$ rpki-client -vvf rpki.apnic.net/member_repository/A917C11A/C086EA985A3911EB8E59C266C4F9AE02/3oFz59KP6tHsOpLJdljacyhQk-U.mft File: 3oFz59KP6tHsOpLJdljacyhQk-U.mft (raw, json) Hash identifier: kDr5woyuS/4skAnHGp6cnDFAjSejLRfQxSJ0pN+xjrs= Subject key identifier: D4:0E:65:79:5B:F4:9B:C6:6E:C2:60:51:85:21:FA:CB:2E:BC:4C:44 Authority key identifier: DE:81:73:E7:D2:8F:EA:D1:EC:3A:92:C9:76:58:DA:73:28:50:93:E5 Certificate issuer: /CN=A917C11A/serialNumber=DE8173E7D28FEAD1EC3A92C97658DA73285093E5 Certificate serial: 06F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oFz59KP6tHsOpLJdljacyhQk-U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C11A/C086EA985A3911EB8E59C266C4F9AE02/3oFz59KP6tHsOpLJdljacyhQk-U.mft Manifest number: 06F0 Signing time: Fri 22 Aug 2025 22:06:37 +0000 Manifest this update: Fri 22 Aug 2025 22:06:36 +0000 Manifest next update: Fri 29 Aug 2025 22:06:36 +0000 Files and hashes: 1: 3oFz59KP6tHsOpLJdljacyhQk-U.crl (hash: lHhXBTf1nhDwpU00l3VQFmEa4B+wMDhaRvSr6AtXeac=) 2: 4002E4BA5A3B11EBA4020D68C4F9AE02.roa (hash: owZNdsc75aBAEeMxk8dZOIuYb/+Ukc36obf7oLhTJGg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C11A/C086EA985A3911EB8E59C266C4F9AE02/3oFz59KP6tHsOpLJdljacyhQk-U.crl rsync://rpki.apnic.net/member_repository/A917C11A/C086EA985A3911EB8E59C266C4F9AE02/3oFz59KP6tHsOpLJdljacyhQk-U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oFz59KP6tHsOpLJdljacyhQk-U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:06:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1782 (0x6f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C11A, serialNumber=DE8173E7D28FEAD1EC3A92C97658DA73285093E5 Validity Not Before: Aug 22 22:06:36 2025 GMT Not After : Aug 29 22:06:36 2025 GMT Subject: CN=68a8e9ec-5ffa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:59:b3:52:19:56:f9:1d:a4:6e:aa:e4:86:c3: bb:19:05:e2:66:3b:92:b3:84:d0:27:f5:33:2b:70: e5:c0:61:b5:01:4f:97:95:c0:34:77:90:9b:fe:33: f9:84:0f:17:6b:07:47:88:8b:3c:47:38:e7:02:d1: 8f:d9:bc:87:ba:69:9a:d9:fc:ac:0e:cb:c1:7b:75: be:30:12:ee:37:fa:a1:8f:20:c2:99:83:d2:89:94: fc:7d:a4:9d:68:c5:1b:ca:63:63:0e:48:c7:3a:bc: a6:f8:ca:8e:5e:e8:90:b0:90:5c:a5:45:9d:2f:c9: 57:af:7c:11:c7:31:4c:6d:51:e0:d6:e4:b5:ea:57: cb:c8:08:7e:fe:8f:f9:d9:bc:e9:af:11:bf:78:17: bd:15:14:fe:fe:e5:ef:0e:4c:f8:3f:20:ec:4b:36: c0:07:dd:05:ca:a9:ec:db:0b:58:34:0b:bb:8a:36: 5b:9d:ba:54:86:0a:e9:85:97:f0:19:db:5a:c4:25: da:f3:7c:9d:9e:0f:b1:c8:52:6e:3e:0a:c3:11:de: 4c:f8:81:bc:93:0f:05:a1:61:b9:e0:89:1c:6e:94: fe:e6:45:bd:bb:5d:35:34:fc:2c:04:ff:41:ab:31: 97:d7:fe:4a:f3:a3:8f:57:b2:7f:db:7a:7f:9c:5f: da:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:0E:65:79:5B:F4:9B:C6:6E:C2:60:51:85:21:FA:CB:2E:BC:4C:44 X509v3 Authority Key Identifier: keyid:DE:81:73:E7:D2:8F:EA:D1:EC:3A:92:C9:76:58:DA:73:28:50:93:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C11A/C086EA985A3911EB8E59C266C4F9AE02/3oFz59KP6tHsOpLJdljacyhQk-U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oFz59KP6tHsOpLJdljacyhQk-U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C11A/C086EA985A3911EB8E59C266C4F9AE02/3oFz59KP6tHsOpLJdljacyhQk-U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:0c:e6:5b:df:27:02:d6:28:e2:a9:bc:ed:a5:78:d4:8c:7e: 38:75:78:c9:d0:2d:93:e8:9f:20:19:5a:68:b7:94:4e:3c:25: 7c:62:69:66:c4:e1:93:10:f2:ae:fe:1c:4f:5c:5b:73:62:ba: b1:a9:80:f7:c2:05:1b:40:b9:6f:c0:e4:df:5b:2e:ac:49:6b: db:d5:52:91:ef:70:d6:ff:1b:af:ea:2e:c3:80:2b:d6:81:23: 40:5e:53:81:30:7b:ba:8d:68:c9:37:0a:73:b6:fd:25:37:5b: c2:35:fc:df:f5:b4:d7:62:cc:86:58:64:9f:80:7a:e9:0b:2f: fb:e5:21:a9:5e:5b:95:02:b6:e9:ac:f7:81:94:d9:23:26:10: 48:34:94:80:da:55:65:f2:26:a6:eb:47:89:85:73:8f:2f:1d: f3:a9:87:c5:89:a7:66:25:67:d8:2e:86:cf:3d:65:89:e8:50: c2:89:a6:b2:8d:70:21:94:23:69:9a:9d:6a:d5:e1:4f:2f:78: e6:71:51:84:80:8d:26:d9:4b:1c:5d:93:e8:54:5e:27:ff:ec: c5:42:c2:e2:07:ec:96:ae:c1:25:29:5f:cf:c8:2e:c5:14:42: 3c:4c:b5:39:6c:6a:b1:b5:08:d0:b3:3c:37:5c:46:9d:f0:7c: 95:79:63:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBvYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0MxMUExMTAvBgNVBAUTKERFODE3M0U3RDI4RkVBRDFFQzNBOTJDOTc2NThEQTcz Mjg1MDkzRTUwHhcNMjUwODIyMjIwNjM2WhcNMjUwODI5MjIwNjM2WjAYMRYwFAYD VQQDEw02OGE4ZTllYy01ZmZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6lmzUhlW+R2kbqrkhsO7GQXiZjuSs4TQJ/UzK3DlwGG1AU+XlcA0d5Cb/jP5 hA8XawdHiIs8RzjnAtGP2byHumma2fysDsvBe3W+MBLuN/qhjyDCmYPSiZT8faSd aMUbymNjDkjHOrym+MqOXuiQsJBcpUWdL8lXr3wRxzFMbVHg1uS16lfLyAh+/o/5 2bzprxG/eBe9FRT+/uXvDkz4PyDsSzbAB90Fyqns2wtYNAu7ijZbnbpUhgrphZfw GdtaxCXa83ydng+xyFJuPgrDEd5M+IG8kw8FoWG54IkcbpT+5kW9u101NPwsBP9B qzGX1/5K86OPV7J/23p/nF/arQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNQOZXlb 9JvGbsJgUYUh+ssuvExEMB8GA1UdIwQYMBaAFN6Bc+fSj+rR7DqSyXZY2nMoUJPl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzExQS9DMDg2RUE5ODVB MzkxMUVCOEU1OUMyNjZDNEY5QUUwMi8zb0Z6NTlLUDZ0SHNPcExKZGxqYWN5aFFr LVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNvRno1OUtQNnRIc09wTEpkbGphY3loUWstVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzExQS9DMDg2RUE5ODVBMzkxMUVCOEU1OUMyNjZDNEY5QUUwMi8zb0Z6NTlLUDZ0 SHNPcExKZGxqYWN5aFFrLVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjDOZb3ycC1ijiqbztpXjUjH44dXjJ0C2T6J8gGVpot5ROPCV8Ymlm xOGTEPKu/hxPXFtzYrqxqYD3wgUbQLlvwOTfWy6sSWvb1VKR73DW/xuv6i7DgCvW gSNAXlOBMHu6jWjJNwpztv0lN1vCNfzf9bTXYsyGWGSfgHrpCy/75SGpXluVArbp rPeBlNkjJhBINJSA2lVl8iam60eJhXOPLx3zqYfFiadmJWfYLobPPWWJ6FDCiaay jXAhlCNpmp1q1eFPL3jmcVGEgI0m2UscXZPoVF4n/+zFQsLiB+yWrsElKV/PyC7F FEI8TLU5bGqxtQjQszw3XEad8HyVeWNs -----END CERTIFICATE-----Generated at Sat Aug 23 19:38:56 2025 by rpki-client