$ rpki-client -vvf rpki.apnic.net/member_repository/A9189311/13AFF6F6B24D11E4B67F185FC4F9AE02/e3dUqC3QY6R-jsNdFj72skSNEts.mft File: e3dUqC3QY6R-jsNdFj72skSNEts.mft (raw, json) Hash identifier: BnbK7Hcf9pq0Q3zqjsVK+dNgUDmcLJxR/VTxp/7t1yc= Subject key identifier: 04:37:78:20:1E:3C:D9:F2:78:A3:90:40:DF:D8:A4:B9:46:96:E5:EF Authority key identifier: 7B:77:54:A8:2D:D0:63:A4:7E:8E:C3:5D:16:3E:F6:B2:44:8D:12:DB Certificate issuer: /CN=A9189311/serialNumber=7B7754A82DD063A47E8EC35D163EF6B2448D12DB Certificate serial: 27B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e3dUqC3QY6R-jsNdFj72skSNEts.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189311/13AFF6F6B24D11E4B67F185FC4F9AE02/e3dUqC3QY6R-jsNdFj72skSNEts.mft Manifest number: 27A3 Signing time: Wed 20 Aug 2025 15:41:12 +0000 Manifest this update: Wed 20 Aug 2025 15:41:11 +0000 Manifest next update: Wed 27 Aug 2025 15:41:11 +0000 Files and hashes: 1: e3dUqC3QY6R-jsNdFj72skSNEts.crl (hash: 1pPEgqQ7H4PYXh05v0Yu6G5STMwlQgbdk0N5GkCsQ8g=) 2: F5BBEA5AF6A611E7B40C7427C4F9AE02.roa (hash: EeUXim59YsvGI7qIffiR5WtPWhD5kVEeYtKpW1EoALs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189311/13AFF6F6B24D11E4B67F185FC4F9AE02/e3dUqC3QY6R-jsNdFj72skSNEts.crl rsync://rpki.apnic.net/member_repository/A9189311/13AFF6F6B24D11E4B67F185FC4F9AE02/e3dUqC3QY6R-jsNdFj72skSNEts.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e3dUqC3QY6R-jsNdFj72skSNEts.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 15:41:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10166 (0x27b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189311, serialNumber=7B7754A82DD063A47E8EC35D163EF6B2448D12DB Validity Not Before: Aug 20 15:41:11 2025 GMT Not After : Aug 27 15:41:11 2025 GMT Subject: CN=68a5ec98-6967 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:c0:a8:3e:6c:62:b2:ec:63:c1:27:f4:c9:eb: 4a:a9:51:19:4e:e9:bd:af:39:b5:36:75:58:4e:ba: 2d:67:d1:81:ee:d3:be:a2:0f:c7:2a:49:10:8f:e9: 89:dc:74:73:d3:6c:d1:18:9d:29:63:1b:97:cc:02: 18:b8:d5:c3:52:71:0d:4d:19:f8:74:9b:29:ba:6f: d7:19:ae:b5:a9:f9:5c:34:99:89:6f:f1:19:4b:5a: 53:de:3e:5d:f1:3d:7d:e4:a0:f8:8b:be:98:d9:e7: a5:ae:0b:07:73:95:23:91:24:43:3e:b7:62:1a:d0: 84:86:01:54:79:e2:69:ce:33:6f:36:0d:dc:38:d1: 13:90:7f:97:07:89:ae:a5:4e:36:ba:07:8d:57:e7: ff:57:a6:3c:68:89:00:f6:ee:0e:1c:bb:64:89:df: dd:db:fa:76:67:18:77:fe:34:13:82:ff:0e:57:29: d5:95:49:7a:58:b6:15:7f:d7:35:56:02:57:18:4e: bb:fc:52:8f:be:0b:ba:ad:57:f4:62:33:f5:cb:ee: 3d:cf:68:ce:e2:c4:65:2b:6b:bb:ea:44:f3:09:36: 08:66:dc:66:0b:e1:fb:70:ae:69:89:7e:84:2a:83: ff:45:bb:1a:26:ce:85:af:34:8c:e4:bf:6a:d9:1e: 73:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:37:78:20:1E:3C:D9:F2:78:A3:90:40:DF:D8:A4:B9:46:96:E5:EF X509v3 Authority Key Identifier: keyid:7B:77:54:A8:2D:D0:63:A4:7E:8E:C3:5D:16:3E:F6:B2:44:8D:12:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189311/13AFF6F6B24D11E4B67F185FC4F9AE02/e3dUqC3QY6R-jsNdFj72skSNEts.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e3dUqC3QY6R-jsNdFj72skSNEts.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189311/13AFF6F6B24D11E4B67F185FC4F9AE02/e3dUqC3QY6R-jsNdFj72skSNEts.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:33:33:6f:0a:c4:84:91:01:07:a3:5a:8b:cb:62:7d:fd:d4: e7:13:b2:cf:17:bc:42:95:f0:9f:4d:a7:07:22:80:c7:6f:5b: f6:49:6f:c5:72:e5:75:c2:3b:c3:40:fa:c0:d2:a8:d7:8d:5c: 92:9b:5d:ec:b1:28:82:c0:48:a4:04:95:b0:0b:c5:53:32:e5: a7:26:26:4a:04:28:b0:db:3f:f7:02:64:9d:2f:f5:01:b3:49: bc:4f:49:4c:14:74:61:96:3e:54:97:b3:63:7a:67:93:2b:cb: 94:44:3f:73:60:75:d0:d5:cb:a2:c1:08:03:8a:ba:2b:42:e1: 62:f6:b1:da:86:e1:5e:09:46:1f:b2:13:3f:0f:0a:2d:6c:80: 68:65:27:26:64:6d:ca:73:0b:af:04:91:ec:b8:b8:7a:f4:68: 97:8f:51:88:00:f3:f6:74:17:9e:f7:a6:c3:53:36:4e:0f:ea: 16:4f:e1:3e:75:a2:cf:f0:3c:0a:47:3c:c2:99:c9:c7:f3:b1: 70:83:e7:fb:5c:e3:d1:ea:f9:b7:d8:2c:7f:f6:0c:a6:de:b4: 70:cc:2c:b5:0d:89:ce:aa:8c:60:67:c6:f9:8f:f8:75:75:a3: ce:51:e7:36:ae:67:e1:80:b8:38:ef:cd:e0:0e:41:d8:98:bd: fa:47:b7:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJ7YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkzMTExMTAvBgNVBAUTKDdCNzc1NEE4MkREMDYzQTQ3RThFQzM1RDE2M0VGNkIy NDQ4RDEyREIwHhcNMjUwODIwMTU0MTExWhcNMjUwODI3MTU0MTExWjAYMRYwFAYD VQQDEw02OGE1ZWM5OC02OTY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyMCoPmxisuxjwSf0yetKqVEZTum9rzm1NnVYTrotZ9GB7tO+og/HKkkQj+mJ 3HRz02zRGJ0pYxuXzAIYuNXDUnENTRn4dJspum/XGa61qflcNJmJb/EZS1pT3j5d 8T195KD4i76Y2eelrgsHc5UjkSRDPrdiGtCEhgFUeeJpzjNvNg3cONETkH+XB4mu pU42ugeNV+f/V6Y8aIkA9u4OHLtkid/d2/p2Zxh3/jQTgv8OVynVlUl6WLYVf9c1 VgJXGE67/FKPvgu6rVf0YjP1y+49z2jO4sRlK2u76kTzCTYIZtxmC+H7cK5piX6E KoP/RbsaJs6FrzSM5L9q2R5zMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAQ3eCAe PNnyeKOQQN/YpLlGluXvMB8GA1UdIwQYMBaAFHt3VKgt0GOkfo7DXRY+9rJEjRLb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTMxMS8xM0FGRjZGNkIy NEQxMUU0QjY3RjE4NUZDNEY5QUUwMi9lM2RVcUMzUVk2Ui1qc05kRmo3MnNrU05F dHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2UzZFVxQzNRWTZSLWpzTmRGajcyc2tTTkV0cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTMxMS8xM0FGRjZGNkIyNEQxMUU0QjY3RjE4NUZDNEY5QUUwMi9lM2RVcUMzUVk2 Ui1qc05kRmo3MnNrU05FdHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKMzNvCsSEkQEHo1qLy2J9/dTnE7LPF7xClfCfTacHIoDHb1v2SW/F cuV1wjvDQPrA0qjXjVySm13ssSiCwEikBJWwC8VTMuWnJiZKBCiw2z/3AmSdL/UB s0m8T0lMFHRhlj5Ul7NjemeTK8uURD9zYHXQ1cuiwQgDirorQuFi9rHahuFeCUYf shM/DwotbIBoZScmZG3KcwuvBJHsuLh69GiXj1GIAPP2dBee96bDUzZOD+oWT+E+ daLP8DwKRzzCmcnH87Fwg+f7XOPR6vm32Cx/9gym3rRwzCy1DYnOqoxgZ8b5j/h1 daPOUec2rmfhgLg4783gDkHYmL36R7fl -----END CERTIFICATE-----Generated at Fri Aug 22 16:28:46 2025 by rpki-client