$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8282/061AAB52FBFE11EFB5520A12C4F9AE02/n3tC7xjTQv3Vap_cXz2AHi0sGrc.mft File: n3tC7xjTQv3Vap_cXz2AHi0sGrc.mft (raw, json) Hash identifier: RoeJozJpaar+bePT36yd5rKjNCCk1z/Ivj0dR3sAyHY= Subject key identifier: EC:F2:3C:B6:A7:75:BC:B7:AA:73:8F:B6:94:4E:2B:19:09:98:41:12 Authority key identifier: 9F:7B:42:EF:18:D3:42:FD:D5:6A:9F:DC:5F:3D:80:1E:2D:2C:1A:B7 Certificate issuer: /CN=A91F8282/serialNumber=9F7B42EF18D342FDD56A9FDC5F3D801E2D2C1AB7 Certificate serial: 50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n3tC7xjTQv3Vap_cXz2AHi0sGrc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8282/061AAB52FBFE11EFB5520A12C4F9AE02/n3tC7xjTQv3Vap_cXz2AHi0sGrc.mft Manifest number: 4F Signing time: Tue 05 Aug 2025 07:56:13 +0000 Manifest this update: Tue 05 Aug 2025 07:56:12 +0000 Manifest next update: Tue 12 Aug 2025 07:56:12 +0000 Files and hashes: 1: n3tC7xjTQv3Vap_cXz2AHi0sGrc.crl (hash: 11eO3QLgzb7IsLAyBXcBd6m4HGlp2t8zYG9LdZIPvkg=) 2: 05EBB6CEFEF811EFB0C52572C4F9AE02.roa (hash: hHpuvEEfCl4OhjB2zfY/eTXHBtooIatBX5e91JuXgS8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8282/061AAB52FBFE11EFB5520A12C4F9AE02/n3tC7xjTQv3Vap_cXz2AHi0sGrc.crl rsync://rpki.apnic.net/member_repository/A91F8282/061AAB52FBFE11EFB5520A12C4F9AE02/n3tC7xjTQv3Vap_cXz2AHi0sGrc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n3tC7xjTQv3Vap_cXz2AHi0sGrc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 07:56:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 80 (0x50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8282, serialNumber=9F7B42EF18D342FDD56A9FDC5F3D801E2D2C1AB7 Validity Not Before: Aug 5 07:56:12 2025 GMT Not After : Aug 12 07:56:12 2025 GMT Subject: CN=6891b91d-81c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:0d:be:66:48:c9:0b:a2:b1:2a:02:31:31:c6: e0:0d:7f:53:57:8a:fa:b2:c0:c0:47:2e:f0:6d:74: 3b:83:09:97:3b:cc:ce:5e:30:49:aa:56:1d:39:0a: 25:47:92:1a:b1:5f:a0:b5:0a:15:c7:62:79:fb:f1: 8c:78:1e:27:24:0a:d7:a2:60:a2:9f:a3:0c:67:48: 36:7a:2c:f4:d7:47:1e:2e:6c:a9:82:d9:8d:34:f7: d4:34:10:e8:c9:ab:68:fc:50:22:59:fe:7f:e3:65: a4:8f:05:d6:a0:37:bd:93:0b:50:f7:37:9d:9e:b8: 98:75:46:b3:d2:28:b6:b3:9c:c7:97:07:29:80:02: d4:aa:d6:8b:d2:9f:35:c0:d1:79:4a:40:9d:42:60: 7b:da:bc:98:e2:4d:c0:65:b4:8a:79:1a:4e:db:dc: 89:ee:20:d9:40:ee:26:1e:f7:4c:79:d2:c7:07:0a: 90:06:cf:03:58:1e:e0:31:de:9b:06:62:91:b3:b2: 47:d1:ae:f1:d3:e3:4b:b4:6f:72:72:6c:49:3a:aa: f7:f7:87:56:02:29:93:4f:53:7a:ec:a2:68:af:82: dd:13:b3:f8:7a:e2:c8:9b:b6:01:dc:5a:83:ac:77: d1:d0:17:3e:27:cd:ea:7f:8f:35:bc:f6:91:31:4d: 62:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:F2:3C:B6:A7:75:BC:B7:AA:73:8F:B6:94:4E:2B:19:09:98:41:12 X509v3 Authority Key Identifier: keyid:9F:7B:42:EF:18:D3:42:FD:D5:6A:9F:DC:5F:3D:80:1E:2D:2C:1A:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8282/061AAB52FBFE11EFB5520A12C4F9AE02/n3tC7xjTQv3Vap_cXz2AHi0sGrc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n3tC7xjTQv3Vap_cXz2AHi0sGrc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8282/061AAB52FBFE11EFB5520A12C4F9AE02/n3tC7xjTQv3Vap_cXz2AHi0sGrc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:69:e8:00:8c:c5:a0:c2:ad:bc:83:2c:5e:e8:d6:39:8e:36: 27:78:ab:ba:1e:c0:46:00:70:74:89:ff:8d:90:3b:87:22:49: fc:0b:db:a5:24:ee:53:61:15:87:81:5b:c6:be:8d:f4:de:25: f9:44:d6:8f:b9:9c:be:36:06:52:11:6d:26:e2:14:2d:d4:94: 0c:9a:81:54:b3:07:62:b8:04:80:ea:b2:ca:57:5b:f5:59:0b: a8:ee:84:6e:76:f8:cf:fb:30:89:b8:a8:2c:4c:54:81:ab:b6: 20:e7:11:05:34:77:e2:8a:3a:d2:90:d3:0a:f2:b4:df:2f:7e: fb:67:e1:19:7f:dd:a8:98:60:1f:62:71:74:00:0a:32:6a:a8: 13:aa:bf:c7:22:85:34:c6:45:bc:58:55:07:8e:70:c9:8b:2a: 76:6a:db:53:72:b6:8c:2b:0b:d6:84:e6:8b:6c:1d:7f:7d:11: fe:2c:df:71:21:94:e0:85:86:47:00:dd:9b:39:36:48:70:9d: 9f:2c:79:e8:6e:01:22:84:d2:25:76:85:58:70:3e:b9:80:81: 19:61:5c:67:c5:06:1d:87:aa:99:3b:24:7b:04:1b:9b:2d:0f: 96:0b:72:a3:f0:e0:ae:19:10:83:57:2b:92:44:70:ed:1f:6c: a9:6a:6f:2c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG ODI4MjExMC8GA1UEBRMoOUY3QjQyRUYxOEQzNDJGREQ1NkE5RkRDNUYzRDgwMUUy RDJDMUFCNzAeFw0yNTA4MDUwNzU2MTJaFw0yNTA4MTIwNzU2MTJaMBgxFjAUBgNV BAMTDTY4OTFiOTFkLTgxYzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDdDb5mSMkLorEqAjExxuANf1NXivqywMBHLvBtdDuDCZc7zM5eMEmqVh05CiVH khqxX6C1ChXHYnn78Yx4HickCteiYKKfowxnSDZ6LPTXRx4ubKmC2Y0099Q0EOjJ q2j8UCJZ/n/jZaSPBdagN72TC1D3N52euJh1RrPSKLaznMeXBymAAtSq1ovSnzXA 0XlKQJ1CYHvavJjiTcBltIp5Gk7b3InuINlA7iYe90x50scHCpAGzwNYHuAx3psG YpGzskfRrvHT40u0b3JybEk6qvf3h1YCKZNPU3rsomivgt0Ts/h64sibtgHcWoOs d9HQFz4nzep/jzW89pExTWLfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU7PI8tqd1 vLeqc4+2lE4rGQmYQRIwHwYDVR0jBBgwFoAUn3tC7xjTQv3Vap/cXz2AHi0sGrcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4MjgyLzA2MUFBQjUyRkJG RTExRUZCNTUyMEExMkM0RjlBRTAyL24zdEM3eGpUUXYzVmFwX2NYejJBSGkwc0dy Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbjN0Qzd4alRRdjNWYXBfY1h6MkFIaTBzR3JjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4 MjgyLzA2MUFBQjUyRkJGRTExRUZCNTUyMEExMkM0RjlBRTAyL24zdEM3eGpUUXYz VmFwX2NYejJBSGkwc0dyYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAG5p6ACMxaDCrbyDLF7o1jmONid4q7oewEYAcHSJ/42QO4ciSfwL26Uk 7lNhFYeBW8a+jfTeJflE1o+5nL42BlIRbSbiFC3UlAyagVSzB2K4BIDqsspXW/VZ C6juhG52+M/7MIm4qCxMVIGrtiDnEQU0d+KKOtKQ0wrytN8vfvtn4Rl/3aiYYB9i cXQACjJqqBOqv8cihTTGRbxYVQeOcMmLKnZq21NytowrC9aE5otsHX99Ef4s33Eh lOCFhkcA3Zs5NkhwnZ8seehuASKE0iV2hVhwPrmAgRlhXGfFBh2Hqpk7JHsEG5st D5YLcqPw4K4ZEINXK5JEcO0fbKlqbyw= -----END CERTIFICATE-----Generated at Thu Aug 7 05:09:43 2025 by rpki-client