$ rpki-client -vvf rpki.apnic.net/member_repository/A918143E/A3C07B86798911EABCBA2166C4F9AE02/-r3gfSxVjb3PPDIAdre1X9-gR0A.mft File: -r3gfSxVjb3PPDIAdre1X9-gR0A.mft (raw, json) Hash identifier: pelAK1AMYvzPWsNOfP2zeTuc8a1td95Vd/WBjrjL2Jo= Subject key identifier: 3B:CF:73:DE:86:27:C6:5F:2B:BB:69:BE:C2:96:85:61:28:8A:FF:3C Authority key identifier: FA:BD:E0:7D:2C:55:8D:BD:CF:3C:32:00:76:B7:B5:5F:DF:A0:47:40 Certificate issuer: /CN=A918143E/serialNumber=FABDE07D2C558DBDCF3C320076B7B55FDFA04740 Certificate serial: 0A07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-r3gfSxVjb3PPDIAdre1X9-gR0A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918143E/A3C07B86798911EABCBA2166C4F9AE02/-r3gfSxVjb3PPDIAdre1X9-gR0A.mft Manifest number: 0A00 Signing time: Wed 02 Jul 2025 20:04:45 +0000 Manifest this update: Wed 02 Jul 2025 20:04:45 +0000 Manifest next update: Wed 09 Jul 2025 20:04:45 +0000 Files and hashes: 1: -r3gfSxVjb3PPDIAdre1X9-gR0A.crl (hash: LjrdS2HKAFRoYeNkFVRz932r8njOFwOOa9fRltpKP1E=) 2: 7E4ED0E4798B11EA90252969C4F9AE02.roa (hash: zi/2a7j2lYedIWZB1ZQVEfFe/URKlsQ3C6l5x+UUMmo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918143E/A3C07B86798911EABCBA2166C4F9AE02/-r3gfSxVjb3PPDIAdre1X9-gR0A.crl rsync://rpki.apnic.net/member_repository/A918143E/A3C07B86798911EABCBA2166C4F9AE02/-r3gfSxVjb3PPDIAdre1X9-gR0A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-r3gfSxVjb3PPDIAdre1X9-gR0A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:04:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2567 (0xa07) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918143E, serialNumber=FABDE07D2C558DBDCF3C320076B7B55FDFA04740 Validity Not Before: Jul 2 20:04:45 2025 GMT Not After : Jul 9 20:04:45 2025 GMT Subject: CN=686590dd-3b6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:7e:92:e8:a5:f2:cf:69:e6:73:28:e9:dd:39: 5a:38:b3:e7:83:d5:33:20:00:07:d0:e0:1f:8b:43: 4e:39:54:40:bd:fd:20:9d:d0:d1:e2:61:43:c9:c5: d7:7e:7a:40:5f:05:26:22:aa:39:77:d5:04:5e:44: ac:13:d7:6e:cb:37:3d:67:78:60:e1:c9:6d:70:99: b6:ff:71:d6:ab:b4:4a:f7:50:69:0f:4f:da:42:78: 0a:06:f0:8a:1d:ce:0b:b6:3e:35:37:95:21:fd:70: 95:31:6e:4f:f5:56:e0:7d:dc:5f:f2:13:1c:da:40: fd:97:60:85:01:8d:62:c9:ef:9e:10:31:58:c1:12: 5d:bc:16:a7:eb:1d:61:ed:59:82:7d:98:c9:00:ce: b1:c0:94:6b:55:e3:c2:84:47:7a:5e:ba:b1:1c:46: 39:4c:ee:92:a4:21:99:e8:c0:ae:98:59:5f:24:6c: 72:db:a5:a9:55:0c:ef:f6:7e:1d:6e:15:64:7b:39: ab:1d:19:06:bb:a5:0c:d9:75:72:a4:90:a6:14:fa: e9:cf:84:d0:19:06:1f:4b:bb:0a:0a:e1:d6:50:60: cb:46:a9:6d:7e:09:08:ed:b8:22:ab:8d:27:b2:70: 7a:e6:b0:2c:47:a1:30:ce:0c:57:8a:e8:74:ef:b6: b3:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:CF:73:DE:86:27:C6:5F:2B:BB:69:BE:C2:96:85:61:28:8A:FF:3C X509v3 Authority Key Identifier: keyid:FA:BD:E0:7D:2C:55:8D:BD:CF:3C:32:00:76:B7:B5:5F:DF:A0:47:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918143E/A3C07B86798911EABCBA2166C4F9AE02/-r3gfSxVjb3PPDIAdre1X9-gR0A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-r3gfSxVjb3PPDIAdre1X9-gR0A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918143E/A3C07B86798911EABCBA2166C4F9AE02/-r3gfSxVjb3PPDIAdre1X9-gR0A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:97:79:1d:06:07:4e:6b:0a:a5:d1:3a:de:3a:68:a2:4e:95: a6:ea:be:35:98:ab:89:2c:f6:d6:92:9a:52:a4:ac:89:70:f0: ee:2c:9f:6a:8e:d1:97:cb:90:9c:ae:44:a5:88:1e:3b:90:fc: 95:99:a7:e7:3c:d8:77:d8:9d:4c:c7:d9:00:ce:ea:48:b9:54: 4d:cb:1d:95:60:5b:4e:7d:1d:61:c6:9a:08:8a:ee:67:25:9a: 1a:76:96:66:b1:69:6d:73:5d:d7:da:ba:19:4d:f9:d6:00:5c: bf:ec:dd:38:cf:1f:35:c4:25:3b:12:2d:6c:28:66:d0:fe:14: 75:ab:2c:37:23:64:36:2d:c2:61:86:fd:42:93:bb:f5:d2:ce: 9f:5f:db:cf:bb:79:3e:8b:ad:e2:7b:53:58:0b:59:e3:18:0d: 2a:4b:2d:61:d3:16:d2:a5:fa:c3:ac:b5:94:7d:66:25:b3:b2: c5:ad:e2:b7:8a:b4:5b:af:30:4a:c5:8f:3b:11:69:93:b8:b1: 5b:cf:6b:4b:e9:4e:22:64:43:04:2a:57:f6:30:40:14:65:3d: a4:ec:72:48:e1:3f:fd:7d:a7:7d:ee:7a:70:51:55:f9:1d:14: 10:d4:09:38:4d:ce:b1:ba:50:6e:36:2b:b6:f9:30:16:36:be: 02:bb:36:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCgcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODE0M0UxMTAvBgNVBAUTKEZBQkRFMDdEMkM1NThEQkRDRjNDMzIwMDc2QjdCNTVG REZBMDQ3NDAwHhcNMjUwNzAyMjAwNDQ1WhcNMjUwNzA5MjAwNDQ1WjAYMRYwFAYD VQQDEw02ODY1OTBkZC0zYjZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo36S6KXyz2nmcyjp3TlaOLPng9UzIAAH0OAfi0NOOVRAvf0gndDR4mFDycXX fnpAXwUmIqo5d9UEXkSsE9duyzc9Z3hg4cltcJm2/3HWq7RK91BpD0/aQngKBvCK Hc4Ltj41N5Uh/XCVMW5P9Vbgfdxf8hMc2kD9l2CFAY1iye+eEDFYwRJdvBan6x1h 7VmCfZjJAM6xwJRrVePChEd6XrqxHEY5TO6SpCGZ6MCumFlfJGxy26WpVQzv9n4d bhVkezmrHRkGu6UM2XVypJCmFPrpz4TQGQYfS7sKCuHWUGDLRqltfgkI7bgiq40n snB65rAsR6EwzgxXiuh077azqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDvPc96G J8ZfK7tpvsKWhWEoiv88MB8GA1UdIwQYMBaAFPq94H0sVY29zzwyAHa3tV/foEdA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTQzRS9BM0MwN0I4Njc5 ODkxMUVBQkNCQTIxNjZDNEY5QUUwMi8tcjNnZlN4VmpiM1BQRElBZHJlMVg5LWdS MEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1yM2dmU3hWamIzUFBESUFkcmUxWDktZ1IwQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MTQzRS9BM0MwN0I4Njc5ODkxMUVBQkNCQTIxNjZDNEY5QUUwMi8tcjNnZlN4Vmpi M1BQRElBZHJlMVg5LWdSMEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBal3kdBgdOawql0TreOmiiTpWm6r41mKuJLPbWkppSpKyJcPDuLJ9q jtGXy5CcrkSliB47kPyVmafnPNh32J1Mx9kAzupIuVRNyx2VYFtOfR1hxpoIiu5n JZoadpZmsWltc13X2roZTfnWAFy/7N04zx81xCU7Ei1sKGbQ/hR1qyw3I2Q2LcJh hv1Ck7v10s6fX9vPu3k+i63ie1NYC1njGA0qSy1h0xbSpfrDrLWUfWYls7LFreK3 irRbrzBKxY87EWmTuLFbz2tL6U4iZEMEKlf2MEAUZT2k7HJI4T/9fad97npwUVX5 HRQQ1Ak4Tc6xulBuNiu2+TAWNr4Cuzaq -----END CERTIFICATE-----Generated at Fri Jul 4 08:15:13 2025 by rpki-client