$ rpki-client -vvf rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft File: 3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft (raw, json) Hash identifier: ng5EZBt7PFs/Vl+H4PGOo/gMznbdBDm/rsfEzG1mohU= Subject key identifier: 43:78:CB:18:76:83:AE:46:38:FC:CB:79:A8:DE:2E:A5:BD:C7:E6:28 Authority key identifier: DC:62:20:08:A8:A1:AD:42:BE:2A:25:49:43:49:1A:FA:A8:45:49:A5 Certificate issuer: /CN=A911035A/serialNumber=DC622008A8A1AD42BE2A254943491AFAA84549A5 Certificate serial: 0A12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft Manifest number: 0A01 Signing time: Fri 18 Jul 2025 20:06:07 +0000 Manifest this update: Fri 18 Jul 2025 20:06:07 +0000 Manifest next update: Fri 25 Jul 2025 20:06:07 +0000 Files and hashes: 1: 3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl (hash: jn0fwv611xXN1nXZSoOGwQTJZjzW0BCaHiVv7wzwLkk=) 2: 5B57754A026F11EDBE22EF64C4F9AE02.roa (hash: ihAIG4OoPwthC+h4NtPo2Q0pwt/cIHMn8RF1lo5PumY=) 3: 5A472FBA026F11EDBE22EF64C4F9AE02.roa (hash: vIMBF1bBAJdpKyG7NryScSCm1A4V3l1tKWGtKbJDwKU=) 4: C1B3DE082BBE11EF809E1831C4F9AE02.roa (hash: lx///Z7Da35SlsWklk353QqekT8yYXigifaMtdugzeQ=) 5: E1935B7A36DD11EFB1E53717C4F9AE02.roa (hash: H0HQ+QBIGliAyxj5H0/8pAJ49x4cCntNY4DcwIy3B3Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 20:06:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2578 (0xa12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911035A, serialNumber=DC622008A8A1AD42BE2A254943491AFAA84549A5 Validity Not Before: Jul 18 20:06:07 2025 GMT Not After : Jul 25 20:06:07 2025 GMT Subject: CN=687aa92f-45f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:22:4b:1c:d7:8e:b9:8b:46:33:c2:c0:06:74: 43:ad:aa:43:1e:76:fb:e4:cd:62:5c:a4:9e:58:df: e4:e0:48:33:f7:bd:a6:18:99:a2:56:5a:a5:c8:8e: 8c:fa:f1:06:8d:a5:96:04:72:11:24:c6:f7:a9:03: 7b:e6:3d:3d:09:65:3b:02:d6:86:71:7e:04:23:3a: fd:22:79:f0:6a:db:dd:61:de:fd:ae:39:5b:0a:81: d6:40:b7:46:fa:36:de:f7:c2:e9:75:04:57:82:92: d5:e9:af:91:77:4a:93:1f:7e:8b:32:aa:fa:41:7e: 68:e1:cb:c4:fc:46:de:8a:f1:67:46:6b:ae:b2:38: f0:59:5e:50:3b:9b:a4:6a:12:72:0b:c2:ca:6c:3b: c8:10:b5:03:98:5e:86:40:ba:1c:9e:8e:a6:28:d9: 10:7e:39:8a:02:a8:12:8e:9b:01:6c:70:9c:93:1d: 25:e6:f6:43:14:ed:68:0d:b8:f6:21:dd:65:62:11: 2e:f1:fa:66:e9:1e:4d:22:41:b8:de:e6:de:ba:0b: d5:c0:fa:bf:41:8a:60:9f:ff:df:6b:5d:45:b8:58: 2b:6e:64:bc:b7:ec:43:c4:59:aa:75:f6:36:2b:69: 00:84:80:84:15:4c:06:a7:c1:84:bb:fc:87:43:ff: d4:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:78:CB:18:76:83:AE:46:38:FC:CB:79:A8:DE:2E:A5:BD:C7:E6:28 X509v3 Authority Key Identifier: keyid:DC:62:20:08:A8:A1:AD:42:BE:2A:25:49:43:49:1A:FA:A8:45:49:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:6e:94:be:c7:c4:a5:07:12:03:55:0f:94:14:fb:64:65:1c: 41:6b:c7:16:51:3e:ae:19:c0:60:99:c7:4e:0f:37:57:7e:83: a4:17:a7:af:05:38:f5:2c:f7:30:c0:59:ed:7f:02:ac:c6:32: 61:f1:f8:c9:e4:4d:2b:88:af:4d:00:be:b6:d7:20:eb:63:fe: 95:4d:2a:52:f2:2f:a9:fe:8f:97:74:53:b9:0d:52:c1:f6:c8: d5:27:4f:20:05:e0:e3:dd:b8:fe:f3:8d:3b:af:f1:6d:c3:c1: 8d:f8:b6:98:29:86:cf:b0:a8:a8:8f:62:94:af:2e:bb:41:4b: df:55:78:ba:a0:4d:e9:95:7f:7a:23:a1:ce:a9:f4:40:e9:d0: c6:95:f6:5e:5d:d9:64:a3:d8:c6:be:82:f0:57:37:75:b3:ea: 24:65:80:8f:47:8c:b1:06:af:c5:a7:40:9c:11:95:83:d4:40: 6e:b7:7c:1d:2b:87:0f:74:a5:cd:e5:2f:39:08:ca:ac:a8:b6: f5:d4:4e:32:a7:4d:44:3f:f9:ab:a0:bd:b3:ef:62:5a:7b:46: 51:27:22:a6:56:73:ba:0a:bb:39:0a:65:82:72:ba:5d:b8:7d: c4:e1:9f:2c:7c:3f:c1:fd:96:64:74:2b:3d:bc:81:27:ec:3a: 8f:05:92:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICChIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTAzNUExMTAvBgNVBAUTKERDNjIyMDA4QThBMUFENDJCRTJBMjU0OTQzNDkxQUZB QTg0NTQ5QTUwHhcNMjUwNzE4MjAwNjA3WhcNMjUwNzI1MjAwNjA3WjAYMRYwFAYD VQQDEw02ODdhYTkyZi00NWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2CJLHNeOuYtGM8LABnRDrapDHnb75M1iXKSeWN/k4Egz972mGJmiVlqlyI6M +vEGjaWWBHIRJMb3qQN75j09CWU7AtaGcX4EIzr9InnwatvdYd79rjlbCoHWQLdG +jbe98LpdQRXgpLV6a+Rd0qTH36LMqr6QX5o4cvE/EbeivFnRmuusjjwWV5QO5uk ahJyC8LKbDvIELUDmF6GQLocno6mKNkQfjmKAqgSjpsBbHCckx0l5vZDFO1oDbj2 Id1lYhEu8fpm6R5NIkG43ubeugvVwPq/QYpgn//fa11FuFgrbmS8t+xDxFmqdfY2 K2kAhICEFUwGp8GEu/yHQ//UFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEN4yxh2 g65GOPzLeajeLqW9x+YoMB8GA1UdIwQYMBaAFNxiIAiooa1CviolSUNJGvqoRUml MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDM1QS8zQzYwOUI0NDdD NjYxMUVBODA4OUYzNTFDNEY5QUUwMi8zR0lnQ0tpaHJVSy1LaVZKUTBrYS1xaEZT YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNHSWdDS2loclVLLUtpVkpRMGthLXFoRlNhVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDM1QS8zQzYwOUI0NDdDNjYxMUVBODA4OUYzNTFDNEY5QUUwMi8zR0lnQ0tpaHJV Sy1LaVZKUTBrYS1xaEZTYVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsbpS+x8SlBxIDVQ+UFPtkZRxBa8cWUT6uGcBgmcdODzdXfoOkF6ev BTj1LPcwwFntfwKsxjJh8fjJ5E0riK9NAL621yDrY/6VTSpS8i+p/o+XdFO5DVLB 9sjVJ08gBeDj3bj+8407r/Ftw8GN+LaYKYbPsKioj2KUry67QUvfVXi6oE3plX96 I6HOqfRA6dDGlfZeXdlko9jGvoLwVzd1s+okZYCPR4yxBq/Fp0CcEZWD1EBut3wd K4cPdKXN5S85CMqsqLb11E4yp01EP/mroL2z72Jae0ZRJyKmVnO6Crs5CmWCcrpd uH3E4Z8sfD/B/ZZkdCs9vIEn7DqPBZK7 -----END CERTIFICATE-----Generated at Sun Jul 20 16:35:57 2025 by rpki-client