$ rpki-client -vvf rpki.apnic.net/member_repository/A918143E/A3C07B86798911EABCBA2166C4F9AE02/-r3gfSxVjb3PPDIAdre1X9-gR0A.mft File: -r3gfSxVjb3PPDIAdre1X9-gR0A.mft (raw, json) Hash identifier: rAT18C1QwsFllFmCt8qo0ogJmax/CsHCJ0uKuQNDDBU= Subject key identifier: 39:F6:83:15:BF:D2:EC:B3:4B:EB:F4:94:5D:CC:2F:99:5B:DC:54:5A Authority key identifier: FA:BD:E0:7D:2C:55:8D:BD:CF:3C:32:00:76:B7:B5:5F:DF:A0:47:40 Certificate issuer: /CN=A918143E/serialNumber=FABDE07D2C558DBDCF3C320076B7B55FDFA04740 Certificate serial: 0A21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-r3gfSxVjb3PPDIAdre1X9-gR0A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918143E/A3C07B86798911EABCBA2166C4F9AE02/-r3gfSxVjb3PPDIAdre1X9-gR0A.mft Manifest number: 0A1A Signing time: Fri 22 Aug 2025 19:55:53 +0000 Manifest this update: Fri 22 Aug 2025 19:55:52 +0000 Manifest next update: Fri 29 Aug 2025 19:55:52 +0000 Files and hashes: 1: -r3gfSxVjb3PPDIAdre1X9-gR0A.crl (hash: NLC71B/G3ux7IAgCIPfJX6AJWzfOLNESXRnDtdKlA1I=) 2: 7E4ED0E4798B11EA90252969C4F9AE02.roa (hash: zi/2a7j2lYedIWZB1ZQVEfFe/URKlsQ3C6l5x+UUMmo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918143E/A3C07B86798911EABCBA2166C4F9AE02/-r3gfSxVjb3PPDIAdre1X9-gR0A.crl rsync://rpki.apnic.net/member_repository/A918143E/A3C07B86798911EABCBA2166C4F9AE02/-r3gfSxVjb3PPDIAdre1X9-gR0A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-r3gfSxVjb3PPDIAdre1X9-gR0A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:55:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2593 (0xa21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918143E, serialNumber=FABDE07D2C558DBDCF3C320076B7B55FDFA04740 Validity Not Before: Aug 22 19:55:52 2025 GMT Not After : Aug 29 19:55:52 2025 GMT Subject: CN=68a8cb48-cfa2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:6f:30:11:49:c1:cd:06:d5:87:6a:c3:c1:f0: 34:a5:34:d1:b8:a1:8d:24:76:5f:6c:62:98:4b:30: 4e:e2:dd:44:5e:61:c2:27:80:96:9d:38:38:e4:1f: f8:74:07:d1:c1:d6:75:b9:bc:b8:de:17:5a:38:55: 7f:aa:4b:66:c8:51:fd:fe:c0:d6:62:82:21:b5:bc: de:68:13:83:7c:a7:bd:fc:fc:c4:8b:01:2a:0e:fd: e8:30:60:71:64:1c:db:61:bf:50:fc:fb:58:ba:e3: 43:72:44:0c:8b:62:6b:be:c5:4d:53:98:6d:55:9d: cb:33:1b:e3:bb:3a:89:3c:ec:67:bb:b7:21:8f:d6: e4:19:ea:db:54:44:91:41:49:0b:a4:92:81:15:03: 6b:a3:13:e6:21:a6:65:fe:ac:bf:61:c2:16:ed:a8: 19:a2:a7:e9:1b:bb:33:20:23:ef:1b:77:e5:3d:22: b6:d0:9c:b3:9f:b2:00:e5:87:9d:f4:4e:06:e6:fc: de:92:ad:69:f7:d8:0f:02:56:9c:a8:ef:25:4a:43: 4e:5f:6f:38:ca:50:68:14:9c:e3:ff:6c:b9:36:de: cd:02:ab:91:c5:ec:d3:00:f3:46:53:97:83:22:7f: 2b:8f:74:d5:bf:fa:32:5f:46:bf:23:9d:f1:b8:ba: 47:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:F6:83:15:BF:D2:EC:B3:4B:EB:F4:94:5D:CC:2F:99:5B:DC:54:5A X509v3 Authority Key Identifier: keyid:FA:BD:E0:7D:2C:55:8D:BD:CF:3C:32:00:76:B7:B5:5F:DF:A0:47:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918143E/A3C07B86798911EABCBA2166C4F9AE02/-r3gfSxVjb3PPDIAdre1X9-gR0A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-r3gfSxVjb3PPDIAdre1X9-gR0A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918143E/A3C07B86798911EABCBA2166C4F9AE02/-r3gfSxVjb3PPDIAdre1X9-gR0A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:ce:7f:c3:d5:c9:fe:00:6f:f4:cb:a5:b9:92:f7:b6:72:d3: c5:cd:52:68:df:b0:03:ac:2c:fc:58:d9:6a:ed:7b:8e:8e:81: 35:5f:02:40:d8:b0:b2:08:50:b9:95:81:ee:30:27:db:23:da: 8e:77:ef:92:d9:6d:f4:23:65:76:f1:25:c6:58:ce:e9:c4:97: 9a:02:64:27:31:dc:f2:34:8b:43:73:8d:2b:99:33:7b:04:33: ed:28:35:34:73:6c:59:dc:82:c7:76:a1:2d:aa:ef:ac:d3:4b: e3:f3:4a:99:37:ca:a7:de:95:17:80:1b:f6:07:88:1f:df:10: b9:68:25:c2:18:88:5c:cd:54:5f:91:6b:4f:04:f9:c9:09:7d: 11:45:5f:2d:a4:51:6b:d7:d4:11:c7:b1:7f:ed:69:b8:ab:00: 7c:81:a3:fc:9b:bf:0e:48:d2:35:38:5a:d5:e3:e8:d1:bc:57: 23:24:f8:ca:1b:fc:16:73:d6:f8:59:06:bd:b1:e4:00:41:b9: 17:39:17:be:8a:bd:ba:f0:9e:39:37:b8:6e:8b:bc:f6:14:0b: 5e:e4:48:0a:fc:8a:a0:75:74:11:8a:12:16:f6:3c:94:36:02: 26:1b:ca:6b:b9:8b:49:25:15:e7:5b:82:32:c2:dd:39:94:78: a5:65:67:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCiEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODE0M0UxMTAvBgNVBAUTKEZBQkRFMDdEMkM1NThEQkRDRjNDMzIwMDc2QjdCNTVG REZBMDQ3NDAwHhcNMjUwODIyMTk1NTUyWhcNMjUwODI5MTk1NTUyWjAYMRYwFAYD VQQDEw02OGE4Y2I0OC1jZmEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtG8wEUnBzQbVh2rDwfA0pTTRuKGNJHZfbGKYSzBO4t1EXmHCJ4CWnTg45B/4 dAfRwdZ1uby43hdaOFV/qktmyFH9/sDWYoIhtbzeaBODfKe9/PzEiwEqDv3oMGBx ZBzbYb9Q/PtYuuNDckQMi2JrvsVNU5htVZ3LMxvjuzqJPOxnu7chj9bkGerbVESR QUkLpJKBFQNroxPmIaZl/qy/YcIW7agZoqfpG7szICPvG3flPSK20Jyzn7IA5Yed 9E4G5vzekq1p99gPAlacqO8lSkNOX284ylBoFJzj/2y5Nt7NAquRxezTAPNGU5eD In8rj3TVv/oyX0a/I53xuLpHuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDn2gxW/ 0uyzS+v0lF3ML5lb3FRaMB8GA1UdIwQYMBaAFPq94H0sVY29zzwyAHa3tV/foEdA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTQzRS9BM0MwN0I4Njc5 ODkxMUVBQkNCQTIxNjZDNEY5QUUwMi8tcjNnZlN4VmpiM1BQRElBZHJlMVg5LWdS MEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1yM2dmU3hWamIzUFBESUFkcmUxWDktZ1IwQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MTQzRS9BM0MwN0I4Njc5ODkxMUVBQkNCQTIxNjZDNEY5QUUwMi8tcjNnZlN4Vmpi M1BQRElBZHJlMVg5LWdSMEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqzn/D1cn+AG/0y6W5kve2ctPFzVJo37ADrCz8WNlq7XuOjoE1XwJA 2LCyCFC5lYHuMCfbI9qOd++S2W30I2V28SXGWM7pxJeaAmQnMdzyNItDc40rmTN7 BDPtKDU0c2xZ3ILHdqEtqu+s00vj80qZN8qn3pUXgBv2B4gf3xC5aCXCGIhczVRf kWtPBPnJCX0RRV8tpFFr19QRx7F/7Wm4qwB8gaP8m78OSNI1OFrV4+jRvFcjJPjK G/wWc9b4WQa9seQAQbkXORe+ir268J45N7hui7z2FAte5EgK/IqgdXQRihIW9jyU NgImG8pruYtJJRXnW4Iywt05lHilZWcX -----END CERTIFICATE-----Generated at Sun Aug 24 06:48:14 2025 by rpki-client