$ rpki-client -vvf rpki.apnic.net/member_repository/A91E46A5/0231C154006B11EA97C1BD5FC4F9AE02/su3iAzROnKc1AcVRQvmugWCeiYc.mft File: su3iAzROnKc1AcVRQvmugWCeiYc.mft (raw, json) Hash identifier: UBRIBc+YuRXvHl9kJImq6L9+go5v1oVmv1LI45lza9I= Subject key identifier: DC:EB:84:C1:96:19:27:BC:6B:A1:0D:16:6E:F5:AE:D8:C3:7D:CD:F2 Authority key identifier: B2:ED:E2:03:34:4E:9C:A7:35:01:C5:51:42:F9:AE:81:60:9E:89:87 Certificate issuer: /CN=A91E46A5/serialNumber=B2EDE203344E9CA73501C55142F9AE81609E8987 Certificate serial: 0C95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/su3iAzROnKc1AcVRQvmugWCeiYc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E46A5/0231C154006B11EA97C1BD5FC4F9AE02/su3iAzROnKc1AcVRQvmugWCeiYc.mft Manifest number: 0C88 Signing time: Fri 08 Aug 2025 18:30:24 +0000 Manifest this update: Fri 08 Aug 2025 18:30:23 +0000 Manifest next update: Fri 15 Aug 2025 18:30:23 +0000 Files and hashes: 1: su3iAzROnKc1AcVRQvmugWCeiYc.crl (hash: oEJlhRvRhiB6daM4Khwk0LXalZfxUFKP7+mY9OefRFo=) 2: CE094B08006B11EAA2719060C4F9AE02.roa (hash: 3at8OHhr3TWPa09hDLUXiFFjg44cS/0xW9KQOVKngqA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E46A5/0231C154006B11EA97C1BD5FC4F9AE02/su3iAzROnKc1AcVRQvmugWCeiYc.crl rsync://rpki.apnic.net/member_repository/A91E46A5/0231C154006B11EA97C1BD5FC4F9AE02/su3iAzROnKc1AcVRQvmugWCeiYc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/su3iAzROnKc1AcVRQvmugWCeiYc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3221 (0xc95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E46A5, serialNumber=B2EDE203344E9CA73501C55142F9AE81609E8987 Validity Not Before: Aug 8 18:30:23 2025 GMT Not After : Aug 15 18:30:23 2025 GMT Subject: CN=6896423f-025f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:7a:0f:9e:cf:a2:97:4b:c2:56:ad:85:a9:70: 2a:b3:73:1d:74:18:c1:40:04:2b:c3:e7:5c:9b:88: 08:7f:f5:78:36:ea:47:e2:fe:31:92:a9:0e:e5:e3: e2:10:8c:0b:5c:97:0b:bf:0d:c6:b3:66:d1:8f:f1: 6d:77:0c:e2:a2:9c:39:88:f2:8b:e7:33:2e:45:3f: 05:57:d5:b3:86:82:6f:c4:dd:9a:09:a0:42:e1:e2: b3:d4:dd:d1:12:7e:81:19:9e:5b:3e:5c:83:e2:26: 47:c7:bd:7c:88:a7:e6:43:f1:53:9e:32:56:0b:e7: 7b:63:ea:0a:cb:19:b7:2a:9e:3f:85:56:61:f0:7a: 42:62:a2:ba:8f:54:ff:5b:0c:bb:e5:f7:94:c4:a4: 83:32:80:00:21:68:1c:b4:b9:c9:48:48:8d:43:6e: 96:28:a4:76:f0:fc:6a:02:b2:ef:3d:7a:d0:68:e0: 2d:fa:f3:84:76:e3:48:a5:85:72:fd:e1:8e:82:0d: ba:12:e8:53:12:62:02:1b:a9:d3:72:87:b1:75:70: 20:a7:be:eb:b9:09:3b:a4:11:a1:51:f0:3c:b0:6e: 5c:fe:4d:a2:c9:87:ee:6e:28:65:8d:2d:3b:b3:05: f3:d7:8e:33:b7:e7:15:5b:7f:62:ac:bc:ef:53:fe: 12:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:EB:84:C1:96:19:27:BC:6B:A1:0D:16:6E:F5:AE:D8:C3:7D:CD:F2 X509v3 Authority Key Identifier: keyid:B2:ED:E2:03:34:4E:9C:A7:35:01:C5:51:42:F9:AE:81:60:9E:89:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E46A5/0231C154006B11EA97C1BD5FC4F9AE02/su3iAzROnKc1AcVRQvmugWCeiYc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/su3iAzROnKc1AcVRQvmugWCeiYc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E46A5/0231C154006B11EA97C1BD5FC4F9AE02/su3iAzROnKc1AcVRQvmugWCeiYc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:76:33:44:f9:8b:50:1d:6a:df:8a:46:a7:d3:1b:da:38:62: 65:0b:a1:6e:49:a5:eb:7b:dd:3a:7a:b4:4e:2d:21:52:8a:91: da:0f:9f:1c:bf:7b:1e:34:80:3a:f8:1e:97:1f:55:82:11:ff: 58:77:80:44:f4:08:45:29:4a:80:a9:41:43:b4:62:6f:90:fd: 3a:9b:ea:3e:4d:db:d9:7e:7e:27:cc:23:27:d5:95:d7:33:c5: af:ec:17:a7:48:04:74:6b:8c:9d:3e:5f:70:0f:75:34:31:98: e7:f9:53:12:c4:d7:df:c5:7c:28:ff:02:3f:98:03:f8:e0:09: 2c:2c:a4:f6:ae:d0:46:8e:40:d6:6e:8a:2f:bf:80:41:5f:99: 19:3a:f0:e3:ce:6b:a9:74:f4:a4:84:07:b1:29:e3:fe:63:9b: 55:38:c2:49:7c:19:22:62:b3:91:22:46:3c:14:5d:b4:0f:02: 80:3b:15:1e:af:22:a7:42:fa:74:a9:a6:07:13:9c:74:7c:56: a4:60:77:b6:a3:2f:7b:26:2c:d4:aa:f5:51:86:88:df:69:b1: a2:4b:20:70:9f:66:ac:e1:6c:1e:43:ea:01:6b:2e:cb:22:d7: 55:2e:51:8c:4e:a2:8a:68:28:45:ed:a7:76:49:e2:01:71:f2: db:5c:e2:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ2QTUxMTAvBgNVBAUTKEIyRURFMjAzMzQ0RTlDQTczNTAxQzU1MTQyRjlBRTgx NjA5RTg5ODcwHhcNMjUwODA4MTgzMDIzWhcNMjUwODE1MTgzMDIzWjAYMRYwFAYD VQQDEw02ODk2NDIzZi0wMjVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0XoPns+il0vCVq2FqXAqs3MddBjBQAQrw+dcm4gIf/V4NupH4v4xkqkO5ePi EIwLXJcLvw3Gs2bRj/Ftdwziopw5iPKL5zMuRT8FV9WzhoJvxN2aCaBC4eKz1N3R En6BGZ5bPlyD4iZHx718iKfmQ/FTnjJWC+d7Y+oKyxm3Kp4/hVZh8HpCYqK6j1T/ Wwy75feUxKSDMoAAIWgctLnJSEiNQ26WKKR28PxqArLvPXrQaOAt+vOEduNIpYVy /eGOgg26EuhTEmICG6nTcoexdXAgp77ruQk7pBGhUfA8sG5c/k2iyYfubihljS07 swXz144zt+cVW39irLzvU/4SsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNzrhMGW GSe8a6ENFm71rtjDfc3yMB8GA1UdIwQYMBaAFLLt4gM0TpynNQHFUUL5roFgnomH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDZBNS8wMjMxQzE1NDAw NkIxMUVBOTdDMUJENUZDNEY5QUUwMi9zdTNpQXpST25LYzFBY1ZSUXZtdWdXQ2Vp WWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3N1M2lBelJPbktjMUFjVlJRdm11Z1dDZWlZYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDZBNS8wMjMxQzE1NDAwNkIxMUVBOTdDMUJENUZDNEY5QUUwMi9zdTNpQXpST25L YzFBY1ZSUXZtdWdXQ2VpWWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQdjNE+YtQHWrfikan0xvaOGJlC6FuSaXre906erROLSFSipHaD58c v3seNIA6+B6XH1WCEf9Yd4BE9AhFKUqAqUFDtGJvkP06m+o+TdvZfn4nzCMn1ZXX M8Wv7BenSAR0a4ydPl9wD3U0MZjn+VMSxNffxXwo/wI/mAP44AksLKT2rtBGjkDW boovv4BBX5kZOvDjzmupdPSkhAexKeP+Y5tVOMJJfBkiYrORIkY8FF20DwKAOxUe ryKnQvp0qaYHE5x0fFakYHe2oy97JizUqvVRhojfabGiSyBwn2as4WweQ+oBay7L ItdVLlGMTqKKaChF7ad2SeIBcfLbXOKS -----END CERTIFICATE-----Generated at Sat Aug 9 15:16:53 2025 by rpki-client