$ rpki-client -vvf rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft File: 3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft (raw, json) Hash identifier: KIXIADcdK+J+bzwqu1Y9O3ISKLJ/sJ7Bj3py1J1TE90= Subject key identifier: 85:BB:87:2C:27:98:75:96:C1:3A:6E:0E:D3:60:3B:23:6E:E0:10:6E Authority key identifier: DC:62:20:08:A8:A1:AD:42:BE:2A:25:49:43:49:1A:FA:A8:45:49:A5 Certificate issuer: /CN=A911035A/serialNumber=DC622008A8A1AD42BE2A254943491AFAA84549A5 Certificate serial: 0A24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft Manifest number: 0A13 Signing time: Fri 22 Aug 2025 19:57:48 +0000 Manifest this update: Fri 22 Aug 2025 19:57:47 +0000 Manifest next update: Fri 29 Aug 2025 19:57:47 +0000 Files and hashes: 1: 3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl (hash: EVD6G8uinr80ftWFt5tCWv5XMQt2yrunyOaJ7w4eyfU=) 2: 5B57754A026F11EDBE22EF64C4F9AE02.roa (hash: ihAIG4OoPwthC+h4NtPo2Q0pwt/cIHMn8RF1lo5PumY=) 3: 5A472FBA026F11EDBE22EF64C4F9AE02.roa (hash: vIMBF1bBAJdpKyG7NryScSCm1A4V3l1tKWGtKbJDwKU=) 4: C1B3DE082BBE11EF809E1831C4F9AE02.roa (hash: lx///Z7Da35SlsWklk353QqekT8yYXigifaMtdugzeQ=) 5: E1935B7A36DD11EFB1E53717C4F9AE02.roa (hash: H0HQ+QBIGliAyxj5H0/8pAJ49x4cCntNY4DcwIy3B3Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:57:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2596 (0xa24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911035A, serialNumber=DC622008A8A1AD42BE2A254943491AFAA84549A5 Validity Not Before: Aug 22 19:57:47 2025 GMT Not After : Aug 29 19:57:47 2025 GMT Subject: CN=68a8cbbc-53d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:10:c3:3c:a4:13:7f:db:d2:1c:10:73:13:de: cc:e1:3e:16:c4:ae:ee:b7:00:64:b0:b8:30:bb:4b: e2:ef:7f:54:40:57:37:3f:f5:98:79:93:70:74:8f: e5:6a:61:bb:14:80:63:88:b1:bd:fc:3b:45:ee:4a: 88:19:04:f9:66:b4:6d:bd:5b:d1:1d:18:47:e1:1d: c8:5f:ea:e2:ae:2d:67:68:40:c5:84:73:60:06:b3: 88:91:7f:6b:a2:58:32:a7:d5:c6:4c:14:bf:22:35: 9d:03:f3:dd:66:54:bc:e6:69:9b:5e:76:6d:92:d2: 43:95:23:e1:cf:e7:93:14:37:42:51:d5:ab:e2:34: 25:31:bf:18:9e:7b:d3:93:ff:3a:f1:32:36:f2:96: a4:38:e2:ac:e6:32:21:e5:b0:34:56:c9:35:7b:a7: 88:d2:9e:ac:91:1c:7e:70:ad:e1:fb:8c:2a:f7:ad: de:e7:b7:15:dd:ed:0f:3f:73:06:d2:9a:b0:ba:3d: c7:5e:d1:eb:25:10:a5:06:37:d8:d0:9c:d0:ca:61: c9:40:1b:27:60:e4:4f:07:66:cf:96:e8:6d:52:52: fb:c4:79:be:01:1a:bf:1b:75:72:ea:21:f6:55:26: e9:16:a4:7f:fc:f4:5f:a1:85:3b:dd:81:e0:cf:57: c9:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:BB:87:2C:27:98:75:96:C1:3A:6E:0E:D3:60:3B:23:6E:E0:10:6E X509v3 Authority Key Identifier: keyid:DC:62:20:08:A8:A1:AD:42:BE:2A:25:49:43:49:1A:FA:A8:45:49:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:af:04:36:3f:f3:53:ee:fc:4a:87:c6:57:b1:f6:28:54:3b: 3d:02:53:5f:f6:9b:b9:da:ed:59:34:b5:2c:3d:c7:68:0c:a8: 35:05:c9:4c:71:a7:a8:3b:06:e8:1d:fe:62:86:5b:04:9e:dd: be:ed:f3:bf:98:aa:6e:ec:61:68:0e:51:80:39:0a:18:6f:01: 68:b9:5d:03:f3:a5:c5:52:09:a5:35:b1:fb:3b:26:38:67:9c: 1f:c6:e3:02:cb:9e:6b:b5:bb:67:e5:3c:b1:de:3c:c3:7f:5f: 0e:df:f5:0f:c3:ee:0b:41:46:1a:cf:1b:8c:6c:28:65:ed:7d: db:b1:d0:a4:7f:f8:02:ed:34:f4:40:a3:dc:fe:62:fd:b8:b4: a9:ff:e9:62:99:a5:98:76:5a:ab:81:3b:5e:81:2c:8c:d0:ba: aa:24:ab:57:77:75:72:8d:10:a9:54:7b:c1:51:25:01:e8:4a: b7:4a:64:8c:af:52:07:a4:8f:20:c1:4f:80:d5:91:9f:fe:df: 63:5b:32:8f:4d:6d:09:14:9f:bf:a2:4d:d4:80:09:96:f1:62: 71:50:7c:b8:85:b7:1c:ce:17:7a:c4:7b:60:2f:39:8e:97:a2: 9b:42:c4:36:fa:ab:b0:35:b6:67:9e:c6:70:d7:ca:cf:99:fe: 34:20:cb:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCiQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTAzNUExMTAvBgNVBAUTKERDNjIyMDA4QThBMUFENDJCRTJBMjU0OTQzNDkxQUZB QTg0NTQ5QTUwHhcNMjUwODIyMTk1NzQ3WhcNMjUwODI5MTk1NzQ3WjAYMRYwFAYD VQQDEw02OGE4Y2JiYy01M2Q4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAphDDPKQTf9vSHBBzE97M4T4WxK7utwBksLgwu0vi739UQFc3P/WYeZNwdI/l amG7FIBjiLG9/DtF7kqIGQT5ZrRtvVvRHRhH4R3IX+riri1naEDFhHNgBrOIkX9r olgyp9XGTBS/IjWdA/PdZlS85mmbXnZtktJDlSPhz+eTFDdCUdWr4jQlMb8YnnvT k/868TI28pakOOKs5jIh5bA0Vsk1e6eI0p6skRx+cK3h+4wq963e57cV3e0PP3MG 0pqwuj3HXtHrJRClBjfY0JzQymHJQBsnYORPB2bPluhtUlL7xHm+ARq/G3Vy6iH2 VSbpFqR//PRfoYU73YHgz1fJ/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIW7hywn mHWWwTpuDtNgOyNu4BBuMB8GA1UdIwQYMBaAFNxiIAiooa1CviolSUNJGvqoRUml MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDM1QS8zQzYwOUI0NDdD NjYxMUVBODA4OUYzNTFDNEY5QUUwMi8zR0lnQ0tpaHJVSy1LaVZKUTBrYS1xaEZT YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNHSWdDS2loclVLLUtpVkpRMGthLXFoRlNhVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDM1QS8zQzYwOUI0NDdDNjYxMUVBODA4OUYzNTFDNEY5QUUwMi8zR0lnQ0tpaHJV Sy1LaVZKUTBrYS1xaEZTYVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtrwQ2P/NT7vxKh8ZXsfYoVDs9AlNf9pu52u1ZNLUsPcdoDKg1BclM caeoOwboHf5ihlsEnt2+7fO/mKpu7GFoDlGAOQoYbwFouV0D86XFUgmlNbH7OyY4 Z5wfxuMCy55rtbtn5Tyx3jzDf18O3/UPw+4LQUYazxuMbChl7X3bsdCkf/gC7TT0 QKPc/mL9uLSp/+limaWYdlqrgTtegSyM0LqqJKtXd3VyjRCpVHvBUSUB6Eq3SmSM r1IHpI8gwU+A1ZGf/t9jWzKPTW0JFJ+/ok3UgAmW8WJxUHy4hbcczhd6xHtgLzmO l6KbQsQ2+quwNbZnnsZw18rPmf40IMvk -----END CERTIFICATE-----Generated at Sun Aug 24 00:49:31 2025 by rpki-client