$ rpki-client -vvf rpki.apnic.net/member_repository/A916A0AA/6A4FFC7A0F1011EAA969FE43C4F9AE02/u3QQVrccdV0D-5zyFKQSTKTzdgw.mft File: u3QQVrccdV0D-5zyFKQSTKTzdgw.mft (raw, json) Hash identifier: btvdWx8T4vByUI8MlpHDS167K+uBms3oSPJBibAs+X4= Subject key identifier: E2:F4:61:AE:CF:94:30:F4:E0:1B:A4:12:A3:AB:AB:8B:68:9D:B2:96 Authority key identifier: BB:74:10:56:B7:1C:75:5D:03:FB:9C:F2:14:A4:12:4C:A4:F3:76:0C Certificate issuer: /CN=A916A0AA/serialNumber=BB741056B71C755D03FB9CF214A4124CA4F3760C Certificate serial: 0C3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u3QQVrccdV0D-5zyFKQSTKTzdgw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A0AA/6A4FFC7A0F1011EAA969FE43C4F9AE02/u3QQVrccdV0D-5zyFKQSTKTzdgw.mft Manifest number: 0C31 Signing time: Sun 10 Aug 2025 18:37:33 +0000 Manifest this update: Sun 10 Aug 2025 18:37:33 +0000 Manifest next update: Sun 17 Aug 2025 18:37:33 +0000 Files and hashes: 1: u3QQVrccdV0D-5zyFKQSTKTzdgw.crl (hash: OYJF6jl6tLp0vMCs53FBdJtcKpHhjRqFPjyFRT/Vzr4=) 2: 5AD6AAFE0F1111EA932F3E45C4F9AE02.roa (hash: fVpTiz95zT96q52Sv8C+QJmIZKHHi2b0N2xlEcRtgMo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A0AA/6A4FFC7A0F1011EAA969FE43C4F9AE02/u3QQVrccdV0D-5zyFKQSTKTzdgw.crl rsync://rpki.apnic.net/member_repository/A916A0AA/6A4FFC7A0F1011EAA969FE43C4F9AE02/u3QQVrccdV0D-5zyFKQSTKTzdgw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u3QQVrccdV0D-5zyFKQSTKTzdgw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3130 (0xc3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A0AA, serialNumber=BB741056B71C755D03FB9CF214A4124CA4F3760C Validity Not Before: Aug 10 18:37:33 2025 GMT Not After : Aug 17 18:37:33 2025 GMT Subject: CN=6898e6ed-e888 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:da:3f:49:69:cb:9e:d5:1c:34:b9:6d:84:27: 8b:98:36:19:b7:ca:55:5f:32:ba:59:8b:99:59:a9: 3a:a7:a1:82:00:cf:11:22:38:c3:78:50:da:b7:d1: c5:94:fd:69:08:50:eb:04:ff:48:46:ad:b0:5b:e3: 8b:70:30:c2:29:81:b3:a1:c6:7c:05:83:86:c9:55: 1e:f8:48:9b:5d:f3:5c:23:3d:f9:b2:49:83:e3:63: 64:fd:e3:d6:43:ff:67:85:c9:a0:75:4e:e3:52:f5: 9a:55:fd:5d:f0:07:43:a4:5d:d9:44:f6:5c:43:64: 9b:f1:57:fe:2a:af:55:d3:11:28:c4:45:33:44:1c: c5:96:f2:95:99:39:a6:0e:34:44:6d:e7:62:06:7b: b4:3c:c7:b8:b4:86:e3:15:ea:b1:61:70:d8:b2:3b: 74:cb:17:40:a5:b1:5e:68:38:27:be:39:c6:c0:de: c8:99:9d:0f:73:57:cd:45:b3:44:69:49:8d:a2:f2: 4b:fe:79:46:04:c3:f1:23:67:54:51:8d:9b:37:e4: f3:d5:6f:a8:0e:fb:f1:27:50:fd:41:48:e5:37:64: 03:39:e4:a8:4c:10:cd:a0:6f:17:4e:d0:84:03:f8: 72:63:e0:8a:12:3e:55:f2:6b:1d:7f:49:a5:cf:63: d8:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:F4:61:AE:CF:94:30:F4:E0:1B:A4:12:A3:AB:AB:8B:68:9D:B2:96 X509v3 Authority Key Identifier: keyid:BB:74:10:56:B7:1C:75:5D:03:FB:9C:F2:14:A4:12:4C:A4:F3:76:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A0AA/6A4FFC7A0F1011EAA969FE43C4F9AE02/u3QQVrccdV0D-5zyFKQSTKTzdgw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u3QQVrccdV0D-5zyFKQSTKTzdgw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A0AA/6A4FFC7A0F1011EAA969FE43C4F9AE02/u3QQVrccdV0D-5zyFKQSTKTzdgw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:6c:7f:cc:96:48:ec:48:10:29:0a:b2:cf:30:db:6a:25:5e: 17:fe:9d:9b:f9:30:22:36:4e:07:02:7d:10:a6:2d:51:e2:9c: 23:91:70:f2:4c:33:23:6c:96:ed:c2:59:9b:5f:19:10:c1:14: bd:47:ed:79:2b:c6:8c:b5:2b:60:d1:04:c7:8a:9a:8b:be:7e: 73:8e:bc:e5:f4:bd:f9:c1:f9:60:14:b8:e3:c0:56:5c:f8:2a: 05:73:ca:27:7d:00:bd:3f:29:56:d9:64:67:bf:f1:f0:0c:36: 0b:64:53:88:ee:6f:b0:63:89:56:ed:3f:54:70:97:29:8a:7e: 31:d9:7b:8d:7e:d6:c5:db:91:46:6d:70:05:7c:97:84:15:e1: 11:0d:8e:a7:f3:29:90:d5:46:ba:08:f8:47:c7:79:9d:7e:48: 03:2e:a7:bb:11:f9:bb:6d:6c:46:9c:ec:3f:bc:1b:d6:fa:fd: f4:e6:d9:70:50:bf:3f:c3:39:35:16:14:51:c6:76:46:9d:7c: 86:83:2f:69:69:ce:37:0d:ae:a1:ba:ef:7e:5a:44:27:41:b2: 0b:47:86:f7:94:9a:c6:a7:2e:42:0b:0d:49:67:9d:58:f6:c7: 52:4b:09:62:e2:65:6a:28:3c:04:c1:ed:44:d7:71:a1:81:75: a6:66:e7:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDDowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEwQUExMTAvBgNVBAUTKEJCNzQxMDU2QjcxQzc1NUQwM0ZCOUNGMjE0QTQxMjRD QTRGMzc2MEMwHhcNMjUwODEwMTgzNzMzWhcNMjUwODE3MTgzNzMzWjAYMRYwFAYD VQQDEw02ODk4ZTZlZC1lODg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4No/SWnLntUcNLlthCeLmDYZt8pVXzK6WYuZWak6p6GCAM8RIjjDeFDat9HF lP1pCFDrBP9IRq2wW+OLcDDCKYGzocZ8BYOGyVUe+EibXfNcIz35skmD42Nk/ePW Q/9nhcmgdU7jUvWaVf1d8AdDpF3ZRPZcQ2Sb8Vf+Kq9V0xEoxEUzRBzFlvKVmTmm DjREbediBnu0PMe4tIbjFeqxYXDYsjt0yxdApbFeaDgnvjnGwN7ImZ0Pc1fNRbNE aUmNovJL/nlGBMPxI2dUUY2bN+Tz1W+oDvvxJ1D9QUjlN2QDOeSoTBDNoG8XTtCE A/hyY+CKEj5V8msdf0mlz2PYywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOL0Ya7P lDD04BukEqOrq4tonbKWMB8GA1UdIwQYMBaAFLt0EFa3HHVdA/uc8hSkEkyk83YM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTBBQS82QTRGRkM3QTBG MTAxMUVBQTk2OUZFNDNDNEY5QUUwMi91M1FRVnJjY2RWMEQtNXp5RktRU1RLVHpk Z3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UzUVFWcmNjZFYwRC01enlGS1FTVEtUemRndy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTBBQS82QTRGRkM3QTBGMTAxMUVBQTk2OUZFNDNDNEY5QUUwMi91M1FRVnJjY2RW MEQtNXp5RktRU1RLVHpkZ3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCibH/MlkjsSBApCrLPMNtqJV4X/p2b+TAiNk4HAn0Qpi1R4pwjkXDy TDMjbJbtwlmbXxkQwRS9R+15K8aMtStg0QTHipqLvn5zjrzl9L35wflgFLjjwFZc +CoFc8onfQC9PylW2WRnv/HwDDYLZFOI7m+wY4lW7T9UcJcpin4x2XuNftbF25FG bXAFfJeEFeERDY6n8ymQ1Ua6CPhHx3mdfkgDLqe7Efm7bWxGnOw/vBvW+v305tlw UL8/wzk1FhRRxnZGnXyGgy9pac43Da6huu9+WkQnQbILR4b3lJrGpy5CCw1JZ51Y 9sdSSwli4mVqKDwEwe1E13GhgXWmZuc1 -----END CERTIFICATE-----Generated at Mon Aug 11 07:25:33 2025 by rpki-client