$ rpki-client -vvf rpki.apnic.net/member_repository/A917CD31/75F57B10823A11EB8AE2360AC4F9AE02/3HxGdMlvt2fql8B49oDvV07eu78.mft File: 3HxGdMlvt2fql8B49oDvV07eu78.mft (raw, json) Hash identifier: v8UtpAuULjWb5A6hXCHRiOvGbW3bmrUUOa+7meS8HWw= Subject key identifier: F9:6A:AE:13:B0:7C:73:D3:D3:2C:9C:FC:6C:D9:AA:F4:F5:E8:E7:D2 Authority key identifier: DC:7C:46:74:C9:6F:B7:67:EA:97:C0:78:F6:80:EF:57:4E:DE:BB:BF Certificate issuer: /CN=A917CD31/serialNumber=DC7C4674C96FB767EA97C078F680EF574EDEBBBF Certificate serial: 068E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3HxGdMlvt2fql8B49oDvV07eu78.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917CD31/75F57B10823A11EB8AE2360AC4F9AE02/3HxGdMlvt2fql8B49oDvV07eu78.mft Manifest number: 0687 Signing time: Fri 08 Aug 2025 22:45:07 +0000 Manifest this update: Fri 08 Aug 2025 22:45:06 +0000 Manifest next update: Fri 15 Aug 2025 22:45:06 +0000 Files and hashes: 1: 3HxGdMlvt2fql8B49oDvV07eu78.crl (hash: +B9iLkqixaXN8zJT8Br1QgQWcueIHhMkE0/D68O076g=) 2: A88A17FA823C11EBB35EF50FC4F9AE02.roa (hash: ut9kkhaYpPkueMT9PUXekkExmboRUtj4jv3lyVcffmc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917CD31/75F57B10823A11EB8AE2360AC4F9AE02/3HxGdMlvt2fql8B49oDvV07eu78.crl rsync://rpki.apnic.net/member_repository/A917CD31/75F57B10823A11EB8AE2360AC4F9AE02/3HxGdMlvt2fql8B49oDvV07eu78.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3HxGdMlvt2fql8B49oDvV07eu78.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1678 (0x68e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917CD31, serialNumber=DC7C4674C96FB767EA97C078F680EF574EDEBBBF Validity Not Before: Aug 8 22:45:06 2025 GMT Not After : Aug 15 22:45:06 2025 GMT Subject: CN=68967df2-9dfd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:32:b1:ce:19:c6:e1:8a:8b:b3:8b:99:af:a0: f4:f0:e6:a7:84:b4:1a:8e:a8:2f:a9:4b:07:32:69: 5e:2f:8c:d2:05:75:58:fe:4a:51:57:8e:68:67:18: 0c:40:03:1d:db:d5:10:40:6a:50:92:39:5e:da:e0: 8a:64:50:5d:53:85:d4:3c:8e:0c:34:be:f9:8d:52: 5d:c1:fb:1d:bb:66:89:74:57:1c:c4:b1:99:b2:2e: 52:7b:17:71:87:fd:62:25:22:58:ca:37:01:f5:8e: 82:f9:af:73:26:34:e2:6f:e4:03:b7:95:36:26:f7: ca:32:9d:14:ec:5c:f3:bc:fc:1d:26:33:38:0d:e9: 3e:8b:6c:76:b7:a9:83:4e:0a:8c:b4:8e:12:98:46: 8f:07:4e:2a:9f:da:68:79:6f:bc:59:e8:66:f6:02: 29:27:dd:02:52:33:0b:78:1c:d6:f8:df:5e:3a:48: 43:49:64:4e:ac:ae:74:07:70:39:d5:07:fd:6f:73: 88:ea:41:8a:c5:b4:c3:42:6d:b9:14:fd:ea:b0:61: f5:91:2c:e2:96:a0:71:83:4d:98:f4:f1:cd:22:4d: e5:06:b4:42:bd:6b:cd:28:75:a3:55:51:8a:5f:0d: 92:9f:d3:f2:d9:0b:12:ff:42:5c:4b:c9:7e:ed:39: 5e:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:6A:AE:13:B0:7C:73:D3:D3:2C:9C:FC:6C:D9:AA:F4:F5:E8:E7:D2 X509v3 Authority Key Identifier: keyid:DC:7C:46:74:C9:6F:B7:67:EA:97:C0:78:F6:80:EF:57:4E:DE:BB:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917CD31/75F57B10823A11EB8AE2360AC4F9AE02/3HxGdMlvt2fql8B49oDvV07eu78.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3HxGdMlvt2fql8B49oDvV07eu78.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917CD31/75F57B10823A11EB8AE2360AC4F9AE02/3HxGdMlvt2fql8B49oDvV07eu78.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:78:6e:9f:52:05:02:2a:83:7f:09:14:23:fd:b6:b1:30:d8: 79:da:3c:61:7b:21:f0:54:4e:9e:3e:80:5f:d9:84:4f:c4:77: a0:a1:07:83:35:c5:cb:75:92:cb:94:f7:80:74:41:48:3a:1b: c4:99:d8:d7:09:e0:74:0f:87:cc:ee:69:3f:fe:15:7e:8f:42: 05:c1:7b:e8:22:38:86:fb:b7:7e:8b:1b:9c:82:9d:a5:6c:d3: dc:00:25:9e:25:5e:f9:78:86:72:01:b5:09:01:7a:d8:4c:68: ef:b6:96:e3:0e:96:c5:dc:32:0d:90:8d:8b:f6:f9:e4:79:57: f3:f9:8f:64:ad:43:9a:6e:b3:a8:ad:2d:37:64:be:0e:a4:21: 99:6c:44:00:1b:6c:13:48:02:6b:bc:9e:18:a0:58:fc:d8:94: fa:25:40:cd:4a:42:da:2a:fc:f2:38:ed:c7:bc:e8:a2:e8:b0: 55:55:10:0f:a2:1f:bc:6f:bc:7f:34:f3:8f:eb:20:ff:c1:66: 02:52:87:37:6f:c6:ba:05:6d:a2:4f:2b:14:68:84:b8:cc:fb: 37:45:b8:5e:d9:38:20:60:55:67:f1:1b:60:39:79:52:3b:0c: f0:e9:38:70:3c:91:51:e4:16:5c:58:68:02:ea:53:83:f3:6a: 77:d6:70:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBo4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0NEMzExMTAvBgNVBAUTKERDN0M0Njc0Qzk2RkI3NjdFQTk3QzA3OEY2ODBFRjU3 NEVERUJCQkYwHhcNMjUwODA4MjI0NTA2WhcNMjUwODE1MjI0NTA2WjAYMRYwFAYD VQQDEw02ODk2N2RmMi05ZGZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuDKxzhnG4YqLs4uZr6D08OanhLQajqgvqUsHMmleL4zSBXVY/kpRV45oZxgM QAMd29UQQGpQkjle2uCKZFBdU4XUPI4MNL75jVJdwfsdu2aJdFccxLGZsi5Sexdx h/1iJSJYyjcB9Y6C+a9zJjTib+QDt5U2JvfKMp0U7FzzvPwdJjM4Dek+i2x2t6mD TgqMtI4SmEaPB04qn9poeW+8Wehm9gIpJ90CUjMLeBzW+N9eOkhDSWROrK50B3A5 1Qf9b3OI6kGKxbTDQm25FP3qsGH1kSzilqBxg02Y9PHNIk3lBrRCvWvNKHWjVVGK Xw2Sn9Py2QsS/0JcS8l+7TleFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPlqrhOw fHPT0yyc/GzZqvT16OfSMB8GA1UdIwQYMBaAFNx8RnTJb7dn6pfAePaA71dO3ru/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Q0QzMS83NUY1N0IxMDgy M0ExMUVCOEFFMjM2MEFDNEY5QUUwMi8zSHhHZE1sdnQyZnFsOEI0OW9EdlYwN2V1 NzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNIeEdkTWx2dDJmcWw4QjQ5b0R2VjA3ZXU3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 Q0QzMS83NUY1N0IxMDgyM0ExMUVCOEFFMjM2MEFDNEY5QUUwMi8zSHhHZE1sdnQy ZnFsOEI0OW9EdlYwN2V1NzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNeG6fUgUCKoN/CRQj/baxMNh52jxheyHwVE6ePoBf2YRPxHegoQeD NcXLdZLLlPeAdEFIOhvEmdjXCeB0D4fM7mk//hV+j0IFwXvoIjiG+7d+ixucgp2l bNPcACWeJV75eIZyAbUJAXrYTGjvtpbjDpbF3DINkI2L9vnkeVfz+Y9krUOabrOo rS03ZL4OpCGZbEQAG2wTSAJrvJ4YoFj82JT6JUDNSkLaKvzyOO3HvOii6LBVVRAP oh+8b7x/NPOP6yD/wWYCUoc3b8a6BW2iTysUaIS4zPs3Rbhe2TggYFVn8RtgOXlS Owzw6ThwPJFR5BZcWGgC6lOD82p31nCp -----END CERTIFICATE-----Generated at Sun Aug 10 18:16:19 2025 by rpki-client