$ rpki-client -vvf rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.mft File: 3Y89lj-o0fItV_Tfspq9cNJVjjc.mft (raw, json) Hash identifier: ZXkWKQouSM0Qr1JuMem4GXx5dHMCXbHrHr7CPp+Ike4= Subject key identifier: D9:20:2B:D8:52:BD:DD:C6:18:51:22:0A:0A:1A:35:FE:AF:B2:47:7F Authority key identifier: DD:8F:3D:96:3F:A8:D1:F2:2D:57:F4:DF:B2:9A:BD:70:D2:55:8E:37 Certificate issuer: /CN=A91D506C/serialNumber=DD8F3D963FA8D1F22D57F4DFB29ABD70D2558E37 Certificate serial: 02E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Y89lj-o0fItV_Tfspq9cNJVjjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.mft Manifest number: 02DC Signing time: Thu 07 Aug 2025 01:56:08 +0000 Manifest this update: Thu 07 Aug 2025 01:56:07 +0000 Manifest next update: Thu 14 Aug 2025 01:56:07 +0000 Files and hashes: 1: 3Y89lj-o0fItV_Tfspq9cNJVjjc.crl (hash: 9LKwAi+S+h11m7/B9n2Vzmx8oss+yWnA1j6E5pJYKQ4=) 2: 76C5241CF47311EC8721C33DC4F9AE02.roa (hash: k+SbCpllhZI/PId+36V/JG+wlkp2Gdvk2xv/XzOQ3v8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.crl rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Y89lj-o0fItV_Tfspq9cNJVjjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 01:56:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 736 (0x2e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D506C, serialNumber=DD8F3D963FA8D1F22D57F4DFB29ABD70D2558E37 Validity Not Before: Aug 7 01:56:07 2025 GMT Not After : Aug 14 01:56:07 2025 GMT Subject: CN=689407b8-701c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:6b:99:21:60:9f:6e:bf:eb:33:a9:08:65:0c: 66:35:94:df:d5:9c:e1:19:67:a0:ab:bc:b3:b2:d6: f6:e7:57:26:95:20:40:e4:a6:3c:b3:5c:a4:25:32: be:8f:c8:a2:43:bf:b2:df:3e:a0:bb:7c:26:0d:a2: d1:75:e9:fa:32:ed:ed:b7:ef:17:42:b8:b7:2b:b4: 08:14:5e:ea:08:c2:8b:c6:84:c1:70:d5:35:8b:66: 0e:86:bb:39:dc:f5:bd:84:b0:6a:a3:62:97:7f:48: 9e:4d:eb:64:1b:eb:7e:58:87:38:3a:a9:de:28:fb: 4b:a6:a8:7b:6c:bd:c6:0e:f3:65:c7:d6:ad:2c:57: 5b:91:34:bf:74:df:02:0b:eb:87:83:76:f6:06:21: 0b:c2:5e:82:54:8d:df:ca:ab:a8:bf:2c:ae:80:b7: 4a:98:bd:86:5f:f8:85:e3:ca:0a:b1:c1:c3:f3:71: 68:56:1a:96:c2:8a:27:bd:34:75:6f:f3:f2:af:84: b5:07:64:a1:74:40:23:64:dc:e8:0b:0f:ba:1f:f4: ff:d6:72:6d:69:d5:02:eb:45:df:92:a8:d7:aa:e1: 59:d7:1e:98:66:50:89:8a:70:43:4b:97:1b:59:b3: c5:de:f2:d5:a2:ef:d8:ca:c9:63:ae:49:52:ba:74: 14:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:20:2B:D8:52:BD:DD:C6:18:51:22:0A:0A:1A:35:FE:AF:B2:47:7F X509v3 Authority Key Identifier: keyid:DD:8F:3D:96:3F:A8:D1:F2:2D:57:F4:DF:B2:9A:BD:70:D2:55:8E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Y89lj-o0fItV_Tfspq9cNJVjjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:85:15:0d:b8:0f:04:66:84:b8:32:3c:25:10:7d:47:3a:ff: 66:ac:c4:a7:b5:97:18:7b:19:df:8c:8e:c3:2d:95:31:5f:20: ae:b5:a4:18:7b:af:ea:2e:60:95:7d:1c:57:03:b3:97:7f:81: 3e:b8:32:73:20:9a:dc:27:82:8e:6d:02:cb:83:2f:f6:08:34: 81:ea:a2:ad:70:df:ed:27:18:a7:e7:80:d8:31:e8:7b:e0:5a: 30:6b:78:a8:fd:26:62:09:c8:99:22:3c:52:ed:27:08:87:a3: c1:36:94:91:71:e0:5d:15:02:46:98:f6:18:29:95:52:26:fc: 63:61:e5:31:b7:8c:be:c6:8b:28:05:7b:da:46:c1:9f:b5:ee: 95:e5:a5:8d:6d:c8:2b:66:05:de:ef:0e:73:ac:22:4e:e5:0e: 9e:70:dc:1e:3c:40:a0:b8:da:5f:1f:e1:07:25:e2:56:01:cb: c6:41:8b:5a:e6:09:23:70:3f:ba:57:06:22:4a:42:9c:16:c3: 28:87:1a:6d:0d:f3:3e:7f:f4:d5:e3:e8:e0:c2:6d:14:7b:56: c7:ce:ca:2d:d1:11:a1:3f:5e:a9:9d:fc:c4:8a:a1:6d:8e:4c: 8a:e7:82:2a:97:0e:f9:93:cb:ac:58:87:2e:e6:2a:ee:0a:9b: 9d:78:60:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAuAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUwNkMxMTAvBgNVBAUTKEREOEYzRDk2M0ZBOEQxRjIyRDU3RjRERkIyOUFCRDcw RDI1NThFMzcwHhcNMjUwODA3MDE1NjA3WhcNMjUwODE0MDE1NjA3WjAYMRYwFAYD VQQDEw02ODk0MDdiOC03MDFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5WuZIWCfbr/rM6kIZQxmNZTf1ZzhGWegq7yzstb251cmlSBA5KY8s1ykJTK+ j8iiQ7+y3z6gu3wmDaLRden6Mu3tt+8XQri3K7QIFF7qCMKLxoTBcNU1i2YOhrs5 3PW9hLBqo2KXf0ieTetkG+t+WIc4OqneKPtLpqh7bL3GDvNlx9atLFdbkTS/dN8C C+uHg3b2BiELwl6CVI3fyquovyyugLdKmL2GX/iF48oKscHD83FoVhqWwoonvTR1 b/Pyr4S1B2ShdEAjZNzoCw+6H/T/1nJtadUC60XfkqjXquFZ1x6YZlCJinBDS5cb WbPF3vLVou/YysljrklSunQUwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNkgK9hS vd3GGFEiCgoaNf6vskd/MB8GA1UdIwQYMBaAFN2PPZY/qNHyLVf037KavXDSVY43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTA2Qy80NjYxOEIxQ0Y0 NkUxMUVDOEM2MDcwMEZDNEY5QUUwMi8zWTg5bGotbzBmSXRWX1Rmc3BxOWNOSlZq amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNZODlsai1vMGZJdFZfVGZzcHE5Y05KVmpqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTA2Qy80NjYxOEIxQ0Y0NkUxMUVDOEM2MDcwMEZDNEY5QUUwMi8zWTg5bGotbzBm SXRWX1Rmc3BxOWNOSlZqamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBshRUNuA8EZoS4MjwlEH1HOv9mrMSntZcYexnfjI7DLZUxXyCutaQY e6/qLmCVfRxXA7OXf4E+uDJzIJrcJ4KObQLLgy/2CDSB6qKtcN/tJxin54DYMeh7 4Fowa3io/SZiCciZIjxS7ScIh6PBNpSRceBdFQJGmPYYKZVSJvxjYeUxt4y+xoso BXvaRsGfte6V5aWNbcgrZgXe7w5zrCJO5Q6ecNwePECguNpfH+EHJeJWAcvGQYta 5gkjcD+6VwYiSkKcFsMohxptDfM+f/TV4+jgwm0Ue1bHzsot0RGhP16pnfzEiqFt jkyK54Iqlw75k8usWIcu5iruCpudeGDz -----END CERTIFICATE-----Generated at Sat Aug 9 02:59:35 2025 by rpki-client