$ rpki-client -vvf rpki.apnic.net/member_repository/A911AA05/4DC1D926212911F0A66A4972C4F9AE02/3xhzEfoJx3m4sV2UekbU9O3MUFM.mft File: 3xhzEfoJx3m4sV2UekbU9O3MUFM.mft (raw, json) Hash identifier: Ws4z70JO/5MvbbB6LLpFNukLsTCIv8SnqtoEnEQPoKc= Subject key identifier: D1:93:09:4B:D1:89:6D:A1:DF:0A:48:B7:D2:0A:FE:14:9F:45:5E:9A Authority key identifier: DF:18:73:11:FA:09:C7:79:B8:B1:5D:94:7A:46:D4:F4:ED:CC:50:53 Certificate issuer: /CN=A911AA05/serialNumber=DF187311FA09C779B8B15D947A46D4F4EDCC5053 Certificate serial: 3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3xhzEfoJx3m4sV2UekbU9O3MUFM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AA05/4DC1D926212911F0A66A4972C4F9AE02/3xhzEfoJx3m4sV2UekbU9O3MUFM.mft Manifest number: 3D Signing time: Sat 23 Aug 2025 07:44:23 +0000 Manifest this update: Sat 23 Aug 2025 07:44:23 +0000 Manifest next update: Sat 30 Aug 2025 07:44:23 +0000 Files and hashes: 1: 3xhzEfoJx3m4sV2UekbU9O3MUFM.crl (hash: F0IhfqcFsOYv5KFy6QeEDXz/zhdlw1R0u35odYT6ljw=) 2: F1940290212911F087425013C4F9AE02.roa (hash: MnHNxat0n45sPIepd+2k7Aeq3t/02+1KvIJP8MEpuv8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AA05/4DC1D926212911F0A66A4972C4F9AE02/3xhzEfoJx3m4sV2UekbU9O3MUFM.crl rsync://rpki.apnic.net/member_repository/A911AA05/4DC1D926212911F0A66A4972C4F9AE02/3xhzEfoJx3m4sV2UekbU9O3MUFM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3xhzEfoJx3m4sV2UekbU9O3MUFM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:44:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62 (0x3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AA05, serialNumber=DF187311FA09C779B8B15D947A46D4F4EDCC5053 Validity Not Before: Aug 23 07:44:23 2025 GMT Not After : Aug 30 07:44:23 2025 GMT Subject: CN=68a97157-8902 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:5e:57:df:11:1d:9e:c7:b5:53:90:6f:d9:2c: 35:36:ff:db:f5:cc:eb:30:1f:38:21:ed:65:81:b9: cf:96:fa:c2:22:46:e7:71:7d:26:7a:7b:a8:58:0b: 25:6a:04:b4:57:0c:11:d3:54:18:3c:0b:b9:a8:e5: 3f:9b:f2:70:26:e0:98:2a:98:b8:47:20:06:53:8b: ec:18:9b:a0:ac:eb:2c:ee:8a:77:f2:df:d8:13:fc: f4:49:7e:75:76:6c:dd:21:9a:b7:53:39:25:bb:12: 60:64:e4:91:b7:d0:1a:c6:26:07:f9:5a:0c:97:5c: cc:39:09:48:59:a7:8e:13:71:0d:2b:ab:74:cb:3c: e8:e9:7b:24:4e:c5:57:3f:13:e6:27:29:8f:e6:60: 24:55:01:cc:08:cc:7e:58:9a:96:2c:34:0c:f3:fb: 78:e8:0a:15:0a:76:c9:53:08:74:0f:48:1a:a2:a8: a7:a7:35:46:69:dd:b0:87:fd:96:f5:92:57:62:ec: 16:ba:f0:7a:9e:dd:f8:db:97:e3:32:2e:78:9c:da: 99:17:98:49:d9:78:99:1a:01:0b:59:d6:2f:41:7d: 3d:81:70:2b:68:29:94:4f:d2:15:e7:e3:42:0f:a8: 3c:7e:bd:f5:5d:13:e8:c7:27:bc:0e:0b:99:c1:a4: 57:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:93:09:4B:D1:89:6D:A1:DF:0A:48:B7:D2:0A:FE:14:9F:45:5E:9A X509v3 Authority Key Identifier: keyid:DF:18:73:11:FA:09:C7:79:B8:B1:5D:94:7A:46:D4:F4:ED:CC:50:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AA05/4DC1D926212911F0A66A4972C4F9AE02/3xhzEfoJx3m4sV2UekbU9O3MUFM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3xhzEfoJx3m4sV2UekbU9O3MUFM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AA05/4DC1D926212911F0A66A4972C4F9AE02/3xhzEfoJx3m4sV2UekbU9O3MUFM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:03:ae:21:5a:e2:ad:cf:b2:3e:eb:a6:26:34:df:48:6d:1f: 75:1a:a3:31:39:72:bd:8f:44:f6:9b:7e:f9:25:2a:52:14:0e: 5d:39:6f:f1:4f:55:e1:98:e7:07:cc:fe:63:ea:e2:6c:d6:7a: 3a:39:59:ae:45:63:44:c8:14:49:f5:f7:f1:75:f6:b7:60:36: 41:68:d0:a2:25:d4:e4:2b:5e:69:96:97:35:de:c9:d2:3d:17: 7a:9f:d4:5f:de:9c:de:ca:83:29:60:bb:0c:47:31:72:98:a5: 17:78:0b:77:df:a2:32:02:8b:c2:26:59:e9:38:87:2a:50:25: bb:74:e9:52:c7:e8:f3:af:5c:e5:1e:38:4d:b2:c0:80:6d:af: 31:32:88:f5:d8:dd:49:c6:79:d8:c8:86:41:25:e5:a6:c2:b5: 84:87:0a:7a:d0:9b:dc:24:fc:0d:a3:da:88:d8:43:e2:65:b8: f8:08:82:59:9b:a6:f5:d0:be:d7:de:d0:34:2a:08:d1:23:19: e0:25:9e:bc:0e:5e:d0:8c:e7:41:54:b6:84:0c:0c:69:59:22: 69:20:c8:7e:1c:b4:d5:26:1d:27:58:13:c2:21:d4:6b:b5:0c: e1:ad:15:08:3d:cf:36:40:cd:8f:19:90:12:9f:c9:76:ef:58: b2:d3:c0:1d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx QUEwNTExMC8GA1UEBRMoREYxODczMTFGQTA5Qzc3OUI4QjE1RDk0N0E0NkQ0RjRF RENDNTA1MzAeFw0yNTA4MjMwNzQ0MjNaFw0yNTA4MzAwNzQ0MjNaMBgxFjAUBgNV BAMTDTY4YTk3MTU3LTg5MDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCvXlffER2ex7VTkG/ZLDU2/9v1zOswHzgh7WWBuc+W+sIiRudxfSZ6e6hYCyVq BLRXDBHTVBg8C7mo5T+b8nAm4JgqmLhHIAZTi+wYm6Cs6yzuinfy39gT/PRJfnV2 bN0hmrdTOSW7EmBk5JG30BrGJgf5WgyXXMw5CUhZp44TcQ0rq3TLPOjpeyROxVc/ E+YnKY/mYCRVAcwIzH5YmpYsNAzz+3joChUKdslTCHQPSBqiqKenNUZp3bCH/Zb1 kldi7Ba68Hqe3fjbl+MyLnic2pkXmEnZeJkaAQtZ1i9BfT2BcCtoKZRP0hXn40IP qDx+vfVdE+jHJ7wOC5nBpFcTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU0ZMJS9GJ baHfCki30gr+FJ9FXpowHwYDVR0jBBgwFoAU3xhzEfoJx3m4sV2UekbU9O3MUFMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFBQTA1LzREQzFEOTI2MjEy OTExRjBBNjZBNDk3MkM0RjlBRTAyLzN4aHpFZm9KeDNtNHNWMlVla2JVOU8zTVVG TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM3hoekVmb0p4M200c1YyVWVrYlU5TzNNVUZNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFB QTA1LzREQzFEOTI2MjEyOTExRjBBNjZBNDk3MkM0RjlBRTAyLzN4aHpFZm9KeDNt NHNWMlVla2JVOU8zTVVGTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGgDriFa4q3Psj7rpiY030htH3UaozE5cr2PRPabfvklKlIUDl05b/FP VeGY5wfM/mPq4mzWejo5Wa5FY0TIFEn19/F19rdgNkFo0KIl1OQrXmmWlzXeydI9 F3qf1F/enN7KgylguwxHMXKYpRd4C3ffojICi8ImWek4hypQJbt06VLH6POvXOUe OE2ywIBtrzEyiPXY3UnGedjIhkEl5abCtYSHCnrQm9wk/A2j2ojYQ+JluPgIglmb pvXQvtfe0DQqCNEjGeAlnrwOXtCM50FUtoQMDGlZImkgyH4ctNUmHSdYE8Ih1Gu1 DOGtFQg9zzZAzY8ZkBKfyXbvWLLTwB0= -----END CERTIFICATE-----Generated at Sat Aug 23 20:24:23 2025 by rpki-client