$ rpki-client -vvf rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft File: 3zHPGFCQ4VSWXv_7xmS91yHYB18.mft (raw, json) Hash identifier: TC2oi3JyQ2b7a8O1aE7ClWKxciZM087FN1hqEJHi0LI= Subject key identifier: B6:44:E5:B1:32:A7:7C:71:97:D7:F5:3E:0A:49:4C:C2:F0:1E:BB:A6 Authority key identifier: DF:31:CF:18:50:90:E1:54:96:5E:FF:FB:C6:64:BD:D7:21:D8:07:5F Certificate issuer: /CN=A9155ECF/serialNumber=DF31CF185090E154965EFFFBC664BDD721D8075F Certificate serial: 3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft Manifest number: 37 Signing time: Sat 09 Aug 2025 08:07:21 +0000 Manifest this update: Sat 09 Aug 2025 08:07:21 +0000 Manifest next update: Sat 16 Aug 2025 08:07:21 +0000 Files and hashes: 1: 3zHPGFCQ4VSWXv_7xmS91yHYB18.crl (hash: Cpg34Yqhxufr30d5XnkXTShFUHaINJlgDY+k03vhzBw=) 2: 3C0150CC25F711F0BA6BC461C4F9AE02.roa (hash: 3nF4cvLj139/qC59LZaw3WXWjKCR+W8JrfwsLDT094o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.crl rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58 (0x3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155ECF, serialNumber=DF31CF185090E154965EFFFBC664BDD721D8075F Validity Not Before: Aug 9 08:07:21 2025 GMT Not After : Aug 16 08:07:21 2025 GMT Subject: CN=689701b9-02f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:57:9c:43:b2:03:c9:53:e6:20:e1:17:de:be: 2a:d6:2d:28:b4:7a:a1:9b:37:87:82:c1:d9:6f:36: d2:cf:f2:83:49:4d:03:4b:74:55:b2:4b:92:96:45: 45:ba:d4:db:48:16:a1:9c:72:09:88:16:f9:91:00: 3f:64:4c:41:71:6d:e5:31:46:87:9a:21:65:ea:4a: 1f:22:90:c6:53:70:65:56:ed:a3:71:a9:dc:fc:64: 67:92:c5:48:e2:e4:3a:7c:5a:1f:26:c8:8f:56:d7: 17:03:40:28:ee:d7:15:a9:11:4d:bf:8d:59:f8:48: 69:f9:d5:b0:60:06:a3:b4:fb:31:84:36:2c:30:14: 02:4b:e6:a6:a9:ce:85:7e:b7:1a:ba:0f:c0:0a:c4: cc:b3:ac:5a:eb:3f:94:e3:4b:94:00:a2:4a:07:db: 9a:15:9e:8e:59:0f:6b:7c:51:5d:2e:a9:78:b5:4c: 6d:48:3f:f0:bf:21:4b:0e:b9:6a:20:13:8e:9c:86: 67:b4:f1:f4:3a:85:f2:eb:ff:05:80:ab:74:38:aa: 77:b4:6d:f2:ad:46:20:83:ac:0c:1c:9b:41:1c:63: 57:2c:c9:18:5b:26:2b:aa:c9:d3:5c:d8:41:12:ce: 70:e9:4d:d2:27:67:a0:e2:b6:10:67:4f:ac:0e:de: e5:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:44:E5:B1:32:A7:7C:71:97:D7:F5:3E:0A:49:4C:C2:F0:1E:BB:A6 X509v3 Authority Key Identifier: keyid:DF:31:CF:18:50:90:E1:54:96:5E:FF:FB:C6:64:BD:D7:21:D8:07:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:85:36:00:91:f4:86:30:0a:e8:21:1a:66:fc:71:fd:80:a2: d9:54:a5:00:65:9d:51:ea:56:bf:57:08:54:76:fa:bf:02:49: e3:6e:5d:5b:86:fb:63:81:d3:aa:3a:d0:a2:0b:a1:8a:cf:81: b2:b9:14:41:34:c0:e6:fb:db:1c:1c:f7:76:e5:94:c9:31:d3: 86:44:28:38:a9:85:14:eb:eb:da:74:83:99:a5:a9:7d:6e:49: 94:8f:e8:d2:b3:3b:75:78:ad:63:34:53:45:fa:f3:dc:68:20: f6:e4:46:a8:cd:fa:67:11:95:eb:25:5f:11:ac:00:b0:c0:fd: 5a:35:23:fb:27:34:2e:a1:cb:78:97:d1:e5:4a:c4:bc:04:e9: 97:05:9f:10:e5:e8:65:e0:14:ac:ab:c2:73:9c:13:7b:63:ac: d5:f7:14:6b:b4:d4:bf:6f:10:d8:1a:04:3d:e4:08:07:52:c4: 97:78:99:e7:c9:0c:41:e7:46:0a:07:9d:b5:dd:39:86:3f:c8: df:34:51:da:63:ae:80:7c:a3:8a:d6:5e:87:d6:0f:63:ce:1e: 64:f0:4c:00:93:50:19:ca:c5:15:8b:28:4c:4c:11:4d:4d:91: 88:71:e6:2c:d5:4b:16:31:a3:c7:24:e1:30:d7:9d:01:f0:0f: 3f:c5:88:65 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NUVDRjExMC8GA1UEBRMoREYzMUNGMTg1MDkwRTE1NDk2NUVGRkZCQzY2NEJERDcy MUQ4MDc1RjAeFw0yNTA4MDkwODA3MjFaFw0yNTA4MTYwODA3MjFaMBgxFjAUBgNV BAMTDTY4OTcwMWI5LTAyZjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDFV5xDsgPJU+Yg4RfevirWLSi0eqGbN4eCwdlvNtLP8oNJTQNLdFWyS5KWRUW6 1NtIFqGccgmIFvmRAD9kTEFxbeUxRoeaIWXqSh8ikMZTcGVW7aNxqdz8ZGeSxUji 5Dp8Wh8myI9W1xcDQCju1xWpEU2/jVn4SGn51bBgBqO0+zGENiwwFAJL5qapzoV+ txq6D8AKxMyzrFrrP5TjS5QAokoH25oVno5ZD2t8UV0uqXi1TG1IP/C/IUsOuWog E46chme08fQ6hfLr/wWAq3Q4qne0bfKtRiCDrAwcm0EcY1csyRhbJiuqydNc2EES znDpTdInZ6DithBnT6wO3uVzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUtkTlsTKn fHGX1/U+CklMwvAeu6YwHwYDVR0jBBgwFoAU3zHPGFCQ4VSWXv/7xmS91yHYB18w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1RUNGL0VGNkI5MDVDMjVG NTExRjA4QkVGREE0OUM0RjlBRTAyLzN6SFBHRkNRNFZTV1h2Xzd4bVM5MXlIWUIx OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM3pIUEdGQ1E0VlNXWHZfN3htUzkxeUhZQjE4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1 RUNGL0VGNkI5MDVDMjVGNTExRjA4QkVGREE0OUM0RjlBRTAyLzN6SFBHRkNRNFZT V1h2Xzd4bVM5MXlIWUIxOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAG2FNgCR9IYwCughGmb8cf2AotlUpQBlnVHqVr9XCFR2+r8CSeNuXVuG +2OB06o60KILoYrPgbK5FEE0wOb72xwc93bllMkx04ZEKDiphRTr69p0g5mlqX1u SZSP6NKzO3V4rWM0U0X689xoIPbkRqjN+mcRleslXxGsALDA/Vo1I/snNC6hy3iX 0eVKxLwE6ZcFnxDl6GXgFKyrwnOcE3tjrNX3FGu01L9vENgaBD3kCAdSxJd4mefJ DEHnRgoHnbXdOYY/yN80UdpjroB8o4rWXofWD2POHmTwTACTUBnKxRWLKExMEU1N kYhx5izVSxYxo8ck4TDXnQHwDz/FiGU= -----END CERTIFICATE-----Generated at Sat Aug 9 23:18:53 2025 by rpki-client