$ rpki-client -vvf rpki.apnic.net/member_repository/A9119C32/C4EA1B9E46E211EEA2372F41C4F9AE02/3glSX1epVbpvLTKtIoMwQhUYLkU.mft File: 3glSX1epVbpvLTKtIoMwQhUYLkU.mft (raw, json) Hash identifier: mZCI3fOr5MCIP2JMYrITBDzUlvlwKuCNeXZAKlkUIUA= Subject key identifier: B6:B1:8E:25:E7:D1:F8:60:45:DD:FD:FE:A3:59:73:72:B0:39:EE:47 Authority key identifier: DE:09:52:5F:57:A9:55:BA:6F:2D:32:AD:22:83:30:42:15:18:2E:45 Certificate issuer: /CN=A9119C32/serialNumber=DE09525F57A955BA6F2D32AD2283304215182E45 Certificate serial: 0166 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3glSX1epVbpvLTKtIoMwQhUYLkU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119C32/C4EA1B9E46E211EEA2372F41C4F9AE02/3glSX1epVbpvLTKtIoMwQhUYLkU.mft Manifest number: 0163 Signing time: Sat 19 Jul 2025 04:09:00 +0000 Manifest this update: Sat 19 Jul 2025 04:09:00 +0000 Manifest next update: Sat 26 Jul 2025 04:09:00 +0000 Files and hashes: 1: 3glSX1epVbpvLTKtIoMwQhUYLkU.crl (hash: Caw6nLnInz2tzx+HKkFnorz5NzAo134WoE9bP9edPVg=) 2: 5D79BDF8486C11EEB3C19A71C4F9AE02.roa (hash: 0Dz92F7ct8bVXTADuiwvMmdgfbqvyjCznAHcDYM7e2M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119C32/C4EA1B9E46E211EEA2372F41C4F9AE02/3glSX1epVbpvLTKtIoMwQhUYLkU.crl rsync://rpki.apnic.net/member_repository/A9119C32/C4EA1B9E46E211EEA2372F41C4F9AE02/3glSX1epVbpvLTKtIoMwQhUYLkU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3glSX1epVbpvLTKtIoMwQhUYLkU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 04:08:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 358 (0x166) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119C32, serialNumber=DE09525F57A955BA6F2D32AD2283304215182E45 Validity Not Before: Jul 19 04:09:00 2025 GMT Not After : Jul 26 04:09:00 2025 GMT Subject: CN=687b1a5c-a9f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:43:80:33:ad:52:fe:22:05:4b:50:6c:40:25: 99:ea:8f:66:e8:03:df:a1:44:bd:35:5e:d3:7e:cc: 01:9d:08:69:fc:ac:c8:d3:f7:8d:e2:f4:f6:3c:79: 86:6e:f9:12:c7:9d:14:f5:82:ff:fe:93:1b:a5:0d: 8d:3a:1d:6e:63:91:16:d8:3a:9c:0b:21:69:26:f6: 85:b1:88:c5:b5:50:d3:9f:8f:34:e6:e1:74:5f:73: a5:21:9d:4f:97:14:b1:b5:ac:4f:9c:dd:d2:de:03: a3:df:37:e4:c9:39:b9:53:20:63:75:a9:2c:2b:0f: e6:c9:e3:8a:a7:c5:13:aa:db:e1:96:5e:da:92:6e: d9:4f:f3:ea:0d:25:08:d5:65:42:10:1d:f5:77:5c: 7f:65:e5:45:1f:c1:48:d6:1b:38:40:d7:5c:35:a9: dc:7f:a1:a8:26:a0:d5:5d:d1:60:99:a2:fc:3e:b6: 55:ec:70:bd:52:f3:68:73:9f:2e:6b:b9:68:31:3d: 7b:3b:43:10:28:a8:c4:79:bf:0a:3e:95:53:54:ef: 31:ef:b8:5b:f6:9c:0e:dd:04:04:a1:07:f2:06:2e: d0:c8:7f:2f:92:1a:39:47:9b:90:90:3e:1a:08:3d: 32:56:d5:59:b3:5a:2e:88:51:c7:46:ad:ee:e3:d8: ec:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:B1:8E:25:E7:D1:F8:60:45:DD:FD:FE:A3:59:73:72:B0:39:EE:47 X509v3 Authority Key Identifier: keyid:DE:09:52:5F:57:A9:55:BA:6F:2D:32:AD:22:83:30:42:15:18:2E:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119C32/C4EA1B9E46E211EEA2372F41C4F9AE02/3glSX1epVbpvLTKtIoMwQhUYLkU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3glSX1epVbpvLTKtIoMwQhUYLkU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119C32/C4EA1B9E46E211EEA2372F41C4F9AE02/3glSX1epVbpvLTKtIoMwQhUYLkU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:5e:02:3f:8e:47:5b:ce:7b:f6:7f:c1:f6:f2:ed:d4:30:97: b4:8a:c8:8f:00:ff:dd:41:61:70:81:a9:c6:04:68:4a:7a:4e: a7:0a:6a:ff:09:ec:74:bf:9a:51:af:5d:c4:a4:16:43:7f:5d: f4:45:e0:80:b9:84:4c:c6:c5:6c:63:a3:bd:0a:f5:c2:c7:60: bb:f4:18:78:77:c0:c0:0b:57:0d:e6:01:22:f3:ef:49:9b:33: f2:43:72:be:49:63:2f:5f:2d:64:a6:45:14:01:c1:8e:cd:31: f3:40:cb:ad:c5:60:cb:ec:b1:ea:30:c3:9c:1c:09:f6:01:f5: cd:84:a4:b4:5b:83:9e:8d:67:b5:66:8c:14:8e:a4:18:a4:fa: 12:31:eb:fc:32:7e:67:05:9c:3c:66:04:31:bd:b6:dc:0b:30: 3c:cf:ee:34:20:f2:e4:61:7a:2e:26:90:36:a9:16:fe:3a:83: 58:64:90:ae:e6:23:58:9c:7e:22:2c:1c:0e:87:db:80:14:63: 5e:fb:b0:8a:d1:1f:33:fa:2b:56:ce:22:4e:38:fc:41:9f:51: 08:4c:7b:e8:65:03:bb:39:0a:52:34:5e:1b:1d:c7:79:5d:1b: b3:77:d6:14:ec:fd:97:ea:ca:0a:d3:d7:ee:87:79:c9:fb:10: 34:5d:ad:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTlDMzIxMTAvBgNVBAUTKERFMDk1MjVGNTdBOTU1QkE2RjJEMzJBRDIyODMzMDQy MTUxODJFNDUwHhcNMjUwNzE5MDQwOTAwWhcNMjUwNzI2MDQwOTAwWjAYMRYwFAYD VQQDEw02ODdiMWE1Yy1hOWYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr0OAM61S/iIFS1BsQCWZ6o9m6APfoUS9NV7TfswBnQhp/KzI0/eN4vT2PHmG bvkSx50U9YL//pMbpQ2NOh1uY5EW2DqcCyFpJvaFsYjFtVDTn4805uF0X3OlIZ1P lxSxtaxPnN3S3gOj3zfkyTm5UyBjdaksKw/myeOKp8UTqtvhll7akm7ZT/PqDSUI 1WVCEB31d1x/ZeVFH8FI1hs4QNdcNancf6GoJqDVXdFgmaL8PrZV7HC9UvNoc58u a7loMT17O0MQKKjEeb8KPpVTVO8x77hb9pwO3QQEoQfyBi7QyH8vkho5R5uQkD4a CD0yVtVZs1ouiFHHRq3u49js9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLaxjiXn 0fhgRd39/qNZc3KwOe5HMB8GA1UdIwQYMBaAFN4JUl9XqVW6by0yrSKDMEIVGC5F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOUMzMi9DNEVBMUI5RTQ2 RTIxMUVFQTIzNzJGNDFDNEY5QUUwMi8zZ2xTWDFlcFZicHZMVEt0SW9Nd1FoVVlM a1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNnbFNYMWVwVmJwdkxUS3RJb013UWhVWUxrVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OUMzMi9DNEVBMUI5RTQ2RTIxMUVFQTIzNzJGNDFDNEY5QUUwMi8zZ2xTWDFlcFZi cHZMVEt0SW9Nd1FoVVlMa1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbXgI/jkdbznv2f8H28u3UMJe0isiPAP/dQWFwganGBGhKek6nCmr/ Cex0v5pRr13EpBZDf130ReCAuYRMxsVsY6O9CvXCx2C79Bh4d8DAC1cN5gEi8+9J mzPyQ3K+SWMvXy1kpkUUAcGOzTHzQMutxWDL7LHqMMOcHAn2AfXNhKS0W4OejWe1 ZowUjqQYpPoSMev8Mn5nBZw8ZgQxvbbcCzA8z+40IPLkYXouJpA2qRb+OoNYZJCu 5iNYnH4iLBwOh9uAFGNe+7CK0R8z+itWziJOOPxBn1EITHvoZQO7OQpSNF4bHcd5 XRuzd9YU7P2X6soK09fuh3nJ+xA0Xa01 -----END CERTIFICATE-----Generated at Sat Jul 19 18:41:51 2025 by rpki-client