$ rpki-client -vvf rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/3AMsXdBC7T6N4qcQ-yaBipVzQmY.mft File: 3AMsXdBC7T6N4qcQ-yaBipVzQmY.mft (raw, json) Hash identifier: 2NtNQRv9rPSgp2MWvZtK/pVLdKKAFfw7gqIVqeCuQsI= Subject key identifier: 04:51:AB:5C:CE:0B:A2:17:64:89:F5:46:D4:0E:AA:16:EF:17:57:1B Authority key identifier: DC:03:2C:5D:D0:42:ED:3E:8D:E2:A7:10:FB:26:81:8A:95:73:42:66 Certificate issuer: /CN=A911C8B7/serialNumber=DC032C5DD042ED3E8DE2A710FB26818A95734266 Certificate serial: 0C1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3AMsXdBC7T6N4qcQ-yaBipVzQmY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/3AMsXdBC7T6N4qcQ-yaBipVzQmY.mft Manifest number: 0C10 Signing time: Tue 12 Aug 2025 18:55:23 +0000 Manifest this update: Tue 12 Aug 2025 18:55:22 +0000 Manifest next update: Tue 19 Aug 2025 18:55:22 +0000 Files and hashes: 1: 3AMsXdBC7T6N4qcQ-yaBipVzQmY.crl (hash: VcC7WrN1c8263fqUthZz3Tm6cY71ti45q2pScEfOcj8=) 2: F66D3E4C175911EA9D8EF44FC4F9AE02.roa (hash: QTmQ+b0TWigH3ktAvPS5L4JGC6TmpCstJJc/am/VnB0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/3AMsXdBC7T6N4qcQ-yaBipVzQmY.crl rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/3AMsXdBC7T6N4qcQ-yaBipVzQmY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3AMsXdBC7T6N4qcQ-yaBipVzQmY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 18:55:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3100 (0xc1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C8B7, serialNumber=DC032C5DD042ED3E8DE2A710FB26818A95734266 Validity Not Before: Aug 12 18:55:22 2025 GMT Not After : Aug 19 18:55:22 2025 GMT Subject: CN=689b8e1b-2a6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:ca:0b:a7:2b:d5:50:83:09:fa:ab:15:e3:ec: 98:66:b3:90:3d:1f:08:11:5e:b5:08:8c:12:07:3b: 60:b8:09:dd:f6:65:7e:a6:31:14:4c:a5:db:27:82: 32:cc:5f:6e:d0:52:ea:64:ee:ac:90:c2:ec:00:c6: 93:58:42:fd:df:75:fc:7a:32:c0:f3:e1:32:80:e4: ee:26:8f:1d:8b:e3:16:f7:3c:23:7b:7b:c2:41:34: 20:c4:05:f1:95:9f:a7:02:5c:69:b9:5d:86:ea:87: 58:9d:73:b6:01:e2:81:78:6b:4d:9a:f2:af:01:83: 1f:11:6f:80:7b:f6:e0:fb:99:15:ba:61:dc:3e:ad: b6:90:6e:d5:67:bf:e2:44:17:6d:6d:fc:54:e5:a1: 04:4b:8c:c9:23:c1:a2:14:95:6f:77:96:b9:c2:a5: ee:2d:ca:a1:87:39:be:00:07:6e:12:b2:97:3a:6e: 20:29:43:1d:84:4c:51:2b:1e:a8:af:0a:b8:11:69: bf:10:d2:cb:e1:12:91:12:30:37:55:d8:ec:2a:04: 11:fb:12:96:65:20:cb:65:10:d0:b7:af:32:cb:52: d8:0d:75:8b:c1:9f:63:9d:3a:4c:9c:1a:42:0e:3c: 4a:4c:73:07:36:ac:e5:30:2c:fa:94:6c:1e:95:41: 97:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:51:AB:5C:CE:0B:A2:17:64:89:F5:46:D4:0E:AA:16:EF:17:57:1B X509v3 Authority Key Identifier: keyid:DC:03:2C:5D:D0:42:ED:3E:8D:E2:A7:10:FB:26:81:8A:95:73:42:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/3AMsXdBC7T6N4qcQ-yaBipVzQmY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3AMsXdBC7T6N4qcQ-yaBipVzQmY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/3AMsXdBC7T6N4qcQ-yaBipVzQmY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:f6:07:cd:9b:cf:dc:91:90:c5:6a:16:74:7a:8e:40:c0:da: 91:05:15:86:47:75:ff:d2:70:26:95:32:31:2d:d6:db:25:0d: 4b:04:03:d5:16:ee:e9:41:71:19:a9:3f:c1:54:73:88:ac:b1: 03:b5:4b:ec:1a:87:76:5e:0a:6a:07:6c:07:31:f5:b9:36:dd: b2:07:a7:3d:64:b1:95:76:9e:a7:10:f8:ff:bc:9c:7b:c7:98: b9:1e:01:7c:e1:9e:0c:fa:1b:b4:a8:a5:b9:27:bf:0c:8e:fd: 16:69:4d:40:da:8a:ef:db:8d:d3:45:8c:89:91:cb:b7:f3:0b: 41:26:c8:4c:6d:96:5d:cb:f7:db:c8:e5:e9:fc:fe:a0:22:bf: 02:f8:46:bc:18:f4:93:a1:e5:32:0d:03:13:f3:d9:dd:43:4d: 75:30:36:d3:71:95:71:ba:f8:d2:eb:f4:ac:77:71:db:d5:46: de:8b:db:ef:14:eb:7f:20:f5:41:64:68:03:6d:f3:ab:7b:0e: a0:a4:0c:34:5b:06:f5:c2:5c:7d:79:ed:77:87:bd:4e:be:d5: 26:10:e2:ac:91:51:7c:3f:66:59:e5:e0:88:7a:0c:b2:1d:96: c7:d8:3f:1c:4b:8b:d8:83:9f:45:37:31:c8:c3:ba:12:e5:d9: 41:6b:2c:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDBwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM4QjcxMTAvBgNVBAUTKERDMDMyQzVERDA0MkVEM0U4REUyQTcxMEZCMjY4MThB OTU3MzQyNjYwHhcNMjUwODEyMTg1NTIyWhcNMjUwODE5MTg1NTIyWjAYMRYwFAYD VQQDEw02ODliOGUxYi0yYTZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1coLpyvVUIMJ+qsV4+yYZrOQPR8IEV61CIwSBztguAnd9mV+pjEUTKXbJ4Iy zF9u0FLqZO6skMLsAMaTWEL933X8ejLA8+EygOTuJo8di+MW9zwje3vCQTQgxAXx lZ+nAlxpuV2G6odYnXO2AeKBeGtNmvKvAYMfEW+Ae/bg+5kVumHcPq22kG7VZ7/i RBdtbfxU5aEES4zJI8GiFJVvd5a5wqXuLcqhhzm+AAduErKXOm4gKUMdhExRKx6o rwq4EWm/ENLL4RKREjA3VdjsKgQR+xKWZSDLZRDQt68yy1LYDXWLwZ9jnTpMnBpC DjxKTHMHNqzlMCz6lGwelUGXowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFARRq1zO C6IXZIn1RtQOqhbvF1cbMB8GA1UdIwQYMBaAFNwDLF3QQu0+jeKnEPsmgYqVc0Jm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzhCNy82NjlCNDU1MjE3 NTkxMUVBOEI0QTgwNEZDNEY5QUUwMi8zQU1zWGRCQzdUNk40cWNRLXlhQmlwVnpR bVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNBTXNYZEJDN1Q2TjRxY1EteWFCaXBWelFtWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzhCNy82NjlCNDU1MjE3NTkxMUVBOEI0QTgwNEZDNEY5QUUwMi8zQU1zWGRCQzdU Nk40cWNRLXlhQmlwVnpRbVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBE9gfNm8/ckZDFahZ0eo5AwNqRBRWGR3X/0nAmlTIxLdbbJQ1LBAPV Fu7pQXEZqT/BVHOIrLEDtUvsGod2XgpqB2wHMfW5Nt2yB6c9ZLGVdp6nEPj/vJx7 x5i5HgF84Z4M+hu0qKW5J78Mjv0WaU1A2orv243TRYyJkcu38wtBJshMbZZdy/fb yOXp/P6gIr8C+Ea8GPSToeUyDQMT89ndQ011MDbTcZVxuvjS6/Ssd3Hb1Ubei9vv FOt/IPVBZGgDbfOrew6gpAw0Wwb1wlx9ee13h71OvtUmEOKskVF8P2ZZ5eCIegyy HZbH2D8cS4vYg59FNzHIw7oS5dlBayxu -----END CERTIFICATE-----Generated at Wed Aug 13 04:29:54 2025 by rpki-client