$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/b3tF49x2JsN_igHgq46krwVfSYo.mft File: b3tF49x2JsN_igHgq46krwVfSYo.mft (raw, json) Hash identifier: I7Rokr9CvAdrvcFBtGZuyiZah7nMT//jtIkG52z9HK8= Subject key identifier: 18:85:B7:BF:D6:04:83:34:DB:B1:2F:15:FE:81:45:14:86:5E:20:84 Authority key identifier: 6F:7B:45:E3:DC:76:26:C3:7F:8A:01:E0:AB:8E:A4:AF:05:5F:49:8A Certificate issuer: /CN=A91F0AF0/serialNumber=6F7B45E3DC7626C37F8A01E0AB8EA4AF055F498A Certificate serial: 1147 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b3tF49x2JsN_igHgq46krwVfSYo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/b3tF49x2JsN_igHgq46krwVfSYo.mft Manifest number: 1DCC Signing time: Tue 12 Aug 2025 17:22:17 +0000 Manifest this update: Tue 12 Aug 2025 17:22:17 +0000 Manifest next update: Tue 19 Aug 2025 17:22:17 +0000 Files and hashes: 1: b3tF49x2JsN_igHgq46krwVfSYo.crl (hash: 3Htb8LqT3TWV4RXY65zgcO3YNan7YurYBRpwCbIIJu0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/b3tF49x2JsN_igHgq46krwVfSYo.crl rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/b3tF49x2JsN_igHgq46krwVfSYo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b3tF49x2JsN_igHgq46krwVfSYo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 17:22:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4423 (0x1147) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0AF0, serialNumber=6F7B45E3DC7626C37F8A01E0AB8EA4AF055F498A Validity Not Before: Aug 12 17:22:17 2025 GMT Not After : Aug 19 17:22:17 2025 GMT Subject: CN=689b7849-a406 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:de:12:eb:0c:3b:77:75:f8:a1:b1:f3:86:f6: 74:d1:c7:54:b8:f6:3c:21:fa:f9:08:ed:95:47:ad: 5f:5c:73:7b:86:c7:81:9b:82:43:a5:ba:9e:01:6c: 86:c6:49:92:ee:f9:6a:15:9e:cb:09:a2:15:0d:ae: 83:8d:dd:26:78:85:23:34:77:84:ef:ed:24:c3:a2: 61:51:0e:87:2c:4f:93:75:5b:ce:04:65:55:07:b8: 7b:64:d1:24:2e:1f:d8:ea:97:88:86:b8:67:36:6e: 47:f1:09:d1:24:6f:1c:9f:3d:0b:3d:cb:9a:c7:5b: c1:dc:e2:1f:5b:a8:fe:fd:f4:b1:72:c5:74:19:02: de:49:5a:42:f0:42:e1:26:80:69:82:d2:4d:66:c4: 2d:7c:f6:ab:44:27:c1:a8:78:c7:0d:3e:fd:ff:b0: 6c:64:90:00:26:ea:31:65:db:30:fd:9d:11:6b:76: a2:3e:83:c3:48:87:e2:03:65:e4:2d:07:54:f6:d8: 2b:c2:c0:5b:e9:c7:3c:0c:1a:95:fd:75:3d:aa:49: ed:10:ba:fa:71:f8:36:18:61:75:7d:08:fa:a0:be: 1e:26:87:ae:82:50:47:53:79:28:21:56:a5:d0:18: 7a:cb:d6:09:a6:12:ab:7a:c7:b6:ef:d7:9e:57:93: 34:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:85:B7:BF:D6:04:83:34:DB:B1:2F:15:FE:81:45:14:86:5E:20:84 X509v3 Authority Key Identifier: keyid:6F:7B:45:E3:DC:76:26:C3:7F:8A:01:E0:AB:8E:A4:AF:05:5F:49:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/b3tF49x2JsN_igHgq46krwVfSYo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b3tF49x2JsN_igHgq46krwVfSYo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/b3tF49x2JsN_igHgq46krwVfSYo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:68:b0:66:d6:45:08:dc:04:16:8d:0c:bb:70:c0:e9:50:96: c8:8e:a2:51:3c:9d:7b:80:98:84:c3:f2:70:a8:17:97:25:61: 3c:a9:7c:a1:ec:25:37:53:c9:dc:cf:2d:5b:bb:c3:50:a4:8f: ed:c6:29:8b:c9:44:26:62:51:62:a1:a1:02:a6:84:f9:ae:8d: 3f:32:1f:34:8c:12:6d:d8:fe:ed:a1:e2:d2:bb:9b:ba:1d:29: d3:9f:eb:40:51:e1:9c:ee:36:67:a1:2d:12:58:b9:82:19:bd: c0:f8:bc:fa:23:01:36:cd:db:dc:f7:cf:ef:84:9e:e9:9a:f2: 4c:67:98:7a:b9:9b:65:3b:3c:98:46:41:6b:26:58:3a:08:61: 90:e3:fa:f4:f2:67:6a:cb:d3:ba:1b:52:e8:1e:1f:99:33:7f: 76:bd:bb:bf:33:d7:da:80:56:c7:09:23:6f:6b:2b:5d:bb:e0: 4c:05:17:5f:38:37:0a:c9:75:f0:dd:d5:48:36:44:0e:58:04: 47:3d:3b:10:ec:d7:a9:f8:ec:aa:1f:83:ba:0b:3e:e9:fa:3c: 26:89:52:a1:2c:d6:57:20:00:97:1a:24:cd:eb:b9:73:b0:4a: f0:f5:73:f0:cd:18:1d:b2:47:7a:f9:ad:9d:b4:8e:49:ee:e1: 1b:8b:e3:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEUcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBBRjAxMTAvBgNVBAUTKDZGN0I0NUUzREM3NjI2QzM3RjhBMDFFMEFCOEVBNEFG MDU1RjQ5OEEwHhcNMjUwODEyMTcyMjE3WhcNMjUwODE5MTcyMjE3WjAYMRYwFAYD VQQDEw02ODliNzg0OS1hNDA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtd4S6ww7d3X4obHzhvZ00cdUuPY8Ifr5CO2VR61fXHN7hseBm4JDpbqeAWyG xkmS7vlqFZ7LCaIVDa6Djd0meIUjNHeE7+0kw6JhUQ6HLE+TdVvOBGVVB7h7ZNEk Lh/Y6peIhrhnNm5H8QnRJG8cnz0LPcuax1vB3OIfW6j+/fSxcsV0GQLeSVpC8ELh JoBpgtJNZsQtfParRCfBqHjHDT79/7BsZJAAJuoxZdsw/Z0Ra3aiPoPDSIfiA2Xk LQdU9tgrwsBb6cc8DBqV/XU9qkntELr6cfg2GGF1fQj6oL4eJoeuglBHU3koIVal 0Bh6y9YJphKrese279eeV5M0RwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBiFt7/W BIM027EvFf6BRRSGXiCEMB8GA1UdIwQYMBaAFG97RePcdibDf4oB4KuOpK8FX0mK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEFGMC9FMzc2Mjk1MDBG RkYxMUU5ODgxNUFFMjJDNEY5QUUwMi9iM3RGNDl4MkpzTl9pZ0hncTQ2a3J3VmZT WW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2IzdEY0OXgySnNOX2lnSGdxNDZrcndWZlNZby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEFGMC9FMzc2Mjk1MDBGRkYxMUU5ODgxNUFFMjJDNEY5QUUwMi9iM3RGNDl4Mkpz Tl9pZ0hncTQ2a3J3VmZTWW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcaLBm1kUI3AQWjQy7cMDpUJbIjqJRPJ17gJiEw/JwqBeXJWE8qXyh 7CU3U8nczy1bu8NQpI/tximLyUQmYlFioaECpoT5ro0/Mh80jBJt2P7toeLSu5u6 HSnTn+tAUeGc7jZnoS0SWLmCGb3A+Lz6IwE2zdvc98/vhJ7pmvJMZ5h6uZtlOzyY RkFrJlg6CGGQ4/r08mdqy9O6G1LoHh+ZM392vbu/M9fagFbHCSNvaytdu+BMBRdf ODcKyXXw3dVINkQOWARHPTsQ7Nep+OyqH4O6Cz7p+jwmiVKhLNZXIACXGiTN67lz sErw9XPwzRgdskd6+a2dtI5J7uEbi+PN -----END CERTIFICATE-----Generated at Tue Aug 12 22:53:44 2025 by rpki-client