$ rpki-client -vvf rpki.apnic.net/member_repository/A9127EEB/F57C94B0D3BA11EF947B0580C4F9AE02/3vMxfL0U19uqJ7_-P-WnuKbtz7k.mft File: 3vMxfL0U19uqJ7_-P-WnuKbtz7k.mft (raw, json) Hash identifier: CfDcainwM8hPQYdllzY9AdcrCvl8Q5MMd8uvEMZAiy4= Subject key identifier: 0F:A1:75:1E:D8:0D:FB:62:AB:D0:F6:EF:F0:80:22:4A:BF:02:48:D5 Authority key identifier: DE:F3:31:7C:BD:14:D7:DB:AA:27:BF:FE:3F:E5:A7:B8:A6:ED:CF:B9 Certificate issuer: /CN=A9127EEB/serialNumber=DEF3317CBD14D7DBAA27BFFE3FE5A7B8A6EDCFB9 Certificate serial: 6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3vMxfL0U19uqJ7_-P-WnuKbtz7k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127EEB/F57C94B0D3BA11EF947B0580C4F9AE02/3vMxfL0U19uqJ7_-P-WnuKbtz7k.mft Manifest number: 67 Signing time: Mon 21 Jul 2025 07:16:08 +0000 Manifest this update: Mon 21 Jul 2025 07:16:08 +0000 Manifest next update: Mon 28 Jul 2025 07:16:08 +0000 Files and hashes: 1: 3vMxfL0U19uqJ7_-P-WnuKbtz7k.crl (hash: iP0w1U4V1nhoLZNcnmX+OzlwTbGbYKgzTyzXI5muS3A=) 2: 5E2D7894562911F0A243A66DC4F9AE02.roa (hash: w0THdO9T6h078pEq3+Lht0f7Z/7SLZrFg+11EWkOMY4=) 3: 5EDC5882D3BB11EF80C3AF80C4F9AE02.roa (hash: PJbzNrEkpbuhikAan3mFGxS/ZJai+blTb1hTbzhhLXc=) 4: 5DEB6B02D3BB11EF80C3AF80C4F9AE02.roa (hash: QSPivy5RJK48HHT2SlrvrCH9DPiTCFPajDEwNKBnEww=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127EEB/F57C94B0D3BA11EF947B0580C4F9AE02/3vMxfL0U19uqJ7_-P-WnuKbtz7k.crl rsync://rpki.apnic.net/member_repository/A9127EEB/F57C94B0D3BA11EF947B0580C4F9AE02/3vMxfL0U19uqJ7_-P-WnuKbtz7k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3vMxfL0U19uqJ7_-P-WnuKbtz7k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 07:16:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 111 (0x6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127EEB, serialNumber=DEF3317CBD14D7DBAA27BFFE3FE5A7B8A6EDCFB9 Validity Not Before: Jul 21 07:16:08 2025 GMT Not After : Jul 28 07:16:08 2025 GMT Subject: CN=687de938-49e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:3c:b4:0d:94:aa:5c:19:3e:15:0a:1f:61:80: af:5d:8b:71:95:23:20:55:2a:ce:5f:5b:a1:01:63: 73:a6:dc:d2:22:09:18:0f:11:d8:28:8e:15:93:b6: 9e:04:03:c8:67:27:ca:c1:e7:f9:3a:02:82:f5:ef: fe:20:2a:56:3d:5b:3a:59:09:11:54:16:26:a5:ee: 6c:24:a7:e9:b8:ad:4d:96:a8:d1:23:97:b2:e5:be: 58:c4:5f:14:7b:df:38:97:9a:3d:da:03:44:44:74: 61:ba:05:3d:b9:87:2d:7c:8d:fc:ec:8a:4d:ef:05: fd:9a:ff:cf:f5:9c:bb:1d:56:06:63:78:65:38:30: 83:f7:f4:3f:1a:7b:0e:35:e7:97:c9:32:d1:46:d1: 45:12:d0:a0:84:92:e0:da:71:4b:ce:1e:24:86:2d: 2d:1d:58:c7:7e:b4:ab:b7:f5:df:a4:7e:a7:3d:9d: 45:3a:f0:d6:84:4c:c9:e3:db:4f:44:e5:3c:f8:8e: 45:5c:28:0f:38:4c:82:28:82:12:bd:2c:98:96:da: ea:e9:a6:ab:d4:c0:72:4e:35:e2:98:93:13:dc:e6: 61:7d:ed:5a:fe:10:de:6b:03:fa:9f:a6:78:bf:56: 4d:49:b8:8e:77:c6:f8:2f:43:0b:75:96:c1:c7:56: 17:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:A1:75:1E:D8:0D:FB:62:AB:D0:F6:EF:F0:80:22:4A:BF:02:48:D5 X509v3 Authority Key Identifier: keyid:DE:F3:31:7C:BD:14:D7:DB:AA:27:BF:FE:3F:E5:A7:B8:A6:ED:CF:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127EEB/F57C94B0D3BA11EF947B0580C4F9AE02/3vMxfL0U19uqJ7_-P-WnuKbtz7k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3vMxfL0U19uqJ7_-P-WnuKbtz7k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127EEB/F57C94B0D3BA11EF947B0580C4F9AE02/3vMxfL0U19uqJ7_-P-WnuKbtz7k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:89:7d:a6:35:be:57:ba:13:c7:c3:df:2b:fe:f6:cb:2c:92: bc:b4:88:6a:7b:f1:35:89:45:71:3e:1a:66:08:9a:f4:e8:e3: a7:b2:e0:62:e1:d1:1c:59:b1:95:ea:32:50:87:cb:c2:b2:36: d2:33:ac:df:ac:81:38:8a:ed:74:34:1e:ab:cf:78:5f:bc:d8: 75:9b:99:ea:34:06:5e:8c:89:1e:02:e9:85:ce:e9:26:23:4f: c6:e5:c3:80:d3:8d:18:13:88:4d:4f:d0:c4:2c:12:7b:34:52: a4:21:3e:57:84:be:1d:3e:79:af:5f:b6:d2:28:f5:bd:11:7f: af:a1:16:0a:a7:30:4f:eb:db:e9:24:70:4b:6d:dc:ab:65:7c: 67:e4:a3:44:e9:d7:4b:de:1e:e1:28:88:fb:fd:22:c5:a8:36: 07:5c:31:ff:5e:54:24:8a:78:b2:12:94:42:6d:ad:e3:01:36: 0e:f0:53:c5:58:f4:8c:1d:ce:30:5a:d0:f5:65:f2:c6:b1:4f: 57:58:a8:3f:ca:78:7d:c9:9f:54:9d:c9:5e:58:eb:98:35:fc: 09:3c:c5:11:37:ea:25:8e:34:e0:d3:80:3d:6b:41:46:5d:88: 2f:b9:fa:81:26:3e:07:c5:fd:1e:27:92:e6:47:3b:a9:cf:28: 78:45:4c:7e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy N0VFQjExMC8GA1UEBRMoREVGMzMxN0NCRDE0RDdEQkFBMjdCRkZFM0ZFNUE3QjhB NkVEQ0ZCOTAeFw0yNTA3MjEwNzE2MDhaFw0yNTA3MjgwNzE2MDhaMBgxFjAUBgNV BAMTDTY4N2RlOTM4LTQ5ZTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCqPLQNlKpcGT4VCh9hgK9di3GVIyBVKs5fW6EBY3Om3NIiCRgPEdgojhWTtp4E A8hnJ8rB5/k6AoL17/4gKlY9WzpZCRFUFial7mwkp+m4rU2WqNEjl7LlvljEXxR7 3ziXmj3aA0REdGG6BT25hy18jfzsik3vBf2a/8/1nLsdVgZjeGU4MIP39D8aew41 55fJMtFG0UUS0KCEkuDacUvOHiSGLS0dWMd+tKu39d+kfqc9nUU68NaETMnj209E 5Tz4jkVcKA84TIIoghK9LJiW2urppqvUwHJONeKYkxPc5mF97Vr+EN5rA/qfpni/ Vk1JuI53xvgvQwt1lsHHVhc7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUD6F1HtgN +2Kr0Pbv8IAiSr8CSNUwHwYDVR0jBBgwFoAU3vMxfL0U19uqJ7/+P+WnuKbtz7kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI3RUVCL0Y1N0M5NEIwRDNC QTExRUY5NDdCMDU4MEM0RjlBRTAyLzN2TXhmTDBVMTl1cUo3Xy1QLVdudUtidHo3 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM3ZNeGZMMFUxOXVxSjdfLVAtV251S2J0ejdrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI3 RUVCL0Y1N0M5NEIwRDNCQTExRUY5NDdCMDU4MEM0RjlBRTAyLzN2TXhmTDBVMTl1 cUo3Xy1QLVdudUtidHo3ay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGqJfaY1vle6E8fD3yv+9ssskry0iGp78TWJRXE+GmYImvTo46ey4GLh 0RxZsZXqMlCHy8KyNtIzrN+sgTiK7XQ0HqvPeF+82HWbmeo0Bl6MiR4C6YXO6SYj T8blw4DTjRgTiE1P0MQsEns0UqQhPleEvh0+ea9fttIo9b0Rf6+hFgqnME/r2+kk cEtt3KtlfGfko0Tp10veHuEoiPv9IsWoNgdcMf9eVCSKeLISlEJtreMBNg7wU8VY 9IwdzjBa0PVl8saxT1dYqD/KeH3Jn1SdyV5Y65g1/Ak8xRE36iWONODTgD1rQUZd iC+5+oEmPgfF/R4nkuZHO6nPKHhFTH4= -----END CERTIFICATE-----Generated at Mon Jul 21 18:45:34 2025 by rpki-client