$ rpki-client -vvf rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft File: pm3QENok34rhcGvZCMukO9E4ljE.mft (raw, json) Hash identifier: LrzZlYvTzwkVLqMPgbbQdwnqOOLzo8BY6ANmsTyLlLg= Subject key identifier: 23:13:E5:8E:60:F7:F3:DB:E4:0A:91:D3:0B:0A:9D:97:DA:F1:49:26 Authority key identifier: A6:6D:D0:10:DA:24:DF:8A:E1:70:6B:D9:08:CB:A4:3B:D1:38:96:31 Certificate issuer: /CN=A9171753/serialNumber=A66DD010DA24DF8AE1706BD908CBA43BD1389631 Certificate serial: 34B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft Manifest number: 34AB Signing time: Fri 08 Aug 2025 15:16:56 +0000 Manifest this update: Fri 08 Aug 2025 15:16:55 +0000 Manifest next update: Fri 15 Aug 2025 15:16:55 +0000 Files and hashes: 1: pm3QENok34rhcGvZCMukO9E4ljE.crl (hash: 1HIiBRaifSz1DppWzH7rtg4D/alIBeRa6qd4+6RKFQs=) 2: DE670A60679D11EEAFBA0A5DC4F9AE02.roa (hash: zHkGq6W1DSD5ffW+BnhDs7qnRsRpvtxDIEM0SIuuDg4=) 3: C92F5F8077A211EDAF94D63EC4F9AE02.roa (hash: /yGsH3AYsghIUdTIUcXoSyBB3f9raZ59e9j2Pg64iUI=) 4: 41623A12778111ED8F236A62C4F9AE02.roa (hash: OYhGj+v27n+SqxvC/qZ2JFeWyJlSzi9WwyujTQsPl7E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.crl rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13494 (0x34b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171753, serialNumber=A66DD010DA24DF8AE1706BD908CBA43BD1389631 Validity Not Before: Aug 8 15:16:55 2025 GMT Not After : Aug 15 15:16:55 2025 GMT Subject: CN=689614e8-b86d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:0f:cd:89:a7:b8:5e:6c:49:13:be:f3:f1:37: 8f:1f:82:00:b1:f9:b5:bf:72:30:fc:11:4f:46:49: 38:97:99:9c:47:ce:1d:75:3d:d0:0b:67:ff:07:95: 06:20:47:0c:33:02:7c:63:2a:18:dd:d3:94:8f:e5: 2d:9a:e4:bb:ee:86:0f:6b:74:80:76:00:24:fa:9f: e9:11:31:dd:ca:48:3a:b0:2d:06:c8:aa:20:dc:a4: ac:c9:17:c9:8e:e7:be:10:45:0f:dd:36:da:8b:8e: 5c:83:a7:09:f8:86:c5:4c:23:91:1c:b3:b0:0a:83: 5f:65:db:48:99:16:a9:94:a4:7f:0d:4c:8d:f0:a4: de:89:24:52:7e:9f:29:35:fb:94:50:65:93:fa:74: e8:69:1f:91:21:33:d1:ac:63:f3:25:3a:23:af:8e: 93:ac:69:5b:6c:7d:93:d8:df:5b:e6:c3:ab:77:80: f2:df:ee:fa:15:1d:e8:40:ec:14:03:f1:9a:d4:5f: 17:9b:37:f8:e8:82:7d:d8:24:aa:ee:14:0e:dd:26: 42:59:84:83:3f:18:e9:2a:af:30:0d:ef:f0:64:c0: 9b:ec:1c:fb:f1:4c:d6:cd:65:be:9f:78:67:57:67: a2:82:e0:79:89:42:36:73:a0:54:5e:f4:1e:58:76: 95:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:13:E5:8E:60:F7:F3:DB:E4:0A:91:D3:0B:0A:9D:97:DA:F1:49:26 X509v3 Authority Key Identifier: keyid:A6:6D:D0:10:DA:24:DF:8A:E1:70:6B:D9:08:CB:A4:3B:D1:38:96:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:9a:87:04:81:d3:02:8f:27:aa:72:1a:67:c0:d7:55:87:6e: f7:ba:57:e1:41:9c:e6:22:f9:9c:4c:2d:32:e5:94:e9:94:bc: 33:fe:21:ef:d5:bb:18:5d:e2:c6:88:a1:e5:2b:37:90:60:55: 6c:ca:9f:88:33:61:20:12:5c:2c:ef:e9:03:33:3f:4e:34:92: 25:7e:74:04:7c:34:bc:4a:ec:0c:f6:71:df:07:07:d7:06:44: 7d:63:07:f7:4e:f1:07:ef:55:da:7d:40:d6:d2:52:08:6b:f6: ae:f7:d5:e1:f2:e7:49:e6:a3:a9:b7:41:b6:81:6e:21:7f:b0: 51:29:bd:74:f7:d5:d6:92:c7:77:18:d2:42:10:0f:4d:3d:d7: 46:44:cc:a3:93:61:5a:87:63:b1:f6:4b:b4:12:97:ca:97:b7: 25:4e:1c:32:65:c2:6a:5a:69:d9:21:10:8d:6e:40:7e:b8:2d: 8e:c2:e8:5b:dc:fe:64:e7:e2:b0:67:9f:02:32:e3:69:f5:56: 66:52:fb:af:9c:00:4c:a4:b6:c3:71:ca:50:40:60:0d:fe:7b: 50:7a:56:5a:94:ff:6e:c0:84:cc:8e:cc:17:92:e2:bd:50:69: 98:eb:57:3a:8e:5a:2e:b7:cd:f4:34:54:60:de:f5:b3:e5:1c: 11:06:ac:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE3NTMxMTAvBgNVBAUTKEE2NkREMDEwREEyNERGOEFFMTcwNkJEOTA4Q0JBNDNC RDEzODk2MzEwHhcNMjUwODA4MTUxNjU1WhcNMjUwODE1MTUxNjU1WjAYMRYwFAYD VQQDEw02ODk2MTRlOC1iODZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7A/Niae4XmxJE77z8TePH4IAsfm1v3Iw/BFPRkk4l5mcR84ddT3QC2f/B5UG IEcMMwJ8YyoY3dOUj+UtmuS77oYPa3SAdgAk+p/pETHdykg6sC0GyKog3KSsyRfJ jue+EEUP3Tbai45cg6cJ+IbFTCORHLOwCoNfZdtImRaplKR/DUyN8KTeiSRSfp8p NfuUUGWT+nToaR+RITPRrGPzJTojr46TrGlbbH2T2N9b5sOrd4Dy3+76FR3oQOwU A/Ga1F8Xmzf46IJ92CSq7hQO3SZCWYSDPxjpKq8wDe/wZMCb7Bz78UzWzWW+n3hn V2eiguB5iUI2c6BUXvQeWHaVswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCMT5Y5g 9/Pb5AqR0wsKnZfa8UkmMB8GA1UdIwQYMBaAFKZt0BDaJN+K4XBr2QjLpDvROJYx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTc1My84MDUxNDU5MDFE QTcxMUUyQUFBOTRBQTEwOEIwMkNEMi9wbTNRRU5vazM0cmhjR3ZaQ011a085RTRs akUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BtM1FFTm9rMzRyaGNHdlpDTXVrTzlFNGxqRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTc1My84MDUxNDU5MDFEQTcxMUUyQUFBOTRBQTEwOEIwMkNEMi9wbTNRRU5vazM0 cmhjR3ZaQ011a085RTRsakUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6mocEgdMCjyeqchpnwNdVh273ulfhQZzmIvmcTC0y5ZTplLwz/iHv 1bsYXeLGiKHlKzeQYFVsyp+IM2EgElws7+kDMz9ONJIlfnQEfDS8SuwM9nHfBwfX BkR9Ywf3TvEH71XafUDW0lIIa/au99Xh8udJ5qOpt0G2gW4hf7BRKb1099XWksd3 GNJCEA9NPddGRMyjk2Fah2Ox9ku0EpfKl7clThwyZcJqWmnZIRCNbkB+uC2Owuhb 3P5k5+KwZ58CMuNp9VZmUvuvnABMpLbDccpQQGAN/ntQelZalP9uwITMjswXkuK9 UGmY61c6jlout830NFRg3vWz5RwRBqzh -----END CERTIFICATE-----Generated at Sun Aug 10 04:50:49 2025 by rpki-client