$ rpki-client -vvf rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/t3KDxTMROjkeMdlFJxhqz4OZol8.mft File: t3KDxTMROjkeMdlFJxhqz4OZol8.mft (raw, json) Hash identifier: i8HoK1t0380u4MPSq7M+u/hQk2FbjiqNe/YyAD8fNCo= Subject key identifier: 72:42:86:B1:4B:C8:65:1E:AD:CA:AF:F9:51:56:F2:A5:27:9D:62:36 Authority key identifier: B7:72:83:C5:33:11:3A:39:1E:31:D9:45:27:18:6A:CF:83:99:A2:5F Certificate issuer: /CN=A91AEE4B/serialNumber=B77283C533113A391E31D94527186ACF8399A25F Certificate serial: 0B26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t3KDxTMROjkeMdlFJxhqz4OZol8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/t3KDxTMROjkeMdlFJxhqz4OZol8.mft Manifest number: 0B1D Signing time: Sun 10 Aug 2025 19:18:21 +0000 Manifest this update: Sun 10 Aug 2025 19:18:20 +0000 Manifest next update: Sun 17 Aug 2025 19:18:20 +0000 Files and hashes: 1: t3KDxTMROjkeMdlFJxhqz4OZol8.crl (hash: jBzc8kp8d51r/tBd6TTSyZrhVZM84fKfqTZrPSE0Zok=) 2: 02F1850E45A611EA81CD145AC4F9AE02.roa (hash: +dnFv6At/j+rB10C6K34OqDt094wwEbkgdTC71u4hkg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/t3KDxTMROjkeMdlFJxhqz4OZol8.crl rsync://rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/t3KDxTMROjkeMdlFJxhqz4OZol8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t3KDxTMROjkeMdlFJxhqz4OZol8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2854 (0xb26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AEE4B, serialNumber=B77283C533113A391E31D94527186ACF8399A25F Validity Not Before: Aug 10 19:18:20 2025 GMT Not After : Aug 17 19:18:20 2025 GMT Subject: CN=6898f07c-9ae9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:c8:a9:fa:03:4e:70:a1:b1:f9:0f:32:ad:a5: 02:20:72:ab:e7:86:6e:66:aa:79:1c:61:9a:93:21: fe:25:cd:eb:0c:39:b7:ca:3e:4c:69:d8:2a:cb:15: b5:3e:f2:48:c0:03:b4:2e:87:57:f1:e3:13:cf:a7: 32:ff:72:97:c8:57:55:ad:bc:54:c7:58:17:04:f4: 94:d9:d6:72:8a:df:95:d3:15:9c:f4:d9:aa:b5:e3: 9a:f5:36:1e:73:f2:7e:c1:2a:f8:d5:56:0c:ea:2d: f0:5a:30:a8:54:33:fa:1d:fe:64:a5:89:85:23:c7: 9b:75:3e:a7:7e:fc:0a:a8:19:e8:33:52:55:83:78: d3:a0:02:1b:0a:c5:b3:49:b8:24:53:cd:90:80:f5: 45:e0:2d:6b:88:72:64:34:6e:ac:8c:54:18:1d:17: f9:4f:8e:ba:cd:45:89:4e:47:7a:d1:ff:d8:b6:fb: b3:13:d5:89:df:39:6e:8f:d3:95:8c:35:4b:a9:51: 51:d1:f8:0c:61:dc:e8:e3:08:88:98:a3:08:0e:ae: 29:ef:37:ad:57:72:3b:eb:a6:77:e6:99:30:f7:34: b8:04:c8:0f:96:7c:64:c1:5b:fa:49:24:11:71:4f: 16:27:91:fc:3e:eb:93:fc:df:dd:f4:6e:71:5b:6a: 3a:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:42:86:B1:4B:C8:65:1E:AD:CA:AF:F9:51:56:F2:A5:27:9D:62:36 X509v3 Authority Key Identifier: keyid:B7:72:83:C5:33:11:3A:39:1E:31:D9:45:27:18:6A:CF:83:99:A2:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/t3KDxTMROjkeMdlFJxhqz4OZol8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t3KDxTMROjkeMdlFJxhqz4OZol8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/t3KDxTMROjkeMdlFJxhqz4OZol8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c6:4c:38:71:b1:1d:48:4b:4c:e5:23:7b:15:1f:6e:25:07:ac: e2:6b:c3:8d:53:8b:5b:6d:50:b3:7b:fe:72:24:15:ea:23:c5: a0:c9:1d:e5:5d:3d:ad:de:e4:95:05:b1:c5:84:98:1f:e7:e6: 85:49:80:1d:d4:d3:b9:cc:bf:0e:6f:a4:a1:3e:f8:af:41:a1: 93:7f:dc:cc:e8:fc:1a:98:68:89:29:53:2e:28:16:7e:ec:e6: 12:22:8f:10:0e:b1:52:d2:13:c3:7b:89:6e:84:1b:d1:bb:61: 97:47:14:8a:fc:cc:82:41:01:e9:b5:27:81:be:30:67:3e:10: 17:5e:56:23:fc:a8:ea:92:ce:85:10:1f:c3:60:16:de:b8:08: 50:60:d0:08:e9:3a:f7:e6:f9:f0:c6:9d:f3:98:cc:67:d8:af: 8e:08:1d:2e:9b:49:47:b2:70:4c:b4:32:1f:15:dc:c0:ae:67: 9c:ed:ff:b6:b5:93:4b:50:77:aa:0c:dc:79:d3:2b:94:cc:dd: 8d:f0:9f:1c:19:a6:e7:01:7e:89:dd:04:a5:46:cb:9f:75:39: 46:7a:8b:d5:18:bd:c8:b4:8e:44:66:cb:3d:f2:f4:72:ad:c1: 67:e5:d7:66:6f:c5:ee:0d:e2:7b:f7:df:7e:35:90:22:4c:6c: 0a:75:b4:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCyYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUVFNEIxMTAvBgNVBAUTKEI3NzI4M0M1MzMxMTNBMzkxRTMxRDk0NTI3MTg2QUNG ODM5OUEyNUYwHhcNMjUwODEwMTkxODIwWhcNMjUwODE3MTkxODIwWjAYMRYwFAYD VQQDEw02ODk4ZjA3Yy05YWU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoMip+gNOcKGx+Q8yraUCIHKr54ZuZqp5HGGakyH+Jc3rDDm3yj5MadgqyxW1 PvJIwAO0LodX8eMTz6cy/3KXyFdVrbxUx1gXBPSU2dZyit+V0xWc9NmqteOa9TYe c/J+wSr41VYM6i3wWjCoVDP6Hf5kpYmFI8ebdT6nfvwKqBnoM1JVg3jToAIbCsWz SbgkU82QgPVF4C1riHJkNG6sjFQYHRf5T466zUWJTkd60f/YtvuzE9WJ3zluj9OV jDVLqVFR0fgMYdzo4wiImKMIDq4p7zetV3I766Z35pkw9zS4BMgPlnxkwVv6SSQR cU8WJ5H8PuuT/N/d9G5xW2o68QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHJChrFL yGUercqv+VFW8qUnnWI2MB8GA1UdIwQYMBaAFLdyg8UzETo5HjHZRScYas+DmaJf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRUU0Qi82M0RGRjgwMjQ1 QTQxMUVBOTQyRTA5NTdDNEY5QUUwMi90M0tEeFRNUk9qa2VNZGxGSnhocXo0T1pv bDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3QzS0R4VE1ST2prZU1kbEZKeGhxejRPWm9sOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RUU0Qi82M0RGRjgwMjQ1QTQxMUVBOTQyRTA5NTdDNEY5QUUwMi90M0tEeFRNUk9q a2VNZGxGSnhocXo0T1pvbDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDGTDhxsR1IS0zlI3sVH24lB6zia8ONU4tbbVCze/5yJBXqI8WgyR3l XT2t3uSVBbHFhJgf5+aFSYAd1NO5zL8Ob6ShPvivQaGTf9zM6PwamGiJKVMuKBZ+ 7OYSIo8QDrFS0hPDe4luhBvRu2GXRxSK/MyCQQHptSeBvjBnPhAXXlYj/Kjqks6F EB/DYBbeuAhQYNAI6Tr35vnwxp3zmMxn2K+OCB0um0lHsnBMtDIfFdzArmec7f+2 tZNLUHeqDNx50yuUzN2N8J8cGabnAX6J3QSlRsufdTlGeovVGL3ItI5EZss98vRy rcFn5ddmb8XuDeJ7999+NZAiTGwKdbRD -----END CERTIFICATE-----Generated at Mon Aug 11 04:14:08 2025 by rpki-client