$ rpki-client -vvf rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.mft File: -D3DokbRIVGsh6dyzsoO3SFfhio.mft (raw, json) Hash identifier: RcmrplBB3GUNGavhkObpGLK3D+xsXqWCdoPyTTjGCq0= Subject key identifier: 04:4E:89:72:6B:09:01:D5:8D:64:87:91:44:A3:F6:79:BF:F6:72:84 Authority key identifier: F8:3D:C3:A2:46:D1:21:51:AC:87:A7:72:CE:CA:0E:DD:21:5F:86:2A Certificate issuer: /CN=A91DDFF2/serialNumber=F83DC3A246D12151AC87A772CECA0EDD215F862A Certificate serial: 0105 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-D3DokbRIVGsh6dyzsoO3SFfhio.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.mft Manifest number: 0103 Signing time: Sat 09 Aug 2025 05:27:44 +0000 Manifest this update: Sat 09 Aug 2025 05:27:44 +0000 Manifest next update: Sat 16 Aug 2025 05:27:44 +0000 Files and hashes: 1: -D3DokbRIVGsh6dyzsoO3SFfhio.crl (hash: blwQP3rZnJ6b/0iB7GDV4INOogi8EwnmYRpXUzxgBIQ=) 2: EC7311FEE5C311EEBF217685C4F9AE02.roa (hash: qmFjn7wAfMqWkF24WNm8IekVR4ecxQdIio3RLzGcoHo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.crl rsync://rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-D3DokbRIVGsh6dyzsoO3SFfhio.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 261 (0x105) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DDFF2, serialNumber=F83DC3A246D12151AC87A772CECA0EDD215F862A Validity Not Before: Aug 9 05:27:44 2025 GMT Not After : Aug 16 05:27:44 2025 GMT Subject: CN=6896dc50-dbb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:c4:6e:c4:77:7d:02:49:ee:dd:46:72:e3:39: c6:96:33:6e:0b:fb:d1:29:a0:ef:98:34:0d:fd:79: 3b:7d:fd:aa:6c:92:9f:a1:90:3d:c9:e2:d5:56:ab: 97:ef:fd:b1:1d:29:de:79:e3:29:b4:68:0d:76:e8: 0e:e7:e7:ca:8d:d5:c8:93:57:b1:4b:1b:4f:bd:bc: 60:b8:3a:ef:07:29:69:13:fa:29:74:82:e4:41:ff: 77:a5:87:03:5f:f6:22:2f:39:82:fd:cc:60:f4:77: 47:bd:50:08:fd:20:7d:06:30:e8:f8:8b:bd:d6:f2: 82:6e:d7:0d:6a:af:06:28:34:99:16:58:2d:60:2e: 79:4f:27:b9:57:2c:0d:b0:08:1c:98:26:1f:8f:e7: 55:39:71:8f:c0:5a:a5:ac:3c:d0:ac:21:8a:24:91: a7:45:06:38:59:02:42:b3:9e:80:ce:ae:c8:8a:e8: 53:d5:49:38:9e:bb:f9:3f:53:b0:8d:12:ab:3c:c4: 44:8e:c9:cd:a2:83:0d:67:84:f6:7d:a3:48:67:7e: 11:01:1c:96:f9:78:5b:3b:76:48:60:f8:1d:6c:14: 08:e4:f7:d1:ba:90:87:a2:1d:14:53:2d:ea:f7:48: 5d:a4:f8:87:f9:f9:05:90:9a:0a:e9:9a:b2:a7:d6: 06:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:4E:89:72:6B:09:01:D5:8D:64:87:91:44:A3:F6:79:BF:F6:72:84 X509v3 Authority Key Identifier: keyid:F8:3D:C3:A2:46:D1:21:51:AC:87:A7:72:CE:CA:0E:DD:21:5F:86:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-D3DokbRIVGsh6dyzsoO3SFfhio.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:b4:74:1a:a3:c6:08:3f:aa:9d:96:f7:e3:1f:9c:dd:a1:14: 30:1d:66:72:02:9b:61:e0:f4:e3:51:a4:a3:33:4f:cb:b1:a9: 60:37:fc:bd:c2:81:88:c2:3f:eb:66:f8:8c:a0:43:a4:32:2d: c7:b2:26:f6:00:6f:ae:72:7c:e5:bd:a1:70:ed:16:e6:6b:a1: 37:e9:1b:c8:c5:1e:18:d1:b0:55:9a:99:2b:b6:b7:bc:d6:42: 00:c0:1d:99:72:a2:33:5e:86:ae:24:4a:8e:d7:73:81:6c:29: a3:b6:52:14:a3:3a:74:46:23:48:5a:eb:97:e0:f6:6d:f2:1e: 1f:89:19:df:8b:54:6a:c4:43:c9:d5:24:f2:54:0d:68:7e:d2: 65:c4:90:81:b8:45:c9:09:46:a7:b9:d7:db:2a:70:c8:67:90: 46:11:20:62:7c:bb:2a:67:af:97:8d:35:d3:9a:2e:bd:f0:75: f4:75:d3:bf:99:8f:75:7b:c2:fe:85:e8:7b:c3:70:6d:79:75: da:d1:a7:fa:72:ae:48:6a:38:45:69:88:75:0e:93:14:ea:10: 3b:4e:f6:b2:c8:f2:7c:07:96:1f:68:74:46:2a:80:40:0e:bb: 49:0e:da:1d:82:ce:25:79:64:dd:21:17:58:5e:5f:72:09:f6: ed:fb:5a:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RERGRjIxMTAvBgNVBAUTKEY4M0RDM0EyNDZEMTIxNTFBQzg3QTc3MkNFQ0EwRURE MjE1Rjg2MkEwHhcNMjUwODA5MDUyNzQ0WhcNMjUwODE2MDUyNzQ0WjAYMRYwFAYD VQQDEw02ODk2ZGM1MC1kYmIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAssRuxHd9Aknu3UZy4znGljNuC/vRKaDvmDQN/Xk7ff2qbJKfoZA9yeLVVquX 7/2xHSneeeMptGgNdugO5+fKjdXIk1exSxtPvbxguDrvBylpE/opdILkQf93pYcD X/YiLzmC/cxg9HdHvVAI/SB9BjDo+Iu91vKCbtcNaq8GKDSZFlgtYC55Tye5VywN sAgcmCYfj+dVOXGPwFqlrDzQrCGKJJGnRQY4WQJCs56Azq7IiuhT1Uk4nrv5P1Ow jRKrPMREjsnNooMNZ4T2faNIZ34RARyW+XhbO3ZIYPgdbBQI5PfRupCHoh0UUy3q 90hdpPiH+fkFkJoK6Zqyp9YGdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAROiXJr CQHVjWSHkUSj9nm/9nKEMB8GA1UdIwQYMBaAFPg9w6JG0SFRrIencs7KDt0hX4Yq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEREZGMi9DOUFGMjkzNEU1 QzExMUVFOThEQkU5NjJDNEY5QUUwMi8tRDNEb2tiUklWR3NoNmR5enNvTzNTRmZo aW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1EM0Rva2JSSVZHc2g2ZHl6c29PM1NGZmhpby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE REZGMi9DOUFGMjkzNEU1QzExMUVFOThEQkU5NjJDNEY5QUUwMi8tRDNEb2tiUklW R3NoNmR5enNvTzNTRmZoaW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBitHQao8YIP6qdlvfjH5zdoRQwHWZyApth4PTjUaSjM0/LsalgN/y9 woGIwj/rZviMoEOkMi3Hsib2AG+ucnzlvaFw7Rbma6E36RvIxR4Y0bBVmpkrtre8 1kIAwB2ZcqIzXoauJEqO13OBbCmjtlIUozp0RiNIWuuX4PZt8h4fiRnfi1RqxEPJ 1STyVA1oftJlxJCBuEXJCUanudfbKnDIZ5BGESBifLsqZ6+XjTXTmi698HX0ddO/ mY91e8L+heh7w3BteXXa0af6cq5IajhFaYh1DpMU6hA7TvayyPJ8B5YfaHRGKoBA DrtJDtodgs4leWTdIRdYXl9yCfbt+1op -----END CERTIFICATE-----Generated at Sun Aug 10 03:51:01 2025 by rpki-client