$ rpki-client -vvf rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft File: 3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft (raw, json) Hash identifier: RxiN8t3d9w9AJO0rf/Dx8sob6OGDSY2JlxQdiZqujtQ= Subject key identifier: C6:CE:E4:E0:36:EF:86:D2:37:B5:F0:BF:B1:46:ED:0D:F6:74:0A:C1 Authority key identifier: DD:F8:84:91:1A:D3:F2:8C:C9:D9:6A:8C:24:A9:39:A6:5F:8B:25:76 Certificate issuer: /CN=A912BAAD/serialNumber=DDF884911AD3F28CC9D96A8C24A939A65F8B2576 Certificate serial: 0C20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft Manifest number: 0C11 Signing time: Fri 08 Aug 2025 18:59:23 +0000 Manifest this update: Fri 08 Aug 2025 18:59:22 +0000 Manifest next update: Fri 15 Aug 2025 18:59:22 +0000 Files and hashes: 1: 3fiEkRrT8ozJ2WqMJKk5pl-LJXY.crl (hash: RB2o82ifEzhbzKXRb8sB3V85LZRqoIpyJpcRT2zPObw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.crl rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3104 (0xc20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BAAD, serialNumber=DDF884911AD3F28CC9D96A8C24A939A65F8B2576 Validity Not Before: Aug 8 18:59:22 2025 GMT Not After : Aug 15 18:59:22 2025 GMT Subject: CN=6896490a-2e6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:5f:97:db:7e:0c:8b:dc:06:13:59:e4:aa:c0: 74:4d:44:68:f9:a1:49:a6:09:a3:fe:cd:e6:d0:60: 18:b3:06:90:89:b3:95:2e:94:1e:e5:29:44:d9:7c: d9:42:06:54:ac:da:ab:9c:64:38:db:59:1e:2f:89: d4:d7:50:1d:7d:ff:bb:26:01:77:ef:c7:40:f5:79: 6a:08:a2:3d:cd:2b:69:89:a2:6a:70:bb:86:32:e0: a1:71:b5:96:20:2b:c3:0b:89:1d:44:9b:ac:99:22: 9b:b1:c2:e8:01:7b:27:4f:62:01:c7:b0:0c:52:d3: 5d:26:57:07:51:c4:cf:03:f3:5d:b7:83:e7:99:66: dd:4f:57:db:fb:e3:b4:16:ef:a7:3b:fc:23:27:01: e3:06:c4:bc:b7:5f:b6:4a:76:06:15:11:5f:7a:e0: 4b:14:70:d1:02:a3:8b:fe:24:6b:66:ee:8c:a1:6c: f3:48:9c:53:8f:d1:6c:86:fd:f0:17:66:77:b6:da: b7:7d:3f:a6:aa:45:ee:57:97:b5:fb:6e:27:16:51: d1:5d:0a:46:78:b1:10:e8:18:fa:59:d3:92:f6:b2: df:a9:7b:69:d5:c8:73:a2:c9:f5:27:e4:84:db:1e: eb:fe:32:85:ce:cc:af:90:1f:15:ca:83:54:b2:f7: d7:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:CE:E4:E0:36:EF:86:D2:37:B5:F0:BF:B1:46:ED:0D:F6:74:0A:C1 X509v3 Authority Key Identifier: keyid:DD:F8:84:91:1A:D3:F2:8C:C9:D9:6A:8C:24:A9:39:A6:5F:8B:25:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:7b:6c:19:e9:cd:67:68:3b:e7:26:b6:95:f6:5c:0d:72:b4: 7e:d4:61:7c:16:7d:40:21:1d:ad:53:3e:a7:32:14:55:ef:7b: fe:7b:59:f7:f8:c6:a6:53:ce:a5:22:bf:19:2c:ee:40:dd:b2: e5:5d:0d:98:b6:98:7a:b7:11:6c:63:c7:45:27:3d:28:00:7c: 5e:d8:c1:6b:f9:42:6f:3c:49:5f:99:1f:ba:61:a9:f1:72:d1: a2:0f:fa:2f:c8:77:a7:a2:9d:da:81:cb:45:e3:aa:ef:b5:43: b7:fb:28:7b:4d:37:16:17:8c:8a:e3:2d:2e:d4:8b:ce:a4:86: b4:77:34:d7:ae:f4:6a:25:df:b8:ce:fd:69:29:7e:14:21:e8: 43:15:36:fb:a1:3d:54:13:03:be:25:8b:9d:69:43:e9:b1:ab: 07:68:ff:67:e8:95:09:31:0c:c9:bb:8b:0b:41:21:99:e9:be: 57:25:7c:01:4e:ae:c6:cd:c7:c2:6f:53:4b:f0:92:52:a2:e4: 22:d0:93:4d:a2:7c:0e:0a:c6:a7:91:e1:eb:13:b9:a9:21:63: 8e:38:60:84:0d:a7:f0:5f:a4:62:9d:c8:6d:aa:ef:ed:83:cf: 69:41:72:ca:b4:87:25:bd:2c:db:0e:98:7b:2f:21:ac:45:3f: fb:2e:e1:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJBQUQxMTAvBgNVBAUTKERERjg4NDkxMUFEM0YyOENDOUQ5NkE4QzI0QTkzOUE2 NUY4QjI1NzYwHhcNMjUwODA4MTg1OTIyWhcNMjUwODE1MTg1OTIyWjAYMRYwFAYD VQQDEw02ODk2NDkwYS0yZTZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu1+X234Mi9wGE1nkqsB0TURo+aFJpgmj/s3m0GAYswaQibOVLpQe5SlE2XzZ QgZUrNqrnGQ421keL4nU11Adff+7JgF378dA9XlqCKI9zStpiaJqcLuGMuChcbWW ICvDC4kdRJusmSKbscLoAXsnT2IBx7AMUtNdJlcHUcTPA/Ndt4PnmWbdT1fb++O0 Fu+nO/wjJwHjBsS8t1+2SnYGFRFfeuBLFHDRAqOL/iRrZu6MoWzzSJxTj9Fshv3w F2Z3ttq3fT+mqkXuV5e1+24nFlHRXQpGeLEQ6Bj6WdOS9rLfqXtp1chzosn1J+SE 2x7r/jKFzsyvkB8VyoNUsvfXgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMbO5OA2 74bSN7Xwv7FG7Q32dArBMB8GA1UdIwQYMBaAFN34hJEa0/KMydlqjCSpOaZfiyV2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkFBRC81MjFBRERDODE4 NDgxMUVBOTA3ODU2MkJDNEY5QUUwMi8zZmlFa1JyVDhvekoyV3FNSktrNXBsLUxK WFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNmaUVrUnJUOG96SjJXcU1KS2s1cGwtTEpYWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkFBRC81MjFBRERDODE4NDgxMUVBOTA3ODU2MkJDNEY5QUUwMi8zZmlFa1JyVDhv ekoyV3FNSktrNXBsLUxKWFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACe2wZ6c1naDvnJraV9lwNcrR+1GF8Fn1AIR2tUz6nMhRV73v+e1n3 +MamU86lIr8ZLO5A3bLlXQ2Ytph6txFsY8dFJz0oAHxe2MFr+UJvPElfmR+6Yanx ctGiD/ovyHenop3agctF46rvtUO3+yh7TTcWF4yK4y0u1IvOpIa0dzTXrvRqJd+4 zv1pKX4UIehDFTb7oT1UEwO+JYudaUPpsasHaP9n6JUJMQzJu4sLQSGZ6b5XJXwB Tq7GzcfCb1NL8JJSouQi0JNNonwOCsankeHrE7mpIWOOOGCEDafwX6Rinchtqu/t g89pQXLKtIclvSzbDph7LyGsRT/7LuGP -----END CERTIFICATE-----Generated at Sat Aug 9 22:45:29 2025 by rpki-client