$ rpki-client -vvf rpki.apnic.net/member_repository/A913E36B/7C2C6240A09111EAA9427C44C4F9AE02/3604bKySNIOAxXSS2xjyvIScUoY.mft File: 3604bKySNIOAxXSS2xjyvIScUoY.mft (raw, json) Hash identifier: nDXqRtpZekeLhyGpvo2+NHub0oETjhtJHW8cdbAGQsU= Subject key identifier: 3B:DE:81:8A:56:C0:5C:E1:C1:73:75:7D:9D:54:6E:DA:A9:46:97:43 Authority key identifier: DF:AD:38:6C:AC:92:34:83:80:C5:74:92:DB:18:F2:BC:84:9C:52:86 Certificate issuer: /CN=A913E36B/serialNumber=DFAD386CAC92348380C57492DB18F2BC849C5286 Certificate serial: 0978 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3604bKySNIOAxXSS2xjyvIScUoY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E36B/7C2C6240A09111EAA9427C44C4F9AE02/3604bKySNIOAxXSS2xjyvIScUoY.mft Manifest number: 0964 Signing time: Mon 08 Sep 2025 20:10:38 +0000 Manifest this update: Mon 08 Sep 2025 20:10:38 +0000 Manifest next update: Mon 15 Sep 2025 20:10:38 +0000 Files and hashes: 1: 3604bKySNIOAxXSS2xjyvIScUoY.crl (hash: KrptBNudwHuCZgICWiIJawgcnkkdnz77vFJ4QkUxwII=) 2: F568EF1A7F1711F094D2F035C4F9AE02.roa (hash: zT0Sz7g9V+D+Ya+GE9O18/USSfPNOgS69nwUWk/3R4k=) 3: 114D130E7C1711F08928F812C4F9AE02.roa (hash: 5VT/qTphlo3G2dAivUiYOJrGPH7/45t2mej6OprgEHY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E36B/7C2C6240A09111EAA9427C44C4F9AE02/3604bKySNIOAxXSS2xjyvIScUoY.crl rsync://rpki.apnic.net/member_repository/A913E36B/7C2C6240A09111EAA9427C44C4F9AE02/3604bKySNIOAxXSS2xjyvIScUoY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3604bKySNIOAxXSS2xjyvIScUoY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 20:10:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2424 (0x978) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E36B, serialNumber=DFAD386CAC92348380C57492DB18F2BC849C5286 Validity Not Before: Sep 8 20:10:38 2025 GMT Not After : Sep 15 20:10:38 2025 GMT Subject: CN=68bf383e-e9bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:e5:2c:5e:81:95:d7:62:e1:62:a4:d6:1b:f5: 81:03:81:bc:66:1f:c1:d7:52:ca:2e:91:d0:a7:5b: 48:3f:a8:17:74:61:70:10:03:44:2c:34:46:ed:22: de:53:f3:eb:a4:be:de:0a:b5:2e:73:3e:0a:7a:2e: e5:0d:2b:8f:be:14:ff:a2:81:0e:90:61:78:3c:16: af:af:13:3e:7f:d1:3d:f4:75:45:9e:89:32:e7:e6: 77:80:6a:99:cc:4f:98:1f:cb:cf:05:b2:89:f1:da: bc:97:a6:ad:39:61:0b:08:63:20:14:85:95:f8:46: 1c:af:f1:0a:a5:aa:5c:d5:33:ae:74:19:df:6c:11: 41:dd:db:34:68:44:fc:1f:ae:42:dc:12:bf:3e:3c: b7:49:34:d7:fb:99:cf:bf:b9:26:9f:34:61:9f:d9: 46:93:9a:76:5b:3c:07:9c:c0:35:8c:bf:ec:66:ee: 88:e4:d1:e9:f2:7a:0d:9d:9f:4b:ad:78:04:c1:72: 64:5a:5d:b3:32:9c:fb:81:9e:4f:4a:d7:d8:ca:4d: 52:97:5d:86:5b:a5:94:7d:18:e9:36:75:98:56:c5: b1:ea:c7:c6:3f:3c:5a:3c:0c:27:f3:26:93:c9:90: 3e:ff:88:ac:f1:c3:53:83:e2:12:d1:c2:be:b5:a1: cc:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:DE:81:8A:56:C0:5C:E1:C1:73:75:7D:9D:54:6E:DA:A9:46:97:43 X509v3 Authority Key Identifier: keyid:DF:AD:38:6C:AC:92:34:83:80:C5:74:92:DB:18:F2:BC:84:9C:52:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E36B/7C2C6240A09111EAA9427C44C4F9AE02/3604bKySNIOAxXSS2xjyvIScUoY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3604bKySNIOAxXSS2xjyvIScUoY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E36B/7C2C6240A09111EAA9427C44C4F9AE02/3604bKySNIOAxXSS2xjyvIScUoY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:39:37:4b:e4:51:93:75:b4:7c:1d:13:97:5e:87:c5:59:03: aa:de:9d:38:6a:fa:48:32:73:b1:74:2a:d1:ea:26:5d:88:8a: 87:6a:00:82:af:d2:c2:62:15:b2:ad:86:da:1a:27:25:c5:9f: 67:29:79:00:a7:dc:da:58:bc:5c:49:f8:ff:1f:6a:60:18:00: ce:4b:ba:7f:0d:88:19:d6:a5:a7:e6:94:83:02:a0:00:21:93: 4b:14:1a:57:2a:67:08:3e:a3:a3:85:9f:8a:e8:5f:5f:23:67: fb:66:b3:46:ea:65:33:2c:ea:b2:0c:be:e5:58:69:69:c1:00: 4c:d0:c6:f3:d9:f7:67:97:75:07:24:be:1c:49:cc:77:70:fc: 23:01:27:94:72:85:e8:74:3d:cc:b5:c3:95:10:44:42:60:2b: c1:15:3f:b0:52:15:37:ef:0c:a8:ce:c3:4c:7e:ef:28:2b:ed: 25:ad:25:5c:3b:3f:88:8e:7a:9f:21:4b:3a:f1:a2:e6:92:b2: 64:17:6c:65:7c:12:23:d8:04:35:e7:c4:7e:d4:ba:09:11:20: 18:7d:b6:b1:e2:5f:da:d8:ff:43:34:e1:90:1c:94:f8:1c:c6: 84:0e:cc:f3:86:34:98:31:04:9b:c7:52:d5:ef:f2:d7:8f:3d: 9a:d7:dc:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCXgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0UzNkIxMTAvBgNVBAUTKERGQUQzODZDQUM5MjM0ODM4MEM1NzQ5MkRCMThGMkJD ODQ5QzUyODYwHhcNMjUwOTA4MjAxMDM4WhcNMjUwOTE1MjAxMDM4WjAYMRYwFAYD VQQDEw02OGJmMzgzZS1lOWJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnOUsXoGV12LhYqTWG/WBA4G8Zh/B11LKLpHQp1tIP6gXdGFwEANELDRG7SLe U/PrpL7eCrUucz4Kei7lDSuPvhT/ooEOkGF4PBavrxM+f9E99HVFnoky5+Z3gGqZ zE+YH8vPBbKJ8dq8l6atOWELCGMgFIWV+EYcr/EKpapc1TOudBnfbBFB3ds0aET8 H65C3BK/Pjy3STTX+5nPv7kmnzRhn9lGk5p2WzwHnMA1jL/sZu6I5NHp8noNnZ9L rXgEwXJkWl2zMpz7gZ5PStfYyk1Sl12GW6WUfRjpNnWYVsWx6sfGPzxaPAwn8yaT yZA+/4is8cNTg+IS0cK+taHMHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDvegYpW wFzhwXN1fZ1UbtqpRpdDMB8GA1UdIwQYMBaAFN+tOGyskjSDgMV0ktsY8ryEnFKG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTM2Qi83QzJDNjI0MEEw OTExMUVBQTk0MjdDNDRDNEY5QUUwMi8zNjA0Ykt5U05JT0F4WFNTMnhqeXZJU2NV b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM2MDRiS3lTTklPQXhYU1MyeGp5dklTY1VvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTM2Qi83QzJDNjI0MEEwOTExMUVBQTk0MjdDNDRDNEY5QUUwMi8zNjA0Ykt5U05J T0F4WFNTMnhqeXZJU2NVb1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVOTdL5FGTdbR8HROXXofFWQOq3p04avpIMnOxdCrR6iZdiIqHagCC r9LCYhWyrYbaGiclxZ9nKXkAp9zaWLxcSfj/H2pgGADOS7p/DYgZ1qWn5pSDAqAA IZNLFBpXKmcIPqOjhZ+K6F9fI2f7ZrNG6mUzLOqyDL7lWGlpwQBM0Mbz2fdnl3UH JL4cScx3cPwjASeUcoXodD3MtcOVEERCYCvBFT+wUhU37wyozsNMfu8oK+0lrSVc Oz+IjnqfIUs68aLmkrJkF2xlfBIj2AQ158R+1LoJESAYfbax4l/a2P9DNOGQHJT4 HMaEDszzhjSYMQSbx1LV7/LXjz2a19y0 -----END CERTIFICATE-----Generated at Tue Sep 9 09:20:22 2025 by rpki-client