$ rpki-client -vvf rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft File: pm3QENok34rhcGvZCMukO9E4ljE.mft (raw, json) Hash identifier: mhR0hXiO4WtjX/OtEpi5zajj8j65UAzAp49Wof4F3EU= Subject key identifier: 61:98:90:29:9C:3C:BD:9C:40:26:96:14:34:FB:94:00:72:F0:F5:3A Authority key identifier: A6:6D:D0:10:DA:24:DF:8A:E1:70:6B:D9:08:CB:A4:3B:D1:38:96:31 Certificate issuer: /CN=A9171753/serialNumber=A66DD010DA24DF8AE1706BD908CBA43BD1389631 Certificate serial: 34C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft Manifest number: 34BB Signing time: Mon 08 Sep 2025 15:12:13 +0000 Manifest this update: Mon 08 Sep 2025 15:12:13 +0000 Manifest next update: Mon 15 Sep 2025 15:12:13 +0000 Files and hashes: 1: pm3QENok34rhcGvZCMukO9E4ljE.crl (hash: 2zUaK0ZB8UVsgBNtGCwc/zaONmh+dyQ535AsOvukSnc=) 2: DE670A60679D11EEAFBA0A5DC4F9AE02.roa (hash: zHkGq6W1DSD5ffW+BnhDs7qnRsRpvtxDIEM0SIuuDg4=) 3: C92F5F8077A211EDAF94D63EC4F9AE02.roa (hash: /yGsH3AYsghIUdTIUcXoSyBB3f9raZ59e9j2Pg64iUI=) 4: 41623A12778111ED8F236A62C4F9AE02.roa (hash: OYhGj+v27n+SqxvC/qZ2JFeWyJlSzi9WwyujTQsPl7E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.crl rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 15:12:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13510 (0x34c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171753, serialNumber=A66DD010DA24DF8AE1706BD908CBA43BD1389631 Validity Not Before: Sep 8 15:12:13 2025 GMT Not After : Sep 15 15:12:13 2025 GMT Subject: CN=68bef24d-d3bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:1b:45:75:de:fa:6f:c8:8e:1d:ee:14:ca:59: f6:db:4a:f5:3b:fc:95:b0:b6:94:68:07:3d:80:ce: 52:8a:1f:1a:e7:e0:e1:fd:41:ae:53:5b:78:31:c2: dd:99:d1:4b:0e:45:17:09:28:50:88:30:76:cc:a7: 6e:a2:3a:d6:80:2f:d0:98:ae:20:74:94:42:a8:85: a0:7b:e1:38:b4:f4:9b:82:44:55:10:72:68:2b:a3: 5f:93:b3:7e:67:f6:52:42:7b:11:c8:72:36:93:57: 42:df:37:60:23:a8:91:dd:41:a8:47:c9:0a:d6:97: 8c:6f:5c:9a:fd:0e:30:0e:5d:1e:cc:4e:4b:5a:59: 12:8d:72:1e:c7:c2:bf:c8:88:aa:7e:43:4c:ce:42: 09:2c:75:12:bc:ff:70:f7:ea:92:14:5d:71:7c:a8: e7:f8:3c:9b:17:e9:85:3a:98:78:01:b2:3b:b9:5b: 15:01:90:7c:15:dc:98:3c:13:f6:be:67:3c:41:0e: b9:38:fb:38:5c:cd:ef:15:43:e3:ee:78:46:3b:93: 13:be:93:11:4f:77:e8:b6:07:75:45:77:37:d8:3b: 94:bd:07:11:03:86:7f:8b:5a:04:79:93:07:40:0d: 39:19:bf:04:d6:92:00:c2:42:11:6b:21:3e:07:68: 7a:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:98:90:29:9C:3C:BD:9C:40:26:96:14:34:FB:94:00:72:F0:F5:3A X509v3 Authority Key Identifier: keyid:A6:6D:D0:10:DA:24:DF:8A:E1:70:6B:D9:08:CB:A4:3B:D1:38:96:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:fc:9a:a3:d0:21:19:66:0b:fe:39:0b:c7:33:e9:68:da:2f: de:f6:9c:9b:a0:af:e5:52:ed:24:af:b1:9b:9e:a5:3e:e4:68: 81:0d:f1:4e:f7:02:66:7e:4f:7a:90:29:58:20:4c:27:1f:b1: 56:a6:5f:3a:5d:1d:d5:8c:ef:52:56:ec:ae:c6:12:dc:f9:bd: 75:2d:e6:07:eb:e9:d8:5b:2b:ce:5a:f0:ee:c3:a6:b1:e4:b1: 9b:63:67:fb:a6:77:da:45:a6:c7:62:77:e1:2e:a2:31:24:2c: 75:06:aa:15:98:a1:7c:3d:a5:18:fc:11:f2:2a:5a:bf:61:f1: 95:57:9b:90:63:17:ba:bc:1e:5a:de:44:86:98:95:52:66:1d: 92:1c:89:6d:ef:49:64:44:19:37:94:de:95:3a:d9:1c:6a:79: fd:35:45:a0:51:24:cb:fe:4c:42:19:4b:fe:1a:6b:f4:71:8b: b8:94:8c:23:32:0f:88:6e:2d:3c:1c:37:e9:e7:12:bb:01:55: 86:fe:f9:5a:86:d9:bf:d6:5b:a4:b3:9d:dd:d9:39:87:31:51: e5:86:6b:f9:20:85:dc:a0:38:97:b2:b2:cc:60:32:8f:0d:91: 0a:23:16:9f:6e:c0:1a:6a:9d:52:50:e4:bc:28:0a:b7:81:64: 43:2a:f7:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE3NTMxMTAvBgNVBAUTKEE2NkREMDEwREEyNERGOEFFMTcwNkJEOTA4Q0JBNDNC RDEzODk2MzEwHhcNMjUwOTA4MTUxMjEzWhcNMjUwOTE1MTUxMjEzWjAYMRYwFAYD VQQDEw02OGJlZjI0ZC1kM2JjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+RtFdd76b8iOHe4Uyln220r1O/yVsLaUaAc9gM5Sih8a5+Dh/UGuU1t4McLd mdFLDkUXCShQiDB2zKduojrWgC/QmK4gdJRCqIWge+E4tPSbgkRVEHJoK6Nfk7N+ Z/ZSQnsRyHI2k1dC3zdgI6iR3UGoR8kK1peMb1ya/Q4wDl0ezE5LWlkSjXIex8K/ yIiqfkNMzkIJLHUSvP9w9+qSFF1xfKjn+DybF+mFOph4AbI7uVsVAZB8FdyYPBP2 vmc8QQ65OPs4XM3vFUPj7nhGO5MTvpMRT3fotgd1RXc32DuUvQcRA4Z/i1oEeZMH QA05Gb8E1pIAwkIRayE+B2h6DQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGGYkCmc PL2cQCaWFDT7lABy8PU6MB8GA1UdIwQYMBaAFKZt0BDaJN+K4XBr2QjLpDvROJYx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTc1My84MDUxNDU5MDFE QTcxMUUyQUFBOTRBQTEwOEIwMkNEMi9wbTNRRU5vazM0cmhjR3ZaQ011a085RTRs akUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BtM1FFTm9rMzRyaGNHdlpDTXVrTzlFNGxqRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTc1My84MDUxNDU5MDFEQTcxMUUyQUFBOTRBQTEwOEIwMkNEMi9wbTNRRU5vazM0 cmhjR3ZaQ011a085RTRsakUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCq/Jqj0CEZZgv+OQvHM+lo2i/e9pyboK/lUu0kr7GbnqU+5GiBDfFO 9wJmfk96kClYIEwnH7FWpl86XR3VjO9SVuyuxhLc+b11LeYH6+nYWyvOWvDuw6ax 5LGbY2f7pnfaRabHYnfhLqIxJCx1BqoVmKF8PaUY/BHyKlq/YfGVV5uQYxe6vB5a 3kSGmJVSZh2SHIlt70lkRBk3lN6VOtkcann9NUWgUSTL/kxCGUv+Gmv0cYu4lIwj Mg+Ibi08HDfp5xK7AVWG/vlahtm/1luks53d2TmHMVHlhmv5IIXcoDiXsrLMYDKP DZEKIxafbsAaap1SUOS8KAq3gWRDKveC -----END CERTIFICATE-----Generated at Tue Sep 9 09:52:27 2025 by rpki-client