$ rpki-client -vvf rpki.apnic.net/member_repository/A91D53AC/03168C4E1D9711E28B6C008008B02CD2/S3Z_4wTU8n9REYZLp0O5R5zhSns.mft File: S3Z_4wTU8n9REYZLp0O5R5zhSns.mft (raw, json) Hash identifier: 2Z+xOrquK8JeDibWHY3T4piBg7CRUk+UfsTcoKiZc48= Subject key identifier: 09:A7:0C:92:B6:B2:A5:C3:96:1C:31:4E:9D:E9:89:98:65:00:C6:F4 Authority key identifier: 4B:76:7F:E3:04:D4:F2:7F:51:11:86:4B:A7:43:B9:47:9C:E1:4A:7B Certificate issuer: /CN=A91D53AC/serialNumber=4B767FE304D4F27F5111864BA743B9479CE14A7B Certificate serial: 34B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3Z_4wTU8n9REYZLp0O5R5zhSns.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D53AC/03168C4E1D9711E28B6C008008B02CD2/S3Z_4wTU8n9REYZLp0O5R5zhSns.mft Manifest number: 34AD Signing time: Sun 10 Aug 2025 14:49:52 +0000 Manifest this update: Sun 10 Aug 2025 14:49:52 +0000 Manifest next update: Sun 17 Aug 2025 14:49:52 +0000 Files and hashes: 1: S3Z_4wTU8n9REYZLp0O5R5zhSns.crl (hash: AFHzvNNALq2eAH8PocHlLMWPjCCoSrtmI2M6hvuUQrg=) 2: 0C9FD154619611EEADD97F70C4F9AE02.roa (hash: 6tys2kBORt2e9LfTgwSygjIdDqVtnmqGXLJS1SjEsWs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D53AC/03168C4E1D9711E28B6C008008B02CD2/S3Z_4wTU8n9REYZLp0O5R5zhSns.crl rsync://rpki.apnic.net/member_repository/A91D53AC/03168C4E1D9711E28B6C008008B02CD2/S3Z_4wTU8n9REYZLp0O5R5zhSns.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3Z_4wTU8n9REYZLp0O5R5zhSns.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13488 (0x34b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D53AC, serialNumber=4B767FE304D4F27F5111864BA743B9479CE14A7B Validity Not Before: Aug 10 14:49:52 2025 GMT Not After : Aug 17 14:49:52 2025 GMT Subject: CN=6898b190-5424 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:ab:11:67:cc:a4:09:2c:ea:d7:54:65:5b:b0: 94:da:89:4c:50:f5:8d:6c:2c:d0:6b:8f:04:44:d8: 8e:a6:fb:4a:fc:33:39:3d:72:ec:d2:14:c0:d1:45: 28:b4:35:87:84:04:56:f3:2f:dd:a3:f8:0a:a4:e2: 11:41:6d:f5:82:cd:80:17:d2:14:ab:69:c1:5b:23: 9c:57:3b:78:1c:51:d2:8f:63:a9:2a:57:0d:0c:aa: 4a:da:25:c0:84:ac:d2:4f:e1:45:76:39:c8:3b:f3: d2:3a:06:3e:d2:ba:c7:75:28:58:50:7a:d7:c4:48: 00:3b:aa:02:c1:91:4d:0b:14:b5:77:c7:b4:d6:91: e8:2c:97:f9:10:69:97:42:c0:09:87:fc:22:99:30: 8f:fd:e3:57:b9:5c:03:92:96:c6:f2:d3:e5:2f:94: 85:2e:7d:f3:87:6a:25:df:ac:e1:66:85:9b:31:8b: 7f:82:ce:11:25:4a:b9:d2:07:6a:1d:c0:86:c4:b6: f2:84:51:8b:10:35:eb:5f:2c:ea:c7:cb:11:64:85: 7f:c2:50:6f:54:03:de:08:4d:3a:93:6b:78:0d:1b: ec:56:4c:e4:08:a9:e6:8b:5c:89:b7:65:ce:11:6e: 39:6a:78:49:27:ea:56:55:2b:c3:b9:4c:33:40:ee: ac:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:A7:0C:92:B6:B2:A5:C3:96:1C:31:4E:9D:E9:89:98:65:00:C6:F4 X509v3 Authority Key Identifier: keyid:4B:76:7F:E3:04:D4:F2:7F:51:11:86:4B:A7:43:B9:47:9C:E1:4A:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D53AC/03168C4E1D9711E28B6C008008B02CD2/S3Z_4wTU8n9REYZLp0O5R5zhSns.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3Z_4wTU8n9REYZLp0O5R5zhSns.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D53AC/03168C4E1D9711E28B6C008008B02CD2/S3Z_4wTU8n9REYZLp0O5R5zhSns.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:82:7f:d0:79:a1:02:ec:1e:5e:bb:9a:d7:23:07:a3:c2:83: bc:39:97:f8:40:af:f6:99:b5:4a:04:50:5c:49:06:31:bb:7a: 7d:16:d4:66:f7:69:3e:26:8b:00:ab:5b:5e:39:8a:33:af:22: 0e:1e:87:d9:9c:3f:c5:f4:4a:68:5a:71:4b:78:01:c9:d9:07: d2:05:b9:d2:26:07:6f:08:98:c9:8c:4a:93:c0:08:bb:af:be: 5a:e7:75:f1:33:20:02:16:f4:64:1f:b8:a0:cf:ba:5e:5d:db: e6:fc:da:7d:58:69:8a:b7:fe:c8:82:e5:f9:05:a0:17:ed:9d: 79:19:05:fc:e8:07:6b:65:8f:c3:33:f5:47:65:db:f3:87:98: 69:fe:76:d1:32:74:b9:62:de:fa:fa:c9:1e:61:87:be:0c:0c: bb:b7:69:46:d2:aa:eb:1f:65:90:d4:91:c7:65:71:10:4b:b1: ae:36:ce:8f:65:07:ba:fa:78:28:b9:d0:47:a8:fa:12:6f:80: 8d:34:24:4a:00:fa:21:d3:88:9f:61:e1:aa:26:e0:a1:13:ae: b0:b3:ed:fc:73:a6:4d:65:0b:e5:61:62:73:21:f0:a2:ce:00: 8d:5c:a8:ba:56:52:e8:48:c2:63:b3:47:6b:f6:b4:02:55:4c: 41:0c:25:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUzQUMxMTAvBgNVBAUTKDRCNzY3RkUzMDRENEYyN0Y1MTExODY0QkE3NDNCOTQ3 OUNFMTRBN0IwHhcNMjUwODEwMTQ0OTUyWhcNMjUwODE3MTQ0OTUyWjAYMRYwFAYD VQQDEw02ODk4YjE5MC01NDI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo6sRZ8ykCSzq11RlW7CU2olMUPWNbCzQa48ERNiOpvtK/DM5PXLs0hTA0UUo tDWHhARW8y/do/gKpOIRQW31gs2AF9IUq2nBWyOcVzt4HFHSj2OpKlcNDKpK2iXA hKzST+FFdjnIO/PSOgY+0rrHdShYUHrXxEgAO6oCwZFNCxS1d8e01pHoLJf5EGmX QsAJh/wimTCP/eNXuVwDkpbG8tPlL5SFLn3zh2ol36zhZoWbMYt/gs4RJUq50gdq HcCGxLbyhFGLEDXrXyzqx8sRZIV/wlBvVAPeCE06k2t4DRvsVkzkCKnmi1yJt2XO EW45anhJJ+pWVSvDuUwzQO6sewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAmnDJK2 sqXDlhwxTp3piZhlAMb0MB8GA1UdIwQYMBaAFEt2f+ME1PJ/URGGS6dDuUec4Up7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTNBQy8wMzE2OEM0RTFE OTcxMUUyOEI2QzAwODAwOEIwMkNEMi9TM1pfNHdUVThuOVJFWVpMcDBPNVI1emhT bnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1MzWl80d1RVOG45UkVZWkxwME81UjV6aFNucy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTNBQy8wMzE2OEM0RTFEOTcxMUUyOEI2QzAwODAwOEIwMkNEMi9TM1pfNHdUVThu OVJFWVpMcDBPNVI1emhTbnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCngn/QeaEC7B5eu5rXIwejwoO8OZf4QK/2mbVKBFBcSQYxu3p9FtRm 92k+JosAq1teOYozryIOHofZnD/F9EpoWnFLeAHJ2QfSBbnSJgdvCJjJjEqTwAi7 r75a53XxMyACFvRkH7igz7peXdvm/Np9WGmKt/7IguX5BaAX7Z15GQX86AdrZY/D M/VHZdvzh5hp/nbRMnS5Yt76+skeYYe+DAy7t2lG0qrrH2WQ1JHHZXEQS7GuNs6P ZQe6+ngoudBHqPoSb4CNNCRKAPoh04ifYeGqJuChE66ws+38c6ZNZQvlYWJzIfCi zgCNXKi6VlLoSMJjs0dr9rQCVUxBDCVe -----END CERTIFICATE-----Generated at Mon Aug 11 04:19:07 2025 by rpki-client