$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5201/45AAA1E81B5511F0A395B813C4F9AE02/3uW4vIUKW2vLRtfjtMl-i4Mop6A.mft File: 3uW4vIUKW2vLRtfjtMl-i4Mop6A.mft (raw, json) Hash identifier: Hs9IVYCObxE2k7rVkdOjcStqRsFVX9QfSaUcKIyD8TQ= Subject key identifier: F4:A0:6C:9F:34:10:85:DC:F2:0F:D8:BD:89:9C:25:33:63:F4:1F:AB Authority key identifier: DE:E5:B8:BC:85:0A:5B:6B:CB:46:D7:E3:B4:C9:7E:8B:83:28:A7:A0 Certificate issuer: /CN=A91A5201/serialNumber=DEE5B8BC850A5B6BCB46D7E3B4C97E8B8328A7A0 Certificate serial: 3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3uW4vIUKW2vLRtfjtMl-i4Mop6A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5201/45AAA1E81B5511F0A395B813C4F9AE02/3uW4vIUKW2vLRtfjtMl-i4Mop6A.mft Manifest number: 3C Signing time: Mon 11 Aug 2025 07:47:58 +0000 Manifest this update: Mon 11 Aug 2025 07:47:58 +0000 Manifest next update: Mon 18 Aug 2025 07:47:58 +0000 Files and hashes: 1: 3uW4vIUKW2vLRtfjtMl-i4Mop6A.crl (hash: XBE27e9f0eq1t92q/jEC/e4qMK0X6TVr55DbWbVxzRg=) 2: D0CA23541BC611F09FDAC047C4F9AE02.roa (hash: KE/ITB6hhJ+i5ZAAKHW4Wk+MiRqF5kXhTWgdF88Y+V8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5201/45AAA1E81B5511F0A395B813C4F9AE02/3uW4vIUKW2vLRtfjtMl-i4Mop6A.crl rsync://rpki.apnic.net/member_repository/A91A5201/45AAA1E81B5511F0A395B813C4F9AE02/3uW4vIUKW2vLRtfjtMl-i4Mop6A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3uW4vIUKW2vLRtfjtMl-i4Mop6A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 07:47:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61 (0x3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5201, serialNumber=DEE5B8BC850A5B6BCB46D7E3B4C97E8B8328A7A0 Validity Not Before: Aug 11 07:47:58 2025 GMT Not After : Aug 18 07:47:58 2025 GMT Subject: CN=6899a02e-1554 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:7f:02:2f:58:57:4e:84:61:a3:5c:64:2c:d8: bd:fd:76:44:8c:a9:89:66:23:4b:d9:0c:fc:3e:a1: 50:61:8d:fa:35:4a:f0:7a:5e:99:76:1f:d1:1d:bc: 30:48:dc:58:97:52:2c:0f:d9:01:5f:e5:be:da:81: 05:89:4e:e1:c6:99:32:06:50:1f:75:51:32:bc:f6: 04:5f:88:82:4d:e0:7b:c7:89:b4:35:f7:e8:0c:e2: 64:b8:cb:f9:34:51:4a:1b:e0:de:f6:4d:55:cd:23: 8a:a7:f5:92:b9:9a:1b:df:a9:75:cc:90:67:0d:18: 69:b5:e6:ad:0a:d3:1a:6d:f3:61:f0:f5:4f:d1:94: d7:bd:23:3c:a9:c0:77:72:ef:ff:1e:27:62:c3:9c: fe:61:e3:dd:a9:d4:dd:69:45:b1:39:e5:fe:62:94: c0:9b:1e:bf:53:e3:ef:b7:d9:b1:65:10:d8:88:b8: 26:38:f3:bb:05:34:07:e1:ee:e6:71:df:ad:77:ad: 08:9a:a8:ad:82:a6:d9:f1:93:44:50:b4:44:22:a0: a8:72:ac:a9:3f:e2:6a:6e:9a:b7:24:de:94:cf:14: 29:ac:e0:8d:e9:7a:5b:e0:06:8b:06:61:bb:dc:d6: 8d:ed:6e:f4:2b:0e:ad:10:f9:09:0a:3c:19:65:3b: ae:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:A0:6C:9F:34:10:85:DC:F2:0F:D8:BD:89:9C:25:33:63:F4:1F:AB X509v3 Authority Key Identifier: keyid:DE:E5:B8:BC:85:0A:5B:6B:CB:46:D7:E3:B4:C9:7E:8B:83:28:A7:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5201/45AAA1E81B5511F0A395B813C4F9AE02/3uW4vIUKW2vLRtfjtMl-i4Mop6A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3uW4vIUKW2vLRtfjtMl-i4Mop6A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5201/45AAA1E81B5511F0A395B813C4F9AE02/3uW4vIUKW2vLRtfjtMl-i4Mop6A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:8c:08:99:85:f6:39:23:29:5e:39:c3:67:23:df:f3:26:69: c1:d4:94:c8:ab:c5:94:2d:92:a4:43:e3:73:c9:4a:8e:49:f2: da:0a:cf:3c:71:ca:c5:f2:e5:27:ac:f4:db:28:d5:98:25:dc: 88:a6:4d:2a:ec:09:fb:df:7c:b0:59:69:50:52:57:15:40:df: 5a:ef:dc:36:67:8f:9f:ce:34:22:42:c8:70:f1:e6:3f:e9:70: fd:28:24:4e:8c:af:c4:32:fc:aa:63:94:ea:af:4f:b8:2b:2a: db:e4:9c:d3:cb:66:00:d5:02:c9:77:ac:0e:56:4f:f2:35:0d: 39:1f:e9:b1:be:63:c9:b2:71:ec:72:ed:0f:e6:96:d7:fc:cb: 8e:0e:88:ba:e5:69:84:5e:cf:14:ed:e9:74:e5:48:f5:b3:e7: 44:9f:8e:a1:44:1b:e0:6c:be:b0:d8:99:90:0e:00:4e:a3:05: 76:8f:a1:6a:2e:2c:4b:c8:d5:bb:96:df:63:ae:9e:46:0b:83: 84:6c:95:e0:f3:24:3a:2a:a3:29:a6:6b:3c:bd:23:0a:7a:82: 2e:82:95:32:62:32:20:2f:fc:31:32:bd:04:c7:20:9c:d4:90: 60:2d:5c:5d:04:cb:2e:bd:0a:0c:10:43:23:ee:75:c8:f5:f0: eb:20:db:d3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NTIwMTExMC8GA1UEBRMoREVFNUI4QkM4NTBBNUI2QkNCNDZEN0UzQjRDOTdFOEI4 MzI4QTdBMDAeFw0yNTA4MTEwNzQ3NThaFw0yNTA4MTgwNzQ3NThaMBgxFjAUBgNV BAMTDTY4OTlhMDJlLTE1NTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6fwIvWFdOhGGjXGQs2L39dkSMqYlmI0vZDPw+oVBhjfo1SvB6Xpl2H9EdvDBI 3FiXUiwP2QFf5b7agQWJTuHGmTIGUB91UTK89gRfiIJN4HvHibQ19+gM4mS4y/k0 UUob4N72TVXNI4qn9ZK5mhvfqXXMkGcNGGm15q0K0xpt82Hw9U/RlNe9IzypwHdy 7/8eJ2LDnP5h492p1N1pRbE55f5ilMCbHr9T4++32bFlENiIuCY487sFNAfh7uZx 3613rQiaqK2Cptnxk0RQtEQioKhyrKk/4mpumrck3pTPFCms4I3pelvgBosGYbvc 1o3tbvQrDq0Q+QkKPBllO669AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU9KBsnzQQ hdzyD9i9iZwlM2P0H6swHwYDVR0jBBgwFoAU3uW4vIUKW2vLRtfjtMl+i4Mop6Aw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1MjAxLzQ1QUFBMUU4MUI1 NTExRjBBMzk1QjgxM0M0RjlBRTAyLzN1VzR2SVVLVzJ2TFJ0Zmp0TWwtaTRNb3A2 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM3VXNHZJVUtXMnZMUnRmanRNbC1pNE1vcDZBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1 MjAxLzQ1QUFBMUU4MUI1NTExRjBBMzk1QjgxM0M0RjlBRTAyLzN1VzR2SVVLVzJ2 TFJ0Zmp0TWwtaTRNb3A2QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADuMCJmF9jkjKV45w2cj3/MmacHUlMirxZQtkqRD43PJSo5J8toKzzxx ysXy5Ses9Nso1Zgl3IimTSrsCfvffLBZaVBSVxVA31rv3DZnj5/ONCJCyHDx5j/p cP0oJE6Mr8Qy/KpjlOqvT7grKtvknNPLZgDVAsl3rA5WT/I1DTkf6bG+Y8mycexy 7Q/mltf8y44OiLrlaYRezxTt6XTlSPWz50SfjqFEG+BsvrDYmZAOAE6jBXaPoWou LEvI1buW32OunkYLg4RsleDzJDoqoymmazy9Iwp6gi6ClTJiMiAv/DEyvQTHIJzU kGAtXF0Eyy69CgwQQyPudcj18Osg29M= -----END CERTIFICATE-----Generated at Wed Aug 13 05:37:41 2025 by rpki-client