$ rpki-client -vvf rpki.apnic.net/member_repository/A9119C32/C4EA1B9E46E211EEA2372F41C4F9AE02/3glSX1epVbpvLTKtIoMwQhUYLkU.mft File: 3glSX1epVbpvLTKtIoMwQhUYLkU.mft (raw, json) Hash identifier: pTasfqWfxv2qII/WgJZInYZUJ58Hb5qxi6Du3/rHlc8= Subject key identifier: 97:6E:28:6F:95:21:09:AB:59:A5:6F:6D:53:FB:9C:7C:3A:D1:E3:D6 Authority key identifier: DE:09:52:5F:57:A9:55:BA:6F:2D:32:AD:22:83:30:42:15:18:2E:45 Certificate issuer: /CN=A9119C32/serialNumber=DE09525F57A955BA6F2D32AD2283304215182E45 Certificate serial: 0178 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3glSX1epVbpvLTKtIoMwQhUYLkU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119C32/C4EA1B9E46E211EEA2372F41C4F9AE02/3glSX1epVbpvLTKtIoMwQhUYLkU.mft Manifest number: 0175 Signing time: Sat 23 Aug 2025 03:53:28 +0000 Manifest this update: Sat 23 Aug 2025 03:53:28 +0000 Manifest next update: Sat 30 Aug 2025 03:53:28 +0000 Files and hashes: 1: 3glSX1epVbpvLTKtIoMwQhUYLkU.crl (hash: AZVTxS3lfynfj4opreiYisNSa1jZ446AgupTnHpqOU8=) 2: 5D79BDF8486C11EEB3C19A71C4F9AE02.roa (hash: 0Dz92F7ct8bVXTADuiwvMmdgfbqvyjCznAHcDYM7e2M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119C32/C4EA1B9E46E211EEA2372F41C4F9AE02/3glSX1epVbpvLTKtIoMwQhUYLkU.crl rsync://rpki.apnic.net/member_repository/A9119C32/C4EA1B9E46E211EEA2372F41C4F9AE02/3glSX1epVbpvLTKtIoMwQhUYLkU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3glSX1epVbpvLTKtIoMwQhUYLkU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:53:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 376 (0x178) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119C32, serialNumber=DE09525F57A955BA6F2D32AD2283304215182E45 Validity Not Before: Aug 23 03:53:28 2025 GMT Not After : Aug 30 03:53:28 2025 GMT Subject: CN=68a93b38-baa9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:86:1e:af:12:38:fe:46:72:6c:bd:54:2e:d2: 35:a5:36:b2:41:7e:02:be:06:da:75:41:8b:59:d8: cd:50:6b:6a:8a:8f:69:28:50:b1:c6:25:93:71:d7: 4a:0a:c3:65:2f:e5:fa:34:87:d9:07:57:6c:16:2e: 7b:ed:8b:e0:2a:e7:03:25:f7:ae:79:2d:c8:5f:4b: 3c:5a:18:06:10:ff:f4:99:06:57:51:25:71:2d:4e: 78:ce:3a:15:45:7a:9c:1f:4d:64:ef:26:ed:30:37: 63:56:93:a8:f4:d0:1c:c0:db:37:60:d7:35:3f:09: a1:59:ca:7c:1f:7a:73:80:90:32:b4:60:60:8d:5f: db:7e:cf:0d:55:e3:7e:7b:70:eb:7c:e6:56:3e:b8: a2:f7:5f:76:cd:18:dd:a6:67:79:b8:87:e8:b5:e6: 73:cb:cc:b6:af:de:d6:60:2d:36:24:46:c2:75:78: 5a:dc:c4:07:51:c3:88:ce:c4:3e:13:7b:42:f7:b4: b5:30:98:15:5e:60:cc:02:44:26:eb:58:68:3a:8f: b5:2a:be:cc:4e:fe:cb:ab:bb:2b:c8:5b:61:fd:41: b2:e3:ab:1c:3d:c4:17:cc:e1:4f:cd:37:bf:20:cf: 43:8f:29:c1:26:a9:47:c6:2c:6b:0a:eb:4b:da:d2: c0:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:6E:28:6F:95:21:09:AB:59:A5:6F:6D:53:FB:9C:7C:3A:D1:E3:D6 X509v3 Authority Key Identifier: keyid:DE:09:52:5F:57:A9:55:BA:6F:2D:32:AD:22:83:30:42:15:18:2E:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119C32/C4EA1B9E46E211EEA2372F41C4F9AE02/3glSX1epVbpvLTKtIoMwQhUYLkU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3glSX1epVbpvLTKtIoMwQhUYLkU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119C32/C4EA1B9E46E211EEA2372F41C4F9AE02/3glSX1epVbpvLTKtIoMwQhUYLkU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:1f:3e:de:8c:f6:79:12:63:56:d8:7f:51:09:74:a9:c7:ec: 88:59:e5:0c:85:c5:b6:92:30:04:e3:23:56:20:cc:b3:91:c6: 9b:70:ca:21:eb:b0:ec:98:43:7e:f4:a0:4c:08:1c:c1:55:3d: 47:7c:79:c6:34:10:36:4b:9c:38:31:a8:7c:85:b2:4f:4c:b6: af:72:9e:92:e0:05:63:84:5d:40:fc:28:c6:84:d2:6e:1c:79: 20:6b:ad:a0:5e:7b:04:93:6f:8f:94:4e:01:be:16:29:30:09: 03:56:e7:25:d0:81:bb:a4:1f:a5:7c:11:81:08:2a:52:6f:1c: d6:49:55:05:3c:6d:e6:85:74:30:e2:a6:96:2b:3e:1a:59:e7: c9:2b:65:68:11:c8:fb:07:91:f0:75:b0:f3:be:e4:ac:36:78: e3:12:8f:89:76:fa:e6:6a:4f:09:21:5a:58:31:60:9a:23:7f: 16:6b:9f:93:de:27:4d:52:bf:3f:1f:ad:ab:3b:db:da:4f:b5: aa:df:73:4e:43:47:93:9a:7c:39:d1:d6:61:df:8b:83:69:28: 7c:78:b4:5b:cd:bc:06:26:3e:2c:74:36:a3:9a:e1:01:86:f7: bb:fa:be:64:a1:c4:76:d9:e7:a5:52:83:d7:d9:f2:92:38:49: 4c:c9:15:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTlDMzIxMTAvBgNVBAUTKERFMDk1MjVGNTdBOTU1QkE2RjJEMzJBRDIyODMzMDQy MTUxODJFNDUwHhcNMjUwODIzMDM1MzI4WhcNMjUwODMwMDM1MzI4WjAYMRYwFAYD VQQDEw02OGE5M2IzOC1iYWE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq4YerxI4/kZybL1ULtI1pTayQX4CvgbadUGLWdjNUGtqio9pKFCxxiWTcddK CsNlL+X6NIfZB1dsFi577YvgKucDJfeueS3IX0s8WhgGEP/0mQZXUSVxLU54zjoV RXqcH01k7ybtMDdjVpOo9NAcwNs3YNc1PwmhWcp8H3pzgJAytGBgjV/bfs8NVeN+ e3DrfOZWPrii9192zRjdpmd5uIfoteZzy8y2r97WYC02JEbCdXha3MQHUcOIzsQ+ E3tC97S1MJgVXmDMAkQm61hoOo+1Kr7MTv7Lq7sryFth/UGy46scPcQXzOFPzTe/ IM9DjynBJqlHxixrCutL2tLA5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJduKG+V IQmrWaVvbVP7nHw60ePWMB8GA1UdIwQYMBaAFN4JUl9XqVW6by0yrSKDMEIVGC5F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOUMzMi9DNEVBMUI5RTQ2 RTIxMUVFQTIzNzJGNDFDNEY5QUUwMi8zZ2xTWDFlcFZicHZMVEt0SW9Nd1FoVVlM a1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNnbFNYMWVwVmJwdkxUS3RJb013UWhVWUxrVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OUMzMi9DNEVBMUI5RTQ2RTIxMUVFQTIzNzJGNDFDNEY5QUUwMi8zZ2xTWDFlcFZi cHZMVEt0SW9Nd1FoVVlMa1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUHz7ejPZ5EmNW2H9RCXSpx+yIWeUMhcW2kjAE4yNWIMyzkcabcMoh 67DsmEN+9KBMCBzBVT1HfHnGNBA2S5w4Mah8hbJPTLavcp6S4AVjhF1A/CjGhNJu HHkga62gXnsEk2+PlE4BvhYpMAkDVucl0IG7pB+lfBGBCCpSbxzWSVUFPG3mhXQw 4qaWKz4aWefJK2VoEcj7B5HwdbDzvuSsNnjjEo+Jdvrmak8JIVpYMWCaI38Wa5+T 3idNUr8/H62rO9vaT7Wq33NOQ0eTmnw50dZh34uDaSh8eLRbzbwGJj4sdDajmuEB hve7+r5kocR22eelUoPX2fKSOElMyRXd -----END CERTIFICATE-----Generated at Sun Aug 24 00:16:57 2025 by rpki-client