$ rpki-client -vvf rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft File: 3zHPGFCQ4VSWXv_7xmS91yHYB18.mft (raw, json) Hash identifier: jg2HpMgsVpukP71XtqvEGMZDzPVO22xoRr+u95tNGgM= Subject key identifier: 1F:B6:ED:46:53:3F:4D:80:CB:4E:63:03:71:B0:60:7D:EB:16:27:31 Authority key identifier: DF:31:CF:18:50:90:E1:54:96:5E:FF:FB:C6:64:BD:D7:21:D8:07:5F Certificate issuer: /CN=A9155ECF/serialNumber=DF31CF185090E154965EFFFBC664BDD721D8075F Certificate serial: 41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft Manifest number: 3E Signing time: Sat 23 Aug 2025 07:45:53 +0000 Manifest this update: Sat 23 Aug 2025 07:45:52 +0000 Manifest next update: Sat 30 Aug 2025 07:45:52 +0000 Files and hashes: 1: 3zHPGFCQ4VSWXv_7xmS91yHYB18.crl (hash: BXcQicnkd5/qStQFpL6pjTTYhNEtTH2boWb4B98CQfs=) 2: 3C0150CC25F711F0BA6BC461C4F9AE02.roa (hash: 3nF4cvLj139/qC59LZaw3WXWjKCR+W8JrfwsLDT094o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.crl rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:45:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65 (0x41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155ECF, serialNumber=DF31CF185090E154965EFFFBC664BDD721D8075F Validity Not Before: Aug 23 07:45:52 2025 GMT Not After : Aug 30 07:45:52 2025 GMT Subject: CN=68a971b0-cda1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:8e:26:4b:29:51:70:49:4c:c3:95:38:16:9e: d1:74:9d:6b:f0:ba:5f:55:6f:d0:8c:f2:e6:e3:79: d9:1b:bc:bd:57:b1:35:7e:d2:20:8e:f3:f7:64:aa: 37:40:72:2d:69:4b:23:4b:dd:54:d1:c6:c0:45:a7: b9:c5:b7:1b:c3:88:57:8b:ce:1f:04:c0:20:68:98: cd:5b:64:96:e3:37:47:df:39:50:f7:f0:d2:95:9c: 56:3d:5e:1f:9e:a5:b6:7d:35:bc:78:23:b2:cb:38: 0c:8d:09:7e:7d:1f:f0:02:60:c0:8c:9e:a4:a0:43: 74:d0:1c:af:4a:9e:f4:42:03:f7:65:63:ca:77:5b: 73:07:09:b1:f9:ca:c4:09:5f:d6:e3:ad:14:0a:0a: 63:3c:83:dd:a9:ed:f0:9d:58:d1:ef:b2:f1:35:42: 65:c9:ab:0e:f1:af:78:5a:0f:4b:96:5e:de:ce:d3: e3:e9:f2:ad:6b:45:40:67:93:f4:97:70:6c:e3:82: 3e:90:47:4b:d3:9b:e0:19:28:d7:f5:0d:7d:92:91: 7f:bb:6f:bd:b7:e0:98:12:98:70:2d:51:60:30:bd: b7:24:b6:b1:9d:4e:02:f7:89:a9:98:7a:0f:a7:a7: 6a:98:eb:93:da:2a:0f:e1:bf:70:29:56:22:bb:bb: d8:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:B6:ED:46:53:3F:4D:80:CB:4E:63:03:71:B0:60:7D:EB:16:27:31 X509v3 Authority Key Identifier: keyid:DF:31:CF:18:50:90:E1:54:96:5E:FF:FB:C6:64:BD:D7:21:D8:07:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:87:9c:ec:eb:b0:b2:1b:9e:7c:6a:2d:89:d5:0b:67:a3:4c: 56:3f:d1:cf:2a:a1:6e:13:05:52:51:1e:47:52:f3:86:a8:6b: ce:47:50:d1:1f:7e:24:ae:b2:5a:46:31:17:8e:63:d5:ae:04: 5c:98:db:a6:86:1a:c1:a9:53:16:03:06:60:9b:e1:97:5c:cc: ed:97:13:13:76:42:45:7c:d4:71:bb:b8:14:1f:56:a3:90:11: ef:46:15:c4:99:57:f8:3c:3f:c6:e6:c2:b5:9e:77:1f:d7:31: c4:77:76:df:a4:6e:33:8a:09:f9:78:06:4f:95:cf:ac:92:75: 8b:6f:96:66:9c:88:99:0a:ce:d0:a8:f2:06:bb:45:ba:0e:4e: e0:51:45:6d:3e:40:6b:30:e9:41:a2:9c:7e:e2:fe:8c:a1:8e: 33:af:c7:76:ed:dd:58:7e:a2:b0:bb:69:d3:7f:2c:be:97:69: 86:12:83:9c:a2:95:61:2c:35:37:7b:a2:93:d5:7a:37:ca:65: 69:2b:9e:25:7b:77:43:11:c9:62:d2:89:62:54:04:b7:5c:66: 51:4a:81:d8:25:85:e0:49:ff:99:0f:a2:b6:d7:73:77:6a:ed: cb:32:f3:19:12:86:5a:e7:bc:7f:b4:2c:44:4d:71:44:61:04: e6:f0:a8:cf -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NUVDRjExMC8GA1UEBRMoREYzMUNGMTg1MDkwRTE1NDk2NUVGRkZCQzY2NEJERDcy MUQ4MDc1RjAeFw0yNTA4MjMwNzQ1NTJaFw0yNTA4MzAwNzQ1NTJaMBgxFjAUBgNV BAMTDTY4YTk3MWIwLWNkYTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDPjiZLKVFwSUzDlTgWntF0nWvwul9Vb9CM8ubjedkbvL1XsTV+0iCO8/dkqjdA ci1pSyNL3VTRxsBFp7nFtxvDiFeLzh8EwCBomM1bZJbjN0ffOVD38NKVnFY9Xh+e pbZ9Nbx4I7LLOAyNCX59H/ACYMCMnqSgQ3TQHK9KnvRCA/dlY8p3W3MHCbH5ysQJ X9bjrRQKCmM8g92p7fCdWNHvsvE1QmXJqw7xr3haD0uWXt7O0+Pp8q1rRUBnk/SX cGzjgj6QR0vTm+AZKNf1DX2SkX+7b7234JgSmHAtUWAwvbcktrGdTgL3iamYeg+n p2qY65PaKg/hv3ApViK7u9hZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUH7btRlM/ TYDLTmMDcbBgfesWJzEwHwYDVR0jBBgwFoAU3zHPGFCQ4VSWXv/7xmS91yHYB18w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1RUNGL0VGNkI5MDVDMjVG NTExRjA4QkVGREE0OUM0RjlBRTAyLzN6SFBHRkNRNFZTV1h2Xzd4bVM5MXlIWUIx OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM3pIUEdGQ1E0VlNXWHZfN3htUzkxeUhZQjE4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1 RUNGL0VGNkI5MDVDMjVGNTExRjA4QkVGREE0OUM0RjlBRTAyLzN6SFBHRkNRNFZT V1h2Xzd4bVM5MXlIWUIxOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKWHnOzrsLIbnnxqLYnVC2ejTFY/0c8qoW4TBVJRHkdS84aoa85HUNEf fiSuslpGMReOY9WuBFyY26aGGsGpUxYDBmCb4ZdczO2XExN2QkV81HG7uBQfVqOQ Ee9GFcSZV/g8P8bmwrWedx/XMcR3dt+kbjOKCfl4Bk+Vz6ySdYtvlmaciJkKztCo 8ga7RboOTuBRRW0+QGsw6UGinH7i/oyhjjOvx3bt3Vh+orC7adN/LL6XaYYSg5yi lWEsNTd7opPVejfKZWkrniV7d0MRyWLSiWJUBLdcZlFKgdglheBJ/5kPorbXc3dq 7csy8xkShlrnvH+0LERNcURhBObwqM8= -----END CERTIFICATE-----Generated at Sat Aug 23 19:09:14 2025 by rpki-client