$ rpki-client -vvf rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft File: 3zHPGFCQ4VSWXv_7xmS91yHYB18.mft (raw, json) Hash identifier: SxuHe+gmE6tOvmY81yA/JZtwQZdmHFzNK1bQmFFEnbc= Subject key identifier: 4A:B9:51:5B:E8:F3:E2:EB:F1:FD:71:13:22:EB:8F:12:C6:E8:6D:25 Authority key identifier: DF:31:CF:18:50:90:E1:54:96:5E:FF:FB:C6:64:BD:D7:21:D8:07:5F Certificate issuer: /CN=A9155ECF/serialNumber=DF31CF185090E154965EFFFBC664BDD721D8075F Certificate serial: 35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft Manifest number: 32 Signing time: Thu 31 Jul 2025 08:18:47 +0000 Manifest this update: Thu 31 Jul 2025 08:18:46 +0000 Manifest next update: Thu 07 Aug 2025 08:18:46 +0000 Files and hashes: 1: 3zHPGFCQ4VSWXv_7xmS91yHYB18.crl (hash: YaiLJSimzDQCXxnSF/IqvJC98VGofmZkH8mxid+PCfc=) 2: 3C0150CC25F711F0BA6BC461C4F9AE02.roa (hash: 3nF4cvLj139/qC59LZaw3WXWjKCR+W8JrfwsLDT094o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.crl rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 07 Aug 2025 08:18:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53 (0x35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155ECF, serialNumber=DF31CF185090E154965EFFFBC664BDD721D8075F Validity Not Before: Jul 31 08:18:46 2025 GMT Not After : Aug 7 08:18:46 2025 GMT Subject: CN=688b26e7-68ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:61:91:c8:1a:fa:d1:66:65:c6:c6:77:1e:77: 85:e6:fe:40:6e:24:75:c5:fe:73:7d:98:1b:62:a3: d5:0e:0a:3f:16:d2:0e:77:cb:2a:81:1a:01:5e:5d: df:54:73:46:2a:77:30:02:3f:f1:c8:a4:b0:ae:f6: 52:5c:9a:cb:83:40:ec:70:16:79:6d:89:dc:39:7a: d8:41:a8:bd:65:79:eb:18:86:06:21:8a:04:1a:52: d4:bc:4c:ae:73:c7:8d:09:61:92:e8:d7:fa:31:08: 2c:56:40:23:ee:2f:41:09:42:3a:ae:31:f5:8c:16: 79:12:bc:78:f8:b8:fd:1d:4d:c6:3f:57:8c:2e:34: da:10:fa:39:f9:34:a5:09:17:03:0b:3d:f1:a0:2a: e6:2a:8a:a8:bf:8a:e2:56:3d:3e:51:2f:16:e9:97: 4e:af:5c:77:64:53:e3:97:10:ea:84:8e:38:93:77: 23:3f:42:8b:01:0d:22:98:2b:47:78:3e:1f:fc:0d: 58:42:80:10:8d:f8:33:0b:7c:53:79:de:d4:ca:03: 71:08:b0:6e:60:cd:17:72:60:ea:b5:44:ed:df:28: 2a:b2:17:9c:21:d6:c1:54:23:e3:b3:a4:b7:2e:22: d4:8b:11:ab:fa:9e:58:ee:c8:01:8e:d8:cd:c1:3f: ef:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:B9:51:5B:E8:F3:E2:EB:F1:FD:71:13:22:EB:8F:12:C6:E8:6D:25 X509v3 Authority Key Identifier: keyid:DF:31:CF:18:50:90:E1:54:96:5E:FF:FB:C6:64:BD:D7:21:D8:07:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:9f:33:b0:f9:cc:d1:3a:be:8a:6a:01:70:78:ba:64:5e:5d: 60:d1:6b:f1:e0:91:79:9c:78:3d:f2:eb:e7:00:16:69:29:57: 96:d3:52:b6:5d:22:55:94:4a:b3:a7:37:6d:61:00:55:47:98: c8:2c:3e:16:c3:01:0e:28:86:92:dc:1e:b3:68:a7:3e:19:63: cd:f0:b0:aa:64:b9:b4:cf:ce:2a:39:8e:16:29:66:8f:2e:62: 9e:22:9b:99:07:42:1a:1c:cc:42:07:de:a5:61:66:d2:80:e6: 22:68:95:22:5b:27:e4:8a:21:7d:1c:68:b6:27:64:64:06:49: 98:68:eb:43:b2:f0:99:2a:a6:8e:80:1d:6a:77:4d:83:fd:cb: 02:66:fe:4a:fa:ef:cd:5a:08:9a:7b:9d:f8:49:11:e9:ae:39: a3:d7:d2:96:68:ff:4b:bb:86:d0:a1:18:4c:e3:7c:8d:57:29: 17:57:a6:c9:96:70:ea:11:52:11:3d:83:d4:7c:3a:9a:51:8e: 99:79:bd:ea:14:95:6a:d3:11:60:fc:11:34:fe:b9:7b:db:0f: 76:e3:66:6a:15:44:44:45:d6:47:58:bc:28:1b:69:54:01:94: e1:c7:46:e6:b4:b8:74:7a:d6:93:88:79:6e:a9:54:a5:45:80: 44:ea:7b:5d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NUVDRjExMC8GA1UEBRMoREYzMUNGMTg1MDkwRTE1NDk2NUVGRkZCQzY2NEJERDcy MUQ4MDc1RjAeFw0yNTA3MzEwODE4NDZaFw0yNTA4MDcwODE4NDZaMBgxFjAUBgNV BAMTDTY4OGIyNmU3LTY4YWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDBYZHIGvrRZmXGxnced4Xm/kBuJHXF/nN9mBtio9UOCj8W0g53yyqBGgFeXd9U c0YqdzACP/HIpLCu9lJcmsuDQOxwFnltidw5ethBqL1leesYhgYhigQaUtS8TK5z x40JYZLo1/oxCCxWQCPuL0EJQjquMfWMFnkSvHj4uP0dTcY/V4wuNNoQ+jn5NKUJ FwMLPfGgKuYqiqi/iuJWPT5RLxbpl06vXHdkU+OXEOqEjjiTdyM/QosBDSKYK0d4 Ph/8DVhCgBCN+DMLfFN53tTKA3EIsG5gzRdyYOq1RO3fKCqyF5wh1sFUI+OzpLcu ItSLEav6nljuyAGO2M3BP+9RAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUSrlRW+jz 4uvx/XETIuuPEsbobSUwHwYDVR0jBBgwFoAU3zHPGFCQ4VSWXv/7xmS91yHYB18w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1RUNGL0VGNkI5MDVDMjVG NTExRjA4QkVGREE0OUM0RjlBRTAyLzN6SFBHRkNRNFZTV1h2Xzd4bVM5MXlIWUIx OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM3pIUEdGQ1E0VlNXWHZfN3htUzkxeUhZQjE4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1 RUNGL0VGNkI5MDVDMjVGNTExRjA4QkVGREE0OUM0RjlBRTAyLzN6SFBHRkNRNFZT V1h2Xzd4bVM5MXlIWUIxOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJGfM7D5zNE6vopqAXB4umReXWDRa/HgkXmceD3y6+cAFmkpV5bTUrZd IlWUSrOnN21hAFVHmMgsPhbDAQ4ohpLcHrNopz4ZY83wsKpkubTPzio5jhYpZo8u Yp4im5kHQhoczEIH3qVhZtKA5iJolSJbJ+SKIX0caLYnZGQGSZho60Oy8Jkqpo6A HWp3TYP9ywJm/kr6781aCJp7nfhJEemuOaPX0pZo/0u7htChGEzjfI1XKRdXpsmW cOoRUhE9g9R8OppRjpl5veoUlWrTEWD8ETT+uXvbD3bjZmoVRERF1kdYvCgbaVQB lOHHRua0uHR61pOIeW6pVKVFgETqe10= -----END CERTIFICATE-----Generated at Thu Jul 31 19:01:22 2025 by rpki-client