$ rpki-client -vvf rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft File: 3zHPGFCQ4VSWXv_7xmS91yHYB18.mft (raw, json) Hash identifier: UCFGG1s7JmPEpikYc4omRMm+pWHk6NShqoq0VjfPN5g= Subject key identifier: CC:09:4F:CB:B8:1C:F7:9D:FF:6D:4A:41:2B:1E:83:F9:A6:03:E9:5C Authority key identifier: DF:31:CF:18:50:90:E1:54:96:5E:FF:FB:C6:64:BD:D7:21:D8:07:5F Certificate issuer: /CN=A9155ECF/serialNumber=DF31CF185090E154965EFFFBC664BDD721D8075F Certificate serial: 4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft Manifest number: 4C Signing time: Fri 19 Sep 2025 08:06:07 +0000 Manifest this update: Fri 19 Sep 2025 08:06:06 +0000 Manifest next update: Fri 26 Sep 2025 08:06:06 +0000 Files and hashes: 1: 3zHPGFCQ4VSWXv_7xmS91yHYB18.crl (hash: scnfmRQ7BYrp858H+p5vED5u7sxsz+ecQ2Z4kRquinA=) 2: 3C0150CC25F711F0BA6BC461C4F9AE02.roa (hash: 3nF4cvLj139/qC59LZaw3WXWjKCR+W8JrfwsLDT094o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.crl rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 08:06:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79 (0x4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155ECF, serialNumber=DF31CF185090E154965EFFFBC664BDD721D8075F Validity Not Before: Sep 19 08:06:06 2025 GMT Not After : Sep 26 08:06:06 2025 GMT Subject: CN=68cd0eee-be71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:44:b7:ae:70:6c:54:47:0b:2d:14:de:d0:49: 92:69:fa:b5:20:7d:57:3d:49:da:27:c4:0b:9e:16: c9:3c:7c:c2:9a:b1:e2:e5:f7:ad:64:02:5a:67:87: f8:7e:e3:32:27:c0:ae:58:e3:05:db:59:59:f0:d2: e6:53:10:f3:38:d7:c3:62:b4:28:82:f9:2e:ed:53: 70:e5:b1:ab:56:b0:a0:16:a4:07:11:0e:83:90:e2: f8:ef:cc:27:64:cf:70:43:e3:93:06:a3:76:e1:43: cb:40:d1:70:10:80:84:e8:98:36:03:ad:9a:a5:5f: 39:a4:69:03:51:4f:88:f3:88:e5:97:99:ed:da:6c: 1c:15:a9:63:7f:cf:33:a9:26:13:74:cb:e4:71:61: f4:3f:53:d6:c5:f3:33:52:52:cb:29:39:27:53:bc: 9b:2b:8e:32:fa:17:6e:68:ed:00:04:54:8e:ee:e3: 0b:49:c5:8b:a3:df:cd:06:5c:0c:d7:c8:51:5e:12: 96:35:65:e9:84:e9:da:33:10:eb:eb:72:b4:7a:ca: 23:75:f3:0b:ee:9f:30:a0:04:0e:47:ab:3a:3d:df: f2:27:6b:06:96:12:3d:45:8e:b8:b3:cf:d5:52:b7: 59:57:21:92:0e:d3:66:55:f1:18:9d:9e:fc:6a:ee: 5a:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:09:4F:CB:B8:1C:F7:9D:FF:6D:4A:41:2B:1E:83:F9:A6:03:E9:5C X509v3 Authority Key Identifier: keyid:DF:31:CF:18:50:90:E1:54:96:5E:FF:FB:C6:64:BD:D7:21:D8:07:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:82:d1:80:9d:83:bb:90:ea:d7:ed:18:a5:87:e9:69:6a:9b: 00:60:30:e8:d4:7c:e3:7d:c4:35:65:f3:d6:7c:42:ba:cc:a9: 3b:0b:07:8d:08:ad:70:10:6f:d0:5f:15:58:0d:24:38:cc:ca: ee:55:2f:37:5c:22:4a:a2:b5:59:43:fb:69:57:7c:06:f0:11: 63:7e:3e:e0:79:57:4e:8c:fc:74:a8:a1:90:83:32:fc:54:f1: 27:dc:a6:b1:cb:58:ba:68:62:8b:bf:22:cb:4c:68:49:05:99: 28:04:56:66:59:a8:37:64:83:25:ae:e9:d8:8e:c8:2d:1d:c3: 70:92:42:ad:de:5d:31:6b:15:70:c6:97:ec:56:e8:5f:67:01: 70:99:43:73:7b:e1:4e:4f:b2:9e:c8:47:a0:e1:c3:5b:2f:09: 6d:81:a0:ac:bd:a1:96:7c:71:f9:9e:9c:ab:28:48:28:b5:35: 7d:de:32:c6:e7:8e:92:39:15:92:8e:01:0a:ef:f9:04:b3:d0: b0:03:ac:3a:7e:5e:ba:b0:36:a1:e6:ce:15:e5:6f:50:5c:cc: 1d:07:59:6c:62:8f:da:4f:50:e3:c9:e1:0a:36:45:1f:68:fd: c5:59:34:cc:26:8e:eb:f7:a3:7c:8f:c4:a6:87:a6:58:8f:b8: 82:3c:96:87 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NUVDRjExMC8GA1UEBRMoREYzMUNGMTg1MDkwRTE1NDk2NUVGRkZCQzY2NEJERDcy MUQ4MDc1RjAeFw0yNTA5MTkwODA2MDZaFw0yNTA5MjYwODA2MDZaMBgxFjAUBgNV BAMTDTY4Y2QwZWVlLWJlNzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDhRLeucGxURwstFN7QSZJp+rUgfVc9SdonxAueFsk8fMKaseLl961kAlpnh/h+ 4zInwK5Y4wXbWVnw0uZTEPM418NitCiC+S7tU3DlsatWsKAWpAcRDoOQ4vjvzCdk z3BD45MGo3bhQ8tA0XAQgITomDYDrZqlXzmkaQNRT4jziOWXme3abBwVqWN/zzOp JhN0y+RxYfQ/U9bF8zNSUsspOSdTvJsrjjL6F25o7QAEVI7u4wtJxYuj380GXAzX yFFeEpY1ZemE6dozEOvrcrR6yiN18wvunzCgBA5Hqzo93/InawaWEj1Fjrizz9VS t1lXIZIO02ZV8Ridnvxq7lpvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUzAlPy7gc 953/bUpBKx6D+aYD6VwwHwYDVR0jBBgwFoAU3zHPGFCQ4VSWXv/7xmS91yHYB18w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1RUNGL0VGNkI5MDVDMjVG NTExRjA4QkVGREE0OUM0RjlBRTAyLzN6SFBHRkNRNFZTV1h2Xzd4bVM5MXlIWUIx OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM3pIUEdGQ1E0VlNXWHZfN3htUzkxeUhZQjE4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1 RUNGL0VGNkI5MDVDMjVGNTExRjA4QkVGREE0OUM0RjlBRTAyLzN6SFBHRkNRNFZT V1h2Xzd4bVM5MXlIWUIxOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGaC0YCdg7uQ6tftGKWH6WlqmwBgMOjUfON9xDVl89Z8QrrMqTsLB40I rXAQb9BfFVgNJDjMyu5VLzdcIkqitVlD+2lXfAbwEWN+PuB5V06M/HSooZCDMvxU 8SfcprHLWLpoYou/IstMaEkFmSgEVmZZqDdkgyWu6diOyC0dw3CSQq3eXTFrFXDG l+xW6F9nAXCZQ3N74U5Psp7IR6Dhw1svCW2BoKy9oZZ8cfmenKsoSCi1NX3eMsbn jpI5FZKOAQrv+QSz0LADrDp+XrqwNqHmzhXlb1BczB0HWWxij9pPUOPJ4Qo2RR9o /cVZNMwmjuv3o3yPxKaHpliPuII8loc= -----END CERTIFICATE-----Generated at Fri Sep 19 23:31:07 2025 by rpki-client