$ rpki-client -vvf rpki.apnic.net/member_repository/A9127686/C74B1FFE304211ECAF185A10C4F9AE02/r3H1sWeV-bfPKyRYSAd-EWhbpvA.mft File: r3H1sWeV-bfPKyRYSAd-EWhbpvA.mft (raw, json) Hash identifier: 97K9BfD3ZtVn/N9LuG09AdDdrAMvNr2K0gdpfj/5hMw= Subject key identifier: 77:E0:21:F2:29:18:1D:CA:C1:E7:74:CF:CE:64:0B:53:D3:D7:07:49 Authority key identifier: AF:71:F5:B1:67:95:F9:B7:CF:2B:24:58:48:07:7E:11:68:5B:A6:F0 Certificate issuer: /CN=A9127686/serialNumber=AF71F5B16795F9B7CF2B245848077E11685BA6F0 Certificate serial: 04E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3H1sWeV-bfPKyRYSAd-EWhbpvA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127686/C74B1FFE304211ECAF185A10C4F9AE02/r3H1sWeV-bfPKyRYSAd-EWhbpvA.mft Manifest number: 04DB Signing time: Fri 22 Aug 2025 23:58:55 +0000 Manifest this update: Fri 22 Aug 2025 23:58:55 +0000 Manifest next update: Fri 29 Aug 2025 23:58:55 +0000 Files and hashes: 1: r3H1sWeV-bfPKyRYSAd-EWhbpvA.crl (hash: QOd5Jairy9pM5RvVDx4G7DZ/6h3Ih3PvvECmpB0xun8=) 2: 54BBE48A304411EC830F8610C4F9AE02.roa (hash: ES0KtplnGhM27Vh/hroAKpFu+jIJhHlyayZgnN5P/Xk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127686/C74B1FFE304211ECAF185A10C4F9AE02/r3H1sWeV-bfPKyRYSAd-EWhbpvA.crl rsync://rpki.apnic.net/member_repository/A9127686/C74B1FFE304211ECAF185A10C4F9AE02/r3H1sWeV-bfPKyRYSAd-EWhbpvA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3H1sWeV-bfPKyRYSAd-EWhbpvA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:58:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1248 (0x4e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127686, serialNumber=AF71F5B16795F9B7CF2B245848077E11685BA6F0 Validity Not Before: Aug 22 23:58:55 2025 GMT Not After : Aug 29 23:58:55 2025 GMT Subject: CN=68a9043f-065e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:ea:f3:11:8c:69:b2:1c:86:a1:c1:89:75:0a: f7:a3:dc:0e:49:26:22:d4:25:e6:f0:57:c7:7e:63: b0:40:d6:81:72:f0:80:33:ce:45:c3:64:1f:a7:71: 10:5f:70:2f:b6:62:7e:ae:5d:fa:48:6f:e8:96:8a: 45:88:b5:cd:5b:b9:19:e1:1a:ae:c0:8a:39:9c:82: d8:e2:df:72:01:f0:9e:81:27:21:ac:4a:1f:4b:13: 02:f5:79:63:8b:52:2f:6b:67:91:a4:ac:a7:21:e7: ee:e9:cf:c5:30:88:1d:4b:d0:02:5a:0c:4f:70:b4: 78:36:13:8d:7a:db:02:46:44:94:26:c2:41:c4:5b: 13:48:c5:31:aa:b1:2b:a5:fe:5c:6e:33:33:c0:0e: 14:ea:c9:46:8b:12:7b:cf:eb:54:d5:36:f9:54:60: c1:ff:aa:a1:ab:07:2f:ee:6e:dc:2a:63:e7:fa:72: af:5e:32:ee:06:d5:f0:5d:56:40:d0:8e:87:24:d7: 63:18:03:14:5d:97:82:18:bc:96:27:a8:18:a2:19: f8:73:72:f6:e3:d2:18:15:2a:41:ea:a8:44:28:a0: 7f:06:e4:b2:75:6c:c5:c6:83:24:fb:f5:bd:69:fa: 8c:1f:29:7f:44:91:f1:c7:dc:46:a4:6d:2d:92:09: 30:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:E0:21:F2:29:18:1D:CA:C1:E7:74:CF:CE:64:0B:53:D3:D7:07:49 X509v3 Authority Key Identifier: keyid:AF:71:F5:B1:67:95:F9:B7:CF:2B:24:58:48:07:7E:11:68:5B:A6:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127686/C74B1FFE304211ECAF185A10C4F9AE02/r3H1sWeV-bfPKyRYSAd-EWhbpvA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3H1sWeV-bfPKyRYSAd-EWhbpvA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127686/C74B1FFE304211ECAF185A10C4F9AE02/r3H1sWeV-bfPKyRYSAd-EWhbpvA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:d2:88:25:d3:de:f7:63:ac:e7:f5:06:05:0e:0d:10:73:69: 20:af:b5:dc:cb:2d:37:93:83:6c:c5:f2:36:43:c3:7e:ed:94: f5:ab:78:83:68:b9:1a:20:f9:23:c8:20:6a:a6:0d:d8:b3:de: e5:13:39:6b:c0:e1:bd:45:51:11:6e:c5:50:a8:13:63:47:de: 97:23:4b:7b:e5:63:0a:98:5d:e8:91:c7:97:18:30:ae:1c:2a: b8:7e:c2:62:80:d2:a4:d2:b2:0a:af:da:c3:ff:b2:cc:3c:2f: 3a:ba:7e:10:46:9a:64:67:8c:dc:91:53:fc:67:6b:56:87:13: 61:a7:1c:7b:18:7a:dd:68:82:23:a9:49:94:91:17:ed:5e:8d: 49:3c:c7:b8:a5:40:e6:17:08:0f:08:92:60:8c:2c:8e:89:57: cf:dd:87:8d:c1:f9:9e:f1:0c:63:63:48:55:3f:a2:28:cd:f4: c4:26:57:aa:12:1e:58:4a:2e:6f:ae:18:e1:bb:22:57:29:b3: b4:d0:ee:1e:1c:c2:82:b1:b4:b2:ef:b7:15:5c:65:a6:75:0f: 1c:bb:d4:6f:bc:bc:df:ac:01:55:56:34:d5:c2:c9:3c:51:ba: 69:ad:f1:15:ba:94:5b:31:26:de:5c:8f:b0:6b:db:61:10:91: 12:67:62:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc2ODYxMTAvBgNVBAUTKEFGNzFGNUIxNjc5NUY5QjdDRjJCMjQ1ODQ4MDc3RTEx Njg1QkE2RjAwHhcNMjUwODIyMjM1ODU1WhcNMjUwODI5MjM1ODU1WjAYMRYwFAYD VQQDEw02OGE5MDQzZi0wNjVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAourzEYxpshyGocGJdQr3o9wOSSYi1CXm8FfHfmOwQNaBcvCAM85Fw2Qfp3EQ X3AvtmJ+rl36SG/olopFiLXNW7kZ4RquwIo5nILY4t9yAfCegSchrEofSxMC9Xlj i1Iva2eRpKynIefu6c/FMIgdS9ACWgxPcLR4NhONetsCRkSUJsJBxFsTSMUxqrEr pf5cbjMzwA4U6slGixJ7z+tU1Tb5VGDB/6qhqwcv7m7cKmPn+nKvXjLuBtXwXVZA 0I6HJNdjGAMUXZeCGLyWJ6gYohn4c3L249IYFSpB6qhEKKB/BuSydWzFxoMk+/W9 afqMHyl/RJHxx9xGpG0tkgkwUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHfgIfIp GB3Kwed0z85kC1PT1wdJMB8GA1UdIwQYMBaAFK9x9bFnlfm3zyskWEgHfhFoW6bw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzY4Ni9DNzRCMUZGRTMw NDIxMUVDQUYxODVBMTBDNEY5QUUwMi9yM0gxc1dlVi1iZlBLeVJZU0FkLUVXaGJw dkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3IzSDFzV2VWLWJmUEt5UllTQWQtRVdoYnB2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzY4Ni9DNzRCMUZGRTMwNDIxMUVDQUYxODVBMTBDNEY5QUUwMi9yM0gxc1dlVi1i ZlBLeVJZU0FkLUVXaGJwdkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBB0ogl0973Y6zn9QYFDg0Qc2kgr7Xcyy03k4NsxfI2Q8N+7ZT1q3iD aLkaIPkjyCBqpg3Ys97lEzlrwOG9RVERbsVQqBNjR96XI0t75WMKmF3okceXGDCu HCq4fsJigNKk0rIKr9rD/7LMPC86un4QRppkZ4zckVP8Z2tWhxNhpxx7GHrdaIIj qUmUkRftXo1JPMe4pUDmFwgPCJJgjCyOiVfP3YeNwfme8QxjY0hVP6IozfTEJleq Eh5YSi5vrhjhuyJXKbO00O4eHMKCsbSy77cVXGWmdQ8cu9RvvLzfrAFVVjTVwsk8 UbpprfEVupRbMSbeXI+wa9thEJESZ2LE -----END CERTIFICATE-----Generated at Sat Aug 23 17:17:59 2025 by rpki-client