$ rpki-client -vvf rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft File: 3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft (raw, json) Hash identifier: W+1oswGu6EkLCvFuo07fci59IvFMQLKysfZh1pMhTLE= Subject key identifier: 9A:F2:C0:1C:DE:CD:65:7F:61:6A:FD:35:98:93:20:E5:B7:D5:3B:51 Authority key identifier: DF:25:34:84:DC:E5:2C:41:37:CB:D1:C8:ED:44:D9:CB:25:57:F4:3F Certificate issuer: /CN=A9158568/serialNumber=DF253484DCE52C4137CBD1C8ED44D9CB2557F43F Certificate serial: 0C39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yU0hNzlLEE3y9HI7UTZyyVX9D8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft Manifest number: 0C1F Signing time: Mon 08 Sep 2025 18:45:16 +0000 Manifest this update: Mon 08 Sep 2025 18:45:15 +0000 Manifest next update: Mon 15 Sep 2025 18:45:15 +0000 Files and hashes: 1: 3yU0hNzlLEE3y9HI7UTZyyVX9D8.crl (hash: 7tkRGz3YMrERxZV55BpfhUZEyycKixiJIwzW3zwD/hg=) 2: 3A5A84F8CB7111EBA9EEF440C4F9AE02.roa (hash: LcxIbKxK3jutvAgu3ThkdTt7YT68VEQAWEq5z0WaOxY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.crl rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yU0hNzlLEE3y9HI7UTZyyVX9D8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 18:45:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3129 (0xc39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158568, serialNumber=DF253484DCE52C4137CBD1C8ED44D9CB2557F43F Validity Not Before: Sep 8 18:45:15 2025 GMT Not After : Sep 15 18:45:15 2025 GMT Subject: CN=68bf243c-91de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:79:e7:49:7f:b5:85:80:f0:ee:e1:19:1a:10: 6a:71:7a:5d:c0:17:d0:98:9d:f6:cc:89:20:1b:85: bf:2c:2b:f0:79:f0:cc:c2:38:7e:ab:1b:f9:55:ed: 58:06:fc:cd:db:8d:b7:a6:d7:ce:88:98:6f:63:f1: 78:04:24:f7:8c:76:72:be:86:a1:6a:8e:70:60:ec: 1c:55:80:ff:bd:51:29:9f:6d:c1:22:9f:50:23:da: 34:37:19:8a:ff:75:8d:f7:62:37:de:28:37:3e:9b: aa:6e:79:5f:64:3c:71:59:bd:0c:08:c8:43:1a:f3: 2a:a5:a8:19:cc:4e:ef:55:9c:32:28:3b:5e:d1:81: 27:f1:4b:fe:bf:3a:34:57:e3:59:31:a9:e7:a7:7d: 41:cf:3f:8c:b2:ab:1e:ac:84:11:d8:ce:ae:23:d9: 07:2b:73:a8:c1:ba:46:da:70:22:7e:9f:59:a4:06: eb:01:ca:e5:5c:e2:7a:8e:bb:10:cc:bf:57:f4:04: d1:d7:76:83:36:d9:c9:02:72:6d:42:a5:6e:3f:56: 79:70:41:b1:4a:b8:03:39:e6:eb:af:9d:47:9f:c8: 51:e9:58:0a:ac:0c:02:59:59:f1:95:cf:51:c4:04: 0a:c9:22:7b:3a:44:e4:d7:2c:c8:3c:5b:b1:c9:73: ec:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:F2:C0:1C:DE:CD:65:7F:61:6A:FD:35:98:93:20:E5:B7:D5:3B:51 X509v3 Authority Key Identifier: keyid:DF:25:34:84:DC:E5:2C:41:37:CB:D1:C8:ED:44:D9:CB:25:57:F4:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yU0hNzlLEE3y9HI7UTZyyVX9D8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:8f:1d:77:76:7c:f7:2a:c7:14:d8:6e:5d:fb:78:bf:8a:f6: 57:dd:3c:57:a2:60:d2:f3:61:25:ae:9a:0e:d9:57:5b:e5:4c: 50:0d:71:04:93:bd:38:ab:69:4e:4d:ce:7e:95:c2:ac:a3:77: f7:8b:c4:56:0a:de:45:95:ae:79:85:ca:63:13:30:29:a8:bc: f9:7a:4f:d4:24:62:aa:99:d8:15:1a:78:eb:d9:82:23:5d:c7: 40:d1:66:71:2b:28:94:22:19:53:5b:42:b0:34:48:e0:73:c4: d4:db:81:b4:b8:ee:e4:48:57:88:c1:45:36:21:d6:09:8d:b6: 18:66:19:5e:5c:a0:34:15:09:88:03:6a:ff:8d:9b:20:06:7f: 44:a0:99:bb:ee:16:7a:c2:1d:5d:89:60:0b:2e:4f:63:93:75: 16:0b:16:8c:62:d8:f4:37:53:c6:b4:79:b0:92:e8:a8:f2:ac: 44:05:9b:a1:33:3b:5c:48:ea:bf:28:63:5c:6e:f0:74:ba:00: 19:7f:37:80:69:00:4a:8f:ae:e0:25:db:c4:82:66:03:01:47: dd:ae:ec:d5:d0:a2:e4:53:76:b1:e3:3e:a8:81:9c:29:c6:41: ef:a0:52:08:f2:48:89:f2:97:f0:76:15:d1:19:bd:8f:ef:34: 31:5a:66:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDDkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg1NjgxMTAvBgNVBAUTKERGMjUzNDg0RENFNTJDNDEzN0NCRDFDOEVENDREOUNC MjU1N0Y0M0YwHhcNMjUwOTA4MTg0NTE1WhcNMjUwOTE1MTg0NTE1WjAYMRYwFAYD VQQDEw02OGJmMjQzYy05MWRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlHnnSX+1hYDw7uEZGhBqcXpdwBfQmJ32zIkgG4W/LCvwefDMwjh+qxv5Ve1Y BvzN2423ptfOiJhvY/F4BCT3jHZyvoahao5wYOwcVYD/vVEpn23BIp9QI9o0NxmK /3WN92I33ig3PpuqbnlfZDxxWb0MCMhDGvMqpagZzE7vVZwyKDte0YEn8Uv+vzo0 V+NZMannp31Bzz+MsqserIQR2M6uI9kHK3OowbpG2nAifp9ZpAbrAcrlXOJ6jrsQ zL9X9ATR13aDNtnJAnJtQqVuP1Z5cEGxSrgDOebrr51Hn8hR6VgKrAwCWVnxlc9R xAQKySJ7OkTk1yzIPFuxyXPsGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJrywBze zWV/YWr9NZiTIOW31TtRMB8GA1UdIwQYMBaAFN8lNITc5SxBN8vRyO1E2cslV/Q/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODU2OC9EMzEzMDY3NjE4 NTcxMUVBOTg2MzQxNUVDNEY5QUUwMi8zeVUwaE56bExFRTN5OUhJN1VUWnl5Vlg5 RDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzN5VTBoTnpsTEVFM3k5SEk3VVRaeXlWWDlEOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODU2OC9EMzEzMDY3NjE4NTcxMUVBOTg2MzQxNUVDNEY5QUUwMi8zeVUwaE56bExF RTN5OUhJN1VUWnl5Vlg5RDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfjx13dnz3KscU2G5d+3i/ivZX3TxXomDS82ElrpoO2Vdb5UxQDXEE k704q2lOTc5+lcKso3f3i8RWCt5Fla55hcpjEzApqLz5ek/UJGKqmdgVGnjr2YIj XcdA0WZxKyiUIhlTW0KwNEjgc8TU24G0uO7kSFeIwUU2IdYJjbYYZhleXKA0FQmI A2r/jZsgBn9EoJm77hZ6wh1diWALLk9jk3UWCxaMYtj0N1PGtHmwkuio8qxEBZuh MztcSOq/KGNcbvB0ugAZfzeAaQBKj67gJdvEgmYDAUfdruzV0KLkU3ax4z6ogZwp xkHvoFII8kiJ8pfwdhXRGb2P7zQxWmZj -----END CERTIFICATE-----Generated at Wed Sep 10 12:24:13 2025 by rpki-client