$ rpki-client -vvf rpki.apnic.net/member_repository/A919A016/C0677226417111EAAAD26A6CC4F9AE02/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.mft File: 3y-KdfPpJ14NTxD8ajGZl5Eb5bU.mft (raw, json) Hash identifier: ycP0fVSDeeuvdA2DAgi9zG3CuzNRSoR4Cw8kZpMnaog= Subject key identifier: 71:06:D5:3D:FB:8B:00:09:6F:77:5D:C4:4D:78:34:4C:DF:B0:45:72 Authority key identifier: DF:2F:8A:75:F3:E9:27:5E:0D:4F:10:FC:6A:31:99:97:91:1B:E5:B5 Certificate issuer: /CN=A919A016/serialNumber=DF2F8A75F3E9275E0D4F10FC6A319997911BE5B5 Certificate serial: 0B48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A016/C0677226417111EAAAD26A6CC4F9AE02/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.mft Manifest number: 0B3A Signing time: Fri 08 Aug 2025 19:28:00 +0000 Manifest this update: Fri 08 Aug 2025 19:28:00 +0000 Manifest next update: Fri 15 Aug 2025 19:28:00 +0000 Files and hashes: 1: 3y-KdfPpJ14NTxD8ajGZl5Eb5bU.crl (hash: LNH3AtfLci6XA62GQec0inxfswSA1qK15yBTjV0YcNU=) 2: 26010A0605EF11F09181F913C4F9AE02.roa (hash: e8DrNgU6wclV+/cuRuh0FDYWi/CeredwOHLzSK+l0vc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A016/C0677226417111EAAAD26A6CC4F9AE02/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.crl rsync://rpki.apnic.net/member_repository/A919A016/C0677226417111EAAAD26A6CC4F9AE02/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2888 (0xb48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A016, serialNumber=DF2F8A75F3E9275E0D4F10FC6A319997911BE5B5 Validity Not Before: Aug 8 19:28:00 2025 GMT Not After : Aug 15 19:28:00 2025 GMT Subject: CN=68964fc0-674b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:95:45:c7:71:a2:fc:9d:01:1a:59:ca:34:83: 34:8f:2a:c5:50:83:21:27:71:51:02:20:4a:04:df: b1:64:60:b4:7f:0b:1c:be:89:f2:fb:80:36:1f:04: 1d:e0:b9:e0:f6:67:2e:c8:9f:3e:4f:a9:17:5d:c2: fb:6c:15:d2:63:1e:50:45:82:e8:ef:26:bc:cf:bc: c2:3c:42:76:b9:0b:3d:5d:32:d8:c0:a0:04:71:3c: d4:b3:d9:e5:65:e1:a9:3a:08:57:9f:65:a1:bd:31: dc:d9:9c:04:1e:5d:bd:db:f7:b2:66:36:61:ed:c5: b9:69:92:e6:f0:14:21:97:c8:b9:fb:89:88:77:de: 64:c6:5a:97:58:ed:0e:a2:23:e4:b2:46:73:8e:8e: 3a:04:63:63:ea:90:b0:7c:eb:38:56:50:1f:62:ea: ea:64:10:c1:b5:7a:14:f7:9c:59:f1:2b:90:1c:97: 5c:7e:49:c9:b5:92:fa:dd:87:67:02:66:a5:a5:98: 3b:7b:4a:e6:8e:38:fc:77:df:e4:f1:a4:3e:dd:6c: 10:85:44:e6:ab:3c:b7:f5:a8:47:61:9e:d3:ae:81: cf:a5:b7:ee:9d:74:71:9b:02:4a:67:3a:da:45:ed: ec:37:6a:58:91:6f:23:96:5f:7d:18:0d:15:43:53: d4:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:06:D5:3D:FB:8B:00:09:6F:77:5D:C4:4D:78:34:4C:DF:B0:45:72 X509v3 Authority Key Identifier: keyid:DF:2F:8A:75:F3:E9:27:5E:0D:4F:10:FC:6A:31:99:97:91:1B:E5:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A016/C0677226417111EAAAD26A6CC4F9AE02/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A016/C0677226417111EAAAD26A6CC4F9AE02/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:f1:12:85:f7:f6:0d:2f:20:97:39:67:d4:f9:ca:66:2b:29: 36:29:9d:fd:2b:14:78:1c:4e:f3:bc:01:79:53:77:ae:02:a0: 6b:c1:44:2d:97:bd:30:45:d9:11:bc:a4:45:43:49:14:4e:df: 74:1c:b7:da:d9:53:20:92:3a:9b:d5:81:0d:15:bd:9a:23:8a: be:d5:e5:48:2b:2e:33:45:24:1f:0f:98:1d:7c:c7:ff:fd:ba: bd:86:c8:7d:cd:c0:3a:e8:b2:d0:ac:90:ef:d3:23:a4:97:95: 56:c4:ff:2d:a6:39:9e:95:d0:1a:26:cd:f2:9d:1b:b8:70:60: a2:30:cd:99:9c:91:ac:a0:ba:35:43:eb:89:f1:3e:22:e8:3e: 4c:33:ff:29:17:28:b8:a3:05:dd:44:44:13:1e:7c:35:29:2a: 2f:7c:d0:a1:a7:68:ce:87:f4:73:e0:a4:79:94:3d:38:93:ad: b0:77:61:b8:f2:c2:4a:4e:9e:7d:92:8c:11:4d:0c:53:c3:80: 61:2e:56:9b:16:43:69:67:5c:25:8f:59:27:0b:99:f9:0d:57: 55:69:7b:16:82:f3:93:50:cf:f7:7e:77:75:3f:ad:6c:2e:1f: d8:d6:76:02:c7:36:b5:f2:69:60:7c:3f:7f:89:62:42:b0:11: 7d:63:db:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC0gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUEwMTYxMTAvBgNVBAUTKERGMkY4QTc1RjNFOTI3NUUwRDRGMTBGQzZBMzE5OTk3 OTExQkU1QjUwHhcNMjUwODA4MTkyODAwWhcNMjUwODE1MTkyODAwWjAYMRYwFAYD VQQDEw02ODk2NGZjMC02NzRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsJVFx3Gi/J0BGlnKNIM0jyrFUIMhJ3FRAiBKBN+xZGC0fwscvony+4A2HwQd 4Lng9mcuyJ8+T6kXXcL7bBXSYx5QRYLo7ya8z7zCPEJ2uQs9XTLYwKAEcTzUs9nl ZeGpOghXn2WhvTHc2ZwEHl292/eyZjZh7cW5aZLm8BQhl8i5+4mId95kxlqXWO0O oiPkskZzjo46BGNj6pCwfOs4VlAfYurqZBDBtXoU95xZ8SuQHJdcfknJtZL63Ydn AmalpZg7e0rmjjj8d9/k8aQ+3WwQhUTmqzy39ahHYZ7TroHPpbfunXRxmwJKZzra Re3sN2pYkW8jll99GA0VQ1PUCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHEG1T37 iwAJb3ddxE14NEzfsEVyMB8GA1UdIwQYMBaAFN8vinXz6SdeDU8Q/GoxmZeRG+W1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTAxNi9DMDY3NzIyNjQx NzExMUVBQUFEMjZBNkNDNEY5QUUwMi8zeS1LZGZQcEoxNE5UeEQ4YWpHWmw1RWI1 YlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzN5LUtkZlBwSjE0TlR4RDhhakdabDVFYjViVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTAxNi9DMDY3NzIyNjQxNzExMUVBQUFEMjZBNkNDNEY5QUUwMi8zeS1LZGZQcEox NE5UeEQ4YWpHWmw1RWI1YlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBY8RKF9/YNLyCXOWfU+cpmKyk2KZ39KxR4HE7zvAF5U3euAqBrwUQt l70wRdkRvKRFQ0kUTt90HLfa2VMgkjqb1YENFb2aI4q+1eVIKy4zRSQfD5gdfMf/ /bq9hsh9zcA66LLQrJDv0yOkl5VWxP8tpjmeldAaJs3ynRu4cGCiMM2ZnJGsoLo1 Q+uJ8T4i6D5MM/8pFyi4owXdREQTHnw1KSovfNChp2jOh/Rz4KR5lD04k62wd2G4 8sJKTp59kowRTQxTw4BhLlabFkNpZ1wlj1knC5n5DVdVaXsWgvOTUM/3fnd1P61s Lh/Y1nYCxza18mlgfD9/iWJCsBF9Y9vq -----END CERTIFICATE-----Generated at Sat Aug 9 23:08:38 2025 by rpki-client