$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft File: 3rTAuQf6yhxdN3a9SUb0uqjKazA.mft (raw, json) Hash identifier: TTX543uAa4VKjmNP9E7R1KD3v/qnhF/Ui0OXMBojpDo= Subject key identifier: 19:2D:A6:75:23:61:DF:1D:BA:22:1B:26:DA:F9:D0:D1:A2:2A:A5:36 Authority key identifier: DE:B4:C0:B9:07:FA:CA:1C:5D:37:76:BD:49:46:F4:BA:A8:CA:6B:30 Certificate issuer: /CN=A91F3B5F/serialNumber=DEB4C0B907FACA1C5D3776BD4946F4BAA8CA6B30 Certificate serial: 44 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3rTAuQf6yhxdN3a9SUb0uqjKazA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft Manifest number: 43 Signing time: Sat 09 Aug 2025 07:58:46 +0000 Manifest this update: Sat 09 Aug 2025 07:58:46 +0000 Manifest next update: Sat 16 Aug 2025 07:58:46 +0000 Files and hashes: 1: 3rTAuQf6yhxdN3a9SUb0uqjKazA.crl (hash: 3Z8jr8+7idYsRFwp8coU5nVG0rXGDyCYFaGCuYN1G/k=) 2: 0B65C980136D11F09F542C81C4F9AE02.roa (hash: VBqh2E7rkd2+euZfBVuvn8Wuy6ZridPl7cQmEbFqT/k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.crl rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3rTAuQf6yhxdN3a9SUb0uqjKazA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68 (0x44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3B5F, serialNumber=DEB4C0B907FACA1C5D3776BD4946F4BAA8CA6B30 Validity Not Before: Aug 9 07:58:46 2025 GMT Not After : Aug 16 07:58:46 2025 GMT Subject: CN=6896ffb6-8ce4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:93:f7:38:57:53:10:f1:f2:64:19:66:2c:71: 67:15:ad:06:d7:0a:9c:9d:04:5f:48:b1:09:b4:a9: 90:da:0f:fa:d4:53:85:49:d0:ab:04:df:a3:92:3b: 94:b2:87:32:b3:b4:e2:34:a4:14:ff:8b:8d:a8:a8: 6a:d6:69:89:56:67:a2:9a:02:a7:80:14:35:fa:e4: d5:52:3c:56:b4:ad:22:62:05:5d:f5:20:e9:cc:4e: ae:b1:fb:75:95:d1:31:9a:f0:97:87:a6:e6:c2:c2: 91:e1:82:b8:a1:c5:6e:e8:11:b4:3c:97:60:23:c8: 46:e7:25:a2:20:40:1c:b8:e6:80:6d:79:7f:91:82: eb:5f:8c:42:8a:5a:d1:7e:10:34:7b:24:bf:37:9d: a2:07:09:9f:a6:69:28:3e:ab:77:8b:71:d9:73:e7: 9e:fb:3e:47:11:ed:8c:32:be:40:08:3c:19:c5:a5: 6b:e9:8b:cc:b2:74:2d:58:61:3d:33:cc:62:38:ed: de:0c:98:05:ff:a4:3e:b2:b3:c2:c5:24:6b:de:26: 12:01:a7:3b:32:51:19:08:d1:33:2a:89:ef:a8:01: da:44:99:c4:1a:b9:07:01:ce:72:07:34:cb:b6:74: 86:a6:3e:dc:09:44:f6:67:3f:4f:8e:68:9e:f0:4a: e1:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:2D:A6:75:23:61:DF:1D:BA:22:1B:26:DA:F9:D0:D1:A2:2A:A5:36 X509v3 Authority Key Identifier: keyid:DE:B4:C0:B9:07:FA:CA:1C:5D:37:76:BD:49:46:F4:BA:A8:CA:6B:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3rTAuQf6yhxdN3a9SUb0uqjKazA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:25:bb:db:84:ca:79:3c:99:e7:02:60:52:4e:ff:c8:87:cb: 64:1f:ac:28:93:f0:f6:14:59:40:9c:fa:9e:ed:f2:d6:6c:e4: 2f:90:0e:00:2a:20:90:85:1d:33:35:29:e3:5b:9d:4f:7b:69: 4e:16:24:53:ce:7f:c4:2f:6c:bb:f9:ce:e0:d7:9a:54:0d:a2: a7:21:4e:06:97:63:4a:1b:05:9c:f6:3c:40:a9:92:98:f1:e7: 12:18:3d:c2:4e:07:04:79:d5:5e:52:f9:4c:9a:0e:51:19:d7: 31:28:91:c7:ec:49:06:6b:de:bf:64:a3:17:bc:13:50:75:4f: ed:f0:9b:2c:92:8a:a4:30:23:ee:08:20:18:3a:07:83:29:08: 77:6d:bb:5b:32:64:dd:68:ec:60:e6:c7:d0:1f:e0:30:19:3f: ae:28:bf:3b:64:f4:b8:20:36:14:15:ec:9a:6b:95:e3:dc:b6: 2e:b9:53:86:68:21:9a:a4:96:47:e3:a5:98:23:27:df:48:93: 93:e4:ce:07:a9:e9:d3:93:6e:4b:34:5b:49:e4:fb:06:78:fa: 4e:e8:97:4b:10:4e:f3:47:dd:c1:bf:40:7c:53:9d:68:1e:72: 3b:0f:e1:fd:fc:03:07:13:47:ae:90:07:da:49:5e:c0:19:c7: ea:b9:c3:e6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG M0I1RjExMC8GA1UEBRMoREVCNEMwQjkwN0ZBQ0ExQzVEMzc3NkJENDk0NkY0QkFB OENBNkIzMDAeFw0yNTA4MDkwNzU4NDZaFw0yNTA4MTYwNzU4NDZaMBgxFjAUBgNV BAMTDTY4OTZmZmI2LThjZTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCuk/c4V1MQ8fJkGWYscWcVrQbXCpydBF9IsQm0qZDaD/rUU4VJ0KsE36OSO5Sy hzKztOI0pBT/i42oqGrWaYlWZ6KaAqeAFDX65NVSPFa0rSJiBV31IOnMTq6x+3WV 0TGa8JeHpubCwpHhgrihxW7oEbQ8l2AjyEbnJaIgQBy45oBteX+RgutfjEKKWtF+ EDR7JL83naIHCZ+maSg+q3eLcdlz5577PkcR7YwyvkAIPBnFpWvpi8yydC1YYT0z zGI47d4MmAX/pD6ys8LFJGveJhIBpzsyURkI0TMqie+oAdpEmcQauQcBznIHNMu2 dIamPtwJRPZnP0+OaJ7wSuGDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUGS2mdSNh 3x26Ihsm2vnQ0aIqpTYwHwYDVR0jBBgwFoAU3rTAuQf6yhxdN3a9SUb0uqjKazAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYzQjVGL0IxNzBDOTEyMTM2 NjExRjA4MkUzQzUwREM0RjlBRTAyLzNyVEF1UWY2eWh4ZE4zYTlTVWIwdXFqS2F6 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvM3JUQXVRZjZ5aHhkTjNhOVNVYjB1cWpLYXpBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYz QjVGL0IxNzBDOTEyMTM2NjExRjA4MkUzQzUwREM0RjlBRTAyLzNyVEF1UWY2eWh4 ZE4zYTlTVWIwdXFqS2F6QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABslu9uEynk8mecCYFJO/8iHy2QfrCiT8PYUWUCc+p7t8tZs5C+QDgAq IJCFHTM1KeNbnU97aU4WJFPOf8QvbLv5zuDXmlQNoqchTgaXY0obBZz2PECpkpjx 5xIYPcJOBwR51V5S+UyaDlEZ1zEokcfsSQZr3r9koxe8E1B1T+3wmyySiqQwI+4I IBg6B4MpCHdtu1syZN1o7GDmx9Af4DAZP64ovztk9LggNhQV7JprlePcti65U4Zo IZqklkfjpZgjJ99Ik5Pkzgep6dOTbks0W0nk+wZ4+k7ol0sQTvNH3cG/QHxTnWge cjsP4f38AwcTR66QB9pJXsAZx+q5w+Y= -----END CERTIFICATE-----Generated at Sat Aug 9 23:28:12 2025 by rpki-client