6aP9g8O6u4IZpLjJU7PqBNP+UFPs9NBG54mv8b72fmV85R3Aqtzy7BsliPMRuCL jiRJxwAf4B7En+trct+8YAiFkP1Jgdf7O4Ki/jgZk4vkaGMagD0Iu1Gx7XaMkS3q wIz2rtriVspSDDpijIm8hAaM0ym46dGrUgmDiQEJ//5aLskYXFbGBfoU2qwxUJ6b LaWPBpNPPFJd95s8EQ0BM5I0iJsiyQeSJeEvZUoaxmFBiq37p5zjotaXmAdMLYMP boZ6nxAIayFN4melJSPON0rd7nsH8XBd -----END CERTIFICATE-----Generated at Wed Aug 6 14:21:17 2025 by rpki-client