$ rpki-client -vvf rpki.apnic.net/member_repository/A91D74A6/7171BBF2D19C11EF83CEAD3CC4F9AE02/3IDIXlEBCJqyQl0_yRd5haASXG4.mft File: 3IDIXlEBCJqyQl0_yRd5haASXG4.mft (raw, json) Hash identifier: nD5LyufRXECnIJ8zzlFvJqLZcDzRxfWI7V/dxJ7AdaE= Subject key identifier: 1F:ED:B3:FA:00:03:65:10:EA:4F:70:EC:2E:5D:E6:1F:12:5D:0E:1F Authority key identifier: DC:80:C8:5E:51:01:08:9A:B2:42:5D:3F:C9:17:79:85:A0:12:5C:6E Certificate issuer: /CN=A91D74A6/serialNumber=DC80C85E5101089AB2425D3FC9177985A0125C6E Certificate serial: 7F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3IDIXlEBCJqyQl0_yRd5haASXG4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D74A6/7171BBF2D19C11EF83CEAD3CC4F9AE02/3IDIXlEBCJqyQl0_yRd5haASXG4.mft Manifest number: 77 Signing time: Thu 07 Aug 2025 07:33:19 +0000 Manifest this update: Thu 07 Aug 2025 07:33:18 +0000 Manifest next update: Thu 14 Aug 2025 07:33:18 +0000 Files and hashes: 1: 3IDIXlEBCJqyQl0_yRd5haASXG4.crl (hash: JBZ5dhLO57NsoIOWHDtii3b/PPLCUKKSYPQtdSyn5nU=) 2: 727850D8D3EF11EFB596E00CC4F9AE02.roa (hash: hvte1LGzH8lQs5HlVIeT4otbezAzwXIr7d7vqIECmd8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D74A6/7171BBF2D19C11EF83CEAD3CC4F9AE02/3IDIXlEBCJqyQl0_yRd5haASXG4.crl rsync://rpki.apnic.net/member_repository/A91D74A6/7171BBF2D19C11EF83CEAD3CC4F9AE02/3IDIXlEBCJqyQl0_yRd5haASXG4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3IDIXlEBCJqyQl0_yRd5haASXG4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 127 (0x7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D74A6, serialNumber=DC80C85E5101089AB2425D3FC9177985A0125C6E Validity Not Before: Aug 7 07:33:18 2025 GMT Not After : Aug 14 07:33:18 2025 GMT Subject: CN=689456be-2c66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:d7:18:27:d8:81:dd:4b:e9:8c:93:18:3e:f7: a2:6e:42:6f:bc:a2:51:80:07:10:ea:8c:10:8b:e6: f2:fb:76:49:48:45:6c:8b:cc:57:c9:47:6a:64:f2: ec:cb:3f:19:71:ee:d1:89:ff:bb:1c:a8:08:9a:8e: a7:f3:04:da:9e:c6:d4:bb:af:1a:fd:4a:d0:2c:d2: 30:4d:01:3f:d2:51:28:6f:03:f0:16:4f:b9:6b:a9: 0f:0f:af:15:1a:0a:dd:dc:c5:15:90:b8:3d:37:bf: 5a:d9:b5:b2:d6:8e:79:74:b4:67:0e:a9:15:be:9d: 67:55:be:06:05:1c:62:91:ad:73:b8:57:d0:e9:49: 84:35:c0:53:7a:1f:f9:1e:7b:2f:8b:8f:16:3f:c6: e9:ac:1a:10:93:f4:aa:4c:f6:48:ca:c6:d5:14:5e: 9f:9e:d7:bf:0b:27:f8:73:69:0a:19:87:4c:6b:9e: 29:c5:b8:6e:3e:98:06:a2:ea:e0:48:d2:a0:4f:92: 9c:dc:06:51:d5:64:0c:59:6d:f5:51:09:5a:5f:dd: 11:d5:e3:32:32:36:7e:9e:1c:cb:ab:c9:38:d8:fc: 15:24:cf:f2:a0:44:aa:ac:d8:f9:57:83:dd:91:ca: 08:ad:82:9e:bf:d1:f7:00:6c:29:5f:f0:d3:99:9f: 53:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:ED:B3:FA:00:03:65:10:EA:4F:70:EC:2E:5D:E6:1F:12:5D:0E:1F X509v3 Authority Key Identifier: keyid:DC:80:C8:5E:51:01:08:9A:B2:42:5D:3F:C9:17:79:85:A0:12:5C:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D74A6/7171BBF2D19C11EF83CEAD3CC4F9AE02/3IDIXlEBCJqyQl0_yRd5haASXG4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3IDIXlEBCJqyQl0_yRd5haASXG4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D74A6/7171BBF2D19C11EF83CEAD3CC4F9AE02/3IDIXlEBCJqyQl0_yRd5haASXG4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:c7:c0:00:1c:ed:fb:71:77:8a:59:83:ea:03:51:3f:40:e9: 54:da:8b:1b:d5:43:5d:ba:56:ec:52:dc:ff:25:6b:4a:33:74: e2:26:cd:b3:cd:f8:ed:52:3b:58:26:d6:bb:0c:ae:5c:37:fa: 2d:cb:b1:45:99:80:22:bf:e0:b3:76:5a:ec:62:41:70:ff:65: d4:38:29:f4:4c:30:57:87:c1:05:4d:8f:f5:6b:ab:a7:87:c7: ae:83:3f:8f:d1:ed:c4:b3:67:98:f7:73:78:ee:67:fd:70:32: 50:cf:e4:76:eb:21:82:75:14:3d:cf:58:d9:16:71:81:82:92: 4a:13:91:49:c8:5a:ac:3e:fd:e2:5a:59:b8:1b:62:b2:9a:fd: ca:91:88:98:b7:ae:2e:d0:3b:2d:af:f5:40:56:1f:77:b8:15: fd:64:23:79:ce:26:b2:fe:93:65:d4:fa:a0:f8:f0:4e:2d:50: e7:cb:ae:e6:8e:af:49:87:88:2c:37:e5:31:ee:e4:33:be:7f: 57:21:70:70:79:20:1a:73:8d:57:71:65:74:38:4c:85:cf:04: 97:f7:f2:b4:e3:f3:15:fd:80:3e:9f:cc:77:31:77:67:d2:97: 15:9c:d0:16:52:fe:f5:7e:ae:06:26:9c:6c:d4:10:9f:b6:4c: 1c:52:65:f7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE NzRBNjExMC8GA1UEBRMoREM4MEM4NUU1MTAxMDg5QUIyNDI1RDNGQzkxNzc5ODVB MDEyNUM2RTAeFw0yNTA4MDcwNzMzMThaFw0yNTA4MTQwNzMzMThaMBgxFjAUBgNV BAMTDTY4OTQ1NmJlLTJjNjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDQ1xgn2IHdS+mMkxg+96JuQm+8olGABxDqjBCL5vL7dklIRWyLzFfJR2pk8uzL Pxlx7tGJ/7scqAiajqfzBNqextS7rxr9StAs0jBNAT/SUShvA/AWT7lrqQ8PrxUa Ct3cxRWQuD03v1rZtbLWjnl0tGcOqRW+nWdVvgYFHGKRrXO4V9DpSYQ1wFN6H/ke ey+LjxY/xumsGhCT9KpM9kjKxtUUXp+e178LJ/hzaQoZh0xrninFuG4+mAai6uBI 0qBPkpzcBlHVZAxZbfVRCVpf3RHV4zIyNn6eHMuryTjY/BUkz/KgRKqs2PlXg92R ygitgp6/0fcAbClf8NOZn1PVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUH+2z+gAD ZRDqT3DsLl3mHxJdDh8wHwYDVR0jBBgwFoAU3IDIXlEBCJqyQl0/yRd5haASXG4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ3NEE2LzcxNzFCQkYyRDE5 QzExRUY4M0NFQUQzQ0M0RjlBRTAyLzNJRElYbEVCQ0pxeVFsMF95UmQ1aGFBU1hH NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvM0lESVhsRUJDSnF5UWwwX3lSZDVoYUFTWEc0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ3 NEE2LzcxNzFCQkYyRDE5QzExRUY4M0NFQUQzQ0M0RjlBRTAyLzNJRElYbEVCQ0px eVFsMF95UmQ1aGFBU1hHNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAI3HwAAc7ftxd4pZg+oDUT9A6VTaixvVQ126VuxS3P8la0ozdOImzbPN +O1SO1gm1rsMrlw3+i3LsUWZgCK/4LN2WuxiQXD/ZdQ4KfRMMFeHwQVNj/Vrq6eH x66DP4/R7cSzZ5j3c3juZ/1wMlDP5HbrIYJ1FD3PWNkWcYGCkkoTkUnIWqw+/eJa WbgbYrKa/cqRiJi3ri7QOy2v9UBWH3e4Ff1kI3nOJrL+k2XU+qD48E4tUOfLruaO r0mHiCw35THu5DO+f1chcHB5IBpzjVdxZXQ4TIXPBJf38rTj8xX9gD6fzHcxd2fS lxWc0BZS/vV+rgYmnGzUEJ+2TBxSZfc= -----END CERTIFICATE-----Generated at Sat Aug 9 01:08:11 2025 by rpki-client