$ rpki-client -vvf rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft File: pm3QENok34rhcGvZCMukO9E4ljE.mft (raw, json) Hash identifier: f9DcxynBaDFSOfiBgP2dfcstNcn8OFgozsiwmeRTdzA= Subject key identifier: 9D:E2:EF:2A:48:46:F2:72:B1:1E:96:82:C9:39:D0:54:72:61:D7:EA Authority key identifier: A6:6D:D0:10:DA:24:DF:8A:E1:70:6B:D9:08:CB:A4:3B:D1:38:96:31 Certificate issuer: /CN=A9171753/serialNumber=A66DD010DA24DF8AE1706BD908CBA43BD1389631 Certificate serial: 34BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft Manifest number: 34B2 Signing time: Fri 22 Aug 2025 15:15:20 +0000 Manifest this update: Fri 22 Aug 2025 15:15:19 +0000 Manifest next update: Fri 29 Aug 2025 15:15:19 +0000 Files and hashes: 1: pm3QENok34rhcGvZCMukO9E4ljE.crl (hash: hepsl+9oVZzbUNCrR4ET3gVvgu2eLs9aQqsbGhiP2L0=) 2: DE670A60679D11EEAFBA0A5DC4F9AE02.roa (hash: zHkGq6W1DSD5ffW+BnhDs7qnRsRpvtxDIEM0SIuuDg4=) 3: C92F5F8077A211EDAF94D63EC4F9AE02.roa (hash: /yGsH3AYsghIUdTIUcXoSyBB3f9raZ59e9j2Pg64iUI=) 4: 41623A12778111ED8F236A62C4F9AE02.roa (hash: OYhGj+v27n+SqxvC/qZ2JFeWyJlSzi9WwyujTQsPl7E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.crl rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:15:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13501 (0x34bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171753, serialNumber=A66DD010DA24DF8AE1706BD908CBA43BD1389631 Validity Not Before: Aug 22 15:15:19 2025 GMT Not After : Aug 29 15:15:19 2025 GMT Subject: CN=68a88987-7fa6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:cf:80:a1:04:36:0e:ee:83:67:e4:6b:78:af: 8f:34:66:8e:8d:e1:eb:d2:49:99:77:b7:9b:e9:7a: 20:46:e9:85:a2:f9:90:bc:3c:61:1f:f7:57:0d:6e: d4:87:7e:8e:bd:f2:73:09:b2:22:16:cb:d6:bb:61: f7:dd:eb:fa:60:58:68:b5:b2:91:2b:ae:8d:f7:ba: d5:a7:45:55:13:b8:6c:9d:5c:a4:ed:d2:0b:85:64: 8f:9c:6d:dd:10:c1:2e:ae:99:5b:9e:a9:0c:2b:50: 3f:40:5f:df:de:7c:c8:38:a5:32:41:49:4a:eb:cc: 12:e0:d0:82:e4:3a:a1:26:90:e1:d9:9f:78:59:eb: ca:45:26:ed:93:77:cc:fa:30:fb:42:b1:bb:22:29: fc:8d:98:f3:3d:d9:59:8c:d3:eb:b1:ee:5c:88:7f: 4e:ef:5b:75:c8:33:cc:08:5a:c3:48:c5:69:47:b6: 36:30:39:fa:71:7e:a3:87:86:7d:fd:8b:b3:6a:2d: a1:8a:67:db:f0:29:d0:88:3b:81:bf:27:05:8e:3b: 8e:b4:8f:01:4b:4b:23:d5:55:a8:7d:d7:19:ef:7d: d3:f0:03:5e:95:1d:c6:d0:f0:04:28:0b:97:89:e1: 07:6e:fb:c6:8c:10:58:39:f5:57:66:37:e3:1a:7c: 67:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:E2:EF:2A:48:46:F2:72:B1:1E:96:82:C9:39:D0:54:72:61:D7:EA X509v3 Authority Key Identifier: keyid:A6:6D:D0:10:DA:24:DF:8A:E1:70:6B:D9:08:CB:A4:3B:D1:38:96:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:87:4c:e9:af:f1:cc:0d:17:f5:4d:d7:29:aa:cf:f4:97:e0: 76:ad:70:3e:af:11:43:6a:0a:d2:0e:df:2f:04:b5:87:ec:76: 24:85:02:bd:ae:b5:aa:70:21:68:1a:a4:e4:49:6c:fe:9b:31: c3:f7:59:a9:b7:72:26:7a:65:eb:ae:9a:06:49:dc:95:b9:7b: 90:5c:8b:05:4d:de:5d:4a:18:05:38:43:7d:5f:34:27:4a:a3: cb:9b:0a:68:b3:22:09:66:61:54:a1:22:2e:b8:ae:ac:e5:0c: 12:11:a0:f2:ee:97:c1:fc:ee:5b:d4:ea:87:b3:05:b8:45:1c: 59:5e:2a:2a:e9:c3:8c:1a:19:2b:15:49:7e:3d:ca:c0:df:b0: 83:a7:ee:a9:1d:8f:cf:ab:a7:fc:bd:70:d3:11:9b:fb:4a:43: 36:f7:e5:a3:24:e2:e4:52:9a:6f:b3:11:d1:a0:78:85:0e:53: 60:d2:61:b7:57:a3:ea:66:3b:73:d5:4c:77:79:09:36:a6:71: 1e:06:a7:ee:5c:df:d5:ef:f5:6e:47:13:a4:8f:be:f1:86:4d: 27:53:a5:56:a3:a8:a9:c9:f9:43:63:f1:6b:73:b5:04:79:c2: ba:7e:f9:70:6b:74:b0:ed:45:8c:cb:49:eb:d2:08:20:0f:4d: 66:26:88:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE3NTMxMTAvBgNVBAUTKEE2NkREMDEwREEyNERGOEFFMTcwNkJEOTA4Q0JBNDNC RDEzODk2MzEwHhcNMjUwODIyMTUxNTE5WhcNMjUwODI5MTUxNTE5WjAYMRYwFAYD VQQDEw02OGE4ODk4Ny03ZmE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoc+AoQQ2Du6DZ+RreK+PNGaOjeHr0kmZd7eb6XogRumFovmQvDxhH/dXDW7U h36OvfJzCbIiFsvWu2H33ev6YFhotbKRK66N97rVp0VVE7hsnVyk7dILhWSPnG3d EMEurplbnqkMK1A/QF/f3nzIOKUyQUlK68wS4NCC5DqhJpDh2Z94WevKRSbtk3fM +jD7QrG7Iin8jZjzPdlZjNPrse5ciH9O71t1yDPMCFrDSMVpR7Y2MDn6cX6jh4Z9 /Yuzai2himfb8CnQiDuBvycFjjuOtI8BS0sj1VWofdcZ733T8ANelR3G0PAEKAuX ieEHbvvGjBBYOfVXZjfjGnxnFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ3i7ypI RvJysR6Wgsk50FRyYdfqMB8GA1UdIwQYMBaAFKZt0BDaJN+K4XBr2QjLpDvROJYx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTc1My84MDUxNDU5MDFE QTcxMUUyQUFBOTRBQTEwOEIwMkNEMi9wbTNRRU5vazM0cmhjR3ZaQ011a085RTRs akUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BtM1FFTm9rMzRyaGNHdlpDTXVrTzlFNGxqRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTc1My84MDUxNDU5MDFEQTcxMUUyQUFBOTRBQTEwOEIwMkNEMi9wbTNRRU5vazM0 cmhjR3ZaQ011a085RTRsakUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgh0zpr/HMDRf1Tdcpqs/0l+B2rXA+rxFDagrSDt8vBLWH7HYkhQK9 rrWqcCFoGqTkSWz+mzHD91mpt3ImemXrrpoGSdyVuXuQXIsFTd5dShgFOEN9XzQn SqPLmwposyIJZmFUoSIuuK6s5QwSEaDy7pfB/O5b1OqHswW4RRxZXioq6cOMGhkr FUl+PcrA37CDp+6pHY/Pq6f8vXDTEZv7SkM29+WjJOLkUppvsxHRoHiFDlNg0mG3 V6PqZjtz1Ux3eQk2pnEeBqfuXN/V7/VuRxOkj77xhk0nU6VWo6ipyflDY/Frc7UE ecK6fvlwa3Sw7UWMy0nr0gggD01mJoiU -----END CERTIFICATE-----Generated at Sat Aug 23 19:37:55 2025 by rpki-client