$ rpki-client -vvf rpki.apnic.net/member_repository/A91CDFFB/27E506E6D4EF11EA9A61724AC4F9AE02/3rVjn1hHxw3g_ES-eEJBGPiiBsY.mft File: 3rVjn1hHxw3g_ES-eEJBGPiiBsY.mft (raw, json) Hash identifier: awjsQC29K+tjdt/AyNSjXuxfodDHK5saX+xdpKksqK8= Subject key identifier: 74:E8:94:6E:9B:5F:F0:88:0A:B2:CE:D3:93:F7:DD:DC:21:9B:12:9B Authority key identifier: DE:B5:63:9F:58:47:C7:0D:E0:FC:44:BE:78:42:41:18:F8:A2:06:C6 Certificate issuer: /CN=A91CDFFB/serialNumber=DEB5639F5847C70DE0FC44BE78424118F8A206C6 Certificate serial: 0848 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3rVjn1hHxw3g_ES-eEJBGPiiBsY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CDFFB/27E506E6D4EF11EA9A61724AC4F9AE02/3rVjn1hHxw3g_ES-eEJBGPiiBsY.mft Manifest number: 0840 Signing time: Fri 08 Aug 2025 21:04:57 +0000 Manifest this update: Fri 08 Aug 2025 21:04:57 +0000 Manifest next update: Fri 15 Aug 2025 21:04:57 +0000 Files and hashes: 1: 3rVjn1hHxw3g_ES-eEJBGPiiBsY.crl (hash: qH0+eSSpcFrsN51K5Is9KNcfPs7nqen+T0Rts6eg0Ns=) 2: CA42E5689FA411EBBC1FFB40C4F9AE02.roa (hash: gZyKCd69uOR05q6m/VeY/HmMPOj6FtQSF2UlUbB28zY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CDFFB/27E506E6D4EF11EA9A61724AC4F9AE02/3rVjn1hHxw3g_ES-eEJBGPiiBsY.crl rsync://rpki.apnic.net/member_repository/A91CDFFB/27E506E6D4EF11EA9A61724AC4F9AE02/3rVjn1hHxw3g_ES-eEJBGPiiBsY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3rVjn1hHxw3g_ES-eEJBGPiiBsY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2120 (0x848) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CDFFB, serialNumber=DEB5639F5847C70DE0FC44BE78424118F8A206C6 Validity Not Before: Aug 8 21:04:57 2025 GMT Not After : Aug 15 21:04:57 2025 GMT Subject: CN=68966679-a8b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:0d:16:8c:46:1c:b0:e6:9e:e2:6a:2c:4e:bd: ba:1a:d8:85:c6:dc:38:e4:d4:e9:b7:2a:7e:97:8d: db:90:f5:6e:58:89:2a:4d:25:2b:df:b7:f4:8f:18: 25:26:97:87:51:e0:da:d2:fa:2d:c8:e6:2e:17:9d: f2:d7:47:bc:d2:a6:fb:8c:28:a0:c0:98:21:2a:ca: 3c:64:0f:ab:52:91:8f:6f:a7:f6:9b:b6:29:bd:7c: c4:27:89:a8:9e:d6:dd:d2:4d:cd:e3:02:b2:8b:e0: fd:8b:60:f7:e1:38:87:b7:50:28:54:a6:fb:41:d8: d9:b6:e6:ee:f6:de:58:4b:9e:e6:e2:a6:9d:9f:0a: cf:f8:7c:b8:c9:77:33:56:0e:f1:d2:11:20:7a:e7: 55:67:ea:d4:8f:22:f3:6b:aa:c5:71:3c:68:0e:30: 76:21:92:3f:4b:d6:95:96:11:62:44:a0:5c:f6:5d: bd:c2:50:9b:12:e6:6b:92:3e:ce:be:96:ae:d7:69: 29:4f:70:2d:cf:db:e4:bd:60:b4:a4:a5:e8:86:5a: 5a:8a:1d:32:1b:8e:52:e4:fb:cc:01:07:94:d0:31: 9b:b4:b0:18:c1:d2:81:c5:e7:49:6f:4e:dc:07:f7: 23:55:62:aa:43:f4:1a:0a:2a:18:4a:62:0a:23:c8: 01:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:E8:94:6E:9B:5F:F0:88:0A:B2:CE:D3:93:F7:DD:DC:21:9B:12:9B X509v3 Authority Key Identifier: keyid:DE:B5:63:9F:58:47:C7:0D:E0:FC:44:BE:78:42:41:18:F8:A2:06:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CDFFB/27E506E6D4EF11EA9A61724AC4F9AE02/3rVjn1hHxw3g_ES-eEJBGPiiBsY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3rVjn1hHxw3g_ES-eEJBGPiiBsY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CDFFB/27E506E6D4EF11EA9A61724AC4F9AE02/3rVjn1hHxw3g_ES-eEJBGPiiBsY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:63:34:73:3f:b2:5e:65:3b:e1:4b:8e:4f:9c:14:fa:dd:ad: a1:9d:f5:8a:bb:b0:c2:0b:21:65:30:41:ed:c4:98:36:fe:3d: db:04:b0:12:13:58:66:85:c2:34:77:57:16:36:4e:e5:0f:a7: 3c:03:68:de:db:b4:fb:1c:88:65:0a:e4:19:ad:98:c2:bf:ba: f0:e6:b9:5b:ba:f7:63:a1:5b:2a:2d:eb:14:86:8c:0b:b7:01: 65:ca:e6:3c:ac:02:6a:c8:9e:27:6c:0b:c4:be:e6:cf:59:a0: 8d:17:e0:48:c1:83:63:56:aa:02:e8:9d:7a:eb:aa:33:1c:c8: 73:14:8a:d0:9a:49:77:3c:6a:f0:44:c9:3d:37:26:8d:51:73: cd:1e:e3:02:7d:93:60:a6:d6:d6:e6:51:b9:2e:0a:ff:88:0f: ee:03:57:25:01:7e:a9:73:23:61:2f:3c:d3:39:13:60:2d:8c: 77:37:c9:f8:29:c3:79:08:78:50:82:cb:d4:81:9d:12:23:82: 53:9a:c0:f1:3b:53:08:eb:f4:8a:5d:6f:66:1c:b5:f3:66:5f: b1:b5:fa:cf:4a:49:26:b2:6e:91:c6:c8:ea:38:f0:8a:9e:13: 86:23:76:a5:83:07:08:30:63:d5:e0:8e:88:75:35:a3:7f:f5: a1:39:27:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCEgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0RGRkIxMTAvBgNVBAUTKERFQjU2MzlGNTg0N0M3MERFMEZDNDRCRTc4NDI0MTE4 RjhBMjA2QzYwHhcNMjUwODA4MjEwNDU3WhcNMjUwODE1MjEwNDU3WjAYMRYwFAYD VQQDEw02ODk2NjY3OS1hOGI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0w0WjEYcsOae4mosTr26GtiFxtw45NTptyp+l43bkPVuWIkqTSUr37f0jxgl JpeHUeDa0votyOYuF53y10e80qb7jCigwJghKso8ZA+rUpGPb6f2m7YpvXzEJ4mo ntbd0k3N4wKyi+D9i2D34TiHt1AoVKb7QdjZtubu9t5YS57m4qadnwrP+Hy4yXcz Vg7x0hEgeudVZ+rUjyLza6rFcTxoDjB2IZI/S9aVlhFiRKBc9l29wlCbEuZrkj7O vpau12kpT3Atz9vkvWC0pKXohlpaih0yG45S5PvMAQeU0DGbtLAYwdKBxedJb07c B/cjVWKqQ/QaCioYSmIKI8gB0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHTolG6b X/CICrLO05P33dwhmxKbMB8GA1UdIwQYMBaAFN61Y59YR8cN4PxEvnhCQRj4ogbG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDREZGQi8yN0U1MDZFNkQ0 RUYxMUVBOUE2MTcyNEFDNEY5QUUwMi8zclZqbjFoSHh3M2dfRVMtZUVKQkdQaWlC c1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNyVmpuMWhIeHczZ19FUy1lRUpCR1BpaUJzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD REZGQi8yN0U1MDZFNkQ0RUYxMUVBOUE2MTcyNEFDNEY5QUUwMi8zclZqbjFoSHh3 M2dfRVMtZUVKQkdQaWlCc1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQYzRzP7JeZTvhS45PnBT63a2hnfWKu7DCCyFlMEHtxJg2/j3bBLAS E1hmhcI0d1cWNk7lD6c8A2je27T7HIhlCuQZrZjCv7rw5rlbuvdjoVsqLesUhowL twFlyuY8rAJqyJ4nbAvEvubPWaCNF+BIwYNjVqoC6J1666ozHMhzFIrQmkl3PGrw RMk9NyaNUXPNHuMCfZNgptbW5lG5Lgr/iA/uA1clAX6pcyNhLzzTORNgLYx3N8n4 KcN5CHhQgsvUgZ0SI4JTmsDxO1MI6/SKXW9mHLXzZl+xtfrPSkkmsm6RxsjqOPCK nhOGI3algwcIMGPV4I6IdTWjf/WhOSdr -----END CERTIFICATE-----Generated at Sun Aug 10 05:38:41 2025 by rpki-client