$ rpki-client -vvf rpki.apnic.net/member_repository/A918EF94/5B24A5C8A6C111E98C379E0FC4F9AE02/p3fkgYyg3MY4LlYlcG-YyB6TByA.mft File: p3fkgYyg3MY4LlYlcG-YyB6TByA.mft (raw, json) Hash identifier: FKJRYXbzqfZt0SkzrNxskLKPiBiTJUiXUcfYufo4RuE= Subject key identifier: 67:D8:59:8E:29:A0:A4:12:A9:10:36:E3:F2:9E:90:44:A5:62:E6:8F Authority key identifier: A7:77:E4:81:8C:A0:DC:C6:38:2E:56:25:70:6F:98:C8:1E:93:07:20 Certificate issuer: /CN=A918EF94/serialNumber=A777E4818CA0DCC6382E5625706F98C81E930720 Certificate serial: 0E51 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p3fkgYyg3MY4LlYlcG-YyB6TByA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EF94/5B24A5C8A6C111E98C379E0FC4F9AE02/p3fkgYyg3MY4LlYlcG-YyB6TByA.mft Manifest number: 0E49 Signing time: Sun 10 Aug 2025 17:46:53 +0000 Manifest this update: Sun 10 Aug 2025 17:46:52 +0000 Manifest next update: Sun 17 Aug 2025 17:46:52 +0000 Files and hashes: 1: p3fkgYyg3MY4LlYlcG-YyB6TByA.crl (hash: UrjmZRLJdUK5EkG+0fcclPk/hCEUV4yk/5B6BW3p5YI=) 2: EE78BE36068611EDA1C2070DC4F9AE02.roa (hash: X7Dq3eZ/GJf+9yPNH4D4Wvo3ddILMQm0OljP2i+67DY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EF94/5B24A5C8A6C111E98C379E0FC4F9AE02/p3fkgYyg3MY4LlYlcG-YyB6TByA.crl rsync://rpki.apnic.net/member_repository/A918EF94/5B24A5C8A6C111E98C379E0FC4F9AE02/p3fkgYyg3MY4LlYlcG-YyB6TByA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p3fkgYyg3MY4LlYlcG-YyB6TByA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3665 (0xe51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EF94, serialNumber=A777E4818CA0DCC6382E5625706F98C81E930720 Validity Not Before: Aug 10 17:46:52 2025 GMT Not After : Aug 17 17:46:52 2025 GMT Subject: CN=6898db0d-3dd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:35:53:86:ee:38:22:4d:83:45:c6:39:00:27: 4c:2e:cb:73:ca:e6:24:72:36:32:23:8e:70:62:8c: 93:76:9e:b4:b9:d1:77:40:28:93:0c:71:be:0f:12: 46:e4:c1:1c:66:ee:6b:93:8e:3c:30:20:c1:da:17: 72:5e:54:a6:c9:3a:fc:10:e7:bb:f8:b8:20:af:04: 58:72:21:48:8e:ec:38:f4:58:20:b1:67:02:5d:f5: eb:08:c8:98:3d:6d:0b:d9:99:7e:ff:95:9d:07:3f: 10:a2:b8:ce:93:a1:85:e4:28:9d:84:56:0e:a9:b6: 28:7c:4a:72:e1:38:5d:9b:87:d1:b4:de:a4:dd:f2: fa:cb:af:b5:6a:fd:40:81:9f:ae:76:47:36:cc:11: 96:25:dc:13:a6:2d:23:4e:6c:a0:34:ec:84:7b:9a: 45:a6:d9:f3:28:b6:42:fa:3e:e9:4e:81:bd:33:7a: 06:52:06:75:6a:57:14:89:10:cc:67:4a:8f:38:35: b5:7f:72:e6:95:a6:7e:f9:57:3d:6d:ba:4f:cf:fb: 1e:be:20:a3:9f:c2:c7:23:6a:7c:61:10:4a:23:c0: bf:e9:ce:05:6a:94:9c:96:ab:e9:80:a7:37:62:fa: 92:ef:9e:f3:2a:23:41:d8:99:38:61:6d:e1:cc:bc: 08:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:D8:59:8E:29:A0:A4:12:A9:10:36:E3:F2:9E:90:44:A5:62:E6:8F X509v3 Authority Key Identifier: keyid:A7:77:E4:81:8C:A0:DC:C6:38:2E:56:25:70:6F:98:C8:1E:93:07:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EF94/5B24A5C8A6C111E98C379E0FC4F9AE02/p3fkgYyg3MY4LlYlcG-YyB6TByA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p3fkgYyg3MY4LlYlcG-YyB6TByA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EF94/5B24A5C8A6C111E98C379E0FC4F9AE02/p3fkgYyg3MY4LlYlcG-YyB6TByA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:27:da:47:20:23:57:ec:88:fe:09:d6:0a:71:c0:ee:a7:f9: 80:bb:54:f3:94:04:5b:b5:dd:76:cd:26:1c:a2:a8:22:50:a4: da:81:54:ff:40:46:4d:04:ff:b3:ca:74:76:ed:19:37:c9:56: 39:e9:d3:05:a4:1b:9a:78:3f:e0:00:eb:57:ad:fa:4d:fe:ab: ee:9c:74:8d:8c:b1:5a:a3:b4:63:6c:39:1b:ce:1f:ca:02:0a: 36:84:bf:9d:69:6d:ed:95:5e:d9:d1:66:bd:60:b4:f0:0e:54: 95:63:e0:58:7c:1d:7e:e3:96:85:0e:4c:9f:63:af:02:61:c0: 22:2c:de:61:e0:f1:01:e8:b2:ab:ec:40:05:9e:c1:5f:aa:1d: f3:79:25:80:f7:97:de:18:6c:b1:f6:e0:4c:16:04:41:c0:06: 41:7b:b0:fc:63:71:bd:b4:7b:2b:7b:b9:94:21:77:10:d1:df: 30:a0:e7:99:0b:1b:3e:ad:80:b2:f7:5f:ff:e4:a7:59:60:7a: df:35:f1:f0:a0:b0:b6:3d:89:9b:8c:d2:e3:72:49:01:c9:49: 5c:b5:97:19:89:0b:5d:e6:3c:31:8d:71:5e:d3:8c:01:f8:5d: 42:2e:b5:f4:31:48:ec:40:29:38:7a:38:ca:ef:75:7f:af:c8: ac:cb:5a:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDlEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVGOTQxMTAvBgNVBAUTKEE3NzdFNDgxOENBMERDQzYzODJFNTYyNTcwNkY5OEM4 MUU5MzA3MjAwHhcNMjUwODEwMTc0NjUyWhcNMjUwODE3MTc0NjUyWjAYMRYwFAYD VQQDEw02ODk4ZGIwZC0zZGQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4jVThu44Ik2DRcY5ACdMLstzyuYkcjYyI45wYoyTdp60udF3QCiTDHG+DxJG 5MEcZu5rk448MCDB2hdyXlSmyTr8EOe7+LggrwRYciFIjuw49FggsWcCXfXrCMiY PW0L2Zl+/5WdBz8QorjOk6GF5CidhFYOqbYofEpy4Thdm4fRtN6k3fL6y6+1av1A gZ+udkc2zBGWJdwTpi0jTmygNOyEe5pFptnzKLZC+j7pToG9M3oGUgZ1alcUiRDM Z0qPODW1f3LmlaZ++Vc9bbpPz/seviCjn8LHI2p8YRBKI8C/6c4FapSclqvpgKc3 YvqS757zKiNB2Jk4YW3hzLwIAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGfYWY4p oKQSqRA24/KekESlYuaPMB8GA1UdIwQYMBaAFKd35IGMoNzGOC5WJXBvmMgekwcg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RUY5NC81QjI0QTVDOEE2 QzExMUU5OEMzNzlFMEZDNEY5QUUwMi9wM2ZrZ1l5ZzNNWTRMbFlsY0ctWXlCNlRC eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3AzZmtnWXlnM01ZNExsWWxjRy1ZeUI2VEJ5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RUY5NC81QjI0QTVDOEE2QzExMUU5OEMzNzlFMEZDNEY5QUUwMi9wM2ZrZ1l5ZzNN WTRMbFlsY0ctWXlCNlRCeUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkJ9pHICNX7Ij+CdYKccDup/mAu1TzlARbtd12zSYcoqgiUKTagVT/ QEZNBP+zynR27Rk3yVY56dMFpBuaeD/gAOtXrfpN/qvunHSNjLFao7RjbDkbzh/K Ago2hL+daW3tlV7Z0Wa9YLTwDlSVY+BYfB1+45aFDkyfY68CYcAiLN5h4PEB6LKr 7EAFnsFfqh3zeSWA95feGGyx9uBMFgRBwAZBe7D8Y3G9tHsre7mUIXcQ0d8woOeZ Cxs+rYCy91//5KdZYHrfNfHwoLC2PYmbjNLjckkByUlctZcZiQtd5jwxjXFe04wB +F1CLrX0MUjsQCk4ejjK73V/r8isy1pT -----END CERTIFICATE-----Generated at Mon Aug 11 04:30:14 2025 by rpki-client