$ rpki-client -vvf rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft File: 3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft (raw, json) Hash identifier: JFJ6JXamSwUmCCmhvX5eRriO2dOTUWEIQwhMw9H8z7w= Subject key identifier: 08:6A:97:5B:CA:D4:55:5F:84:5B:58:9C:0A:2D:10:43:DD:A3:F4:36 Authority key identifier: DC:62:20:08:A8:A1:AD:42:BE:2A:25:49:43:49:1A:FA:A8:45:49:A5 Certificate issuer: /CN=A911035A/serialNumber=DC622008A8A1AD42BE2A254943491AFAA84549A5 Certificate serial: 0A2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft Manifest number: 0A1B Signing time: Sat 06 Sep 2025 20:00:17 +0000 Manifest this update: Sat 06 Sep 2025 20:00:16 +0000 Manifest next update: Sat 13 Sep 2025 20:00:16 +0000 Files and hashes: 1: 3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl (hash: vaHu/oK0RdNhxJcO100g5nCNs7ulS+UyxroXCa4pSRY=) 2: 5B57754A026F11EDBE22EF64C4F9AE02.roa (hash: ihAIG4OoPwthC+h4NtPo2Q0pwt/cIHMn8RF1lo5PumY=) 3: 5A472FBA026F11EDBE22EF64C4F9AE02.roa (hash: vIMBF1bBAJdpKyG7NryScSCm1A4V3l1tKWGtKbJDwKU=) 4: C1B3DE082BBE11EF809E1831C4F9AE02.roa (hash: lx///Z7Da35SlsWklk353QqekT8yYXigifaMtdugzeQ=) 5: E1935B7A36DD11EFB1E53717C4F9AE02.roa (hash: H0HQ+QBIGliAyxj5H0/8pAJ49x4cCntNY4DcwIy3B3Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 20:00:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2604 (0xa2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911035A, serialNumber=DC622008A8A1AD42BE2A254943491AFAA84549A5 Validity Not Before: Sep 6 20:00:16 2025 GMT Not After : Sep 13 20:00:16 2025 GMT Subject: CN=68bc92d1-5b99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:a4:80:2e:bf:0f:33:4a:83:28:fb:7f:20:4c: 8e:33:9f:d1:17:24:a6:ee:93:d9:78:27:8d:cd:f5: fb:36:74:79:f6:c1:cc:d5:de:98:eb:d7:94:bf:f8: 1a:8a:37:06:f7:68:87:d1:8c:4f:ba:35:69:f7:2e: e1:5c:9a:71:4c:69:e2:9a:34:b5:75:64:b9:37:85: 64:92:b6:ea:3b:c4:83:93:37:7f:7d:46:05:5a:46: eb:a1:13:e5:c8:78:73:74:3e:6e:a1:e9:a5:0b:67: 3e:4f:91:3d:c5:17:0e:15:8f:e0:e9:11:56:0c:7e: 61:16:5c:4a:cb:d4:3e:fa:6f:05:17:16:9e:2a:a8: f8:90:c9:1a:0e:fc:cb:84:86:c7:b1:0c:a1:03:9b: 29:22:e5:da:3d:81:92:86:59:ea:f7:02:00:44:cf: 04:95:80:78:d2:be:25:b0:74:87:f1:d5:7f:42:69: 5d:4d:f5:17:0e:09:43:78:89:9a:43:bc:61:35:7b: 8b:f3:b9:6d:0e:a3:f6:6b:2c:fb:bb:f9:65:e8:db: 59:e9:5f:2b:9e:87:b3:61:55:2d:a7:82:2f:15:f1: 9a:09:b2:b7:a2:99:9b:27:87:53:3d:13:4f:8a:3c: 69:0d:25:0d:0f:59:5b:f1:0e:76:5c:dd:8b:68:9a: 9c:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:6A:97:5B:CA:D4:55:5F:84:5B:58:9C:0A:2D:10:43:DD:A3:F4:36 X509v3 Authority Key Identifier: keyid:DC:62:20:08:A8:A1:AD:42:BE:2A:25:49:43:49:1A:FA:A8:45:49:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:3c:be:16:45:3f:ad:39:96:f4:21:56:8d:e1:53:27:3c:42: ce:b5:4a:76:80:ef:d2:4d:2e:43:ff:d5:c3:01:5d:b0:99:54: d9:00:fd:c0:9e:4c:b4:59:49:c2:14:9c:83:f9:64:00:e8:4b: f2:fb:35:82:93:01:2a:f4:b6:d7:02:99:2a:4b:e9:76:fa:04: 28:a2:c2:8b:54:60:ad:d1:b0:7b:ab:69:ae:3e:32:de:cb:30: 42:3c:28:a8:fc:1b:25:d4:6f:4c:42:c3:b4:b3:8e:b7:9e:49: 30:96:e2:03:a4:c9:82:19:6a:a6:08:9c:9d:0d:e4:11:1d:c7: be:3d:5d:b1:8c:63:c0:4e:26:9e:e8:09:05:c5:06:f7:c5:ba: d2:ee:83:a1:dd:a9:35:97:a1:7b:54:95:c6:3d:b4:6e:63:2a: aa:36:48:ed:95:70:9a:95:40:84:8f:89:bf:7d:5e:e0:48:73: 2a:c2:c0:7c:31:d2:12:e9:4d:48:8d:11:55:4a:7c:be:0d:4f: 59:d2:50:2f:de:b8:17:33:9b:5e:e6:86:d8:fa:c7:fc:21:11: 28:c8:1a:d2:6d:69:1a:17:52:e2:41:08:fc:01:e1:59:56:41: 96:38:0c:b8:c9:32:80:7d:00:7b:d2:6d:d0:30:2c:28:db:80: 73:52:5b:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCiwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTAzNUExMTAvBgNVBAUTKERDNjIyMDA4QThBMUFENDJCRTJBMjU0OTQzNDkxQUZB QTg0NTQ5QTUwHhcNMjUwOTA2MjAwMDE2WhcNMjUwOTEzMjAwMDE2WjAYMRYwFAYD VQQDEw02OGJjOTJkMS01Yjk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqaSALr8PM0qDKPt/IEyOM5/RFySm7pPZeCeNzfX7NnR59sHM1d6Y69eUv/ga ijcG92iH0YxPujVp9y7hXJpxTGnimjS1dWS5N4VkkrbqO8SDkzd/fUYFWkbroRPl yHhzdD5uoemlC2c+T5E9xRcOFY/g6RFWDH5hFlxKy9Q++m8FFxaeKqj4kMkaDvzL hIbHsQyhA5spIuXaPYGShlnq9wIARM8ElYB40r4lsHSH8dV/QmldTfUXDglDeIma Q7xhNXuL87ltDqP2ayz7u/ll6NtZ6V8rnoezYVUtp4IvFfGaCbK3opmbJ4dTPRNP ijxpDSUND1lb8Q52XN2LaJqcdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAhql1vK 1FVfhFtYnAotEEPdo/Q2MB8GA1UdIwQYMBaAFNxiIAiooa1CviolSUNJGvqoRUml MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDM1QS8zQzYwOUI0NDdD NjYxMUVBODA4OUYzNTFDNEY5QUUwMi8zR0lnQ0tpaHJVSy1LaVZKUTBrYS1xaEZT YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNHSWdDS2loclVLLUtpVkpRMGthLXFoRlNhVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDM1QS8zQzYwOUI0NDdDNjYxMUVBODA4OUYzNTFDNEY5QUUwMi8zR0lnQ0tpaHJV Sy1LaVZKUTBrYS1xaEZTYVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUPL4WRT+tOZb0IVaN4VMnPELOtUp2gO/STS5D/9XDAV2wmVTZAP3A nky0WUnCFJyD+WQA6Evy+zWCkwEq9LbXApkqS+l2+gQoosKLVGCt0bB7q2muPjLe yzBCPCio/Bsl1G9MQsO0s463nkkwluIDpMmCGWqmCJydDeQRHce+PV2xjGPATiae 6AkFxQb3xbrS7oOh3ak1l6F7VJXGPbRuYyqqNkjtlXCalUCEj4m/fV7gSHMqwsB8 MdIS6U1IjRFVSny+DU9Z0lAv3rgXM5te5obY+sf8IREoyBrSbWkaF1LiQQj8AeFZ VkGWOAy4yTKAfQB70m3QMCwo24BzUlts -----END CERTIFICATE-----Generated at Mon Sep 8 14:07:14 2025 by rpki-client