$ rpki-client -vvf rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft File: 3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft (raw, json) Hash identifier: rfPhPg4S4lDrixMGCJYMD6YWelmkJfTUUq3XGfe8pJ4= Subject key identifier: 14:64:A5:21:F1:D4:92:50:C1:31:02:2D:E5:46:69:0A:BC:F1:B4:1D Authority key identifier: DD:F8:84:91:1A:D3:F2:8C:C9:D9:6A:8C:24:A9:39:A6:5F:8B:25:76 Certificate issuer: /CN=A912BAAD/serialNumber=DDF884911AD3F28CC9D96A8C24A939A65F8B2576 Certificate serial: 0C27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft Manifest number: 0C18 Signing time: Fri 22 Aug 2025 18:51:38 +0000 Manifest this update: Fri 22 Aug 2025 18:51:37 +0000 Manifest next update: Fri 29 Aug 2025 18:51:37 +0000 Files and hashes: 1: 3fiEkRrT8ozJ2WqMJKk5pl-LJXY.crl (hash: lcQTPiX60QakoJPvnnOF5NPE847/eA/OFW/Ga/TXrzI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.crl rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:51:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3111 (0xc27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BAAD, serialNumber=DDF884911AD3F28CC9D96A8C24A939A65F8B2576 Validity Not Before: Aug 22 18:51:37 2025 GMT Not After : Aug 29 18:51:37 2025 GMT Subject: CN=68a8bc3a-e634 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:90:50:2f:1f:14:f1:99:93:03:bc:41:ea:ec: 3a:68:73:24:77:e9:3a:eb:7b:e0:59:2d:af:25:81: 71:21:20:57:5c:be:ca:e0:f9:f1:cf:07:3d:32:1c: a7:8b:d6:0f:c6:54:53:3e:45:52:3b:ff:7a:0e:40: 36:b7:31:3c:96:d6:f3:63:bd:3c:8d:70:91:09:1c: ed:a0:5a:c8:b1:5d:fa:d8:57:58:73:6d:bd:4d:b0: 8e:eb:7c:f8:41:ae:94:2a:37:4b:bd:c0:f0:92:9e: 62:96:99:90:ca:ed:21:b8:84:ca:ab:27:d1:73:03: 15:3b:1e:c8:cf:5c:1b:a2:19:41:24:2a:be:53:95: ac:8f:ae:7a:11:90:c9:2a:57:44:3a:34:54:a9:76: 74:a2:73:49:98:82:f7:1d:53:3d:7d:56:96:0e:c8: b5:a6:0f:df:da:8b:74:72:b7:cb:b6:93:84:9a:c2: 2b:bc:2f:51:e8:21:5a:1b:74:7b:ae:a5:3e:d3:f2: 2a:e1:25:b0:8c:d8:58:d1:7e:8f:4a:62:9d:c4:a2: d6:24:9b:42:2c:4a:c1:4a:cd:30:95:ae:2c:ad:3c: aa:3b:d0:10:da:02:2a:a3:6a:84:72:11:99:82:25: 23:7d:d9:20:cf:c5:b0:36:15:31:b4:f5:e8:1a:95: b1:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:64:A5:21:F1:D4:92:50:C1:31:02:2D:E5:46:69:0A:BC:F1:B4:1D X509v3 Authority Key Identifier: keyid:DD:F8:84:91:1A:D3:F2:8C:C9:D9:6A:8C:24:A9:39:A6:5F:8B:25:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:bf:f1:2f:ac:e0:fa:ec:1f:fe:00:77:98:0d:c0:6e:fd:dc: bb:d7:5b:18:b5:49:eb:eb:69:56:62:22:11:bb:7d:02:90:47: 26:ba:a1:56:69:4f:13:2d:d6:51:a8:7e:48:ac:bb:a0:4c:88: b8:65:2b:82:54:6b:07:c7:0f:09:ba:11:84:ac:6b:fe:d5:11: 8b:15:2a:3b:d7:2e:a3:fa:37:2c:ec:06:0e:e7:ad:98:8b:9f: 5e:fb:e0:1f:c1:7b:b7:13:5f:e3:25:d0:1e:48:e2:b9:70:08: 2c:37:86:ec:c2:49:4c:93:01:94:01:b6:ff:db:24:f3:f5:b3: 53:5b:f0:74:c9:0c:b8:cb:98:e2:9a:f3:a3:95:a7:40:6e:8e: 19:fa:17:f6:75:2d:36:50:99:a1:ec:67:f2:57:3e:b3:ab:fa: 0c:3f:9a:55:e8:1a:9b:28:af:98:ee:ff:d1:3a:fb:b4:d0:d9: fd:9a:b1:af:16:12:8b:ba:31:45:28:1a:be:ba:e2:ff:d6:cb: 15:fb:41:b3:c1:6c:d5:75:75:c2:bd:e1:2e:0c:99:e1:29:7e: 99:79:43:51:7f:78:dc:41:02:f3:d5:34:66:de:b8:48:10:1a: 1c:c9:df:4a:69:95:67:0a:21:a8:7b:b9:a8:b0:82:22:b6:11: 64:a3:34:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJBQUQxMTAvBgNVBAUTKERERjg4NDkxMUFEM0YyOENDOUQ5NkE4QzI0QTkzOUE2 NUY4QjI1NzYwHhcNMjUwODIyMTg1MTM3WhcNMjUwODI5MTg1MTM3WjAYMRYwFAYD VQQDEw02OGE4YmMzYS1lNjM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs5BQLx8U8ZmTA7xB6uw6aHMkd+k663vgWS2vJYFxISBXXL7K4Pnxzwc9Mhyn i9YPxlRTPkVSO/96DkA2tzE8ltbzY708jXCRCRztoFrIsV362FdYc229TbCO63z4 Qa6UKjdLvcDwkp5ilpmQyu0huITKqyfRcwMVOx7Iz1wbohlBJCq+U5Wsj656EZDJ KldEOjRUqXZ0onNJmIL3HVM9fVaWDsi1pg/f2ot0crfLtpOEmsIrvC9R6CFaG3R7 rqU+0/Iq4SWwjNhY0X6PSmKdxKLWJJtCLErBSs0wla4srTyqO9AQ2gIqo2qEchGZ giUjfdkgz8WwNhUxtPXoGpWxLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBRkpSHx 1JJQwTECLeVGaQq88bQdMB8GA1UdIwQYMBaAFN34hJEa0/KMydlqjCSpOaZfiyV2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkFBRC81MjFBRERDODE4 NDgxMUVBOTA3ODU2MkJDNEY5QUUwMi8zZmlFa1JyVDhvekoyV3FNSktrNXBsLUxK WFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNmaUVrUnJUOG96SjJXcU1KS2s1cGwtTEpYWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkFBRC81MjFBRERDODE4NDgxMUVBOTA3ODU2MkJDNEY5QUUwMi8zZmlFa1JyVDhv ekoyV3FNSktrNXBsLUxKWFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNv/EvrOD67B/+AHeYDcBu/dy711sYtUnr62lWYiIRu30CkEcmuqFW aU8TLdZRqH5IrLugTIi4ZSuCVGsHxw8JuhGErGv+1RGLFSo71y6j+jcs7AYO562Y i59e++AfwXu3E1/jJdAeSOK5cAgsN4bswklMkwGUAbb/2yTz9bNTW/B0yQy4y5ji mvOjladAbo4Z+hf2dS02UJmh7GfyVz6zq/oMP5pV6BqbKK+Y7v/ROvu00Nn9mrGv FhKLujFFKBq+uuL/1ssV+0GzwWzVdXXCveEuDJnhKX6ZeUNRf3jcQQLz1TRm3rhI EBocyd9KaZVnCiGoe7mosIIithFkozQy -----END CERTIFICATE-----Generated at Sat Aug 23 17:23:59 2025 by rpki-client