$ rpki-client -vvf rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.mft File: c35h2qB72DNCtgxeutSxuxm-QAM.mft (raw, json) Hash identifier: BdaEoEYnT6T95i0HTIkYtLQjGqIy6NVkwtAEjDxD+UY= Subject key identifier: CD:3F:74:32:83:9C:77:69:E2:A5:C0:31:F3:BA:E1:DD:1E:D7:3A:9E Authority key identifier: 73:7E:61:DA:A0:7B:D8:33:42:B6:0C:5E:BA:D4:B1:BB:19:BE:40:03 Certificate issuer: /CN=A911647C/serialNumber=737E61DAA07BD83342B60C5EBAD4B1BB19BE4003 Certificate serial: 0A16 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/c35h2qB72DNCtgxeutSxuxm-QAM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.mft Manifest number: 09F1 Signing time: Fri 22 Aug 2025 20:04:42 +0000 Manifest this update: Fri 22 Aug 2025 20:04:41 +0000 Manifest next update: Fri 29 Aug 2025 20:04:41 +0000 Files and hashes: 1: c35h2qB72DNCtgxeutSxuxm-QAM.crl (hash: X8votUpL/N+RTj52PE0vOzVgTJF2icTbixy4hLNdDKU=) 2: 5258D3D4BCE011EFAB38225AC4F9AE02.roa (hash: 4oLW18xAlE3B8nPyqU3w32UG4L4+C+i7k1rNnlKSQ7s=) 3: 95B5855C18CE11EFBCD58454C4F9AE02.roa (hash: PcZXGp5zvO/A3lEsDn884MTZ2FtXJ7tXRCkkHLH+i5g=) 4: 981F188018CE11EFBCD58454C4F9AE02.roa (hash: 7NNAaJL+KytCopmMwh7xFBD72cI0M9FvnIHrWbUqbbw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.crl rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/c35h2qB72DNCtgxeutSxuxm-QAM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:04:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2582 (0xa16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911647C, serialNumber=737E61DAA07BD83342B60C5EBAD4B1BB19BE4003 Validity Not Before: Aug 22 20:04:41 2025 GMT Not After : Aug 29 20:04:41 2025 GMT Subject: CN=68a8cd5a-ffbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:b0:e3:d1:44:de:22:13:2b:4c:7f:75:1f:c6: c6:6d:3f:3c:d3:1f:89:58:40:2d:2c:3c:e3:b5:9b: 4a:19:20:9b:f2:cd:bf:91:ee:94:3e:f1:88:96:24: a1:9a:80:99:5c:fc:83:a2:0b:f5:e8:9d:ca:25:83: 55:7f:6d:87:eb:4d:4f:71:5c:7f:8e:82:2f:cd:69: bf:fe:61:09:9a:98:e2:bd:39:a1:66:06:36:f5:fa: 11:2a:23:a7:dd:78:3a:c3:cd:dc:5f:98:b4:ac:88: 8f:c5:24:21:94:85:6c:69:70:b9:71:7c:bc:77:30: cc:f8:95:5e:7f:d6:c1:ee:0c:04:8e:f6:22:82:02: 06:af:f3:22:12:fc:3e:75:f8:51:49:f6:05:bf:01: 8e:ba:8a:6c:7d:2f:48:d6:e9:29:d7:02:21:72:a4: ab:d7:6c:ff:86:a9:39:54:96:5f:d7:6e:01:64:90: 10:a8:ac:4d:75:ee:3a:72:3d:81:b1:e0:65:c0:87: 62:ea:cc:89:21:21:60:ca:42:f1:39:98:8d:a8:2b: cb:83:42:5c:3a:06:0d:5b:52:ae:98:28:e9:57:1d: b3:af:b6:7d:80:25:33:3d:60:ab:9c:c9:c0:4a:55: aa:9f:dd:b9:4b:53:c9:40:47:f0:19:81:f6:e0:86: 63:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:3F:74:32:83:9C:77:69:E2:A5:C0:31:F3:BA:E1:DD:1E:D7:3A:9E X509v3 Authority Key Identifier: keyid:73:7E:61:DA:A0:7B:D8:33:42:B6:0C:5E:BA:D4:B1:BB:19:BE:40:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/c35h2qB72DNCtgxeutSxuxm-QAM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:e1:40:96:73:10:7c:c3:39:a3:01:80:65:6b:66:95:92:99: 52:48:15:8b:3a:37:b7:ee:7f:c7:5d:62:c7:f7:a2:65:63:58: fc:40:51:cd:b2:68:4d:f2:fa:a6:f1:82:eb:01:9a:0e:4e:9e: 2c:46:e1:48:af:07:55:54:4b:e8:20:a4:4a:68:f1:27:37:dc: b5:72:e3:ff:cc:ab:1e:ed:3f:05:69:ad:b0:a5:7c:a7:d8:8a: e9:a6:8e:41:94:26:e9:b2:8f:64:b0:66:de:b1:5e:d0:2d:98: 3e:22:8d:bf:f7:79:ee:3c:5c:94:34:31:36:66:99:80:5b:62: 38:e9:6c:f2:b5:0c:2c:2c:d0:41:d5:0d:3e:52:40:0f:c2:de: 7b:d2:a7:1b:98:01:a0:f0:25:37:00:37:3d:63:3e:e1:40:d1: df:9d:23:f1:9e:90:5d:a8:29:d3:50:1d:c6:31:06:9a:24:6e: 96:12:70:6b:d0:ff:ce:e5:5a:dd:1e:d2:3c:c0:fd:5c:53:79: a9:99:e4:1b:36:db:8b:44:e7:f7:d7:b2:fc:18:ec:fc:e7:92: 7a:8a:56:64:7f:1b:9e:b1:7e:e8:3a:6e:6d:23:dc:23:88:11: 4f:0a:8a:5f:27:5c:e3:5f:e4:56:a1:55:bb:69:e3:1c:d3:db: 86:71:8f:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICChYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY0N0MxMTAvBgNVBAUTKDczN0U2MURBQTA3QkQ4MzM0MkI2MEM1RUJBRDRCMUJC MTlCRTQwMDMwHhcNMjUwODIyMjAwNDQxWhcNMjUwODI5MjAwNDQxWjAYMRYwFAYD VQQDEw02OGE4Y2Q1YS1mZmJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAurDj0UTeIhMrTH91H8bGbT880x+JWEAtLDzjtZtKGSCb8s2/ke6UPvGIliSh moCZXPyDogv16J3KJYNVf22H601PcVx/joIvzWm//mEJmpjivTmhZgY29foRKiOn 3Xg6w83cX5i0rIiPxSQhlIVsaXC5cXy8dzDM+JVef9bB7gwEjvYiggIGr/MiEvw+ dfhRSfYFvwGOuopsfS9I1ukp1wIhcqSr12z/hqk5VJZf124BZJAQqKxNde46cj2B seBlwIdi6syJISFgykLxOZiNqCvLg0JcOgYNW1KumCjpVx2zr7Z9gCUzPWCrnMnA SlWqn925S1PJQEfwGYH24IZjhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM0/dDKD nHdp4qXAMfO64d0e1zqeMB8GA1UdIwQYMBaAFHN+Ydqge9gzQrYMXrrUsbsZvkAD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjQ3Qy8zQjFDREZCQzg1 MTMxMUVBQUEwQjBBN0ZDNEY5QUUwMi9jMzVoMnFCNzJETkN0Z3hldXRTeHV4bS1R QU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2MzNWgycUI3MkROQ3RneGV1dFN4dXhtLVFBTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjQ3Qy8zQjFDREZCQzg1MTMxMUVBQUEwQjBBN0ZDNEY5QUUwMi9jMzVoMnFCNzJE TkN0Z3hldXRTeHV4bS1RQU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCC4UCWcxB8wzmjAYBla2aVkplSSBWLOje37n/HXWLH96JlY1j8QFHN smhN8vqm8YLrAZoOTp4sRuFIrwdVVEvoIKRKaPEnN9y1cuP/zKse7T8Faa2wpXyn 2Irppo5BlCbpso9ksGbesV7QLZg+Io2/93nuPFyUNDE2ZpmAW2I46WzytQwsLNBB 1Q0+UkAPwt570qcbmAGg8CU3ADc9Yz7hQNHfnSPxnpBdqCnTUB3GMQaaJG6WEnBr 0P/O5VrdHtI8wP1cU3mpmeQbNtuLROf317L8GOz855J6ilZkfxuesX7oOm5tI9wj iBFPCopfJ1zjX+RWoVW7aeMc09uGcY+O -----END CERTIFICATE-----Generated at Sat Aug 23 12:50:26 2025 by rpki-client