$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF85B/C713C2FE61D511EEBAA04A5EC4F9AE02/3DHPX8nyg0g327s2g8uK9kKrSnw.mft File: 3DHPX8nyg0g327s2g8uK9kKrSnw.mft (raw, json) Hash identifier: sMWlrz43V/w9QpdUwbVTYT0d3DW3fb6kggmF1siE1KQ= Subject key identifier: EB:B6:B2:BC:7C:A1:09:30:E9:F7:29:80:96:92:41:77:59:D3:02:98 Authority key identifier: DC:31:CF:5F:C9:F2:83:48:37:DB:BB:36:83:CB:8A:F6:42:AB:4A:7C Certificate issuer: /CN=A91DF85B/serialNumber=DC31CF5FC9F2834837DBBB3683CB8AF642AB4A7C Certificate serial: 015E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3DHPX8nyg0g327s2g8uK9kKrSnw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF85B/C713C2FE61D511EEBAA04A5EC4F9AE02/3DHPX8nyg0g327s2g8uK9kKrSnw.mft Manifest number: 015B Signing time: Sat 09 Aug 2025 04:25:50 +0000 Manifest this update: Sat 09 Aug 2025 04:25:50 +0000 Manifest next update: Sat 16 Aug 2025 04:25:50 +0000 Files and hashes: 1: 3DHPX8nyg0g327s2g8uK9kKrSnw.crl (hash: ZfHXNYkZZnq5T5wpoQsPRvOlSo+tYv00l83If8FzMTM=) 2: EE28B64661D611EE9C66300EC4F9AE02.roa (hash: aEwpt3FN/b3agcSqsy028NBcRbgaV2C2DNdzwhDgaUQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF85B/C713C2FE61D511EEBAA04A5EC4F9AE02/3DHPX8nyg0g327s2g8uK9kKrSnw.crl rsync://rpki.apnic.net/member_repository/A91DF85B/C713C2FE61D511EEBAA04A5EC4F9AE02/3DHPX8nyg0g327s2g8uK9kKrSnw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3DHPX8nyg0g327s2g8uK9kKrSnw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 350 (0x15e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF85B, serialNumber=DC31CF5FC9F2834837DBBB3683CB8AF642AB4A7C Validity Not Before: Aug 9 04:25:50 2025 GMT Not After : Aug 16 04:25:50 2025 GMT Subject: CN=6896cdce-61d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:d6:9f:29:68:50:79:f2:69:2d:0a:0a:f0:b9: 2b:ef:d6:03:7a:91:4a:0e:a4:79:ef:e8:a3:96:f1: 2a:b3:6f:cd:d8:96:91:23:79:ec:12:25:86:66:d3: 02:17:19:f1:a7:2b:01:1c:8a:45:75:5e:fc:36:64: 0c:a4:fd:78:86:f8:65:e2:d0:67:d6:23:80:c6:14: 21:46:16:7d:65:08:bb:49:79:59:8e:71:23:4d:09: e0:ed:26:84:6d:1b:ef:27:f0:f1:fd:21:9b:f8:16: 66:4b:87:86:47:59:bb:bb:00:58:f7:4b:76:64:82: ed:e2:26:f1:bb:62:19:f1:55:3f:45:ec:84:eb:04: 3e:2a:04:c4:9e:1b:d4:fb:f2:b6:b4:3b:1f:77:76: 75:16:b2:8b:92:ba:ff:ef:6d:5e:e5:5a:de:a9:84: 30:dc:b3:6a:f0:30:eb:07:05:8a:49:4b:b2:0e:ea: cb:18:5f:ed:8c:8c:d3:55:ee:e4:54:00:37:a0:3e: 79:37:99:58:af:80:88:81:3e:55:e3:3e:03:64:4f: 0b:7f:1c:5f:c8:8f:a4:43:61:b2:d3:e4:d9:83:09: bf:6b:1a:9a:a9:8c:b5:76:93:b1:9c:a9:a0:31:33: d1:95:73:dc:98:7c:6a:a8:76:c2:ec:e3:d1:8f:75: 80:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:B6:B2:BC:7C:A1:09:30:E9:F7:29:80:96:92:41:77:59:D3:02:98 X509v3 Authority Key Identifier: keyid:DC:31:CF:5F:C9:F2:83:48:37:DB:BB:36:83:CB:8A:F6:42:AB:4A:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF85B/C713C2FE61D511EEBAA04A5EC4F9AE02/3DHPX8nyg0g327s2g8uK9kKrSnw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3DHPX8nyg0g327s2g8uK9kKrSnw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF85B/C713C2FE61D511EEBAA04A5EC4F9AE02/3DHPX8nyg0g327s2g8uK9kKrSnw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:43:d7:c5:05:09:65:22:57:29:b9:28:a8:51:c0:38:98:b9: 3a:54:15:6a:ed:8d:44:fa:21:59:44:9c:50:68:9d:af:c5:6a: da:1f:2e:08:a2:6a:e4:f6:4f:58:4e:18:0d:ae:a8:95:e3:c7: 7f:4c:36:ab:d3:03:36:2d:53:b0:a4:79:0a:f7:59:d6:04:18: 81:84:55:3f:23:f7:1f:62:2d:60:35:0d:20:93:51:eb:3f:ae: 2b:52:2d:62:52:98:63:f7:3c:ac:8c:15:1a:ff:66:12:4e:b4: 0c:9b:37:37:a3:c9:b6:20:26:6d:31:e3:4e:37:be:5f:61:d7: d2:e1:81:27:55:73:db:3e:e7:ae:3d:0d:a0:70:f4:88:ce:12: 18:6c:36:e2:95:61:b3:d3:8a:d0:36:19:3c:35:48:f6:6d:db: 4a:84:35:4e:2f:75:5c:9b:55:c3:fb:2c:35:60:22:5b:22:17: fc:f8:22:d4:ad:82:0e:c4:5a:52:c1:a7:d6:b4:5f:bb:03:53: 7e:47:0d:31:c6:40:bf:c9:d2:a5:3c:ce:cf:2d:6f:98:eb:63: 13:8f:2c:10:2c:04:f4:f6:a4:e7:45:94:f8:69:f7:06:16:74: 2b:6e:bc:34:45:37:68:96:dc:b9:a1:8a:58:41:10:61:77:f7: bd:b4:24:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAV4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY4NUIxMTAvBgNVBAUTKERDMzFDRjVGQzlGMjgzNDgzN0RCQkIzNjgzQ0I4QUY2 NDJBQjRBN0MwHhcNMjUwODA5MDQyNTUwWhcNMjUwODE2MDQyNTUwWjAYMRYwFAYD VQQDEw02ODk2Y2RjZS02MWQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs9afKWhQefJpLQoK8Lkr79YDepFKDqR57+ijlvEqs2/N2JaRI3nsEiWGZtMC FxnxpysBHIpFdV78NmQMpP14hvhl4tBn1iOAxhQhRhZ9ZQi7SXlZjnEjTQng7SaE bRvvJ/Dx/SGb+BZmS4eGR1m7uwBY90t2ZILt4ibxu2IZ8VU/ReyE6wQ+KgTEnhvU +/K2tDsfd3Z1FrKLkrr/721e5VreqYQw3LNq8DDrBwWKSUuyDurLGF/tjIzTVe7k VAA3oD55N5lYr4CIgT5V4z4DZE8LfxxfyI+kQ2Gy0+TZgwm/axqaqYy1dpOxnKmg MTPRlXPcmHxqqHbC7OPRj3WARwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOu2srx8 oQkw6fcpgJaSQXdZ0wKYMB8GA1UdIwQYMBaAFNwxz1/J8oNIN9u7NoPLivZCq0p8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjg1Qi9DNzEzQzJGRTYx RDUxMUVFQkFBMDRBNUVDNEY5QUUwMi8zREhQWDhueWcwZzMyN3MyZzh1SzlrS3JT bncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNESFBYOG55ZzBnMzI3czJnOHVLOWtLclNudy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Rjg1Qi9DNzEzQzJGRTYxRDUxMUVFQkFBMDRBNUVDNEY5QUUwMi8zREhQWDhueWcw ZzMyN3MyZzh1SzlrS3JTbncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9Q9fFBQllIlcpuSioUcA4mLk6VBVq7Y1E+iFZRJxQaJ2vxWraHy4I omrk9k9YThgNrqiV48d/TDar0wM2LVOwpHkK91nWBBiBhFU/I/cfYi1gNQ0gk1Hr P64rUi1iUphj9zysjBUa/2YSTrQMmzc3o8m2ICZtMeNON75fYdfS4YEnVXPbPueu PQ2gcPSIzhIYbDbilWGz04rQNhk8NUj2bdtKhDVOL3Vcm1XD+yw1YCJbIhf8+CLU rYIOxFpSwafWtF+7A1N+Rw0xxkC/ydKlPM7PLW+Y62MTjywQLAT09qTnRZT4afcG FnQrbrw0RTdolty5oYpYQRBhd/e9tCSe -----END CERTIFICATE-----Generated at Sat Aug 9 10:34:27 2025 by rpki-client