$ rpki-client -vvf rpki.apnic.net/member_repository/A916A0AA/6A4FFC7A0F1011EAA969FE43C4F9AE02/u3QQVrccdV0D-5zyFKQSTKTzdgw.mft File: u3QQVrccdV0D-5zyFKQSTKTzdgw.mft (raw, json) Hash identifier: fwSusi2D/1L/VGw/7ljL4G3GzWGP4PdcAs18CiLFJR4= Subject key identifier: A7:89:65:E2:50:16:2D:41:64:64:5E:47:77:9E:58:AA:5E:CC:30:E5 Authority key identifier: BB:74:10:56:B7:1C:75:5D:03:FB:9C:F2:14:A4:12:4C:A4:F3:76:0C Certificate issuer: /CN=A916A0AA/serialNumber=BB741056B71C755D03FB9CF214A4124CA4F3760C Certificate serial: 0C27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u3QQVrccdV0D-5zyFKQSTKTzdgw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A0AA/6A4FFC7A0F1011EAA969FE43C4F9AE02/u3QQVrccdV0D-5zyFKQSTKTzdgw.mft Manifest number: 0C1E Signing time: Fri 04 Jul 2025 18:58:38 +0000 Manifest this update: Fri 04 Jul 2025 18:58:38 +0000 Manifest next update: Fri 11 Jul 2025 18:58:38 +0000 Files and hashes: 1: u3QQVrccdV0D-5zyFKQSTKTzdgw.crl (hash: ZYJwf/O3QzJY1lUhKy0jZX3d0YChJ+quUhg8r9lZUqE=) 2: 5AD6AAFE0F1111EA932F3E45C4F9AE02.roa (hash: fVpTiz95zT96q52Sv8C+QJmIZKHHi2b0N2xlEcRtgMo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A0AA/6A4FFC7A0F1011EAA969FE43C4F9AE02/u3QQVrccdV0D-5zyFKQSTKTzdgw.crl rsync://rpki.apnic.net/member_repository/A916A0AA/6A4FFC7A0F1011EAA969FE43C4F9AE02/u3QQVrccdV0D-5zyFKQSTKTzdgw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u3QQVrccdV0D-5zyFKQSTKTzdgw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3111 (0xc27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A0AA, serialNumber=BB741056B71C755D03FB9CF214A4124CA4F3760C Validity Not Before: Jul 4 18:58:38 2025 GMT Not After : Jul 11 18:58:38 2025 GMT Subject: CN=6868245e-4e75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:02:2b:2c:52:4b:04:22:11:51:2d:42:e0:1a: 42:59:41:5d:03:80:fd:91:5b:7c:5e:f9:b4:51:40: 7b:b2:3d:1b:fd:b4:8f:c0:92:0c:f3:23:78:23:39: 1b:fe:f5:30:c1:7c:4d:50:00:0d:22:e1:6b:ed:49: 6f:07:e9:1f:61:5b:72:d7:18:89:9b:b0:82:88:29: 1d:b9:8d:2a:0f:c5:68:95:19:c4:97:5c:d0:8f:c9: de:55:8e:e1:65:dd:19:ae:c7:3d:fb:ab:d1:e2:92: e3:55:80:10:98:4f:f7:bd:f1:1e:54:0e:bc:3c:f7: 76:21:38:32:50:45:07:2b:00:5d:0b:ea:45:bd:5c: a3:b3:2b:b8:75:fe:b8:f2:2f:28:77:22:8e:84:38: f2:fa:7b:9a:4e:45:6f:61:a7:d2:0b:76:ef:2c:c0: 78:31:ff:de:62:bc:78:9b:c9:0b:f5:43:85:1d:f4: 82:62:fe:54:da:d2:52:33:4a:b7:36:7a:f9:35:6d: 66:e7:24:f6:ba:54:f3:cc:94:43:f1:65:fc:65:d4: 8b:50:ac:3f:d3:18:42:3c:1e:0d:8a:81:d8:8d:19: db:4d:4e:57:91:1c:a5:ea:ce:f7:1e:48:19:17:62: 40:a1:3e:98:ff:51:b4:d0:6b:10:49:b9:80:1e:57: 75:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:89:65:E2:50:16:2D:41:64:64:5E:47:77:9E:58:AA:5E:CC:30:E5 X509v3 Authority Key Identifier: keyid:BB:74:10:56:B7:1C:75:5D:03:FB:9C:F2:14:A4:12:4C:A4:F3:76:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A0AA/6A4FFC7A0F1011EAA969FE43C4F9AE02/u3QQVrccdV0D-5zyFKQSTKTzdgw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u3QQVrccdV0D-5zyFKQSTKTzdgw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A0AA/6A4FFC7A0F1011EAA969FE43C4F9AE02/u3QQVrccdV0D-5zyFKQSTKTzdgw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:a1:ed:f8:dc:4f:fc:ea:86:90:1a:12:f5:3f:e9:52:a2:d5: 45:e7:4e:e1:ac:f4:09:9a:7c:3a:54:c1:c8:90:5d:d7:15:8f: 70:d3:5b:fd:97:77:73:8a:db:68:ba:96:fe:d8:56:29:ee:4f: 03:b7:f3:69:90:6a:5d:aa:a3:a8:e1:11:0a:fa:30:9b:cd:f8: 60:76:f9:44:01:c9:89:b6:e5:a3:1d:25:80:2a:b5:df:df:2e: 2e:e5:15:49:74:f9:cb:a1:61:7b:e0:3e:7f:7d:b9:dd:32:4a: aa:98:a8:0e:b6:52:2a:1f:f0:2a:b7:97:bf:6c:ad:ac:4d:b1: 4c:0b:ec:82:54:94:c2:4b:62:ca:62:32:45:4d:ea:4b:58:54: 61:f1:c3:ec:02:3d:26:e0:91:ba:59:0b:c8:63:7a:4c:87:f5: 11:d0:c9:fc:0a:0e:5e:23:55:c4:0b:82:ec:61:b4:5e:75:69: a7:0f:bd:3e:4f:75:78:fe:d8:6b:3d:0f:0d:78:dd:46:72:48: 3a:06:b7:dd:92:9d:94:59:a0:9c:39:b6:df:e0:91:38:3a:f5: 1f:d2:54:6f:9e:c0:c5:d4:32:71:b7:87:cb:b6:2d:38:6e:d8: a9:6b:94:1a:ad:91:a0:3f:5b:d5:a6:c2:7f:7b:8e:f7:3a:ff: d1:36:6d:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEwQUExMTAvBgNVBAUTKEJCNzQxMDU2QjcxQzc1NUQwM0ZCOUNGMjE0QTQxMjRD QTRGMzc2MEMwHhcNMjUwNzA0MTg1ODM4WhcNMjUwNzExMTg1ODM4WjAYMRYwFAYD VQQDEw02ODY4MjQ1ZS00ZTc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzAIrLFJLBCIRUS1C4BpCWUFdA4D9kVt8Xvm0UUB7sj0b/bSPwJIM8yN4Izkb /vUwwXxNUAANIuFr7UlvB+kfYVty1xiJm7CCiCkduY0qD8VolRnEl1zQj8neVY7h Zd0Zrsc9+6vR4pLjVYAQmE/3vfEeVA68PPd2ITgyUEUHKwBdC+pFvVyjsyu4df64 8i8odyKOhDjy+nuaTkVvYafSC3bvLMB4Mf/eYrx4m8kL9UOFHfSCYv5U2tJSM0q3 Nnr5NW1m5yT2ulTzzJRD8WX8ZdSLUKw/0xhCPB4NioHYjRnbTU5XkRyl6s73HkgZ F2JAoT6Y/1G00GsQSbmAHld1VwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKeJZeJQ Fi1BZGReR3eeWKpezDDlMB8GA1UdIwQYMBaAFLt0EFa3HHVdA/uc8hSkEkyk83YM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTBBQS82QTRGRkM3QTBG MTAxMUVBQTk2OUZFNDNDNEY5QUUwMi91M1FRVnJjY2RWMEQtNXp5RktRU1RLVHpk Z3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UzUVFWcmNjZFYwRC01enlGS1FTVEtUemRndy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTBBQS82QTRGRkM3QTBGMTAxMUVBQTk2OUZFNDNDNEY5QUUwMi91M1FRVnJjY2RW MEQtNXp5RktRU1RLVHpkZ3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLoe343E/86oaQGhL1P+lSotVF507hrPQJmnw6VMHIkF3XFY9w01v9 l3dzittoupb+2FYp7k8Dt/NpkGpdqqOo4REK+jCbzfhgdvlEAcmJtuWjHSWAKrXf 3y4u5RVJdPnLoWF74D5/fbndMkqqmKgOtlIqH/Aqt5e/bK2sTbFMC+yCVJTCS2LK YjJFTepLWFRh8cPsAj0m4JG6WQvIY3pMh/UR0Mn8Cg5eI1XEC4LsYbRedWmnD70+ T3V4/thrPQ8NeN1Gckg6Brfdkp2UWaCcObbf4JE4OvUf0lRvnsDF1DJxt4fLti04 btipa5QarZGgP1vVpsJ/e473Ov/RNm03 -----END CERTIFICATE-----Generated at Fri Jul 4 22:31:26 2025 by rpki-client