$ rpki-client -vvf rpki.apnic.net/member_repository/A91D76BE/44C29E0E6B7711EA86594476C4F9AE02/3RGLuzSfLJtA3Zu3GlthxkvbPhE.mft File: 3RGLuzSfLJtA3Zu3GlthxkvbPhE.mft (raw, json) Hash identifier: w9gOZduyH7h6+60W5BZaLccnZ3k1C49jbcd7Mvf0HB8= Subject key identifier: A2:DE:9D:8D:CE:E1:52:18:1F:66:38:15:31:02:5C:83:40:DE:95:F6 Authority key identifier: DD:11:8B:BB:34:9F:2C:9B:40:DD:9B:B7:1A:5B:61:C6:4B:DB:3E:11 Certificate issuer: /CN=A91D76BE/serialNumber=DD118BBB349F2C9B40DD9BB71A5B61C64BDB3E11 Certificate serial: 0A61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3RGLuzSfLJtA3Zu3GlthxkvbPhE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D76BE/44C29E0E6B7711EA86594476C4F9AE02/3RGLuzSfLJtA3Zu3GlthxkvbPhE.mft Manifest number: 0A5A Signing time: Sun 10 Aug 2025 19:42:00 +0000 Manifest this update: Sun 10 Aug 2025 19:42:00 +0000 Manifest next update: Sun 17 Aug 2025 19:42:00 +0000 Files and hashes: 1: 3RGLuzSfLJtA3Zu3GlthxkvbPhE.crl (hash: RLUxBKhCGhlQt2p7JrS8fNoB4D4dhhtINGtyfj+YmVw=) 2: 47772F946C2011EAA5965B3CC4F9AE02.roa (hash: VtwEbio1gRB7Ch5LlsoNkh9yhOMrAAqsTjIWAhPZFj0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D76BE/44C29E0E6B7711EA86594476C4F9AE02/3RGLuzSfLJtA3Zu3GlthxkvbPhE.crl rsync://rpki.apnic.net/member_repository/A91D76BE/44C29E0E6B7711EA86594476C4F9AE02/3RGLuzSfLJtA3Zu3GlthxkvbPhE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3RGLuzSfLJtA3Zu3GlthxkvbPhE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2657 (0xa61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D76BE, serialNumber=DD118BBB349F2C9B40DD9BB71A5B61C64BDB3E11 Validity Not Before: Aug 10 19:42:00 2025 GMT Not After : Aug 17 19:42:00 2025 GMT Subject: CN=6898f608-16d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:e1:73:07:86:7c:64:1b:ff:b9:0f:fc:ad:46: 38:01:c7:fa:a4:df:68:70:1b:46:35:5f:51:26:7f: 8b:09:6e:b4:a6:e0:75:ca:89:7d:13:41:93:24:f6: d0:2f:fa:6d:1e:d6:fc:9f:d2:91:a4:1b:7e:bf:8c: b5:d3:4a:12:d4:0c:b8:86:9d:d2:0d:0c:d1:88:7c: ec:89:5c:f2:26:a0:e7:f9:3a:fd:f2:19:d1:cc:51: 19:a6:73:b2:f9:4c:f0:7e:53:57:2e:8c:d6:3b:3d: 69:30:5b:a8:19:fd:d0:6a:52:2c:3b:df:c5:e7:b4: be:4d:23:42:2d:4a:12:c3:71:7d:cc:8f:1f:1a:b1: 31:10:bb:ec:a7:63:20:54:66:d0:b5:72:37:37:7e: 2d:5c:89:be:95:cc:43:b9:b4:98:9e:87:ac:a7:6d: b9:a0:4e:c0:b3:a3:62:c2:70:f9:72:e2:5b:1f:d5: 9d:57:1d:d5:73:85:54:05:a8:29:78:06:91:fc:10: 65:34:7d:fb:fd:9b:17:a6:ef:51:41:76:d7:9b:6c: 30:4f:1c:1a:bb:01:20:24:b9:78:cc:ac:c3:bf:ea: cf:e2:b4:f0:34:4b:63:ca:69:db:a1:fa:52:62:f7: 71:14:49:91:8d:b7:2b:78:41:32:1b:b3:29:b5:03: 66:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:DE:9D:8D:CE:E1:52:18:1F:66:38:15:31:02:5C:83:40:DE:95:F6 X509v3 Authority Key Identifier: keyid:DD:11:8B:BB:34:9F:2C:9B:40:DD:9B:B7:1A:5B:61:C6:4B:DB:3E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D76BE/44C29E0E6B7711EA86594476C4F9AE02/3RGLuzSfLJtA3Zu3GlthxkvbPhE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3RGLuzSfLJtA3Zu3GlthxkvbPhE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D76BE/44C29E0E6B7711EA86594476C4F9AE02/3RGLuzSfLJtA3Zu3GlthxkvbPhE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:36:43:06:79:8d:c6:ea:52:e5:b1:7f:d8:94:62:41:ec:48: 17:93:f4:20:2e:78:63:e9:f4:f1:74:39:40:3f:6d:a4:37:59: c0:08:bf:84:48:d5:c8:3a:91:3a:04:71:6e:14:11:66:86:c6: 0c:c3:ac:68:ca:11:74:60:ce:83:dd:53:30:89:ea:37:72:b0: 08:1d:23:6d:3a:66:25:eb:bd:b1:9f:ba:b8:6e:e1:46:d0:19: 16:14:f1:67:97:06:d3:18:b3:2a:bc:cd:13:99:ab:2e:23:10: d2:7e:eb:4d:cb:f5:9f:e1:04:7d:93:78:3f:af:1a:eb:00:5c: 42:a8:3c:fd:a2:00:b3:a0:c0:6e:7d:98:ed:cd:7d:0b:b9:db: bf:88:e5:6d:c1:10:ef:4d:78:26:ee:61:35:81:f8:09:a6:2b: c4:d7:f3:24:c2:24:40:13:89:6b:04:86:4c:99:9e:f8:27:f1: d0:74:aa:f3:ed:1c:56:59:35:0b:d6:bc:90:0a:01:2a:5f:ae: 02:3d:9a:20:c8:2f:56:72:11:c9:5a:8e:b0:ce:f1:c3:77:3a: 37:70:1f:c7:4e:62:92:73:4a:88:c3:57:68:04:1f:a7:d4:42: 89:3b:da:c7:86:bd:d1:71:4a:8d:cf:6f:2e:93:9f:8e:ee:c4: e6:45:03:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCmEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDc2QkUxMTAvBgNVBAUTKEREMTE4QkJCMzQ5RjJDOUI0MEREOUJCNzFBNUI2MUM2 NEJEQjNFMTEwHhcNMjUwODEwMTk0MjAwWhcNMjUwODE3MTk0MjAwWjAYMRYwFAYD VQQDEw02ODk4ZjYwOC0xNmQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvOFzB4Z8ZBv/uQ/8rUY4Acf6pN9ocBtGNV9RJn+LCW60puB1yol9E0GTJPbQ L/ptHtb8n9KRpBt+v4y100oS1Ay4hp3SDQzRiHzsiVzyJqDn+Tr98hnRzFEZpnOy +UzwflNXLozWOz1pMFuoGf3QalIsO9/F57S+TSNCLUoSw3F9zI8fGrExELvsp2Mg VGbQtXI3N34tXIm+lcxDubSYnoesp225oE7As6NiwnD5cuJbH9WdVx3Vc4VUBagp eAaR/BBlNH37/ZsXpu9RQXbXm2wwTxwauwEgJLl4zKzDv+rP4rTwNEtjymnbofpS YvdxFEmRjbcreEEyG7MptQNmEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKLenY3O 4VIYH2Y4FTECXINA3pX2MB8GA1UdIwQYMBaAFN0Ri7s0nyybQN2btxpbYcZL2z4R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzZCRS80NEMyOUUwRTZC NzcxMUVBODY1OTQ0NzZDNEY5QUUwMi8zUkdMdXpTZkxKdEEzWnUzR2x0aHhrdmJQ aEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNSR0x1elNmTEp0QTNadTNHbHRoeGt2YlBoRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NzZCRS80NEMyOUUwRTZCNzcxMUVBODY1OTQ0NzZDNEY5QUUwMi8zUkdMdXpTZkxK dEEzWnUzR2x0aHhrdmJQaEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGNkMGeY3G6lLlsX/YlGJB7EgXk/QgLnhj6fTxdDlAP22kN1nACL+E SNXIOpE6BHFuFBFmhsYMw6xoyhF0YM6D3VMwieo3crAIHSNtOmYl672xn7q4buFG 0BkWFPFnlwbTGLMqvM0TmasuIxDSfutNy/Wf4QR9k3g/rxrrAFxCqDz9ogCzoMBu fZjtzX0Ludu/iOVtwRDvTXgm7mE1gfgJpivE1/MkwiRAE4lrBIZMmZ74J/HQdKrz 7RxWWTUL1ryQCgEqX64CPZogyC9WchHJWo6wzvHDdzo3cB/HTmKSc0qIw1doBB+n 1EKJO9rHhr3RcUqNz28uk5+O7sTmRQP8 -----END CERTIFICATE-----Generated at Mon Aug 11 04:15:40 2025 by rpki-client