$ rpki-client -vvf rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/3ETtNb69CygywHT8LEaqsM1oL94.mft File: 3ETtNb69CygywHT8LEaqsM1oL94.mft (raw, json) Hash identifier: cC/fX72XKC2GWqAwUWTL24FOiKeGANjbwUCJuitlw2k= Subject key identifier: 17:5E:7E:7F:E8:63:E1:8D:17:ED:32:50:63:5D:FF:34:94:B6:6E:C7 Authority key identifier: DC:44:ED:35:BE:BD:0B:28:32:C0:74:FC:2C:46:AA:B0:CD:68:2F:DE Certificate issuer: /CN=A9143B09/serialNumber=DC44ED35BEBD0B2832C074FC2C46AAB0CD682FDE Certificate serial: 10C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3ETtNb69CygywHT8LEaqsM1oL94.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/3ETtNb69CygywHT8LEaqsM1oL94.mft Manifest number: 198D Signing time: Thu 18 Sep 2025 17:29:16 +0000 Manifest this update: Thu 18 Sep 2025 17:29:15 +0000 Manifest next update: Thu 25 Sep 2025 17:29:15 +0000 Files and hashes: 1: 3ETtNb69CygywHT8LEaqsM1oL94.crl (hash: 7Rbg1BAaIHFHeBKrzYKqxAewFO8008qyPnn5ASG3mtw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/3ETtNb69CygywHT8LEaqsM1oL94.crl rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/3ETtNb69CygywHT8LEaqsM1oL94.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3ETtNb69CygywHT8LEaqsM1oL94.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 17:29:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4289 (0x10c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143B09, serialNumber=DC44ED35BEBD0B2832C074FC2C46AAB0CD682FDE Validity Not Before: Sep 18 17:29:15 2025 GMT Not After : Sep 25 17:29:15 2025 GMT Subject: CN=68cc416b-0fef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:1f:00:4e:ab:dc:78:a0:a6:bc:00:fb:7a:10: 9d:b9:ba:06:2f:66:3a:44:ef:39:7c:47:47:0c:fa: f8:11:00:b5:17:bc:d9:19:30:2f:4f:57:d5:3b:47: 49:20:3d:75:5a:3a:ac:c0:0c:a1:7d:26:5a:d4:7f: 0e:c2:c1:d1:98:24:86:a0:2a:d6:5a:ed:41:50:15: 81:12:bf:d9:a6:e5:3d:e7:38:9f:ba:ab:d8:6e:3d: 5e:66:1d:af:ad:90:01:be:c0:81:6f:20:21:c4:af: 3e:92:98:e2:a7:eb:68:73:a2:2f:b3:12:0f:a9:b4: 6e:39:fc:02:73:a7:c0:22:b4:64:73:fb:e9:ae:90: b0:94:50:00:3b:cb:1e:aa:fe:2c:b4:2a:19:1a:cc: aa:fb:09:7f:b3:74:58:00:11:8d:33:a5:ea:e6:c9: 00:2e:91:06:c8:e8:33:fb:f7:c1:6c:11:e3:03:33: 44:92:28:81:cc:6b:b7:3a:8d:35:0a:00:3a:01:ab: ec:ca:42:40:3b:ea:cf:42:f2:f4:be:ed:7a:dd:e2: 32:03:0c:ca:03:0d:1c:1a:c3:2e:ad:2d:8e:45:2f: ec:55:30:1b:ff:e1:cf:e5:e9:10:9b:da:bc:f7:71: 14:45:bb:40:b0:b9:c2:e6:5d:19:70:27:40:f7:fa: 74:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:5E:7E:7F:E8:63:E1:8D:17:ED:32:50:63:5D:FF:34:94:B6:6E:C7 X509v3 Authority Key Identifier: keyid:DC:44:ED:35:BE:BD:0B:28:32:C0:74:FC:2C:46:AA:B0:CD:68:2F:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/3ETtNb69CygywHT8LEaqsM1oL94.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3ETtNb69CygywHT8LEaqsM1oL94.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/3ETtNb69CygywHT8LEaqsM1oL94.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:f7:3b:b2:2e:a7:31:a3:c5:8e:19:b1:c4:54:62:1a:4f:08: 83:de:6a:5f:1e:a8:62:f3:c1:da:08:84:d8:9f:76:fa:cc:fd: ad:d7:6d:e2:5b:e2:32:90:2f:f9:50:c7:bf:87:94:79:a3:cc: 71:ee:0c:4d:e7:0f:e4:c6:6e:ce:03:f2:ff:a0:f0:6c:e1:4e: c0:2c:36:30:60:44:e8:98:4c:eb:d5:36:d9:71:b2:51:94:ef: 41:37:08:a9:91:30:8d:d4:61:bd:8d:ba:e7:1d:6e:b2:dd:9f: 1d:c4:25:7e:3b:a2:69:98:cf:4d:07:fd:e7:46:8f:ab:8e:e3: 79:c5:a4:fb:3f:00:50:72:d1:9b:6c:f4:19:f2:ea:36:0f:bb: 22:f4:4d:ec:5c:1a:32:d3:07:78:72:97:ed:2f:d8:af:11:5d: 3c:9d:ec:a6:bb:54:00:85:c6:e9:c4:d5:1e:0a:70:03:ad:83: 95:e3:0e:69:bc:32:72:d2:a4:a5:e6:31:41:19:03:a8:7c:f2: b9:c8:d6:36:dc:51:a3:f2:be:32:88:8b:98:ce:bc:a9:4b:af: 54:1b:c3:b3:1f:83:07:e9:10:9b:73:35:45:e3:60:e7:1c:9f: 9e:8f:1c:df:55:ea:4d:bb:fa:ae:93:7f:b7:3f:ee:a7:48:70: 9f:8b:c8:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNCMDkxMTAvBgNVBAUTKERDNDRFRDM1QkVCRDBCMjgzMkMwNzRGQzJDNDZBQUIw Q0Q2ODJGREUwHhcNMjUwOTE4MTcyOTE1WhcNMjUwOTI1MTcyOTE1WjAYMRYwFAYD VQQDEw02OGNjNDE2Yi0wZmVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtx8ATqvceKCmvAD7ehCduboGL2Y6RO85fEdHDPr4EQC1F7zZGTAvT1fVO0dJ ID11WjqswAyhfSZa1H8OwsHRmCSGoCrWWu1BUBWBEr/ZpuU95zifuqvYbj1eZh2v rZABvsCBbyAhxK8+kpjip+toc6IvsxIPqbRuOfwCc6fAIrRkc/vprpCwlFAAO8se qv4stCoZGsyq+wl/s3RYABGNM6Xq5skALpEGyOgz+/fBbBHjAzNEkiiBzGu3Oo01 CgA6AavsykJAO+rPQvL0vu163eIyAwzKAw0cGsMurS2ORS/sVTAb/+HP5ekQm9q8 93EURbtAsLnC5l0ZcCdA9/p05wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBdefn/o Y+GNF+0yUGNd/zSUtm7HMB8GA1UdIwQYMBaAFNxE7TW+vQsoMsB0/CxGqrDNaC/e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0IwOS8zQjM2N0JDRTMz QjcxMUU5QUQwRjU4N0FDNEY5QUUwMi8zRVR0TmI2OUN5Z3l3SFQ4TEVhcXNNMW9M OTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNFVHROYjY5Q3lneXdIVDhMRWFxc00xb0w5NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0IwOS8zQjM2N0JDRTMzQjcxMUU5QUQwRjU4N0FDNEY5QUUwMi8zRVR0TmI2OUN5 Z3l3SFQ4TEVhcXNNMW9MOTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAT9zuyLqcxo8WOGbHEVGIaTwiD3mpfHqhi88HaCITYn3b6zP2t123i W+IykC/5UMe/h5R5o8xx7gxN5w/kxm7OA/L/oPBs4U7ALDYwYETomEzr1TbZcbJR lO9BNwipkTCN1GG9jbrnHW6y3Z8dxCV+O6JpmM9NB/3nRo+rjuN5xaT7PwBQctGb bPQZ8uo2D7si9E3sXBoy0wd4cpftL9ivEV08neymu1QAhcbpxNUeCnADrYOV4w5p vDJy0qSl5jFBGQOofPK5yNY23FGj8r4yiIuYzrypS69UG8OzH4MH6RCbczVF42Dn HJ+ejxzfVepNu/quk3+3P+6nSHCfi8gB -----END CERTIFICATE-----Generated at Fri Sep 19 00:59:23 2025 by rpki-client