$ rpki-client -vvf rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft File: 3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft (raw, json) Hash identifier: tTCG3WA0O19B4JMm5k4U+24nivvEIHf9jiVaTgUe3i8= Subject key identifier: D7:45:1C:05:CF:CA:35:8A:7B:4B:C6:1A:A1:AD:47:36:3B:EE:28:1B Authority key identifier: DD:F8:84:91:1A:D3:F2:8C:C9:D9:6A:8C:24:A9:39:A6:5F:8B:25:76 Certificate issuer: /CN=A912BAAD/serialNumber=DDF884911AD3F28CC9D96A8C24A939A65F8B2576 Certificate serial: 0C35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft Manifest number: 0C26 Signing time: Thu 18 Sep 2025 18:54:19 +0000 Manifest this update: Thu 18 Sep 2025 18:54:19 +0000 Manifest next update: Thu 25 Sep 2025 18:54:19 +0000 Files and hashes: 1: 3fiEkRrT8ozJ2WqMJKk5pl-LJXY.crl (hash: GtImI2usJWy7cKylkQWj8O10PI0eemeIu+bZQl8pD7c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.crl rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 18:54:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3125 (0xc35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BAAD, serialNumber=DDF884911AD3F28CC9D96A8C24A939A65F8B2576 Validity Not Before: Sep 18 18:54:19 2025 GMT Not After : Sep 25 18:54:19 2025 GMT Subject: CN=68cc555b-910a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:8b:c4:c2:ef:60:c3:16:ed:f1:83:c3:8d:3d: 46:4e:21:40:b6:37:59:9b:32:4c:64:94:97:4a:ef: 2b:ba:76:14:cd:f9:ec:7e:42:0d:b6:83:eb:3d:ca: b6:b1:9e:15:06:0c:93:41:9c:b3:87:0d:1c:1c:0c: d2:6b:8e:c7:1e:f1:64:87:21:b0:af:8e:06:07:d3: 8b:b2:7d:af:a8:f1:d4:58:df:7c:bd:dc:1f:90:6d: 59:d3:1b:ec:7d:58:11:64:13:ee:d2:0c:10:24:ba: f1:59:0f:ab:2a:89:cf:ff:0a:0d:27:2d:d8:b8:bd: 57:e2:e0:56:dc:84:64:3c:92:83:4d:09:dc:fc:8c: 7e:af:6e:21:7c:ab:d3:c9:73:d0:49:77:20:36:8a: 5d:ab:68:dd:ff:24:16:12:a1:57:51:6e:cc:8c:d3: 16:5f:f0:97:16:58:23:ac:81:09:67:09:bf:fa:51: 45:0e:1c:61:94:8a:87:ed:a3:c1:5b:e9:b6:47:04: 75:7a:de:fa:e3:b3:f4:1c:f6:2c:2f:13:d4:3d:be: 21:f0:d8:40:ec:1d:d4:1c:3b:af:8f:69:21:9f:54: 31:5e:fb:01:25:eb:c4:a3:18:7e:99:c5:05:50:65: a4:0e:77:c6:f0:8b:a3:6b:bf:76:75:eb:34:38:3d: 20:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:45:1C:05:CF:CA:35:8A:7B:4B:C6:1A:A1:AD:47:36:3B:EE:28:1B X509v3 Authority Key Identifier: keyid:DD:F8:84:91:1A:D3:F2:8C:C9:D9:6A:8C:24:A9:39:A6:5F:8B:25:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:37:19:f0:19:db:93:6d:33:a6:c3:64:cf:02:cc:b6:60:a2: 6b:f8:87:10:df:ee:bf:e6:4f:ed:ba:ab:84:3c:07:b5:00:35: c4:5a:1f:e1:ea:e7:5d:a1:72:71:32:e3:31:fd:c5:f5:51:dc: 79:12:81:58:2a:b2:e4:23:fb:30:a1:00:0d:5a:25:48:df:de: a6:16:fa:b7:4c:65:02:c0:5a:61:b6:cc:1c:0a:8f:2c:f1:22: 8d:8e:67:33:6d:44:55:ae:60:a6:87:bf:5c:13:f5:4a:34:42: 05:6b:e6:0c:9d:e9:a4:be:a7:45:61:d3:1b:d0:f2:40:4d:86: 6d:5f:e2:02:21:10:4a:7c:10:6c:8b:78:a1:95:f2:3a:cf:c3: fa:cf:e7:ba:8d:f7:0d:03:7f:80:d8:db:93:38:aa:e4:97:b2: 5a:5a:87:4a:63:25:4d:50:40:d4:6d:78:d0:e4:b4:21:9a:ef: 5b:ce:cb:65:a4:08:a8:a5:f7:0d:a4:81:f5:a6:95:8a:f1:8b: 14:d7:13:21:8d:ff:38:29:68:88:15:69:3c:a9:11:3f:03:02: 88:27:77:0f:94:e3:14:20:5d:d3:9b:9d:ec:02:48:f7:d5:53: 7c:ee:df:26:d3:e5:8d:b9:85:f3:02:0e:b2:ee:98:6f:21:26: 66:13:fa:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDDUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJBQUQxMTAvBgNVBAUTKERERjg4NDkxMUFEM0YyOENDOUQ5NkE4QzI0QTkzOUE2 NUY4QjI1NzYwHhcNMjUwOTE4MTg1NDE5WhcNMjUwOTI1MTg1NDE5WjAYMRYwFAYD VQQDEw02OGNjNTU1Yi05MTBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvIvEwu9gwxbt8YPDjT1GTiFAtjdZmzJMZJSXSu8runYUzfnsfkINtoPrPcq2 sZ4VBgyTQZyzhw0cHAzSa47HHvFkhyGwr44GB9OLsn2vqPHUWN98vdwfkG1Z0xvs fVgRZBPu0gwQJLrxWQ+rKonP/woNJy3YuL1X4uBW3IRkPJKDTQnc/Ix+r24hfKvT yXPQSXcgNopdq2jd/yQWEqFXUW7MjNMWX/CXFlgjrIEJZwm/+lFFDhxhlIqH7aPB W+m2RwR1et7647P0HPYsLxPUPb4h8NhA7B3UHDuvj2khn1QxXvsBJevEoxh+mcUF UGWkDnfG8Iuja792des0OD0gRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNdFHAXP yjWKe0vGGqGtRzY77igbMB8GA1UdIwQYMBaAFN34hJEa0/KMydlqjCSpOaZfiyV2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkFBRC81MjFBRERDODE4 NDgxMUVBOTA3ODU2MkJDNEY5QUUwMi8zZmlFa1JyVDhvekoyV3FNSktrNXBsLUxK WFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNmaUVrUnJUOG96SjJXcU1KS2s1cGwtTEpYWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkFBRC81MjFBRERDODE4NDgxMUVBOTA3ODU2MkJDNEY5QUUwMi8zZmlFa1JyVDhv ekoyV3FNSktrNXBsLUxKWFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdNxnwGduTbTOmw2TPAsy2YKJr+IcQ3+6/5k/tuquEPAe1ADXEWh/h 6uddoXJxMuMx/cX1Udx5EoFYKrLkI/swoQANWiVI396mFvq3TGUCwFphtswcCo8s 8SKNjmczbURVrmCmh79cE/VKNEIFa+YMnemkvqdFYdMb0PJATYZtX+ICIRBKfBBs i3ihlfI6z8P6z+e6jfcNA3+A2NuTOKrkl7JaWodKYyVNUEDUbXjQ5LQhmu9bzstl pAiopfcNpIH1ppWK8YsU1xMhjf84KWiIFWk8qRE/AwKIJ3cPlOMUIF3Tm53sAkj3 1VN87t8m0+WNuYXzAg6y7phvISZmE/pV -----END CERTIFICATE-----Generated at Fri Sep 19 06:57:05 2025 by rpki-client