$ rpki-client -vvf rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft File: pm3QENok34rhcGvZCMukO9E4ljE.mft (raw, json) Hash identifier: Uc6jjNJBTLXlUMJKbnqzcr0jPFJ3LfxE/TotGMoCD/o= Subject key identifier: B6:BA:DC:E2:B8:97:55:5F:3B:2B:96:97:7B:54:0F:39:49:64:7F:DF Authority key identifier: A6:6D:D0:10:DA:24:DF:8A:E1:70:6B:D9:08:CB:A4:3B:D1:38:96:31 Certificate issuer: /CN=A9171753/serialNumber=A66DD010DA24DF8AE1706BD908CBA43BD1389631 Certificate serial: 34AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft Manifest number: 34A2 Signing time: Tue 22 Jul 2025 15:14:55 +0000 Manifest this update: Tue 22 Jul 2025 15:14:55 +0000 Manifest next update: Tue 29 Jul 2025 15:14:55 +0000 Files and hashes: 1: pm3QENok34rhcGvZCMukO9E4ljE.crl (hash: 17tKHQT3dY/R/0dond0m2I/Py0uLPnXb9sdMbBsEICk=) 2: DE670A60679D11EEAFBA0A5DC4F9AE02.roa (hash: zHkGq6W1DSD5ffW+BnhDs7qnRsRpvtxDIEM0SIuuDg4=) 3: C92F5F8077A211EDAF94D63EC4F9AE02.roa (hash: /yGsH3AYsghIUdTIUcXoSyBB3f9raZ59e9j2Pg64iUI=) 4: 41623A12778111ED8F236A62C4F9AE02.roa (hash: OYhGj+v27n+SqxvC/qZ2JFeWyJlSzi9WwyujTQsPl7E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.crl rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 15:14:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13485 (0x34ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171753, serialNumber=A66DD010DA24DF8AE1706BD908CBA43BD1389631 Validity Not Before: Jul 22 15:14:55 2025 GMT Not After : Jul 29 15:14:55 2025 GMT Subject: CN=687faaef-c27e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:b2:db:6f:18:f0:39:15:88:65:76:27:a3:8a: 69:81:34:89:e5:16:c0:b5:8f:f0:bd:61:00:93:ba: ba:61:9c:42:1c:a2:3b:2d:cd:65:fc:b4:af:89:96: a3:2c:9d:4b:70:9f:fd:ab:65:7a:18:c5:dc:63:d4: a0:b8:f6:ae:2a:98:fa:19:e3:7c:04:1d:20:a4:85: 0a:e5:fc:24:cd:96:0c:dc:06:f4:ed:7d:0c:de:ae: 29:ab:1a:c8:3d:ed:4a:bb:9b:5e:52:e8:c1:bc:44: 70:75:03:8b:cc:53:3f:bc:74:f2:48:a0:4b:f5:ba: e1:cf:de:d4:35:88:4c:53:00:51:b8:e4:1f:ad:cf: c4:f4:8e:d2:f9:47:a0:62:1d:7d:6e:35:11:01:0b: 55:ab:79:ba:4a:cf:b8:aa:40:9b:67:21:83:99:93: da:48:bd:46:8d:60:ca:8a:88:d4:38:58:80:05:8e: 47:8f:0d:db:56:fb:30:17:75:80:20:23:11:81:d3: a6:c2:f6:98:32:e9:95:fc:8b:9c:e2:5e:5d:b3:d8: 76:99:ad:c2:39:de:42:de:98:58:10:15:24:ab:17: 60:03:3d:9a:23:da:27:46:0d:c0:41:ef:b8:e3:22: 39:0f:bc:7a:52:21:b5:1e:bb:a7:0e:af:c9:15:83: 0f:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:BA:DC:E2:B8:97:55:5F:3B:2B:96:97:7B:54:0F:39:49:64:7F:DF X509v3 Authority Key Identifier: keyid:A6:6D:D0:10:DA:24:DF:8A:E1:70:6B:D9:08:CB:A4:3B:D1:38:96:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:ba:0d:39:2f:74:b1:28:57:a7:30:f2:73:b0:07:50:dd:ed: 90:84:a6:4b:5e:2f:84:99:01:4e:bd:67:4a:5c:6b:6a:4b:91: bd:e8:bf:26:f6:38:12:47:70:93:c0:74:bd:91:59:9c:19:4e: 6e:6d:c5:4c:c8:89:5a:aa:b0:d7:d3:4f:47:5b:90:1a:7d:ed: 7b:1b:36:4b:18:a4:66:68:fc:e5:bb:79:81:e7:82:ab:ca:f2: 43:24:43:ec:10:64:94:d0:e8:27:91:6c:90:83:33:49:ce:19: 74:cc:7f:17:24:37:52:8d:de:b9:75:f5:77:8a:9d:e8:f6:23: bd:54:38:28:59:bb:6c:b0:f7:3f:e4:ab:2a:7c:5c:18:81:43: b2:94:fb:e5:5c:11:ed:85:a1:3d:c9:e0:b7:34:c2:fa:e5:3d: 5d:dc:4d:09:ed:79:11:4c:e9:64:39:a7:89:d1:75:fa:d5:ce: c9:10:a6:6f:03:f9:2b:af:14:db:03:ce:0d:36:f5:02:eb:4d: 76:17:62:f7:38:72:0b:3e:e9:85:4e:8a:35:03:d2:2f:66:e4: 34:00:0d:a5:2d:b6:96:c6:2c:7d:44:14:68:8d:62:52:7c:a3: a9:ef:d9:e3:ee:b8:2d:84:6e:f3:a6:da:8d:08:e9:3d:3a:7a: 67:ae:2e:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE3NTMxMTAvBgNVBAUTKEE2NkREMDEwREEyNERGOEFFMTcwNkJEOTA4Q0JBNDNC RDEzODk2MzEwHhcNMjUwNzIyMTUxNDU1WhcNMjUwNzI5MTUxNDU1WjAYMRYwFAYD VQQDEw02ODdmYWFlZi1jMjdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6LLbbxjwORWIZXYno4ppgTSJ5RbAtY/wvWEAk7q6YZxCHKI7Lc1l/LSviZaj LJ1LcJ/9q2V6GMXcY9SguPauKpj6GeN8BB0gpIUK5fwkzZYM3Ab07X0M3q4pqxrI Pe1Ku5teUujBvERwdQOLzFM/vHTySKBL9brhz97UNYhMUwBRuOQfrc/E9I7S+Ueg Yh19bjURAQtVq3m6Ss+4qkCbZyGDmZPaSL1GjWDKiojUOFiABY5Hjw3bVvswF3WA ICMRgdOmwvaYMumV/Iuc4l5ds9h2ma3COd5C3phYEBUkqxdgAz2aI9onRg3AQe+4 4yI5D7x6UiG1HrunDq/JFYMPrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLa63OK4 l1VfOyuWl3tUDzlJZH/fMB8GA1UdIwQYMBaAFKZt0BDaJN+K4XBr2QjLpDvROJYx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTc1My84MDUxNDU5MDFE QTcxMUUyQUFBOTRBQTEwOEIwMkNEMi9wbTNRRU5vazM0cmhjR3ZaQ011a085RTRs akUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BtM1FFTm9rMzRyaGNHdlpDTXVrTzlFNGxqRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTc1My84MDUxNDU5MDFEQTcxMUUyQUFBOTRBQTEwOEIwMkNEMi9wbTNRRU5vazM0 cmhjR3ZaQ011a085RTRsakUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCug05L3SxKFenMPJzsAdQ3e2QhKZLXi+EmQFOvWdKXGtqS5G96L8m 9jgSR3CTwHS9kVmcGU5ubcVMyIlaqrDX009HW5Aafe17GzZLGKRmaPzlu3mB54Kr yvJDJEPsEGSU0OgnkWyQgzNJzhl0zH8XJDdSjd65dfV3ip3o9iO9VDgoWbtssPc/ 5KsqfFwYgUOylPvlXBHthaE9yeC3NML65T1d3E0J7XkRTOlkOaeJ0XX61c7JEKZv A/krrxTbA84NNvUC6012F2L3OHILPumFToo1A9IvZuQ0AA2lLbaWxix9RBRojWJS fKOp79nj7rgthG7zptqNCOk9Onpnri4L -----END CERTIFICATE-----Generated at Wed Jul 23 02:31:30 2025 by rpki-client