$ rpki-client -vvf rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft File: S3IqOmeTvzLJvPUuTncuCm86Yxk.mft (raw, json) Hash identifier: Vrj2ASn+Dzy2CcliyV3sC0Qt007Lzqde1QfuXDC9UBc= Subject key identifier: 41:D0:F6:B5:F6:AF:0B:5D:73:D5:2F:28:59:6D:CB:52:69:C0:17:10 Authority key identifier: 4B:72:2A:3A:67:93:BF:32:C9:BC:F5:2E:4E:77:2E:0A:6F:3A:63:19 Certificate issuer: /CN=A917A67E/serialNumber=4B722A3A6793BF32C9BCF52E4E772E0A6F3A6319 Certificate serial: 0186 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft Manifest number: 0182 Signing time: Sat 19 Jul 2025 03:51:05 +0000 Manifest this update: Sat 19 Jul 2025 03:51:05 +0000 Manifest next update: Sat 26 Jul 2025 03:51:05 +0000 Files and hashes: 1: S3IqOmeTvzLJvPUuTncuCm86Yxk.crl (hash: +VQ1ysgg1I3oQ6SK3xfDSxkQTgqHS5tLCDDdTeM6coc=) 2: E3901F981BD711EEB9597921C4F9AE02.roa (hash: sLVF2uLBYBc6LDSXH2VUz3ksriL+t2pMsQjafYLst9Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.crl rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 03:51:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 390 (0x186) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A67E, serialNumber=4B722A3A6793BF32C9BCF52E4E772E0A6F3A6319 Validity Not Before: Jul 19 03:51:05 2025 GMT Not After : Jul 26 03:51:05 2025 GMT Subject: CN=687b1629-9759 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:03:97:01:03:c0:1d:d9:dd:e4:4a:38:ab:c1: 73:fb:68:ac:c4:3c:ad:c0:6d:04:1d:43:8f:a1:91: 76:ef:b5:c9:5a:f2:57:58:d3:90:2b:4f:a6:29:4b: f5:eb:50:9a:6b:76:2e:9c:ab:97:2d:3b:53:c4:29: a4:be:2a:41:e8:bc:37:f2:c1:79:73:51:d3:24:15: df:60:37:5e:8f:10:5e:cc:7d:ff:50:18:27:a4:30: cc:c2:7a:49:d8:ac:24:bd:36:32:9e:33:97:64:4f: ce:f8:2a:18:48:bb:af:5b:41:fa:64:da:8e:6d:b6: 39:39:b9:e0:7e:ac:86:88:b3:24:78:f6:00:ff:d5: 7b:1d:c7:c3:01:e9:f7:1f:1f:cf:c0:21:ce:d2:31: 3d:5f:11:7a:19:cc:53:89:98:ea:d4:61:66:9b:6c: 97:f8:98:a1:09:96:59:99:8d:73:d6:2b:0d:04:72: bf:7e:18:72:6b:b9:e2:60:2a:e9:1a:56:d5:61:19: cf:af:1e:e2:02:66:00:15:e4:89:5d:69:c5:15:9a: 22:59:62:b6:48:9d:f4:c3:bf:0f:c2:e2:03:6b:f9: 9e:c2:b8:da:be:f5:3c:d4:d3:56:be:9c:ff:5a:d9: b9:e9:45:90:8d:2e:bd:42:00:75:dd:38:aa:fb:0e: b7:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:D0:F6:B5:F6:AF:0B:5D:73:D5:2F:28:59:6D:CB:52:69:C0:17:10 X509v3 Authority Key Identifier: keyid:4B:72:2A:3A:67:93:BF:32:C9:BC:F5:2E:4E:77:2E:0A:6F:3A:63:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:a5:09:7e:8f:9f:81:81:d0:d3:06:79:21:62:6a:d9:7c:d5: dc:cd:c5:c2:c2:94:18:f5:27:d8:07:89:b8:d5:b0:2f:63:14: 21:33:cd:00:61:96:c4:32:c3:52:08:ed:b3:e1:9f:be:21:fe: af:1a:4b:bb:7d:c9:dd:2f:67:63:e7:55:21:b1:49:b6:bc:1d: f5:c6:24:e9:dd:97:26:98:38:e0:2f:53:7d:02:c7:ee:b7:c9: 88:f1:3f:fc:c9:63:12:08:54:54:3c:8a:7d:86:3c:1a:12:05: bc:dc:c2:72:85:a9:dd:af:6d:96:a0:f2:d2:bf:f8:36:7b:73: 51:9e:28:62:26:09:95:2a:f2:98:45:2d:42:74:a0:8b:74:5a: c7:46:0d:cb:68:f8:13:b0:3e:48:3c:d3:09:fe:72:cf:86:90: 35:8c:b4:08:b0:73:8a:41:2d:44:71:9a:b0:69:4e:35:a0:bb: 0c:48:49:a5:45:40:c5:e2:5b:85:fe:1a:44:e6:00:0c:a7:f1: 0e:f5:8d:6f:48:51:5e:30:dd:8b:17:2b:c4:df:c5:de:16:6f: 4a:32:34:70:d3:1d:ef:16:5e:a2:8f:64:b1:ea:62:e2:f0:37: a6:06:bd:b7:25:55:6a:4b:a5:8a:cb:30:27:e4:6e:d9:8d:79: 5a:21:7f:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E2N0UxMTAvBgNVBAUTKDRCNzIyQTNBNjc5M0JGMzJDOUJDRjUyRTRFNzcyRTBB NkYzQTYzMTkwHhcNMjUwNzE5MDM1MTA1WhcNMjUwNzI2MDM1MTA1WjAYMRYwFAYD VQQDEw02ODdiMTYyOS05NzU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9gOXAQPAHdnd5Eo4q8Fz+2isxDytwG0EHUOPoZF277XJWvJXWNOQK0+mKUv1 61Caa3YunKuXLTtTxCmkvipB6Lw38sF5c1HTJBXfYDdejxBezH3/UBgnpDDMwnpJ 2KwkvTYynjOXZE/O+CoYSLuvW0H6ZNqObbY5ObngfqyGiLMkePYA/9V7HcfDAen3 Hx/PwCHO0jE9XxF6GcxTiZjq1GFmm2yX+JihCZZZmY1z1isNBHK/fhhya7niYCrp GlbVYRnPrx7iAmYAFeSJXWnFFZoiWWK2SJ30w78PwuIDa/mewrjavvU81NNWvpz/ Wtm56UWQjS69QgB13Tiq+w632wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEHQ9rX2 rwtdc9UvKFlty1JpwBcQMB8GA1UdIwQYMBaAFEtyKjpnk78yybz1Lk53LgpvOmMZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTY3RS82N0I0Q0I4NDFC RDMxMUVFOTY1RkVGMzhDNEY5QUUwMi9TM0lxT21lVHZ6TEp2UFV1VG5jdUNtODZZ eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1MzSXFPbWVUdnpMSnZQVXVUbmN1Q204Nll4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTY3RS82N0I0Q0I4NDFCRDMxMUVFOTY1RkVGMzhDNEY5QUUwMi9TM0lxT21lVHZ6 TEp2UFV1VG5jdUNtODZZeGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzpQl+j5+BgdDTBnkhYmrZfNXczcXCwpQY9SfYB4m41bAvYxQhM80A YZbEMsNSCO2z4Z++If6vGku7fcndL2dj51UhsUm2vB31xiTp3ZcmmDjgL1N9Asfu t8mI8T/8yWMSCFRUPIp9hjwaEgW83MJyhandr22WoPLSv/g2e3NRnihiJgmVKvKY RS1CdKCLdFrHRg3LaPgTsD5IPNMJ/nLPhpA1jLQIsHOKQS1EcZqwaU41oLsMSEml RUDF4luF/hpE5gAMp/EO9Y1vSFFeMN2LFyvE38XeFm9KMjRw0x3vFl6ij2Sx6mLi 8DemBr23JVVqS6WKyzAn5G7ZjXlaIX+h -----END CERTIFICATE-----Generated at Sun Jul 20 18:51:27 2025 by rpki-client