$ rpki-client -vvf rpki.apnic.net/member_repository/A911AA05/4DC1D926212911F0A66A4972C4F9AE02/3xhzEfoJx3m4sV2UekbU9O3MUFM.mft File: 3xhzEfoJx3m4sV2UekbU9O3MUFM.mft (raw, json) Hash identifier: ceNk8GqBxahLhOd4pWjVDaSO1x1E9HeWqxaqgFTkbO8= Subject key identifier: 00:6A:C3:80:55:7A:27:3B:E4:FF:95:F5:E4:C5:C1:EF:1A:A2:A9:5E Authority key identifier: DF:18:73:11:FA:09:C7:79:B8:B1:5D:94:7A:46:D4:F4:ED:CC:50:53 Certificate issuer: /CN=A911AA05/serialNumber=DF187311FA09C779B8B15D947A46D4F4EDCC5053 Certificate serial: 38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3xhzEfoJx3m4sV2UekbU9O3MUFM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AA05/4DC1D926212911F0A66A4972C4F9AE02/3xhzEfoJx3m4sV2UekbU9O3MUFM.mft Manifest number: 37 Signing time: Mon 11 Aug 2025 07:51:42 +0000 Manifest this update: Mon 11 Aug 2025 07:51:41 +0000 Manifest next update: Mon 18 Aug 2025 07:51:41 +0000 Files and hashes: 1: 3xhzEfoJx3m4sV2UekbU9O3MUFM.crl (hash: F+fc3ffhvpjan0y/qH112tVOYWAg2sT9Kwo+QInh+MY=) 2: F1940290212911F087425013C4F9AE02.roa (hash: MnHNxat0n45sPIepd+2k7Aeq3t/02+1KvIJP8MEpuv8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AA05/4DC1D926212911F0A66A4972C4F9AE02/3xhzEfoJx3m4sV2UekbU9O3MUFM.crl rsync://rpki.apnic.net/member_repository/A911AA05/4DC1D926212911F0A66A4972C4F9AE02/3xhzEfoJx3m4sV2UekbU9O3MUFM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3xhzEfoJx3m4sV2UekbU9O3MUFM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 07:51:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56 (0x38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AA05, serialNumber=DF187311FA09C779B8B15D947A46D4F4EDCC5053 Validity Not Before: Aug 11 07:51:41 2025 GMT Not After : Aug 18 07:51:41 2025 GMT Subject: CN=6899a10e-f3e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:fd:4e:24:78:bd:32:c3:c6:dc:38:c0:52:9f: 2d:95:57:b9:b3:ce:7b:9d:90:73:d2:6a:61:e6:68: 4d:3e:b8:55:20:2d:a1:ce:80:8a:34:c9:12:4d:ab: 29:d1:b5:c9:3d:bb:20:1a:5d:2b:a8:fd:b9:42:ba: cb:ce:fc:6a:af:46:fb:4f:65:cd:d0:20:25:d9:8b: 9c:ff:b1:04:7e:d5:12:c1:fa:5e:20:45:91:ae:ca: 78:cb:8a:73:96:43:1d:48:14:70:93:cc:bf:9d:91: d7:59:f0:f8:bc:fa:a3:42:6e:f2:09:f5:e1:b5:62: 35:a5:d5:74:04:f9:ec:e6:0a:2a:8a:a4:4e:10:3f: 61:38:a0:c9:9f:d5:c3:cd:a8:24:8b:2b:b1:ef:94: 4a:bf:7a:60:df:ac:cb:58:b0:74:f3:a9:20:69:3c: 7c:59:55:54:71:94:ac:7d:99:43:cb:ec:1b:9e:93: 57:d0:d1:1c:5e:76:d4:60:cc:6c:88:71:b9:5a:3b: 50:3f:a6:10:63:3a:56:c4:06:1b:53:21:91:ee:6a: cf:5c:f5:01:c0:24:61:c0:bc:a1:19:0e:5b:e0:97: 4c:87:94:a5:65:8e:c7:66:95:98:7d:75:f9:a4:b8: 1d:73:21:fb:50:1a:21:c4:7f:ee:1c:c3:0c:cd:6d: e6:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:6A:C3:80:55:7A:27:3B:E4:FF:95:F5:E4:C5:C1:EF:1A:A2:A9:5E X509v3 Authority Key Identifier: keyid:DF:18:73:11:FA:09:C7:79:B8:B1:5D:94:7A:46:D4:F4:ED:CC:50:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AA05/4DC1D926212911F0A66A4972C4F9AE02/3xhzEfoJx3m4sV2UekbU9O3MUFM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3xhzEfoJx3m4sV2UekbU9O3MUFM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AA05/4DC1D926212911F0A66A4972C4F9AE02/3xhzEfoJx3m4sV2UekbU9O3MUFM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c8:1d:bf:44:bb:e6:44:ac:fe:ed:b4:64:25:dd:b3:eb:d7:56: 83:71:66:38:13:1e:a0:de:e9:04:1b:10:40:81:bb:ab:de:12: ec:fe:96:d8:b2:a3:b1:97:8e:b6:be:ac:49:ed:94:5f:4f:d4: ab:ef:07:ab:11:1c:41:c1:e3:e8:b5:b5:79:0f:a2:05:f2:69: 99:42:1c:d4:0d:04:7a:73:ce:4a:35:4d:13:1d:4d:13:a2:2e: 30:30:1d:58:c8:d3:2e:4a:7c:cf:ac:99:0e:bb:bb:f7:ca:e0: 9b:62:c0:04:32:bf:93:19:0d:be:d6:68:c9:fa:c3:8d:a6:e2: a3:a5:0e:e0:79:c5:6f:69:e5:5e:a6:43:8d:b7:7b:83:23:6d: 9d:18:1d:b3:45:21:8d:72:1d:97:cc:da:83:9a:b6:53:ac:71: 5c:37:19:6a:78:dc:87:52:27:b8:95:3b:17:3e:2c:a1:01:0a: af:98:82:27:97:3b:16:7a:36:a3:d2:6f:43:df:7a:df:11:60: df:6a:c7:a9:94:f8:b0:f4:12:cb:dc:90:fe:2c:8e:de:da:ff: 28:d4:af:f1:07:6a:6a:43:ae:c0:53:d7:48:16:c3:41:db:73: 56:ed:f0:a1:2c:95:8a:7f:33:b2:ec:6a:92:f8:09:e7:b7:d3: 59:ea:f6:86 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBODANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx QUEwNTExMC8GA1UEBRMoREYxODczMTFGQTA5Qzc3OUI4QjE1RDk0N0E0NkQ0RjRF RENDNTA1MzAeFw0yNTA4MTEwNzUxNDFaFw0yNTA4MTgwNzUxNDFaMBgxFjAUBgNV BAMTDTY4OTlhMTBlLWYzZTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDs/U4keL0yw8bcOMBSny2VV7mzznudkHPSamHmaE0+uFUgLaHOgIo0yRJNqynR tck9uyAaXSuo/blCusvO/GqvRvtPZc3QICXZi5z/sQR+1RLB+l4gRZGuynjLinOW Qx1IFHCTzL+dkddZ8Pi8+qNCbvIJ9eG1YjWl1XQE+ezmCiqKpE4QP2E4oMmf1cPN qCSLK7HvlEq/emDfrMtYsHTzqSBpPHxZVVRxlKx9mUPL7Buek1fQ0RxedtRgzGyI cblaO1A/phBjOlbEBhtTIZHuas9c9QHAJGHAvKEZDlvgl0yHlKVljsdmlZh9dfmk uB1zIftQGiHEf+4cwwzNbeYdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUAGrDgFV6 Jzvk/5X15MXB7xqiqV4wHwYDVR0jBBgwFoAU3xhzEfoJx3m4sV2UekbU9O3MUFMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFBQTA1LzREQzFEOTI2MjEy OTExRjBBNjZBNDk3MkM0RjlBRTAyLzN4aHpFZm9KeDNtNHNWMlVla2JVOU8zTVVG TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM3hoekVmb0p4M200c1YyVWVrYlU5TzNNVUZNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFB QTA1LzREQzFEOTI2MjEyOTExRjBBNjZBNDk3MkM0RjlBRTAyLzN4aHpFZm9KeDNt NHNWMlVla2JVOU8zTVVGTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMgdv0S75kSs/u20ZCXds+vXVoNxZjgTHqDe6QQbEECBu6veEuz+ltiy o7GXjra+rEntlF9P1KvvB6sRHEHB4+i1tXkPogXyaZlCHNQNBHpzzko1TRMdTROi LjAwHVjI0y5KfM+smQ67u/fK4JtiwAQyv5MZDb7WaMn6w42m4qOlDuB5xW9p5V6m Q423e4MjbZ0YHbNFIY1yHZfM2oOatlOscVw3GWp43IdSJ7iVOxc+LKEBCq+YgieX OxZ6NqPSb0Pfet8RYN9qx6mU+LD0EsvckP4sjt7a/yjUr/EHampDrsBT10gWw0Hb c1bt8KEslYp/M7LsapL4Cee301nq9oY= -----END CERTIFICATE-----Generated at Wed Aug 13 00:32:28 2025 by rpki-client