$ rpki-client -vvf rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.mft File: 3q8cjeT-PFHGkVP8r5_owq1vjiY.mft (raw, json) Hash identifier: 5EK1hQGnBYXNOAqu6JMRknhBWRl287hJNjlVqB+D60w= Subject key identifier: 19:82:3F:AB:F8:03:A7:5B:69:0E:90:96:9D:82:56:20:9E:7A:80:31 Authority key identifier: DE:AF:1C:8D:E4:FE:3C:51:C6:91:53:FC:AF:9F:E8:C2:AD:6F:8E:26 Certificate issuer: /CN=A917AC33/serialNumber=DEAF1C8DE4FE3C51C69153FCAF9FE8C2AD6F8E26 Certificate serial: 0146 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3q8cjeT-PFHGkVP8r5_owq1vjiY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.mft Manifest number: 0143 Signing time: Sat 23 Aug 2025 04:29:20 +0000 Manifest this update: Sat 23 Aug 2025 04:29:19 +0000 Manifest next update: Sat 30 Aug 2025 04:29:19 +0000 Files and hashes: 1: 3q8cjeT-PFHGkVP8r5_owq1vjiY.crl (hash: MsRkWpxkYa9QyGiSme4UYLM2a3JljYaYzzdPZMn7NWU=) 2: 1C2EA330925011EE9571EE40C4F9AE02.roa (hash: g1vuB/s+fKkz9lQDwgz7uwUHIIgwyYOpfROfbA+7Aro=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.crl rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3q8cjeT-PFHGkVP8r5_owq1vjiY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:29:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 326 (0x146) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AC33, serialNumber=DEAF1C8DE4FE3C51C69153FCAF9FE8C2AD6F8E26 Validity Not Before: Aug 23 04:29:19 2025 GMT Not After : Aug 30 04:29:19 2025 GMT Subject: CN=68a943a0-44e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:f2:f0:d6:a6:8d:f8:96:6b:9d:9b:c1:df:b6: 96:2f:4d:be:bf:60:b0:26:ec:75:24:94:4d:74:a3: 1d:b4:3d:5f:6d:81:58:68:c8:18:f3:3a:db:83:34: 18:6c:5b:77:5d:52:7a:7a:f3:32:7e:e4:9c:76:9d: d6:51:f3:75:53:03:4a:a9:37:a9:9f:f6:e1:87:00: 67:18:28:72:93:9f:b8:55:b6:5d:17:ca:10:a1:56: fb:5e:4a:23:d6:59:39:f2:5f:b8:16:72:f1:2b:cf: 60:53:6b:0c:73:94:f1:80:96:3f:60:f9:fb:68:b6: 79:05:19:56:ae:fc:b0:ad:cf:51:bc:f0:e0:3c:41: 2c:13:56:ba:df:5a:e1:de:9f:95:e2:1c:d3:6a:bb: 7a:b1:e1:d3:7d:6d:95:aa:7e:ad:97:80:4d:46:c4: 80:b8:33:e3:fb:2b:d7:66:d3:10:00:b8:b2:e8:46: a7:f3:7c:bc:20:9f:b9:c3:e4:66:82:bd:28:a7:5a: ad:96:f1:58:bc:e2:9a:68:d4:f6:d6:d8:02:ca:87: 78:40:79:d6:df:a1:b8:15:d7:52:de:79:db:7f:e8: 64:b3:75:0d:6f:b3:ee:2a:4a:c9:cb:f0:5b:07:c6: 23:9a:66:fe:9e:80:c5:1d:ef:bb:8b:a9:0e:7d:fa: 4b:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:82:3F:AB:F8:03:A7:5B:69:0E:90:96:9D:82:56:20:9E:7A:80:31 X509v3 Authority Key Identifier: keyid:DE:AF:1C:8D:E4:FE:3C:51:C6:91:53:FC:AF:9F:E8:C2:AD:6F:8E:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3q8cjeT-PFHGkVP8r5_owq1vjiY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:d7:c6:0a:ca:99:af:45:54:f9:7d:98:4a:f4:f6:1d:b9:95: 3c:b7:2c:cb:d6:84:8d:54:e2:b0:ba:4e:46:5c:72:bf:a1:3d: 1a:61:85:ff:92:b1:dd:a2:48:5c:7c:14:d5:5a:bd:bd:ad:33: 1d:1f:8d:cf:a6:9b:08:3a:27:52:7a:1e:88:48:20:51:23:12: 3d:0c:b6:1d:52:de:74:0c:a0:6d:74:83:62:41:5b:a6:69:b3: 01:74:85:47:c0:b9:55:40:0d:d5:39:6d:b2:1d:bb:f7:3e:17: 8b:09:6a:de:ca:87:27:df:68:03:73:4f:d2:5f:d8:cd:9e:0a: b8:78:9b:f5:ba:d9:a9:71:44:d8:c0:cb:a5:b4:90:52:06:55: 46:d2:c6:6f:a1:a5:02:fe:02:ce:6a:a7:e5:41:d7:dd:f0:cc: d6:19:b7:d8:23:3d:6a:36:d7:93:05:4f:1e:9e:a0:e8:95:e7: 12:e6:81:e2:76:29:73:d2:1a:ec:07:0a:c5:fc:5f:89:ab:db: 05:aa:d3:aa:58:29:ae:ea:a5:99:d7:0f:d9:af:87:e0:9e:11: f3:d9:5f:3c:49:73:d3:ea:7d:ce:73:c8:01:73:4d:7c:d2:26: 66:60:d7:0b:03:98:fd:d1:ef:f2:e8:f3:4f:cf:31:d5:ae:ee: 7e:5c:bf:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FDMzMxMTAvBgNVBAUTKERFQUYxQzhERTRGRTNDNTFDNjkxNTNGQ0FGOUZFOEMy QUQ2RjhFMjYwHhcNMjUwODIzMDQyOTE5WhcNMjUwODMwMDQyOTE5WjAYMRYwFAYD VQQDEw02OGE5NDNhMC00NGUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxvLw1qaN+JZrnZvB37aWL02+v2CwJux1JJRNdKMdtD1fbYFYaMgY8zrbgzQY bFt3XVJ6evMyfuScdp3WUfN1UwNKqTepn/bhhwBnGChyk5+4VbZdF8oQoVb7Xkoj 1lk58l+4FnLxK89gU2sMc5TxgJY/YPn7aLZ5BRlWrvywrc9RvPDgPEEsE1a631rh 3p+V4hzTart6seHTfW2Vqn6tl4BNRsSAuDPj+yvXZtMQALiy6Ean83y8IJ+5w+Rm gr0op1qtlvFYvOKaaNT21tgCyod4QHnW36G4FddS3nnbf+hks3UNb7PuKkrJy/Bb B8Yjmmb+noDFHe+7i6kOffpLYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBmCP6v4 A6dbaQ6Qlp2CViCeeoAxMB8GA1UdIwQYMBaAFN6vHI3k/jxRxpFT/K+f6MKtb44m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUMzMy9CMEJGQUMzNDky NEYxMUVFQThDMjI0NDBDNEY5QUUwMi8zcThjamVULVBGSEdrVlA4cjVfb3dxMXZq aVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNxOGNqZVQtUEZIR2tWUDhyNV9vd3ExdmppWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUMzMy9CMEJGQUMzNDkyNEYxMUVFQThDMjI0NDBDNEY5QUUwMi8zcThjamVULVBG SEdrVlA4cjVfb3dxMXZqaVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZ18YKypmvRVT5fZhK9PYduZU8tyzL1oSNVOKwuk5GXHK/oT0aYYX/ krHdokhcfBTVWr29rTMdH43PppsIOidSeh6ISCBRIxI9DLYdUt50DKBtdINiQVum abMBdIVHwLlVQA3VOW2yHbv3PheLCWreyocn32gDc0/SX9jNngq4eJv1utmpcUTY wMultJBSBlVG0sZvoaUC/gLOaqflQdfd8MzWGbfYIz1qNteTBU8enqDolecS5oHi dilz0hrsBwrF/F+Jq9sFqtOqWCmu6qWZ1w/Zr4fgnhHz2V88SXPT6n3Oc8gBc018 0iZmYNcLA5j90e/y6PNPzzHVru5+XL8g -----END CERTIFICATE-----Generated at Sat Aug 23 21:00:50 2025 by rpki-client