$ rpki-client -vvf rpki.apnic.net/member_repository/A91E22E5/F5E34E64338D11ED97E3E25FC4F9AE02/I-3rdP0jQOR_AbyL94Q7dpHcBhU.mft File: I-3rdP0jQOR_AbyL94Q7dpHcBhU.mft (raw, json) Hash identifier: WVfGvZrOW5ulgdpmhvRJZhPl28a+yCaRmgGHdO5CH44= Subject key identifier: 8E:AB:43:FC:67:6B:6F:15:CA:FC:09:94:B1:86:11:0F:55:92:C3:15 Authority key identifier: 23:ED:EB:74:FD:23:40:E4:7F:01:BC:8B:F7:84:3B:76:91:DC:06:15 Certificate issuer: /CN=A91E22E5/serialNumber=23EDEB74FD2340E47F01BC8BF7843B7691DC0615 Certificate serial: 023E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-3rdP0jQOR_AbyL94Q7dpHcBhU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E22E5/F5E34E64338D11ED97E3E25FC4F9AE02/I-3rdP0jQOR_AbyL94Q7dpHcBhU.mft Manifest number: 023A Signing time: Thu 07 Aug 2025 02:28:51 +0000 Manifest this update: Thu 07 Aug 2025 02:28:51 +0000 Manifest next update: Thu 14 Aug 2025 02:28:51 +0000 Files and hashes: 1: I-3rdP0jQOR_AbyL94Q7dpHcBhU.crl (hash: yH0Ac2c1MBR5e88WylpTVHf+SlQREf1jj8ClUY8EHwQ=) 2: 623705DA339111ED9249064BC4F9AE02.roa (hash: 3xXR0x6j8N4PVf2/cUiVsVNe4o0Qs5z+0StILd/4bVs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E22E5/F5E34E64338D11ED97E3E25FC4F9AE02/I-3rdP0jQOR_AbyL94Q7dpHcBhU.crl rsync://rpki.apnic.net/member_repository/A91E22E5/F5E34E64338D11ED97E3E25FC4F9AE02/I-3rdP0jQOR_AbyL94Q7dpHcBhU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-3rdP0jQOR_AbyL94Q7dpHcBhU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 02:25:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 574 (0x23e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E22E5, serialNumber=23EDEB74FD2340E47F01BC8BF7843B7691DC0615 Validity Not Before: Aug 7 02:28:51 2025 GMT Not After : Aug 14 02:28:51 2025 GMT Subject: CN=68940f63-0967 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:a2:98:e2:e9:13:37:11:08:bb:68:77:4d:1a: 4f:f9:cf:f6:39:7d:98:b2:fb:ae:03:1d:69:02:60: c8:0a:aa:7b:1e:1a:7c:76:26:4f:a9:2e:a4:85:b6: f2:19:00:74:65:75:99:ab:78:d3:1b:b2:68:80:06: f9:ce:3d:ab:4e:20:fc:d7:32:b8:c7:8f:7a:cf:51: 48:91:7d:ac:65:d3:4e:7e:0f:d5:2f:e3:bf:7e:2b: ba:f3:09:40:c8:1b:77:0c:58:6f:d7:e0:02:92:ff: 7d:92:7b:f0:80:23:78:21:83:ac:2d:b4:ca:a4:4a: 4f:43:62:36:5d:82:89:16:02:6c:9f:71:54:78:2a: a2:68:41:ee:ff:98:e4:75:ad:7b:52:17:5a:8d:fd: a7:97:2e:7d:62:13:20:bd:b5:e9:a1:76:0f:34:01: 99:dc:64:32:9e:5d:b7:52:a2:9c:ba:b3:28:f4:af: 89:c6:4e:aa:9f:07:a7:4b:99:b0:8e:e0:81:6e:b9: 3f:a5:d5:75:c5:b9:a0:4f:ea:0d:96:d9:f0:b8:cc: b9:95:c7:31:93:f7:d9:22:37:47:d9:14:b8:2f:ca: 5e:c5:9c:19:71:73:c0:ea:89:2c:f5:25:2c:3e:01: 12:03:2c:3b:17:48:d9:0c:68:47:6f:36:3b:21:aa: 5f:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:AB:43:FC:67:6B:6F:15:CA:FC:09:94:B1:86:11:0F:55:92:C3:15 X509v3 Authority Key Identifier: keyid:23:ED:EB:74:FD:23:40:E4:7F:01:BC:8B:F7:84:3B:76:91:DC:06:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E22E5/F5E34E64338D11ED97E3E25FC4F9AE02/I-3rdP0jQOR_AbyL94Q7dpHcBhU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-3rdP0jQOR_AbyL94Q7dpHcBhU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E22E5/F5E34E64338D11ED97E3E25FC4F9AE02/I-3rdP0jQOR_AbyL94Q7dpHcBhU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:77:c0:aa:80:77:08:da:90:4e:b0:86:08:7a:2f:0f:78:4b: 5c:35:22:01:e9:d9:8f:bd:67:f6:45:e9:f6:32:47:ec:e4:8c: b1:d0:fd:f7:1b:a1:ed:a4:bb:02:1f:ea:f7:f8:5f:d8:24:cf: 60:a5:36:8a:68:d1:45:9e:e7:e9:d7:bb:f0:6e:cf:34:3e:83: 1b:57:cd:8e:b0:a7:1a:39:30:7d:46:ad:3a:99:35:80:a8:4c: f5:6f:30:45:ba:91:86:a4:b0:5e:38:8b:6d:03:7e:33:f4:43: 1c:3e:8c:c8:0b:16:cb:1d:77:94:07:04:8c:24:bb:6c:0f:0b: e6:f4:f3:d0:84:b4:87:dc:70:37:91:ca:bc:43:e9:64:77:3b: 42:b4:35:c0:05:45:c2:59:6d:c1:b5:47:d3:42:88:62:c8:d6: 67:0a:e5:50:22:e0:8c:a3:d8:f4:94:8a:73:12:59:b1:b9:c8: 34:39:a5:4f:22:57:c6:dd:51:4b:d9:16:c8:9d:05:88:e3:3a: d2:95:af:ed:27:22:05:98:01:81:76:24:60:03:b9:37:5b:d1: d1:66:d9:44:f7:fd:47:81:32:b7:0f:a1:29:de:5e:ba:aa:95: be:7a:d0:7e:38:e4:fa:cd:be:e4:b5:bc:dc:88:17:0b:94:e5: 82:13:5a:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAj4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTIyRTUxMTAvBgNVBAUTKDIzRURFQjc0RkQyMzQwRTQ3RjAxQkM4QkY3ODQzQjc2 OTFEQzA2MTUwHhcNMjUwODA3MDIyODUxWhcNMjUwODE0MDIyODUxWjAYMRYwFAYD VQQDEw02ODk0MGY2My0wOTY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqqKY4ukTNxEIu2h3TRpP+c/2OX2YsvuuAx1pAmDICqp7Hhp8diZPqS6khbby GQB0ZXWZq3jTG7JogAb5zj2rTiD81zK4x496z1FIkX2sZdNOfg/VL+O/fiu68wlA yBt3DFhv1+ACkv99knvwgCN4IYOsLbTKpEpPQ2I2XYKJFgJsn3FUeCqiaEHu/5jk da17Uhdajf2nly59YhMgvbXpoXYPNAGZ3GQynl23UqKcurMo9K+Jxk6qnwenS5mw juCBbrk/pdV1xbmgT+oNltnwuMy5lccxk/fZIjdH2RS4L8pexZwZcXPA6oks9SUs PgESAyw7F0jZDGhHbzY7IapfGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI6rQ/xn a28VyvwJlLGGEQ9VksMVMB8GA1UdIwQYMBaAFCPt63T9I0DkfwG8i/eEO3aR3AYV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjJFNS9GNUUzNEU2NDMz OEQxMUVEOTdFM0UyNUZDNEY5QUUwMi9JLTNyZFAwalFPUl9BYnlMOTRRN2RwSGNC aFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ktM3JkUDBqUU9SX0FieUw5NFE3ZHBIY0JoVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjJFNS9GNUUzNEU2NDMzOEQxMUVEOTdFM0UyNUZDNEY5QUUwMi9JLTNyZFAwalFP Ul9BYnlMOTRRN2RwSGNCaFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7d8CqgHcI2pBOsIYIei8PeEtcNSIB6dmPvWf2Ren2Mkfs5Iyx0P33 G6HtpLsCH+r3+F/YJM9gpTaKaNFFnufp17vwbs80PoMbV82OsKcaOTB9Rq06mTWA qEz1bzBFupGGpLBeOIttA34z9EMcPozICxbLHXeUBwSMJLtsDwvm9PPQhLSH3HA3 kcq8Q+lkdztCtDXABUXCWW3BtUfTQohiyNZnCuVQIuCMo9j0lIpzElmxucg0OaVP IlfG3VFL2RbInQWI4zrSla/tJyIFmAGBdiRgA7k3W9HRZtlE9/1HgTK3D6Ep3l66 qpW+etB+OOT6zb7ktbzciBcLlOWCE1oe -----END CERTIFICATE-----Generated at Thu Aug 7 04:24:29 2025 by rpki-client