$ rpki-client -vvf rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.mft File: g3GOntShsiknnjylVdRNbh_KjMU.mft (raw, json) Hash identifier: 1JS0SzsRJmoH32LA8BVhK7XsJp9VFdQSvBgN965Za1w= Subject key identifier: 68:94:0A:4A:BE:B7:58:6F:33:B8:88:37:14:36:BD:5E:D8:52:B3:5A Authority key identifier: 83:71:8E:9E:D4:A1:B2:29:27:9E:3C:A5:55:D4:4D:6E:1F:CA:8C:C5 Certificate issuer: /CN=A917A17B/serialNumber=83718E9ED4A1B229279E3CA555D44D6E1FCA8CC5 Certificate serial: 0C74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3GOntShsiknnjylVdRNbh_KjMU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.mft Manifest number: 0C69 Signing time: Sun 10 Aug 2025 18:27:39 +0000 Manifest this update: Sun 10 Aug 2025 18:27:39 +0000 Manifest next update: Sun 17 Aug 2025 18:27:39 +0000 Files and hashes: 1: g3GOntShsiknnjylVdRNbh_KjMU.crl (hash: S5pbFRfaWJdpbFGDtefat0cGwlzizzndtuAbSttPAYw=) 2: A473C9A008F311EE98719810C4F9AE02.roa (hash: I+dyDrUC3DvMgCPW4jStqejUHX8a7vo0aXHEIsgKIwo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.crl rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3GOntShsiknnjylVdRNbh_KjMU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3188 (0xc74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A17B, serialNumber=83718E9ED4A1B229279E3CA555D44D6E1FCA8CC5 Validity Not Before: Aug 10 18:27:39 2025 GMT Not After : Aug 17 18:27:39 2025 GMT Subject: CN=6898e49b-d8a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ab:85:8b:a8:3d:1c:7c:da:88:b2:39:3d:c2: dc:f3:95:7c:ce:ec:e0:07:0d:a7:8d:32:e2:d2:32: 27:bf:56:5b:ac:9e:56:b9:5a:d3:db:66:1e:eb:ed: 58:25:2b:6d:9a:01:cb:53:5b:b7:9d:5b:ea:3a:74: 1d:3f:d2:7c:f9:3e:98:00:2e:f1:11:00:ca:ee:97: ea:28:38:7e:b0:b8:2f:2e:08:81:56:74:a4:1c:e8: a8:00:ae:e5:f3:90:40:9a:b4:f1:cc:2c:e5:b3:f0: d8:59:29:fa:da:0f:a4:b7:ed:08:54:7b:88:1d:fe: e0:01:8f:8a:99:cb:77:b3:cf:63:ae:6b:91:dc:6a: 5b:83:8b:49:b7:d2:83:30:ae:97:24:14:7f:e3:2c: a8:c7:35:8b:e6:b9:77:d0:cf:c6:e5:b9:ab:8b:e8: 5b:4e:21:0e:a3:e0:b5:74:b3:a1:26:0e:86:76:07: a2:ca:93:51:b0:a1:6c:09:ae:9e:23:fe:b0:60:cb: 91:e3:8a:b1:ab:94:c8:86:00:5d:35:96:1e:c8:96: db:99:f0:95:1b:f4:0f:51:10:b7:5c:81:1f:ec:06: a3:ef:e0:52:e9:e7:60:81:0e:5b:3c:20:d3:52:b8: 63:76:11:54:97:4d:0e:a9:a0:c8:c3:bd:3c:95:69: 35:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:94:0A:4A:BE:B7:58:6F:33:B8:88:37:14:36:BD:5E:D8:52:B3:5A X509v3 Authority Key Identifier: keyid:83:71:8E:9E:D4:A1:B2:29:27:9E:3C:A5:55:D4:4D:6E:1F:CA:8C:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3GOntShsiknnjylVdRNbh_KjMU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:5d:72:19:b5:31:73:a7:a8:2e:f1:f8:2f:1d:92:2b:2e:73: 3e:33:0c:49:90:92:a6:cc:ca:25:c5:e8:51:87:25:a7:9a:0a: 17:b1:e5:9c:ce:8f:6b:59:27:63:ac:28:ec:c9:e9:7e:0a:e6: e4:06:cc:ca:48:c4:56:9f:7d:38:aa:e8:fd:df:92:14:48:fd: fc:91:26:af:09:2a:2a:64:c0:b2:f5:15:6a:88:9a:f9:6b:0d: b4:8b:84:ce:18:61:eb:82:fb:07:5a:d6:67:9b:cd:40:5e:fd: e4:a4:7a:0a:1c:8a:4f:9a:09:7b:79:de:e1:18:4f:f6:38:5e: f8:53:79:52:15:d2:d4:31:09:cc:c5:83:ed:ab:12:e1:43:75: e6:3a:bd:e3:32:f8:b3:07:89:51:1d:8a:6a:3c:f4:b3:af:21: 80:a6:9b:ad:70:36:c9:99:2c:34:b5:7c:89:bb:48:21:54:de: 4f:e2:7d:c2:42:78:72:98:d7:54:38:1b:cc:03:c5:f3:86:95: 02:79:e5:b8:d0:15:75:8f:db:f4:de:ac:ea:74:40:94:1f:38: 04:47:03:3f:df:21:7a:d4:b3:4a:9c:a6:44:19:5c:65:91:f9: 2c:02:a1:53:d5:dd:ff:66:57:b5:2f:b2:de:75:68:af:16:56: 58:7d:73:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDHQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0ExN0IxMTAvBgNVBAUTKDgzNzE4RTlFRDRBMUIyMjkyNzlFM0NBNTU1RDQ0RDZF MUZDQThDQzUwHhcNMjUwODEwMTgyNzM5WhcNMjUwODE3MTgyNzM5WjAYMRYwFAYD VQQDEw02ODk4ZTQ5Yi1kOGExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv6uFi6g9HHzaiLI5PcLc85V8zuzgBw2njTLi0jInv1ZbrJ5WuVrT22Ye6+1Y JSttmgHLU1u3nVvqOnQdP9J8+T6YAC7xEQDK7pfqKDh+sLgvLgiBVnSkHOioAK7l 85BAmrTxzCzls/DYWSn62g+kt+0IVHuIHf7gAY+Kmct3s89jrmuR3Gpbg4tJt9KD MK6XJBR/4yyoxzWL5rl30M/G5bmri+hbTiEOo+C1dLOhJg6GdgeiypNRsKFsCa6e I/6wYMuR44qxq5TIhgBdNZYeyJbbmfCVG/QPURC3XIEf7Aaj7+BS6edggQ5bPCDT UrhjdhFUl00OqaDIw708lWk1RwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGiUCkq+ t1hvM7iINxQ2vV7YUrNaMB8GA1UdIwQYMBaAFINxjp7UobIpJ548pVXUTW4fyozF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTE3Qi84NTM5NUQ2RTA2 RDMxMUVBQkE1RDVBNDlDNEY5QUUwMi9nM0dPbnRTaHNpa25uanlsVmRSTmJoX0tq TVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2czR09udFNoc2lrbm5qeWxWZFJOYmhfS2pNVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTE3Qi84NTM5NUQ2RTA2RDMxMUVBQkE1RDVBNDlDNEY5QUUwMi9nM0dPbnRTaHNp a25uanlsVmRSTmJoX0tqTVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArXXIZtTFzp6gu8fgvHZIrLnM+MwxJkJKmzMolxehRhyWnmgoXseWc zo9rWSdjrCjsyel+CubkBszKSMRWn304quj935IUSP38kSavCSoqZMCy9RVqiJr5 aw20i4TOGGHrgvsHWtZnm81AXv3kpHoKHIpPmgl7ed7hGE/2OF74U3lSFdLUMQnM xYPtqxLhQ3XmOr3jMvizB4lRHYpqPPSzryGApputcDbJmSw0tXyJu0ghVN5P4n3C QnhymNdUOBvMA8XzhpUCeeW40BV1j9v03qzqdECUHzgERwM/3yF61LNKnKZEGVxl kfksAqFT1d3/Zle1L7LedWivFlZYfXPN -----END CERTIFICATE-----Generated at Mon Aug 11 07:49:34 2025 by rpki-client