$ rpki-client -vvf rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft File: 3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft (raw, json) Hash identifier: QQDpe34xcH/eU39z/5NHMnphXW4As2O4avwweisIW7Y= Subject key identifier: 66:59:50:F8:78:CC:D8:39:B1:42:41:99:36:C1:AB:CB:AF:8A:31:9F Authority key identifier: DC:62:20:08:A8:A1:AD:42:BE:2A:25:49:43:49:1A:FA:A8:45:49:A5 Certificate issuer: /CN=A911035A/serialNumber=DC622008A8A1AD42BE2A254943491AFAA84549A5 Certificate serial: 0A1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft Manifest number: 0A0D Signing time: Sun 10 Aug 2025 19:51:31 +0000 Manifest this update: Sun 10 Aug 2025 19:51:30 +0000 Manifest next update: Sun 17 Aug 2025 19:51:30 +0000 Files and hashes: 1: 3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl (hash: ZcADaKpii2Wcl3982UQUhX1woWmQNlw/DtUIxqr/TXM=) 2: 5B57754A026F11EDBE22EF64C4F9AE02.roa (hash: ihAIG4OoPwthC+h4NtPo2Q0pwt/cIHMn8RF1lo5PumY=) 3: 5A472FBA026F11EDBE22EF64C4F9AE02.roa (hash: vIMBF1bBAJdpKyG7NryScSCm1A4V3l1tKWGtKbJDwKU=) 4: C1B3DE082BBE11EF809E1831C4F9AE02.roa (hash: lx///Z7Da35SlsWklk353QqekT8yYXigifaMtdugzeQ=) 5: E1935B7A36DD11EFB1E53717C4F9AE02.roa (hash: H0HQ+QBIGliAyxj5H0/8pAJ49x4cCntNY4DcwIy3B3Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2590 (0xa1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911035A, serialNumber=DC622008A8A1AD42BE2A254943491AFAA84549A5 Validity Not Before: Aug 10 19:51:30 2025 GMT Not After : Aug 17 19:51:30 2025 GMT Subject: CN=6898f843-7d35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:5d:c9:39:66:b3:ad:7e:d1:6d:16:8e:46:54: 3b:6a:86:b3:de:bc:df:59:f9:bd:7a:99:2b:28:0d: 6a:50:9e:f1:4c:05:e2:fe:5f:ca:5e:b8:ed:c7:10: fb:2b:4e:7d:c4:a2:e2:98:6c:c5:b9:b8:d5:5a:be: 0b:87:5e:e0:14:73:4f:b9:26:32:4c:a7:42:41:2d: 45:c3:a4:bd:7e:85:f6:e2:03:eb:87:4c:74:7e:0f: 9a:17:49:48:8a:4b:08:90:0a:2d:54:56:8e:32:a0: b7:81:cb:38:98:07:71:9e:48:71:21:dd:dd:11:4a: 57:32:0d:05:08:44:96:63:a9:a9:ea:12:a3:73:a6: a6:94:ec:21:97:f2:3b:cd:b0:d9:49:03:f8:76:ae: 33:02:b6:d8:88:b8:25:c6:44:18:6d:9b:2d:62:47: 90:3a:fb:62:42:5e:53:13:8d:43:9f:92:bd:5e:ef: d5:ca:10:71:60:64:6a:97:c7:16:25:23:9e:5d:fa: 1c:d9:9d:16:52:1f:5a:d4:c1:0a:4b:46:26:39:27: 8c:ab:c1:cd:e4:87:3b:f5:bc:50:44:ce:b9:b2:6a: 16:80:ca:f8:ac:75:45:54:07:3c:17:b5:9a:a1:e9: 2b:4b:5a:a4:3d:d1:c2:38:9c:d0:65:e6:17:f9:b5: e7:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:59:50:F8:78:CC:D8:39:B1:42:41:99:36:C1:AB:CB:AF:8A:31:9F X509v3 Authority Key Identifier: keyid:DC:62:20:08:A8:A1:AD:42:BE:2A:25:49:43:49:1A:FA:A8:45:49:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:01:14:2f:a0:bb:55:33:7c:e8:7f:f6:94:f1:a0:cc:ca:2a: df:cf:c8:fc:42:70:d8:31:80:41:17:a5:00:8b:0b:6d:d7:4b: fd:52:8d:3b:f7:95:9c:5c:98:92:0c:ea:99:1d:41:f2:29:c9: 60:6a:66:7d:f9:bf:52:d5:0b:91:e6:12:38:44:8a:ca:20:d1: 79:7b:6b:17:30:a5:d5:55:b3:89:9a:69:31:95:bc:92:3b:14: 97:ad:b0:25:97:41:e1:a0:16:c6:18:84:4e:9a:66:7f:57:f8: cf:5f:e7:f7:fe:f4:f6:3a:b4:26:23:58:1b:0c:11:19:86:62: 4b:62:bd:7f:2f:f6:d1:db:08:a1:e8:bb:a8:7b:0e:ea:85:21: e4:bc:bd:34:11:9f:c9:fd:c9:3e:4c:d3:3c:80:71:e9:29:aa: 33:c7:20:36:02:30:87:66:53:ce:7e:35:78:f6:36:5f:a2:bf: 43:55:c4:11:d8:6a:b5:39:9a:93:40:53:44:ee:20:16:56:a0: ef:39:dc:12:2b:34:b7:61:6a:ce:dc:0c:d2:62:aa:ec:a8:aa: 2f:42:f8:1a:05:fd:8e:ba:61:cf:69:29:3f:8c:b7:9f:4e:8b: 7b:e5:8b:52:e9:bc:81:86:df:39:bf:83:fc:0a:a5:70:9d:79: 0a:82:ac:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCh4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTAzNUExMTAvBgNVBAUTKERDNjIyMDA4QThBMUFENDJCRTJBMjU0OTQzNDkxQUZB QTg0NTQ5QTUwHhcNMjUwODEwMTk1MTMwWhcNMjUwODE3MTk1MTMwWjAYMRYwFAYD VQQDEw02ODk4Zjg0My03ZDM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6l3JOWazrX7RbRaORlQ7aoaz3rzfWfm9epkrKA1qUJ7xTAXi/l/KXrjtxxD7 K059xKLimGzFubjVWr4Lh17gFHNPuSYyTKdCQS1Fw6S9foX24gPrh0x0fg+aF0lI iksIkAotVFaOMqC3gcs4mAdxnkhxId3dEUpXMg0FCESWY6mp6hKjc6amlOwhl/I7 zbDZSQP4dq4zArbYiLglxkQYbZstYkeQOvtiQl5TE41Dn5K9Xu/VyhBxYGRql8cW JSOeXfoc2Z0WUh9a1MEKS0YmOSeMq8HN5Ic79bxQRM65smoWgMr4rHVFVAc8F7Wa oekrS1qkPdHCOJzQZeYX+bXn/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGZZUPh4 zNg5sUJBmTbBq8uvijGfMB8GA1UdIwQYMBaAFNxiIAiooa1CviolSUNJGvqoRUml MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDM1QS8zQzYwOUI0NDdD NjYxMUVBODA4OUYzNTFDNEY5QUUwMi8zR0lnQ0tpaHJVSy1LaVZKUTBrYS1xaEZT YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNHSWdDS2loclVLLUtpVkpRMGthLXFoRlNhVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDM1QS8zQzYwOUI0NDdDNjYxMUVBODA4OUYzNTFDNEY5QUUwMi8zR0lnQ0tpaHJV Sy1LaVZKUTBrYS1xaEZTYVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvARQvoLtVM3zof/aU8aDMyirfz8j8QnDYMYBBF6UAiwtt10v9Uo07 95WcXJiSDOqZHUHyKclgamZ9+b9S1QuR5hI4RIrKINF5e2sXMKXVVbOJmmkxlbyS OxSXrbAll0HhoBbGGIROmmZ/V/jPX+f3/vT2OrQmI1gbDBEZhmJLYr1/L/bR2wih 6Luoew7qhSHkvL00EZ/J/ck+TNM8gHHpKaozxyA2AjCHZlPOfjV49jZfor9DVcQR 2Gq1OZqTQFNE7iAWVqDvOdwSKzS3YWrO3AzSYqrsqKovQvgaBf2OumHPaSk/jLef Tot75YtS6byBht85v4P8CqVwnXkKgqxG -----END CERTIFICATE-----Generated at Mon Aug 11 07:29:37 2025 by rpki-client