$ rpki-client -vvf rpki.apnic.net/member_repository/A919A016/C0677226417111EAAAD26A6CC4F9AE02/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.mft File: 3y-KdfPpJ14NTxD8ajGZl5Eb5bU.mft (raw, json) Hash identifier: 9DQcLU1YqVDerNFoQJUl5JHPOtWiRWYZ8FMIIS9tLNE= Subject key identifier: 7F:29:A9:F1:6B:BE:9E:72:4D:02:47:43:FF:7C:E7:A1:1B:0A:2D:75 Authority key identifier: DF:2F:8A:75:F3:E9:27:5E:0D:4F:10:FC:6A:31:99:97:91:1B:E5:B5 Certificate issuer: /CN=A919A016/serialNumber=DF2F8A75F3E9275E0D4F10FC6A319997911BE5B5 Certificate serial: 0B58 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A016/C0677226417111EAAAD26A6CC4F9AE02/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.mft Manifest number: 0B4A Signing time: Mon 08 Sep 2025 19:12:21 +0000 Manifest this update: Mon 08 Sep 2025 19:12:20 +0000 Manifest next update: Mon 15 Sep 2025 19:12:20 +0000 Files and hashes: 1: 3y-KdfPpJ14NTxD8ajGZl5Eb5bU.crl (hash: Ru8HQhT4+JzzJg5eeJ3lW8lJ2l9hbInMtbK94J2bRp4=) 2: 26010A0605EF11F09181F913C4F9AE02.roa (hash: e8DrNgU6wclV+/cuRuh0FDYWi/CeredwOHLzSK+l0vc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A016/C0677226417111EAAAD26A6CC4F9AE02/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.crl rsync://rpki.apnic.net/member_repository/A919A016/C0677226417111EAAAD26A6CC4F9AE02/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 19:12:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2904 (0xb58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A016, serialNumber=DF2F8A75F3E9275E0D4F10FC6A319997911BE5B5 Validity Not Before: Sep 8 19:12:20 2025 GMT Not After : Sep 15 19:12:20 2025 GMT Subject: CN=68bf2a94-3987 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ca:4e:a0:0e:00:38:c8:65:82:81:55:60:db: 20:16:5e:59:6b:d5:82:aa:e2:82:24:10:4f:24:35: f6:fa:cf:95:d5:e8:c0:da:0f:c6:32:3d:b0:a8:15: 8d:bc:99:80:7c:a9:f0:2b:6c:1a:75:25:20:ea:48: 77:eb:c8:01:10:17:87:cb:2b:55:76:1f:d6:7c:a0: 98:21:e3:0a:c5:5e:f4:4a:3d:8d:67:de:3b:da:ff: 30:df:6f:dd:66:13:d5:88:c1:a3:1e:d7:f4:0c:8a: f0:0c:97:ae:06:f1:8d:05:6b:96:62:5f:40:59:68: c2:60:53:d9:5f:23:ea:93:a8:10:cb:1b:ba:a2:54: 17:bd:47:e1:fa:89:de:a5:1c:21:38:23:ff:7b:75: e9:a0:07:2c:af:0e:0c:d7:a2:c0:0a:6b:e7:cf:f2: 7f:66:ce:9b:12:b9:23:16:78:3d:f8:85:3a:69:78: d9:c2:60:f6:27:81:5c:f0:9f:34:dc:5e:1a:bf:77: 1a:80:c6:5c:8b:f2:0a:00:46:cc:2b:1e:d3:41:10: a4:7c:c0:de:33:4a:b3:87:7c:a5:3b:71:7a:8a:8a: 82:e7:26:cb:66:06:b9:1b:f8:19:3c:72:9e:82:9c: 8d:ef:bb:da:f0:e5:24:26:3e:7e:31:72:bb:0d:2d: 17:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:29:A9:F1:6B:BE:9E:72:4D:02:47:43:FF:7C:E7:A1:1B:0A:2D:75 X509v3 Authority Key Identifier: keyid:DF:2F:8A:75:F3:E9:27:5E:0D:4F:10:FC:6A:31:99:97:91:1B:E5:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A016/C0677226417111EAAAD26A6CC4F9AE02/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A016/C0677226417111EAAAD26A6CC4F9AE02/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:8c:dd:ad:e4:50:19:1e:77:f8:db:d4:89:b0:f4:31:37:28: db:2c:c2:d9:b8:ad:ef:b2:02:55:49:5b:8f:94:1c:a5:dc:13: ba:c7:a6:6f:58:7b:6f:97:a1:92:40:b7:84:63:b8:b3:32:ff: 07:89:1c:15:2b:fd:44:63:4a:66:9d:8e:8d:6f:9c:55:89:2d: cf:c0:af:58:b2:7e:ec:6a:eb:95:27:2a:a5:a6:51:c5:73:3e: 67:8c:c7:9c:38:4c:f4:71:19:9d:2b:53:55:aa:53:a2:fd:36: 0b:49:dd:c8:2f:7d:fd:79:5e:1d:c7:54:4e:de:ba:f1:0c:61: 27:c3:82:7b:df:96:80:42:42:96:fa:8c:b0:d4:76:41:c9:53: d2:1d:16:c1:db:ee:0a:25:07:36:94:de:fc:ca:de:cc:07:58: ff:08:2b:e3:db:31:48:6a:0e:bd:6e:6c:4b:70:57:d2:c3:54: 00:1b:0b:ee:0d:42:e2:3b:7c:8e:74:e3:43:a7:b4:5f:cb:e4: b3:f8:ab:52:12:98:79:31:ab:c7:e9:aa:b0:06:95:40:e3:a1: 1c:98:59:7c:d6:f7:d9:18:49:b8:4a:32:66:12:28:3a:a7:37: cd:11:83:58:17:72:e3:3b:7f:bf:54:a1:f6:bf:56:93:1b:43: f0:fc:38:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC1gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUEwMTYxMTAvBgNVBAUTKERGMkY4QTc1RjNFOTI3NUUwRDRGMTBGQzZBMzE5OTk3 OTExQkU1QjUwHhcNMjUwOTA4MTkxMjIwWhcNMjUwOTE1MTkxMjIwWjAYMRYwFAYD VQQDEw02OGJmMmE5NC0zOTg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAucpOoA4AOMhlgoFVYNsgFl5Za9WCquKCJBBPJDX2+s+V1ejA2g/GMj2wqBWN vJmAfKnwK2wadSUg6kh368gBEBeHyytVdh/WfKCYIeMKxV70Sj2NZ9472v8w32/d ZhPViMGjHtf0DIrwDJeuBvGNBWuWYl9AWWjCYFPZXyPqk6gQyxu6olQXvUfh+one pRwhOCP/e3XpoAcsrw4M16LACmvnz/J/Zs6bErkjFng9+IU6aXjZwmD2J4Fc8J80 3F4av3cagMZci/IKAEbMKx7TQRCkfMDeM0qzh3ylO3F6ioqC5ybLZga5G/gZPHKe gpyN77va8OUkJj5+MXK7DS0XFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH8pqfFr vp5yTQJHQ/9856EbCi11MB8GA1UdIwQYMBaAFN8vinXz6SdeDU8Q/GoxmZeRG+W1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTAxNi9DMDY3NzIyNjQx NzExMUVBQUFEMjZBNkNDNEY5QUUwMi8zeS1LZGZQcEoxNE5UeEQ4YWpHWmw1RWI1 YlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzN5LUtkZlBwSjE0TlR4RDhhakdabDVFYjViVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTAxNi9DMDY3NzIyNjQxNzExMUVBQUFEMjZBNkNDNEY5QUUwMi8zeS1LZGZQcEox NE5UeEQ4YWpHWmw1RWI1YlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3jN2t5FAZHnf429SJsPQxNyjbLMLZuK3vsgJVSVuPlByl3BO6x6Zv WHtvl6GSQLeEY7izMv8HiRwVK/1EY0pmnY6Nb5xViS3PwK9Ysn7sauuVJyqlplHF cz5njMecOEz0cRmdK1NVqlOi/TYLSd3IL339eV4dx1RO3rrxDGEnw4J735aAQkKW +oyw1HZByVPSHRbB2+4KJQc2lN78yt7MB1j/CCvj2zFIag69bmxLcFfSw1QAGwvu DULiO3yOdONDp7Rfy+Sz+KtSEph5MavH6aqwBpVA46EcmFl81vfZGEm4SjJmEig6 pzfNEYNYF3LjO3+/VKH2v1aTG0Pw/Dhe -----END CERTIFICATE-----Generated at Tue Sep 9 00:40:25 2025 by rpki-client