$ rpki-client -vvf rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.mft File: 3GF8-u34v7Cj7PfWcULmwdUmQ1w.mft (raw, json) Hash identifier: eNjlu2tG5yMZUhOOOoWzv1jxEc/q7lnAGPmm4hqekb4= Subject key identifier: E4:69:7B:60:50:C6:F0:F4:07:9E:42:88:50:92:6E:8A:1D:C4:D0:30 Authority key identifier: DC:61:7C:FA:ED:F8:BF:B0:A3:EC:F7:D6:71:42:E6:C1:D5:26:43:5C Certificate issuer: /CN=A9199AFB/serialNumber=DC617CFAEDF8BFB0A3ECF7D67142E6C1D526435C Certificate serial: 0337 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GF8-u34v7Cj7PfWcULmwdUmQ1w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.mft Manifest number: 0332 Signing time: Sun 07 Sep 2025 01:30:28 +0000 Manifest this update: Sun 07 Sep 2025 01:30:27 +0000 Manifest next update: Sun 14 Sep 2025 01:30:27 +0000 Files and hashes: 1: 3GF8-u34v7Cj7PfWcULmwdUmQ1w.crl (hash: wHFWmMWMCn4YVzG01PWT/kX/Fkh9yBuc2EFPBwbh6xs=) 2: 9E9EC628D9C511EC81B54F47C4F9AE02.roa (hash: BkyDK7N8MqPzb7yz7N5nQ1LHqHZV+xDxLFOlL/0hv/I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.crl rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GF8-u34v7Cj7PfWcULmwdUmQ1w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 01:30:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 823 (0x337) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199AFB, serialNumber=DC617CFAEDF8BFB0A3ECF7D67142E6C1D526435C Validity Not Before: Sep 7 01:30:27 2025 GMT Not After : Sep 14 01:30:27 2025 GMT Subject: CN=68bce034-9d66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:cd:a2:38:02:58:5b:3a:97:bc:2e:58:4b:ab: 8c:88:0e:83:b1:cd:76:79:cf:35:06:bc:71:00:a3: 4f:d7:9d:84:1e:29:09:33:51:4a:74:a6:2d:23:7d: 9d:cc:18:2f:e4:35:d6:d7:7e:8c:a3:95:1c:ac:5d: a5:d9:e5:d9:86:75:2d:d2:de:a7:43:02:35:54:4f: 20:6e:60:87:d9:bc:88:79:b2:00:c8:66:65:60:ed: f1:f5:bb:dd:1c:86:45:22:57:22:6a:40:0c:96:21: af:e7:b7:02:05:31:25:76:de:80:58:41:eb:94:3e: 42:8f:1f:0d:48:e4:23:fc:fa:03:57:91:fd:b5:63: ba:77:a1:e1:87:ae:1e:c7:08:cc:68:c3:0e:c8:da: f3:c0:b8:c3:88:45:22:63:99:b8:99:a0:43:52:16: 85:43:31:3e:bb:f7:fd:40:10:4b:bc:80:10:45:77: dc:f0:c7:dd:c3:9a:68:99:43:a9:d1:a1:24:dc:5b: 6e:48:8a:b5:90:a4:a9:6d:d1:1d:90:c4:60:eb:ed: 6b:6e:04:eb:c3:83:9e:c8:9e:ef:c8:98:58:fe:8c: e8:91:e1:57:98:2e:cb:99:03:40:00:42:33:0b:49: 3d:92:72:1b:18:18:bd:af:53:45:be:47:cc:39:cb: 8e:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:69:7B:60:50:C6:F0:F4:07:9E:42:88:50:92:6E:8A:1D:C4:D0:30 X509v3 Authority Key Identifier: keyid:DC:61:7C:FA:ED:F8:BF:B0:A3:EC:F7:D6:71:42:E6:C1:D5:26:43:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GF8-u34v7Cj7PfWcULmwdUmQ1w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:a0:14:7f:74:99:e7:f4:35:8d:d1:7d:44:7e:68:e6:0c:25: a1:3a:1d:12:a0:8d:67:d0:58:4e:99:6c:34:2e:11:3b:22:fe: 95:46:82:7a:96:07:df:12:f5:61:52:17:3b:4e:6b:40:41:aa: 0e:88:85:2b:46:8a:69:b8:f8:b2:c3:e8:03:ba:59:81:7f:6d: 99:80:85:b9:36:27:02:47:2e:ba:7d:e4:1e:44:9b:0a:26:9a: fc:c7:b0:b0:7e:43:ff:4b:55:84:f5:e4:3b:a4:5a:c2:ec:ab: ba:fd:2c:6f:af:ef:64:d8:b9:b2:03:67:f8:51:7c:cd:7c:be: 20:e6:dd:0f:4c:d9:26:15:08:f8:1a:6a:b4:30:01:77:15:f1: 33:76:a0:c1:8e:29:50:7b:31:7b:c6:88:ba:f9:49:77:b2:61: ae:a4:12:0f:8a:92:45:37:8c:f1:13:d5:08:d9:10:46:d2:ce: 43:cb:d2:cb:96:53:eb:0b:07:df:14:7c:00:df:60:4f:af:ba: 07:91:0a:4d:44:3d:f3:ba:7a:96:74:f5:a0:0b:e3:39:ba:ee: 3d:c4:f4:28:91:01:f6:07:ef:89:f7:fa:23:02:c8:a8:44:c9: 0e:19:27:cd:b6:4f:06:ba:8b:91:b7:6a:ca:5f:1e:21:a1:34: 6b:d7:56:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTlBRkIxMTAvBgNVBAUTKERDNjE3Q0ZBRURGOEJGQjBBM0VDRjdENjcxNDJFNkMx RDUyNjQzNUMwHhcNMjUwOTA3MDEzMDI3WhcNMjUwOTE0MDEzMDI3WjAYMRYwFAYD VQQDEw02OGJjZTAzNC05ZDY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz82iOAJYWzqXvC5YS6uMiA6Dsc12ec81BrxxAKNP152EHikJM1FKdKYtI32d zBgv5DXW136Mo5UcrF2l2eXZhnUt0t6nQwI1VE8gbmCH2byIebIAyGZlYO3x9bvd HIZFIlciakAMliGv57cCBTEldt6AWEHrlD5Cjx8NSOQj/PoDV5H9tWO6d6Hhh64e xwjMaMMOyNrzwLjDiEUiY5m4maBDUhaFQzE+u/f9QBBLvIAQRXfc8Mfdw5pomUOp 0aEk3FtuSIq1kKSpbdEdkMRg6+1rbgTrw4OeyJ7vyJhY/ozokeFXmC7LmQNAAEIz C0k9knIbGBi9r1NFvkfMOcuOrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFORpe2BQ xvD0B55CiFCSboodxNAwMB8GA1UdIwQYMBaAFNxhfPrt+L+wo+z31nFC5sHVJkNc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OUFGQi80NDM0RDU5MEQ5 QzIxMUVDODg3Rjk4NDZDNEY5QUUwMi8zR0Y4LXUzNHY3Q2o3UGZXY1VMbXdkVW1R MXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNHRjgtdTM0djdDajdQZldjVUxtd2RVbVExdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OUFGQi80NDM0RDU5MEQ5QzIxMUVDODg3Rjk4NDZDNEY5QUUwMi8zR0Y4LXUzNHY3 Q2o3UGZXY1VMbXdkVW1RMXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCioBR/dJnn9DWN0X1EfmjmDCWhOh0SoI1n0FhOmWw0LhE7Iv6VRoJ6 lgffEvVhUhc7TmtAQaoOiIUrRoppuPiyw+gDulmBf22ZgIW5NicCRy66feQeRJsK Jpr8x7CwfkP/S1WE9eQ7pFrC7Ku6/Sxvr+9k2LmyA2f4UXzNfL4g5t0PTNkmFQj4 Gmq0MAF3FfEzdqDBjilQezF7xoi6+Ul3smGupBIPipJFN4zxE9UI2RBG0s5Dy9LL llPrCwffFHwA32BPr7oHkQpNRD3zunqWdPWgC+M5uu49xPQokQH2B++J9/ojAsio RMkOGSfNtk8GuouRt2rKXx4hoTRr11ak -----END CERTIFICATE-----Generated at Mon Sep 8 10:05:35 2025 by rpki-client