$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA4F2/2AEDEF9A979311EAB2AD2956C4F9AE02/US3AbkHAiZokofyIXrNG5FMH80c.mft File: US3AbkHAiZokofyIXrNG5FMH80c.mft (raw, json) Hash identifier: H6mmzRlkgc1ZCXS6DxqSeqtHGd+acbLYsyjaQHFvMJ8= Subject key identifier: 6F:C9:31:96:04:45:74:40:31:02:90:DF:EA:BB:AB:45:50:68:16:73 Authority key identifier: 51:2D:C0:6E:41:C0:89:9A:24:A1:FC:88:5E:B3:46:E4:53:07:F3:47 Certificate issuer: /CN=A91BA4F2/serialNumber=512DC06E41C0899A24A1FC885EB346E45307F347 Certificate serial: 097E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US3AbkHAiZokofyIXrNG5FMH80c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA4F2/2AEDEF9A979311EAB2AD2956C4F9AE02/US3AbkHAiZokofyIXrNG5FMH80c.mft Manifest number: 0977 Signing time: Wed 06 Aug 2025 20:26:07 +0000 Manifest this update: Wed 06 Aug 2025 20:26:06 +0000 Manifest next update: Wed 13 Aug 2025 20:26:06 +0000 Files and hashes: 1: US3AbkHAiZokofyIXrNG5FMH80c.crl (hash: fiX0XSPtibG+nmk9nVU+WSFfzn/xFlzJt7KJTYXB5Kc=) 2: 9EEA3006979411EA8C6FC25AC4F9AE02.roa (hash: Y4bw++TnnqHhnQXoIqONS+4c30WzzpJSk4du/GajLxg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA4F2/2AEDEF9A979311EAB2AD2956C4F9AE02/US3AbkHAiZokofyIXrNG5FMH80c.crl rsync://rpki.apnic.net/member_repository/A91BA4F2/2AEDEF9A979311EAB2AD2956C4F9AE02/US3AbkHAiZokofyIXrNG5FMH80c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US3AbkHAiZokofyIXrNG5FMH80c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 20:26:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2430 (0x97e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA4F2, serialNumber=512DC06E41C0899A24A1FC885EB346E45307F347 Validity Not Before: Aug 6 20:26:06 2025 GMT Not After : Aug 13 20:26:06 2025 GMT Subject: CN=6893ba5f-4817 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:4f:1d:6e:a1:da:ca:89:9a:e3:3a:f5:4d:5f: df:09:8b:e7:68:31:0d:16:c5:63:37:a9:c7:77:6a: 60:f1:62:1b:2e:ef:60:c5:73:e0:d2:fe:a6:d9:30: d7:c7:66:7f:5d:8c:ed:1f:7a:21:6c:6b:ca:42:86: 54:a1:3d:ff:50:7d:56:ba:dc:3d:26:73:a5:07:0c: e5:b4:29:f2:a7:c2:e7:7c:00:fb:cb:34:1e:b4:5b: eb:29:d4:75:01:dc:cc:38:9b:b4:b3:7f:5d:d4:9f: 74:b3:b4:1e:18:7a:58:28:84:07:09:ef:31:d5:7f: 4d:64:5b:35:57:41:97:5e:16:b2:16:f1:89:6d:b9: 54:a5:fd:a0:ae:1a:ef:46:d6:43:52:12:94:c7:1c: 3c:8d:df:6d:29:c9:99:9e:e0:b2:00:90:65:fd:c4: 22:dd:ce:1c:f1:2c:98:45:aa:0a:d7:c1:49:eb:e9: 4d:5e:62:79:23:98:f8:c2:d2:48:22:5e:84:fc:c5: 49:8a:88:e4:f5:54:6a:d0:bd:fc:45:26:73:e3:46: d7:78:65:1f:e9:69:69:de:91:d4:fd:1c:4a:cc:34: 78:e9:5a:a8:fc:97:c7:77:9b:46:1e:f7:1b:05:6a: f8:0c:9a:17:43:51:0e:3e:3c:e0:24:d9:0b:6f:70: 7c:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:C9:31:96:04:45:74:40:31:02:90:DF:EA:BB:AB:45:50:68:16:73 X509v3 Authority Key Identifier: keyid:51:2D:C0:6E:41:C0:89:9A:24:A1:FC:88:5E:B3:46:E4:53:07:F3:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA4F2/2AEDEF9A979311EAB2AD2956C4F9AE02/US3AbkHAiZokofyIXrNG5FMH80c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US3AbkHAiZokofyIXrNG5FMH80c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA4F2/2AEDEF9A979311EAB2AD2956C4F9AE02/US3AbkHAiZokofyIXrNG5FMH80c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:eb:ab:5b:11:a1:5a:33:75:67:8b:0e:e6:88:63:b5:b0:66: 0c:45:13:47:57:41:eb:94:94:dd:b1:2d:8d:fb:08:b2:3f:7d: 16:c1:4a:99:e1:fe:70:7f:7b:02:f0:3a:e6:50:59:43:99:60: 83:53:28:c0:1a:30:48:c6:9c:4e:e3:3a:53:92:37:c3:84:c2: ed:10:0d:44:c9:3d:df:d9:37:a5:f7:15:86:bc:52:1a:27:49: cb:01:0c:09:0e:cd:57:4b:ad:65:7d:de:49:07:a7:a4:30:99: ed:90:be:0a:ac:ea:54:d4:70:a2:70:59:f2:9d:2b:7a:28:2f: 3f:d0:47:e8:ce:bc:4e:b2:db:07:07:d4:b5:27:30:0b:c9:cd: 99:d1:e0:16:24:af:b6:13:7d:78:ba:29:ab:2e:a0:84:ff:88: 9f:83:01:10:52:59:49:6a:a0:7b:25:50:05:8b:2d:34:f3:e8: 5f:e1:07:fc:17:55:63:ef:4b:57:8c:bd:4e:b3:c4:9c:52:91: 76:cd:19:01:0b:78:85:42:05:d7:9f:fb:61:ce:a9:39:a9:87: e0:9e:3e:21:9a:ff:e0:e8:aa:06:08:dd:fa:fc:63:86:d6:a4: 38:cc:b9:61:b3:3d:80:bb:03:18:1b:64:43:bf:ba:f5:c6:41: f1:68:84:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCX4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkE0RjIxMTAvBgNVBAUTKDUxMkRDMDZFNDFDMDg5OUEyNEExRkM4ODVFQjM0NkU0 NTMwN0YzNDcwHhcNMjUwODA2MjAyNjA2WhcNMjUwODEzMjAyNjA2WjAYMRYwFAYD VQQDEw02ODkzYmE1Zi00ODE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvk8dbqHayoma4zr1TV/fCYvnaDENFsVjN6nHd2pg8WIbLu9gxXPg0v6m2TDX x2Z/XYztH3ohbGvKQoZUoT3/UH1Wutw9JnOlBwzltCnyp8LnfAD7yzQetFvrKdR1 AdzMOJu0s39d1J90s7QeGHpYKIQHCe8x1X9NZFs1V0GXXhayFvGJbblUpf2grhrv RtZDUhKUxxw8jd9tKcmZnuCyAJBl/cQi3c4c8SyYRaoK18FJ6+lNXmJ5I5j4wtJI Il6E/MVJiojk9VRq0L38RSZz40bXeGUf6Wlp3pHU/RxKzDR46Vqo/JfHd5tGHvcb BWr4DJoXQ1EOPjzgJNkLb3B8nwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG/JMZYE RXRAMQKQ3+q7q0VQaBZzMB8GA1UdIwQYMBaAFFEtwG5BwImaJKH8iF6zRuRTB/NH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTRGMi8yQUVERUY5QTk3 OTMxMUVBQjJBRDI5NTZDNEY5QUUwMi9VUzNBYmtIQWlab2tvZnlJWHJORzVGTUg4 MGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VTM0Fia0hBaVpva29meUlYck5HNUZNSDgwYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTRGMi8yQUVERUY5QTk3OTMxMUVBQjJBRDI5NTZDNEY5QUUwMi9VUzNBYmtIQWla b2tvZnlJWHJORzVGTUg4MGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA766tbEaFaM3Vniw7miGO1sGYMRRNHV0HrlJTdsS2N+wiyP30WwUqZ 4f5wf3sC8DrmUFlDmWCDUyjAGjBIxpxO4zpTkjfDhMLtEA1EyT3f2Tel9xWGvFIa J0nLAQwJDs1XS61lfd5JB6ekMJntkL4KrOpU1HCicFnynSt6KC8/0EfozrxOstsH B9S1JzALyc2Z0eAWJK+2E314uimrLqCE/4ifgwEQUllJaqB7JVAFiy008+hf4Qf8 F1Vj70tXjL1Os8ScUpF2zRkBC3iFQgXXn/thzqk5qYfgnj4hmv/g6KoGCN36/GOG 1qQ4zLlhsz2AuwMYG2RDv7r1xkHxaISi -----END CERTIFICATE-----Generated at Fri Aug 8 00:13:30 2025 by rpki-client