$ rpki-client -vvf rpki.apnic.net/member_repository/A9161857/CB14BF263C9811F0AF124B38C4F9AE02/3qY-MQG_FZkCCkCD-hw9lkshMMA.mft File: 3qY-MQG_FZkCCkCD-hw9lkshMMA.mft (raw, json) Hash identifier: OkiiGRIfr2VHkp7OsdHnBvdKEWXN8Lv0Omuey42Af7E= Subject key identifier: 16:46:DF:D0:00:A9:8F:5B:DE:FB:5D:1D:6A:33:36:CD:8E:72:1D:9B Authority key identifier: DE:A6:3E:31:01:BF:15:99:02:0A:40:83:FA:1C:3D:96:4B:21:30:C0 Certificate issuer: /CN=A9161857/serialNumber=DEA63E3101BF1599020A4083FA1C3D964B2130C0 Certificate serial: 27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3qY-MQG_FZkCCkCD-hw9lkshMMA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161857/CB14BF263C9811F0AF124B38C4F9AE02/3qY-MQG_FZkCCkCD-hw9lkshMMA.mft Manifest number: 27 Signing time: Sat 09 Aug 2025 08:18:41 +0000 Manifest this update: Sat 09 Aug 2025 08:18:41 +0000 Manifest next update: Sat 16 Aug 2025 08:18:41 +0000 Files and hashes: 1: 3qY-MQG_FZkCCkCD-hw9lkshMMA.crl (hash: B0hxznUe+QItoDX7byLKSXsMNW4TCHxXREsZEbmzVdQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161857/CB14BF263C9811F0AF124B38C4F9AE02/3qY-MQG_FZkCCkCD-hw9lkshMMA.crl rsync://rpki.apnic.net/member_repository/A9161857/CB14BF263C9811F0AF124B38C4F9AE02/3qY-MQG_FZkCCkCD-hw9lkshMMA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3qY-MQG_FZkCCkCD-hw9lkshMMA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39 (0x27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161857, serialNumber=DEA63E3101BF1599020A4083FA1C3D964B2130C0 Validity Not Before: Aug 9 08:18:41 2025 GMT Not After : Aug 16 08:18:41 2025 GMT Subject: CN=68970461-6bfb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:a1:f1:28:8f:ce:05:19:67:8e:a5:e3:56:7b: 5e:02:8b:20:7a:d2:12:07:72:ad:78:33:cd:69:ae: 77:d1:c4:de:64:95:bb:12:a8:4b:20:e7:f9:99:d0: 1c:e2:a5:92:b9:e0:34:b7:b2:37:ad:fd:14:92:7a: 42:2b:a1:5b:74:56:17:02:6a:2c:eb:a6:9f:cf:0a: c7:d1:c7:4a:fc:d8:a9:40:fa:35:cc:8e:e9:23:a6: 44:af:00:a2:35:3a:62:3a:13:49:11:f2:49:67:a7: 52:92:68:ff:32:ea:a3:f6:99:82:16:b3:90:c6:bb: 20:7c:8f:5f:3b:df:d0:2d:4d:09:be:3a:cf:df:45: 2b:91:19:c3:60:6c:9e:db:0e:2c:61:26:ac:5e:64: a0:ea:98:9c:33:b0:31:76:52:6c:b0:8d:63:2e:d7: b6:fa:73:39:5a:3e:c7:e1:ab:3d:14:d7:b5:0f:6c: 25:fb:7b:e1:2b:47:bc:63:5b:6d:dd:06:71:f5:d6: 25:a3:ff:44:75:f6:91:da:86:78:08:be:c8:b9:42: 78:26:3a:f7:70:e7:a7:e3:03:7b:8a:9a:9f:b3:1c: 49:3d:3f:8c:95:f3:e4:cb:82:b8:4f:f3:38:71:7b: f8:b9:3b:b3:ee:d1:8a:89:a3:ea:bb:30:be:7f:4e: e5:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:46:DF:D0:00:A9:8F:5B:DE:FB:5D:1D:6A:33:36:CD:8E:72:1D:9B X509v3 Authority Key Identifier: keyid:DE:A6:3E:31:01:BF:15:99:02:0A:40:83:FA:1C:3D:96:4B:21:30:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161857/CB14BF263C9811F0AF124B38C4F9AE02/3qY-MQG_FZkCCkCD-hw9lkshMMA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3qY-MQG_FZkCCkCD-hw9lkshMMA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161857/CB14BF263C9811F0AF124B38C4F9AE02/3qY-MQG_FZkCCkCD-hw9lkshMMA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:0e:9a:25:b0:30:c7:9d:b0:a2:15:cc:1f:d4:d1:87:72:b4: 50:95:8a:5f:e3:39:29:d6:9c:ec:29:bf:b5:9d:6a:5a:6b:13: 15:96:d2:2c:a4:16:23:df:f2:f4:34:25:4c:d2:63:68:87:e3: 34:c0:20:b2:4d:ba:a2:0d:3b:54:ed:72:f0:e2:7d:73:fa:c3: f8:94:04:20:2f:fd:62:62:b9:ae:52:b7:52:51:19:ec:54:9a: 51:52:1d:6e:b7:5d:76:e5:0e:0e:5d:6c:43:89:05:fd:f0:a4: ae:50:e6:25:f7:af:66:6d:b0:fb:80:c6:3c:ee:5a:74:9d:50: 5b:fd:ed:ce:c0:70:58:6b:ff:bf:0c:4a:da:22:af:9a:df:cf: ba:c4:7f:79:93:1a:87:9f:de:76:17:23:d6:b9:28:3d:cf:be: 55:aa:88:ff:31:5c:a1:46:f0:98:70:0b:c4:86:96:fe:bd:9a: 71:d1:05:9a:4e:f8:1f:89:74:df:d7:6f:a8:d0:5a:df:12:d4: 46:e9:2f:6c:df:8b:1c:e2:14:9b:7d:b4:98:90:44:5a:a7:6e: d7:62:71:db:36:30:e9:e0:be:c0:9e:ed:0d:1e:39:1a:a8:3c: 1d:a0:64:62:95:97:70:98:90:e0:05:b2:c6:8d:8c:e8:83:2d: f1:29:cc:7b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MTg1NzExMC8GA1UEBRMoREVBNjNFMzEwMUJGMTU5OTAyMEE0MDgzRkExQzNEOTY0 QjIxMzBDMDAeFw0yNTA4MDkwODE4NDFaFw0yNTA4MTYwODE4NDFaMBgxFjAUBgNV BAMTDTY4OTcwNDYxLTZiZmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCpofEoj84FGWeOpeNWe14CiyB60hIHcq14M81prnfRxN5klbsSqEsg5/mZ0Bzi pZK54DS3sjet/RSSekIroVt0VhcCaizrpp/PCsfRx0r82KlA+jXMjukjpkSvAKI1 OmI6E0kR8klnp1KSaP8y6qP2mYIWs5DGuyB8j18739AtTQm+Os/fRSuRGcNgbJ7b DixhJqxeZKDqmJwzsDF2UmywjWMu17b6czlaPsfhqz0U17UPbCX7e+ErR7xjW23d BnH11iWj/0R19pHahngIvsi5QngmOvdw56fjA3uKmp+zHEk9P4yV8+TLgrhP8zhx e/i5O7Pu0YqJo+q7ML5/TuU5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUFkbf0ACp j1ve+10dajM2zY5yHZswHwYDVR0jBBgwFoAU3qY+MQG/FZkCCkCD+hw9lkshMMAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYxODU3L0NCMTRCRjI2M0M5 ODExRjBBRjEyNEIzOEM0RjlBRTAyLzNxWS1NUUdfRlprQ0NrQ0QtaHc5bGtzaE1N QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM3FZLU1RR19GWmtDQ2tDRC1odzlsa3NoTU1BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYx ODU3L0NCMTRCRjI2M0M5ODExRjBBRjEyNEIzOEM0RjlBRTAyLzNxWS1NUUdfRlpr Q0NrQ0QtaHc5bGtzaE1NQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEYOmiWwMMedsKIVzB/U0YdytFCVil/jOSnWnOwpv7WdalprExWW0iyk FiPf8vQ0JUzSY2iH4zTAILJNuqINO1TtcvDifXP6w/iUBCAv/WJiua5St1JRGexU mlFSHW63XXblDg5dbEOJBf3wpK5Q5iX3r2ZtsPuAxjzuWnSdUFv97c7AcFhr/78M Stoir5rfz7rEf3mTGoef3nYXI9a5KD3PvlWqiP8xXKFG8JhwC8SGlv69mnHRBZpO +B+JdN/Xb6jQWt8S1EbpL2zfixziFJt9tJiQRFqnbtdicds2MOngvsCe7Q0eORqo PB2gZGKVl3CYkOAFssaNjOiDLfEpzHs= -----END CERTIFICATE-----Generated at Sun Aug 10 05:39:49 2025 by rpki-client