$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.mft File: d3ZhKkPCLQpmuPE2gLMFi-1dmJI.mft (raw, json) Hash identifier: euqhkpk/juBNIMWRD4OEZs0z1tYViUkkIZIAUHHU508= Subject key identifier: 4C:1B:0B:77:BC:3B:AA:CA:2C:7D:68:EE:98:99:59:5F:86:F4:86:99 Authority key identifier: 77:76:61:2A:43:C2:2D:0A:66:B8:F1:36:80:B3:05:8B:ED:5D:98:92 Certificate issuer: /CN=A91DEB81/serialNumber=7776612A43C22D0A66B8F13680B3058BED5D9892 Certificate serial: 0470 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.mft Manifest number: 0448 Signing time: Sat 09 Aug 2025 00:49:40 +0000 Manifest this update: Sat 09 Aug 2025 00:49:40 +0000 Manifest next update: Sat 16 Aug 2025 00:49:40 +0000 Files and hashes: 1: d3ZhKkPCLQpmuPE2gLMFi-1dmJI.crl (hash: /qO2lKIkLFTsSKRKVWDCzX9Khb4THIRz43LKMUFMgaw=) 2: EEECC55A8C3611EFA07E612DC4F9AE02.roa (hash: S448nKM+pkzyKAVAq+QLZ6c2Rwj7lMGOSqjzi17yKYo=) 3: 216DB034DE9711EC9289256FC4F9AE02.roa (hash: +Y2vKS8CZ7xVCXV7DmrOc6o0OVVkIHves16LK2wsX2I=) 4: 204E25DADE9711EC9289256FC4F9AE02.roa (hash: Nm0NB5K/NvPqifGuFp/i7DvZfN/unt+xIyxa1mf1Ru8=) 5: E184C6F48F2C11EEA361B22FC4F9AE02.roa (hash: m7hFb23btwRa7iUoc5sSfQwuK6EzzQbsJrT19RdsUzA=) 6: 1FBEA1EEDE9711EC9289256FC4F9AE02.roa (hash: wFyDTsNGRzgAv8mhqHHalbGpjw+H79Gqqrm8IklHVfE=) 7: E0C5B7148F2C11EEA361B22FC4F9AE02.roa (hash: Aqyl2hhEx5BpBctkE5rWM8Kv0ZDOqQAIfUrt5yWaYks=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.crl rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1136 (0x470) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEB81, serialNumber=7776612A43C22D0A66B8F13680B3058BED5D9892 Validity Not Before: Aug 9 00:49:40 2025 GMT Not After : Aug 16 00:49:40 2025 GMT Subject: CN=68969b24-7c4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:31:eb:bb:aa:f8:42:b8:6a:c5:95:69:16:32: 03:dd:e5:5f:21:93:da:b2:fa:e5:f7:48:2a:51:47: 2c:64:56:e0:db:a8:0e:b9:03:24:b3:3a:6d:69:0c: f1:32:4d:cf:7c:94:ca:19:08:72:1f:52:64:c2:e3: 9f:3c:dc:37:1a:e6:79:09:43:37:e7:d2:93:40:2d: a4:c2:26:4a:bd:b8:57:97:43:50:17:38:b9:ad:3c: 31:bf:4c:d5:39:01:dd:22:d8:7d:8e:b0:26:dc:85: ea:be:02:2c:59:92:20:12:bc:a4:33:c2:a6:aa:5b: 35:ce:3b:dd:14:6d:c2:80:9a:d0:79:53:74:d9:b4: a1:d5:ab:a6:34:5e:20:22:ca:43:ea:1e:64:5b:07: 5d:4c:8e:15:d2:06:17:6b:0b:16:37:54:6d:3c:8e: 14:6d:9e:ce:f1:a6:69:f6:57:47:33:d2:e8:9b:68: af:f8:ac:15:17:32:e1:ec:0c:f9:10:1f:3f:75:49: e5:94:75:ce:07:66:fb:d7:fe:8d:86:5b:6a:60:26: c3:46:4a:f1:db:ad:00:fe:f1:3b:49:81:e9:62:00: 15:3d:1e:8e:d1:bc:16:56:3b:d0:be:eb:db:80:7e: 32:79:8f:d6:8b:19:de:05:e5:d2:ef:24:f1:5a:e2: ee:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:1B:0B:77:BC:3B:AA:CA:2C:7D:68:EE:98:99:59:5F:86:F4:86:99 X509v3 Authority Key Identifier: keyid:77:76:61:2A:43:C2:2D:0A:66:B8:F1:36:80:B3:05:8B:ED:5D:98:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:b3:0d:08:c5:dd:be:d0:23:95:a3:04:6e:54:d4:85:a0:41: d0:ff:8b:ab:5c:2e:72:64:e9:82:57:20:2f:86:c7:04:24:51: 95:3a:bc:33:b6:9f:17:7b:c2:88:b7:f9:17:78:e5:ab:27:57: 9d:09:7f:fc:0f:08:2f:27:a1:af:e9:ac:08:33:79:d2:75:72: 13:91:aa:f4:17:6b:ce:f2:e0:20:59:af:ea:bf:82:18:fe:39: 1a:73:85:06:32:dc:f9:2b:be:e8:90:d1:7c:96:19:ef:20:0c: e8:d3:34:e2:ba:3b:66:1b:13:33:1f:47:56:af:0d:25:0c:95: 7b:3a:96:ba:22:a5:54:9e:41:99:16:f2:73:43:98:49:6b:03: b6:54:6a:b2:9e:52:d8:af:41:02:49:d8:2f:dd:92:b4:56:cc: 02:a7:4e:a8:f5:ae:26:ef:92:cf:4d:6e:b2:a9:33:c1:69:a1: 3f:a3:b5:55:17:c1:8d:5b:48:e2:c8:e4:30:3c:16:15:79:99: 7e:c9:fe:96:4f:40:57:1e:b5:3b:16:76:88:2f:86:92:f6:30: 80:14:4c:31:b7:3e:fe:b4:25:ce:03:8a:5c:49:3d:d2:a0:c9: 7d:62:a2:f2:6a:ed:0f:e5:94:74:f3:a2:b5:8a:c7:ed:bf:47: be:de:19:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVCODExMTAvBgNVBAUTKDc3NzY2MTJBNDNDMjJEMEE2NkI4RjEzNjgwQjMwNThC RUQ1RDk4OTIwHhcNMjUwODA5MDA0OTQwWhcNMjUwODE2MDA0OTQwWjAYMRYwFAYD VQQDEw02ODk2OWIyNC03YzRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4THru6r4QrhqxZVpFjID3eVfIZPasvrl90gqUUcsZFbg26gOuQMkszptaQzx Mk3PfJTKGQhyH1JkwuOfPNw3GuZ5CUM359KTQC2kwiZKvbhXl0NQFzi5rTwxv0zV OQHdIth9jrAm3IXqvgIsWZIgErykM8Kmqls1zjvdFG3CgJrQeVN02bSh1aumNF4g IspD6h5kWwddTI4V0gYXawsWN1RtPI4UbZ7O8aZp9ldHM9Lom2iv+KwVFzLh7Az5 EB8/dUnllHXOB2b71/6NhltqYCbDRkrx260A/vE7SYHpYgAVPR6O0bwWVjvQvuvb gH4yeY/WixneBeXS7yTxWuLuZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEwbC3e8 O6rKLH1o7piZWV+G9IaZMB8GA1UdIwQYMBaAFHd2YSpDwi0KZrjxNoCzBYvtXZiS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUI4MS9DRjk2NjNDNjcw RjcxMUVDQjMxOEU0M0FDNEY5QUUwMi9kM1poS2tQQ0xRcG11UEUyZ0xNRmktMWRt SkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2QzWmhLa1BDTFFwbXVQRTJnTE1GaS0xZG1KSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUI4MS9DRjk2NjNDNjcwRjcxMUVDQjMxOEU0M0FDNEY5QUUwMi9kM1poS2tQQ0xR cG11UEUyZ0xNRmktMWRtSkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0sw0Ixd2+0COVowRuVNSFoEHQ/4urXC5yZOmCVyAvhscEJFGVOrwz tp8Xe8KIt/kXeOWrJ1edCX/8DwgvJ6Gv6awIM3nSdXITkar0F2vO8uAgWa/qv4IY /jkac4UGMtz5K77okNF8lhnvIAzo0zTiujtmGxMzH0dWrw0lDJV7Opa6IqVUnkGZ FvJzQ5hJawO2VGqynlLYr0ECSdgv3ZK0VswCp06o9a4m75LPTW6yqTPBaaE/o7VV F8GNW0jiyOQwPBYVeZl+yf6WT0BXHrU7FnaIL4aS9jCAFEwxtz7+tCXOA4pcST3S oMl9YqLyau0P5ZR086K1isftv0e+3hkn -----END CERTIFICATE-----Generated at Sat Aug 9 23:21:45 2025 by rpki-client