$ rpki-client -vvf rpki.apnic.net/member_repository/A915FDD9/BE7CAC12D6DE11EFB0474E1BC4F9AE02/A3iO4rrk2AXrzcpmGOLsGhilxOI.mft File: A3iO4rrk2AXrzcpmGOLsGhilxOI.mft (raw, json) Hash identifier: 5roO2HHUA0x7YBSYztP8MvDibiGTj5inLrQQewnhE3I= Subject key identifier: C8:15:39:2D:71:EA:3B:39:C0:91:FD:50:B5:93:C1:6C:4D:21:38:AF Authority key identifier: 03:78:8E:E2:BA:E4:D8:05:EB:CD:CA:66:18:E2:EC:1A:18:A5:C4:E2 Certificate issuer: /CN=A915FDD9/serialNumber=03788EE2BAE4D805EBCDCA6618E2EC1A18A5C4E2 Certificate serial: 6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3iO4rrk2AXrzcpmGOLsGhilxOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FDD9/BE7CAC12D6DE11EFB0474E1BC4F9AE02/A3iO4rrk2AXrzcpmGOLsGhilxOI.mft Manifest number: 69 Signing time: Sat 09 Aug 2025 07:28:08 +0000 Manifest this update: Sat 09 Aug 2025 07:28:08 +0000 Manifest next update: Sat 16 Aug 2025 07:28:08 +0000 Files and hashes: 1: A3iO4rrk2AXrzcpmGOLsGhilxOI.crl (hash: Db7gYeBWl3i6Ajpn+W2UpsSmbhjW5XQr0Px71iFwh18=) 2: BE052770702E11F0A0DEEA12C4F9AE02.roa (hash: OHC1Lai90kPZXbPjZNHQeH48NvGag/35uNyXO/kBwSE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FDD9/BE7CAC12D6DE11EFB0474E1BC4F9AE02/A3iO4rrk2AXrzcpmGOLsGhilxOI.crl rsync://rpki.apnic.net/member_repository/A915FDD9/BE7CAC12D6DE11EFB0474E1BC4F9AE02/A3iO4rrk2AXrzcpmGOLsGhilxOI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3iO4rrk2AXrzcpmGOLsGhilxOI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 106 (0x6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FDD9, serialNumber=03788EE2BAE4D805EBCDCA6618E2EC1A18A5C4E2 Validity Not Before: Aug 9 07:28:08 2025 GMT Not After : Aug 16 07:28:08 2025 GMT Subject: CN=6896f888-fd4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:f9:06:ce:26:6c:ff:0f:83:6d:bd:7f:3b:5f: 1a:ea:15:7a:f9:e0:89:d6:57:50:5c:f7:c2:75:35: 85:e8:06:b8:63:77:e3:59:c4:3c:fd:c8:35:64:d4: 5d:42:e2:81:b8:25:2b:6d:59:84:8d:39:8f:73:38: e0:ae:97:57:38:66:e4:b1:74:58:a6:75:7b:7b:af: 67:2f:77:03:25:7f:cb:08:66:af:13:7f:da:a7:65: f9:45:b2:57:9c:89:19:64:71:44:3a:b2:e6:d1:79: 52:a3:df:11:57:84:73:e4:01:7e:44:2c:3c:14:f2: 7e:d8:ad:09:4d:fd:cb:15:2f:86:2a:c2:a7:fe:ac: f7:7e:80:c2:a7:27:e8:86:b1:8e:a0:70:bc:9b:f2: 38:6b:f0:99:71:e3:8c:31:d6:b4:0f:3a:1e:12:0f: 32:da:9e:3b:0e:c3:2a:ed:85:f7:eb:8c:72:a2:f7: 48:01:af:d6:c7:82:8b:11:c7:3c:e2:45:58:a7:87: d8:cb:d7:82:e8:95:72:29:4e:9e:e1:45:6c:a6:ed: d9:37:7c:a5:f0:98:4c:2d:8b:9f:0c:f7:6e:78:0c: 54:dc:77:e2:09:69:6f:67:4c:ab:f7:64:df:e2:32: fa:9f:ba:69:2c:33:7a:ef:6c:fa:b1:13:e9:5e:3c: 5d:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:15:39:2D:71:EA:3B:39:C0:91:FD:50:B5:93:C1:6C:4D:21:38:AF X509v3 Authority Key Identifier: keyid:03:78:8E:E2:BA:E4:D8:05:EB:CD:CA:66:18:E2:EC:1A:18:A5:C4:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FDD9/BE7CAC12D6DE11EFB0474E1BC4F9AE02/A3iO4rrk2AXrzcpmGOLsGhilxOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3iO4rrk2AXrzcpmGOLsGhilxOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FDD9/BE7CAC12D6DE11EFB0474E1BC4F9AE02/A3iO4rrk2AXrzcpmGOLsGhilxOI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:ad:1e:81:9c:53:13:67:ff:ad:0e:f9:89:ff:b6:de:c4:0e: 95:02:ce:1e:8c:71:8d:84:8f:ff:c9:11:28:73:47:e5:c8:f9: d1:35:be:6d:13:8f:e8:67:c3:2f:f8:d3:41:36:cf:7e:6a:3b: db:d5:bb:32:3a:be:cb:66:5f:99:1d:b0:f7:63:a7:3d:66:e1: 82:44:24:4c:c8:fb:01:a6:df:77:9a:27:f8:ac:07:06:f9:c1: 34:67:78:91:ec:d9:c1:9f:04:6f:85:5d:6b:77:fd:47:9d:a2: 69:e7:af:9f:2a:c7:fe:f2:ad:d1:76:d4:b1:3e:5e:46:37:eb: 01:13:c6:15:83:70:c2:8c:19:e2:bd:0c:95:05:97:54:9f:e9: f5:db:52:4b:66:d2:8f:19:1e:be:ff:24:0a:4f:a6:df:47:78: ff:1d:16:b9:c9:66:af:42:ba:30:c4:7b:c3:86:15:52:05:4c: 29:a1:db:d7:3e:1e:7a:1a:74:f5:61:86:d2:40:fd:2c:45:2a: 04:fd:f0:ab:0d:24:75:dc:4a:6f:0b:4e:9f:e4:22:ab:cc:8a: 71:19:71:09:75:14:f6:a3:92:88:a9:24:bb:fc:15:66:59:73: 88:c2:1e:91:40:4c:8e:2d:bf:8e:3a:e6:65:2a:65:0f:7b:2b: f6:40:6c:fd -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBajANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 RkREOTExMC8GA1UEBRMoMDM3ODhFRTJCQUU0RDgwNUVCQ0RDQTY2MThFMkVDMUEx OEE1QzRFMjAeFw0yNTA4MDkwNzI4MDhaFw0yNTA4MTYwNzI4MDhaMBgxFjAUBgNV BAMTDTY4OTZmODg4LWZkNGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCX+QbOJmz/D4NtvX87XxrqFXr54InWV1Bc98J1NYXoBrhjd+NZxDz9yDVk1F1C 4oG4JSttWYSNOY9zOOCul1c4ZuSxdFimdXt7r2cvdwMlf8sIZq8Tf9qnZflFslec iRlkcUQ6subReVKj3xFXhHPkAX5ELDwU8n7YrQlN/csVL4Yqwqf+rPd+gMKnJ+iG sY6gcLyb8jhr8Jlx44wx1rQPOh4SDzLanjsOwyrthffrjHKi90gBr9bHgosRxzzi RVinh9jL14LolXIpTp7hRWym7dk3fKXwmEwti58M9254DFTcd+IJaW9nTKv3ZN/i MvqfumksM3rvbPqxE+lePF3RAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUyBU5LXHq OznAkf1QtZPBbE0hOK8wHwYDVR0jBBgwFoAUA3iO4rrk2AXrzcpmGOLsGhilxOIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVGREQ5L0JFN0NBQzEyRDZE RTExRUZCMDQ3NEUxQkM0RjlBRTAyL0EzaU80cnJrMkFYcnpjcG1HT0xzR2hpbHhP SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQTNpTzRycmsyQVhyemNwbUdPTHNHaGlseE9JLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVG REQ5L0JFN0NBQzEyRDZERTExRUZCMDQ3NEUxQkM0RjlBRTAyL0EzaU80cnJrMkFY cnpjcG1HT0xzR2hpbHhPSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGytHoGcUxNn/60O+Yn/tt7EDpUCzh6McY2Ej//JEShzR+XI+dE1vm0T j+hnwy/400E2z35qO9vVuzI6vstmX5kdsPdjpz1m4YJEJEzI+wGm33eaJ/isBwb5 wTRneJHs2cGfBG+FXWt3/Uedomnnr58qx/7yrdF21LE+XkY36wETxhWDcMKMGeK9 DJUFl1Sf6fXbUktm0o8ZHr7/JApPpt9HeP8dFrnJZq9CujDEe8OGFVIFTCmh29c+ HnoadPVhhtJA/SxFKgT98KsNJHXcSm8LTp/kIqvMinEZcQl1FPajkoipJLv8FWZZ c4jCHpFATI4tv4465mUqZQ97K/ZAbP0= -----END CERTIFICATE-----Generated at Sun Aug 10 18:15:47 2025 by rpki-client