$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft File: 3af4p0oKdM_262MEKLbJ1w1XvXY.mft (raw, json) Hash identifier: PGcwBrwDNE3XYSjo7EuHk0yPinqVQEtm1VHT88qVa3I= Subject key identifier: 4C:7E:D2:5F:27:1B:D0:B3:01:13:FD:C2:91:A9:E0:94:61:78:FB:A9 Authority key identifier: DD:A7:F8:A7:4A:0A:74:CF:F6:EB:63:04:28:B6:C9:D7:0D:57:BD:76 Certificate issuer: /CN=A91E7BC4/serialNumber=DDA7F8A74A0A74CFF6EB630428B6C9D70D57BD76 Certificate serial: 0DCC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3af4p0oKdM_262MEKLbJ1w1XvXY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft Manifest number: 0D92 Signing time: Fri 08 Aug 2025 18:11:58 +0000 Manifest this update: Fri 08 Aug 2025 18:11:57 +0000 Manifest next update: Fri 15 Aug 2025 18:11:57 +0000 Files and hashes: 1: 3af4p0oKdM_262MEKLbJ1w1XvXY.crl (hash: r8cEU+lgsbIOSn59hK7ltiHk+t8pW4l82hlrEaJA/aY=) 2: CE83F0E6F0E411EAA47C3968C4F9AE02.roa (hash: ZQBdoWyO873LcT1vKoBchR3Mc6PGkjTHNlXwZK5KBUA=) 3: E69AF38AB11C11EAACC28D2EC4F9AE02.roa (hash: vmjmVmXjdkD0vxVvLQigcrFyWXDcETievw8r2QIVv8s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.crl rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3af4p0oKdM_262MEKLbJ1w1XvXY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3532 (0xdcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7BC4, serialNumber=DDA7F8A74A0A74CFF6EB630428B6C9D70D57BD76 Validity Not Before: Aug 8 18:11:57 2025 GMT Not After : Aug 15 18:11:57 2025 GMT Subject: CN=68963dee-cfd9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c8:24:5c:db:4f:d0:47:89:9a:77:a8:86:2c: 25:79:72:e2:bb:fd:32:19:66:b0:70:2c:e9:30:dc: 7d:5f:5e:5e:13:f9:f7:d0:91:33:40:de:0b:53:5f: 0f:26:fb:0f:09:9c:b0:27:4b:d8:23:73:ec:57:59: 20:86:d9:0d:6a:b0:22:06:49:8d:20:58:b7:73:01: c9:bb:ef:00:e7:a5:e6:b4:0f:71:10:4b:75:25:b3: b6:c0:92:b7:9a:ac:2f:56:66:14:a6:bf:9f:31:f8: ff:5e:65:bf:37:6d:25:2e:90:25:49:09:0d:d1:be: 81:c7:3e:5b:c7:25:5e:95:f6:5c:0e:2b:7a:eb:ad: 9d:63:8e:d6:f2:c9:9d:1c:ec:e4:e4:6c:79:31:94: df:33:02:56:41:ca:06:2d:83:0c:ef:d9:df:a9:e2: c7:64:bc:ec:a3:cb:3d:1f:b5:6e:95:d7:e6:5f:07: 3c:d8:f1:96:d8:0c:b0:13:d5:3d:be:ea:f9:7d:4d: 24:38:82:85:7d:69:cf:4c:05:c0:c2:e4:d3:f9:d8: 2b:67:68:62:cf:7b:5d:fa:0a:5c:00:d6:5d:61:69: e1:39:e1:1a:77:80:8b:6e:09:c0:6e:7f:b5:aa:eb: 3d:a9:a2:fc:70:9a:0d:b8:6b:61:6b:70:15:22:e2: 36:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:7E:D2:5F:27:1B:D0:B3:01:13:FD:C2:91:A9:E0:94:61:78:FB:A9 X509v3 Authority Key Identifier: keyid:DD:A7:F8:A7:4A:0A:74:CF:F6:EB:63:04:28:B6:C9:D7:0D:57:BD:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3af4p0oKdM_262MEKLbJ1w1XvXY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:95:87:9b:c5:74:96:00:18:76:e3:d3:bf:ed:20:ee:fa:3b: f6:bb:d2:ee:0b:e1:c9:b6:16:b7:53:40:68:ea:c9:72:5f:1c: a4:53:a9:5d:56:fb:2b:f8:d6:2b:3c:5b:b1:cd:42:93:a5:a6: 25:fa:40:f6:39:0f:d7:88:eb:cc:1d:19:62:83:f6:0d:88:90: 86:9a:4e:2f:29:86:3f:2d:ce:01:c5:56:4c:4a:f5:29:c3:20: 44:f0:ce:9f:69:9c:32:7f:cf:47:80:fc:dd:61:83:b6:9a:c7: 83:d2:96:4f:19:b1:5f:64:18:a6:0c:a9:8e:61:c6:9e:c4:eb: 10:e6:f4:cd:85:26:3f:a7:e7:93:27:2f:84:90:30:9d:13:a9: 57:f3:25:af:6c:0f:81:b0:77:0e:79:3b:75:e0:dd:a5:61:0a: 07:41:10:f5:7f:7c:ed:12:cc:63:07:ea:1d:b1:9c:36:af:c8: 49:e1:61:01:86:e0:3d:6a:13:cf:16:a3:22:3d:5c:2f:49:eb: 67:b4:09:b9:5b:33:ad:48:b9:c8:9f:9f:9d:4a:c7:17:10:04: 85:2d:b2:4d:2d:21:d1:f8:55:39:b4:5e:b9:b5:ec:97:73:8d: 2b:62:94:36:7a:b8:88:eb:69:29:18:43:0e:1e:27:4c:1a:ac: 93:cc:dd:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDcwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdCQzQxMTAvBgNVBAUTKEREQTdGOEE3NEEwQTc0Q0ZGNkVCNjMwNDI4QjZDOUQ3 MEQ1N0JENzYwHhcNMjUwODA4MTgxMTU3WhcNMjUwODE1MTgxMTU3WjAYMRYwFAYD VQQDEw02ODk2M2RlZS1jZmQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu8gkXNtP0EeJmneohiwleXLiu/0yGWawcCzpMNx9X15eE/n30JEzQN4LU18P JvsPCZywJ0vYI3PsV1kghtkNarAiBkmNIFi3cwHJu+8A56XmtA9xEEt1JbO2wJK3 mqwvVmYUpr+fMfj/XmW/N20lLpAlSQkN0b6Bxz5bxyVelfZcDit6662dY47W8smd HOzk5Gx5MZTfMwJWQcoGLYMM79nfqeLHZLzso8s9H7VuldfmXwc82PGW2AywE9U9 vur5fU0kOIKFfWnPTAXAwuTT+dgrZ2hiz3td+gpcANZdYWnhOeEad4CLbgnAbn+1 qus9qaL8cJoNuGtha3AVIuI2hQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEx+0l8n G9CzARP9wpGp4JRhePupMB8GA1UdIwQYMBaAFN2n+KdKCnTP9utjBCi2ydcNV712 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0JDNC8yRDFBNTk1QUQ1 MEQxMUU5QkFENkMyMjZDNEY5QUUwMi8zYWY0cDBvS2RNXzI2Mk1FS0xiSjF3MVh2 WFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNhZjRwMG9LZE1fMjYyTUVLTGJKMXcxWHZYWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0JDNC8yRDFBNTk1QUQ1MEQxMUU5QkFENkMyMjZDNEY5QUUwMi8zYWY0cDBvS2RN XzI2Mk1FS0xiSjF3MVh2WFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOlYebxXSWABh249O/7SDu+jv2u9LuC+HJtha3U0Bo6slyXxykU6ld Vvsr+NYrPFuxzUKTpaYl+kD2OQ/XiOvMHRlig/YNiJCGmk4vKYY/Lc4BxVZMSvUp wyBE8M6faZwyf89HgPzdYYO2mseD0pZPGbFfZBimDKmOYcaexOsQ5vTNhSY/p+eT Jy+EkDCdE6lX8yWvbA+BsHcOeTt14N2lYQoHQRD1f3ztEsxjB+odsZw2r8hJ4WEB huA9ahPPFqMiPVwvSetntAm5WzOtSLnIn5+dSscXEASFLbJNLSHR+FU5tF65teyX c40rYpQ2eriI62kpGEMOHidMGqyTzN1F -----END CERTIFICATE-----Generated at Sun Aug 10 04:53:21 2025 by rpki-client