$ rpki-client -vvf rpki.apnic.net/member_repository/A916559E/D47FEFCED40B11E385D48A705911EA32/Pj3GKtNpQScHmphxdsIYwJs-yf0.mft File: Pj3GKtNpQScHmphxdsIYwJs-yf0.mft (raw, json) Hash identifier: aCppLVzhhDSRKt5fKr2NlQNx+ldTUZ9VTQQsjsYZQ2A= Subject key identifier: B6:B0:94:33:52:15:54:5B:D3:F1:DA:89:7E:BB:D7:E0:C8:A2:E3:12 Authority key identifier: 3E:3D:C6:2A:D3:69:41:27:07:9A:98:71:76:C2:18:C0:9B:3E:C9:FD Certificate issuer: /CN=A916559E/serialNumber=3E3DC62AD3694127079A987176C218C09B3EC9FD Certificate serial: 2C31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pj3GKtNpQScHmphxdsIYwJs-yf0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916559E/D47FEFCED40B11E385D48A705911EA32/Pj3GKtNpQScHmphxdsIYwJs-yf0.mft Manifest number: 2C0F Signing time: Fri 22 Aug 2025 15:34:55 +0000 Manifest this update: Fri 22 Aug 2025 15:34:54 +0000 Manifest next update: Fri 29 Aug 2025 15:34:54 +0000 Files and hashes: 1: Pj3GKtNpQScHmphxdsIYwJs-yf0.crl (hash: gMeYTEeHTc9rwIyAzftFoOdG8MQ3/IW/11ecWIGHPC8=) 2: 5E736B1EEE2C11ECBDA4362BC4F9AE02.roa (hash: T0b8C7d4bWsc3EyPhNVtAAt07MQZYtmIX9CE+cnW0sk=) 3: A37B20206FE111E9B3465D70C4F9AE02.roa (hash: JeRljMwzQH3/92nSWVH5RymJInEM50zHuR37MlUO73U=) 4: C49CBEFCD27711ECAAC6BD51C4F9AE02.roa (hash: wKTcwQ/I5JRFgJ3BEd5QarAu/YHgWoWcx44Njrdtc4g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916559E/D47FEFCED40B11E385D48A705911EA32/Pj3GKtNpQScHmphxdsIYwJs-yf0.crl rsync://rpki.apnic.net/member_repository/A916559E/D47FEFCED40B11E385D48A705911EA32/Pj3GKtNpQScHmphxdsIYwJs-yf0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pj3GKtNpQScHmphxdsIYwJs-yf0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:34:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11313 (0x2c31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916559E, serialNumber=3E3DC62AD3694127079A987176C218C09B3EC9FD Validity Not Before: Aug 22 15:34:54 2025 GMT Not After : Aug 29 15:34:54 2025 GMT Subject: CN=68a88e1f-db43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:3c:bf:e5:9e:17:41:1e:e2:10:45:a0:f6:6c: c5:38:b0:2a:a4:5f:04:35:95:e4:5a:3b:03:a3:f6: ba:95:ed:39:99:00:e8:b4:cc:11:79:8f:45:ff:b1: 02:53:84:5e:09:95:5e:71:0a:a5:dd:48:7b:50:f7: 11:61:ad:e8:5a:71:71:2f:ab:5b:7f:25:14:9e:ea: 6c:07:01:65:4a:9c:19:a5:16:8f:41:39:42:a0:8b: 63:5a:6e:d8:85:26:c1:86:d5:3a:a5:0e:af:a3:27: 5b:4a:ed:9a:7b:45:27:80:44:84:3b:62:df:d8:cf: d7:2d:15:c8:bc:86:1f:d4:5e:97:0a:a3:d9:96:00: 50:ed:3c:2d:0d:05:87:2f:67:6a:4a:c8:3c:33:60: e1:dd:48:98:4e:94:5a:a1:20:f6:fc:7c:f6:f0:ba: 49:02:8c:19:4a:ea:cd:f2:a4:97:e4:84:81:a9:f2: 75:87:a8:7c:db:89:a9:48:4b:51:ef:47:d0:ca:7d: 00:b2:a2:b6:5b:ba:93:b5:99:4a:e7:39:dd:a8:4d: 92:ca:88:03:92:a7:3d:74:31:fb:35:3f:a3:67:ee: 2e:6d:d6:8e:4e:7c:e6:26:f4:11:91:b2:27:81:7c: 6e:f9:58:ef:59:e6:92:ff:1c:c6:dd:ff:81:7b:a2: bd:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:B0:94:33:52:15:54:5B:D3:F1:DA:89:7E:BB:D7:E0:C8:A2:E3:12 X509v3 Authority Key Identifier: keyid:3E:3D:C6:2A:D3:69:41:27:07:9A:98:71:76:C2:18:C0:9B:3E:C9:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916559E/D47FEFCED40B11E385D48A705911EA32/Pj3GKtNpQScHmphxdsIYwJs-yf0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pj3GKtNpQScHmphxdsIYwJs-yf0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916559E/D47FEFCED40B11E385D48A705911EA32/Pj3GKtNpQScHmphxdsIYwJs-yf0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:b9:09:1d:93:37:1d:ab:e7:0f:93:75:b2:6e:3a:68:db:52: 4d:30:2e:6c:52:7a:ef:b0:3e:80:59:3e:96:2f:3b:06:8d:37: ce:21:2c:25:df:2e:dd:47:c6:a4:fe:f6:55:8b:32:4a:54:32: 3c:1d:4a:80:4d:ba:58:51:bf:7e:d7:30:6d:84:11:70:15:b8: 9d:bc:20:4e:90:5d:d3:dd:7d:32:3b:95:3e:4e:d6:0d:79:f1: 90:7d:d9:ff:81:0a:46:2f:a3:b9:7b:40:48:c0:e8:6e:1d:70: 1a:aa:cb:d1:bf:a2:8c:1c:d2:ff:52:e5:0f:f9:e9:e1:a3:e5: 17:11:b1:22:09:7d:21:30:fd:58:30:2d:af:24:bc:c6:5b:77: 8e:b2:0a:65:20:45:88:fe:7a:b8:db:33:2a:25:50:be:4c:63: 0a:ac:0c:b0:a9:cb:cd:61:9e:f0:de:5c:47:fd:2e:7b:36:2b: ce:0c:0f:6e:3b:fe:2e:75:c0:0e:9d:ab:16:4a:1b:52:8c:3b: 22:53:8d:7d:78:84:7e:8f:0d:37:0c:2d:23:a6:d6:a7:21:8d: 84:ef:26:a3:f5:e6:10:27:26:3e:03:45:58:9f:83:b5:1b:41: 57:9d:44:9a:45:2d:55:fa:b1:2f:e3:93:8c:7c:f7:c8:8d:e1: e5:fd:82:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLDEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1OUUxMTAvBgNVBAUTKDNFM0RDNjJBRDM2OTQxMjcwNzlBOTg3MTc2QzIxOEMw OUIzRUM5RkQwHhcNMjUwODIyMTUzNDU0WhcNMjUwODI5MTUzNDU0WjAYMRYwFAYD VQQDEw02OGE4OGUxZi1kYjQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxjy/5Z4XQR7iEEWg9mzFOLAqpF8ENZXkWjsDo/a6le05mQDotMwReY9F/7EC U4ReCZVecQql3Uh7UPcRYa3oWnFxL6tbfyUUnupsBwFlSpwZpRaPQTlCoItjWm7Y hSbBhtU6pQ6voydbSu2ae0UngESEO2Lf2M/XLRXIvIYf1F6XCqPZlgBQ7TwtDQWH L2dqSsg8M2Dh3UiYTpRaoSD2/Hz28LpJAowZSurN8qSX5ISBqfJ1h6h824mpSEtR 70fQyn0AsqK2W7qTtZlK5zndqE2SyogDkqc9dDH7NT+jZ+4ubdaOTnzmJvQRkbIn gXxu+VjvWeaS/xzG3f+Be6K9owIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLawlDNS FVRb0/HaiX671+DIouMSMB8GA1UdIwQYMBaAFD49xirTaUEnB5qYcXbCGMCbPsn9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU5RS9ENDdGRUZDRUQ0 MEIxMUUzODVENDhBNzA1OTExRUEzMi9QajNHS3ROcFFTY0htcGh4ZHNJWXdKcy15 ZjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BqM0dLdE5wUVNjSG1waHhkc0lZd0pzLXlmMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTU5RS9ENDdGRUZDRUQ0MEIxMUUzODVENDhBNzA1OTExRUEzMi9QajNHS3ROcFFT Y0htcGh4ZHNJWXdKcy15ZjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAiuQkdkzcdq+cPk3Wybjpo21JNMC5sUnrvsD6AWT6WLzsGjTfOISwl 3y7dR8ak/vZVizJKVDI8HUqATbpYUb9+1zBthBFwFbidvCBOkF3T3X0yO5U+TtYN efGQfdn/gQpGL6O5e0BIwOhuHXAaqsvRv6KMHNL/UuUP+enho+UXEbEiCX0hMP1Y MC2vJLzGW3eOsgplIEWI/nq42zMqJVC+TGMKrAywqcvNYZ7w3lxH/S57NivODA9u O/4udcAOnasWShtSjDsiU419eIR+jw03DC0jptanIY2E7yaj9eYQJyY+A0VYn4O1 G0FXnUSaRS1V+rEv45OMfPfIjeHl/YKx -----END CERTIFICATE-----Generated at Sat Aug 23 15:55:10 2025 by rpki-client