$ rpki-client -vvf rpki.apnic.net/member_repository/A916C473/FEAE12A25DDF11F0A5BFD66FC4F9AE02/-3sFh4NlHpP6MN2W1iZebi81JVQ.mft File: -3sFh4NlHpP6MN2W1iZebi81JVQ.mft (raw, json) Hash identifier: tYCDT7sXL0qO9cf4ob+WmMxCMQT8VBfqXLiIyd7wUL0= Subject key identifier: BF:D9:6F:BC:74:B8:4F:B0:D2:26:2D:AC:74:A9:19:E8:B9:3B:DA:3C Authority key identifier: FB:7B:05:87:83:65:1E:93:FA:30:DD:96:D6:26:5E:6E:2F:35:25:54 Certificate issuer: /CN=A916C473/serialNumber=FB7B058783651E93FA30DD96D6265E6E2F352554 Certificate serial: 13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-3sFh4NlHpP6MN2W1iZebi81JVQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C473/FEAE12A25DDF11F0A5BFD66FC4F9AE02/-3sFh4NlHpP6MN2W1iZebi81JVQ.mft Manifest number: 12 Signing time: Mon 11 Aug 2025 08:18:58 +0000 Manifest this update: Mon 11 Aug 2025 08:18:57 +0000 Manifest next update: Mon 18 Aug 2025 08:18:57 +0000 Files and hashes: 1: -3sFh4NlHpP6MN2W1iZebi81JVQ.crl (hash: YSSvYSIXLhWkeGE2Klyf/EaCV4NykTG+B5WiAyrh/+4=) 2: 2BB9711E5DE111F09B775D76C4F9AE02.roa (hash: p5eDJJHEh4Ku0YkaqmxVa+vpX9QHKpmMPC5rYwtTVzI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C473/FEAE12A25DDF11F0A5BFD66FC4F9AE02/-3sFh4NlHpP6MN2W1iZebi81JVQ.crl rsync://rpki.apnic.net/member_repository/A916C473/FEAE12A25DDF11F0A5BFD66FC4F9AE02/-3sFh4NlHpP6MN2W1iZebi81JVQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-3sFh4NlHpP6MN2W1iZebi81JVQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 08:18:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19 (0x13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C473, serialNumber=FB7B058783651E93FA30DD96D6265E6E2F352554 Validity Not Before: Aug 11 08:18:57 2025 GMT Not After : Aug 18 08:18:57 2025 GMT Subject: CN=6899a771-21cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:7e:b0:8c:e6:17:3c:20:26:af:a0:5f:62:79: a6:00:7f:19:f6:ac:23:04:81:89:30:6e:d4:a0:aa: 8f:aa:ea:ff:f8:77:52:3e:a0:3a:6f:a0:74:d2:65: 41:03:35:33:d1:90:d5:a7:96:9c:5d:eb:4a:0c:3f: 0d:0d:b9:53:62:ea:cc:03:a5:ac:92:11:bc:6c:3d: 35:d7:de:1f:07:a2:a1:ef:3c:81:61:cb:da:09:b9: 3b:5f:cb:61:87:ee:f2:72:90:95:bb:50:09:11:c3: 52:f4:fe:f0:28:bc:bc:47:db:de:b8:30:c5:4b:b4: c6:da:8e:02:2a:76:f8:1b:fb:b8:2d:1a:69:b4:00: 59:36:4f:67:ef:59:ef:0e:04:66:3e:e9:a3:73:2d: 39:5c:5d:f3:1c:e4:d0:9b:8c:f6:9e:fa:99:92:5c: 8f:19:f3:97:df:e1:f6:3f:0e:97:c8:d2:3b:24:29: c4:09:65:51:5f:cd:2b:1a:0b:53:9b:a5:f4:b5:3b: 26:49:7f:aa:ab:ca:3a:3a:a7:a4:7b:d2:65:b0:7c: ef:f3:e8:12:d7:69:6c:81:ff:28:2d:8b:4a:66:81: fd:93:44:86:8c:e8:21:2f:c0:76:ad:87:0d:ad:e2: 7d:a1:69:39:a3:53:2d:94:75:52:af:de:08:a6:20: f2:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:D9:6F:BC:74:B8:4F:B0:D2:26:2D:AC:74:A9:19:E8:B9:3B:DA:3C X509v3 Authority Key Identifier: keyid:FB:7B:05:87:83:65:1E:93:FA:30:DD:96:D6:26:5E:6E:2F:35:25:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C473/FEAE12A25DDF11F0A5BFD66FC4F9AE02/-3sFh4NlHpP6MN2W1iZebi81JVQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-3sFh4NlHpP6MN2W1iZebi81JVQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C473/FEAE12A25DDF11F0A5BFD66FC4F9AE02/-3sFh4NlHpP6MN2W1iZebi81JVQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:78:05:8f:36:97:68:c1:f7:0e:1d:04:57:3d:03:60:9a:e5: 01:a1:82:fa:16:7e:d7:8f:6f:16:9b:76:91:25:f6:44:3e:aa: 75:8c:26:37:76:81:54:3f:8b:a8:83:b1:09:3b:53:e6:92:bc: 5c:7d:68:fc:71:e2:16:dd:03:7e:c0:ca:d4:ca:cb:73:fa:80: 5a:84:7f:ad:1c:e8:ad:6d:32:b1:e6:ff:e6:1b:2e:13:51:10: 09:32:2e:63:44:36:85:cf:51:2f:b1:1f:dc:ce:76:a8:00:56: 56:60:45:39:60:bf:47:3a:82:15:11:c5:06:47:41:ca:6f:ff: 46:7b:a7:c3:7c:79:75:51:82:bc:8b:18:6e:24:84:68:bf:4f: dd:4d:7e:f2:88:15:60:3e:65:b9:03:6f:c5:0c:32:a4:c9:94: 64:03:aa:29:76:bd:6a:34:c6:5b:c3:11:b4:2b:4c:1d:ec:1f: 78:e9:8a:9b:bb:91:8d:46:ec:27:de:4b:83:dd:54:25:be:8d: 19:73:2f:ba:27:6e:1b:39:06:8f:fa:a3:b0:f5:e6:0d:33:90: cb:9d:ac:d8:8f:a2:2f:ab:03:07:f2:a4:d1:43:cd:5b:69:6a: 26:9e:7b:bf:a3:e1:f9:47:5f:01:d7:08:4e:10:a7:41:82:92: b6:bf:0a:64 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 QzQ3MzExMC8GA1UEBRMoRkI3QjA1ODc4MzY1MUU5M0ZBMzBERDk2RDYyNjVFNkUy RjM1MjU1NDAeFw0yNTA4MTEwODE4NTdaFw0yNTA4MTgwODE4NTdaMBgxFjAUBgNV BAMTDTY4OTlhNzcxLTIxY2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCmfrCM5hc8ICavoF9ieaYAfxn2rCMEgYkwbtSgqo+q6v/4d1I+oDpvoHTSZUED NTPRkNWnlpxd60oMPw0NuVNi6swDpaySEbxsPTXX3h8HoqHvPIFhy9oJuTtfy2GH 7vJykJW7UAkRw1L0/vAovLxH2964MMVLtMbajgIqdvgb+7gtGmm0AFk2T2fvWe8O BGY+6aNzLTlcXfMc5NCbjPae+pmSXI8Z85ff4fY/DpfI0jskKcQJZVFfzSsaC1Ob pfS1OyZJf6qryjo6p6R70mWwfO/z6BLXaWyB/ygti0pmgf2TRIaM6CEvwHathw2t 4n2haTmjUy2UdVKv3gimIPJDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUv9lvvHS4 T7DSJi2sdKkZ6Lk72jwwHwYDVR0jBBgwFoAU+3sFh4NlHpP6MN2W1iZebi81JVQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZDNDczL0ZFQUUxMkEyNURE RjExRjBBNUJGRDY2RkM0RjlBRTAyLy0zc0ZoNE5sSHBQNk1OMlcxaVplYmk4MUpW US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvLTNzRmg0TmxIcFA2TU4yVzFpWmViaTgxSlZRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZD NDczL0ZFQUUxMkEyNURERjExRjBBNUJGRDY2RkM0RjlBRTAyLy0zc0ZoNE5sSHBQ Nk1OMlcxaVplYmk4MUpWUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADx4BY82l2jB9w4dBFc9A2Ca5QGhgvoWftePbxabdpEl9kQ+qnWMJjd2 gVQ/i6iDsQk7U+aSvFx9aPxx4hbdA37AytTKy3P6gFqEf60c6K1tMrHm/+YbLhNR EAkyLmNENoXPUS+xH9zOdqgAVlZgRTlgv0c6ghURxQZHQcpv/0Z7p8N8eXVRgryL GG4khGi/T91NfvKIFWA+ZbkDb8UMMqTJlGQDqil2vWo0xlvDEbQrTB3sH3jpipu7 kY1G7CfeS4PdVCW+jRlzL7onbhs5Bo/6o7D15g0zkMudrNiPoi+rAwfypNFDzVtp aiaee7+j4flHXwHXCE4Qp0GCkra/CmQ= -----END CERTIFICATE-----Generated at Wed Aug 13 05:36:19 2025 by rpki-client