$ rpki-client -vvf rpki.apnic.net/member_repository/A9189311/13AFF6F6B24D11E4B67F185FC4F9AE02/e3dUqC3QY6R-jsNdFj72skSNEts.mft File: e3dUqC3QY6R-jsNdFj72skSNEts.mft (raw, json) Hash identifier: cW6gmNcozvz5te5fSHH0aGgCag/NlA1zUn6f34Q4a9Q= Subject key identifier: 0F:8E:D4:52:7E:3D:0E:03:88:DD:48:36:4E:84:69:3E:66:EE:0D:B1 Authority key identifier: 7B:77:54:A8:2D:D0:63:A4:7E:8E:C3:5D:16:3E:F6:B2:44:8D:12:DB Certificate issuer: /CN=A9189311/serialNumber=7B7754A82DD063A47E8EC35D163EF6B2448D12DB Certificate serial: 27B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e3dUqC3QY6R-jsNdFj72skSNEts.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189311/13AFF6F6B24D11E4B67F185FC4F9AE02/e3dUqC3QY6R-jsNdFj72skSNEts.mft Manifest number: 27A4 Signing time: Fri 22 Aug 2025 15:41:06 +0000 Manifest this update: Fri 22 Aug 2025 15:41:06 +0000 Manifest next update: Fri 29 Aug 2025 15:41:06 +0000 Files and hashes: 1: e3dUqC3QY6R-jsNdFj72skSNEts.crl (hash: 71neTY5PMFEq81emj69AvuoFWiylqGKw2DWKwdD9I44=) 2: F5BBEA5AF6A611E7B40C7427C4F9AE02.roa (hash: EeUXim59YsvGI7qIffiR5WtPWhD5kVEeYtKpW1EoALs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189311/13AFF6F6B24D11E4B67F185FC4F9AE02/e3dUqC3QY6R-jsNdFj72skSNEts.crl rsync://rpki.apnic.net/member_repository/A9189311/13AFF6F6B24D11E4B67F185FC4F9AE02/e3dUqC3QY6R-jsNdFj72skSNEts.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e3dUqC3QY6R-jsNdFj72skSNEts.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:41:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10167 (0x27b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189311, serialNumber=7B7754A82DD063A47E8EC35D163EF6B2448D12DB Validity Not Before: Aug 22 15:41:06 2025 GMT Not After : Aug 29 15:41:06 2025 GMT Subject: CN=68a88f92-f176 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:b7:f7:a0:7c:11:5b:7b:1e:e0:c3:f6:27:e6: e4:9e:67:30:21:1a:4b:c0:2e:31:3e:d8:c2:70:de: 76:53:ca:85:e5:ff:d2:4a:7c:1d:48:81:da:5d:5c: 66:58:19:ea:a2:75:21:e6:09:a4:c0:d0:d3:4d:0d: 33:98:86:57:7d:c7:fd:1b:cf:d1:26:ff:4b:87:50: c1:aa:f8:37:2d:04:34:4a:10:e2:9c:15:cc:c5:69: 96:79:9a:5f:4f:47:1b:74:e2:de:a9:10:b1:fb:67: 8e:d5:a1:24:98:fc:a9:34:d9:51:32:64:b3:9d:6e: 52:96:fe:0a:a6:3e:b0:31:e2:d6:68:69:8b:c5:99: 3f:3b:07:3d:d8:65:fc:5e:7c:0a:fd:77:1e:98:b3: 88:0b:34:3a:26:66:66:1d:57:48:5b:4c:63:97:82: 44:c0:0f:af:e4:60:34:06:c5:e5:8f:44:7a:20:da: 9a:f2:af:c2:6d:74:05:23:57:25:dc:10:58:15:67: 62:62:2e:84:58:a5:c5:a0:8d:68:89:ff:e4:fd:3a: 63:b7:e2:f0:9b:15:7f:c4:1d:b1:3d:b6:8d:90:62: aa:c7:23:05:8f:41:68:56:68:cb:94:f0:41:67:6a: 82:15:07:de:11:9d:a5:0e:0d:2c:39:06:88:a6:fc: 24:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:8E:D4:52:7E:3D:0E:03:88:DD:48:36:4E:84:69:3E:66:EE:0D:B1 X509v3 Authority Key Identifier: keyid:7B:77:54:A8:2D:D0:63:A4:7E:8E:C3:5D:16:3E:F6:B2:44:8D:12:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189311/13AFF6F6B24D11E4B67F185FC4F9AE02/e3dUqC3QY6R-jsNdFj72skSNEts.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e3dUqC3QY6R-jsNdFj72skSNEts.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189311/13AFF6F6B24D11E4B67F185FC4F9AE02/e3dUqC3QY6R-jsNdFj72skSNEts.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:2c:eb:25:ea:76:b0:4c:63:bc:8c:a6:9b:f3:ac:af:0d:ff: 70:72:e1:50:50:70:95:02:ee:43:d8:80:ae:8d:80:a5:e1:f4: 59:e3:68:1a:2d:e5:3e:52:4c:b1:f1:71:08:19:db:b0:41:4e: cb:10:47:43:9d:d5:2f:e0:37:c2:3f:65:bf:fd:29:e0:1f:8b: 13:c2:39:24:88:07:1b:1f:b5:84:e2:74:82:b0:35:60:77:fe: 4b:52:c2:f4:92:03:e0:ad:1d:bb:f0:a8:9a:b2:78:46:b3:5c: 16:7e:a1:32:cc:a5:5d:22:4e:39:13:3c:fb:f6:a9:18:ad:ea: 7e:37:96:11:f3:6c:4b:4b:68:28:2c:d0:b4:9a:21:e6:0e:3c: 5f:2f:1f:84:98:af:b9:55:9a:18:4d:68:c4:3a:7c:97:cd:64: e1:3c:a4:4b:5e:59:07:bf:3d:c2:f8:2f:44:f4:08:02:42:dd: 84:ad:87:27:50:e7:2d:51:64:70:89:21:83:9e:e0:76:99:61: 9b:72:cd:d6:ed:08:31:64:40:a7:27:0b:38:21:35:65:87:37: f5:7c:7a:ab:51:b5:a9:eb:99:23:1e:29:55:bc:4d:6d:c6:61: e2:d2:2c:20:bc:d7:20:b8:95:c2:bd:13:97:80:d7:80:88:4f: ac:db:72:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJ7cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkzMTExMTAvBgNVBAUTKDdCNzc1NEE4MkREMDYzQTQ3RThFQzM1RDE2M0VGNkIy NDQ4RDEyREIwHhcNMjUwODIyMTU0MTA2WhcNMjUwODI5MTU0MTA2WjAYMRYwFAYD VQQDEw02OGE4OGY5Mi1mMTc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3rf3oHwRW3se4MP2J+bknmcwIRpLwC4xPtjCcN52U8qF5f/SSnwdSIHaXVxm WBnqonUh5gmkwNDTTQ0zmIZXfcf9G8/RJv9Lh1DBqvg3LQQ0ShDinBXMxWmWeZpf T0cbdOLeqRCx+2eO1aEkmPypNNlRMmSznW5Slv4Kpj6wMeLWaGmLxZk/Owc92GX8 XnwK/XcemLOICzQ6JmZmHVdIW0xjl4JEwA+v5GA0BsXlj0R6INqa8q/CbXQFI1cl 3BBYFWdiYi6EWKXFoI1oif/k/Tpjt+LwmxV/xB2xPbaNkGKqxyMFj0FoVmjLlPBB Z2qCFQfeEZ2lDg0sOQaIpvwkNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA+O1FJ+ PQ4DiN1INk6EaT5m7g2xMB8GA1UdIwQYMBaAFHt3VKgt0GOkfo7DXRY+9rJEjRLb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTMxMS8xM0FGRjZGNkIy NEQxMUU0QjY3RjE4NUZDNEY5QUUwMi9lM2RVcUMzUVk2Ui1qc05kRmo3MnNrU05F dHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2UzZFVxQzNRWTZSLWpzTmRGajcyc2tTTkV0cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTMxMS8xM0FGRjZGNkIyNEQxMUU0QjY3RjE4NUZDNEY5QUUwMi9lM2RVcUMzUVk2 Ui1qc05kRmo3MnNrU05FdHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcLOsl6nawTGO8jKab86yvDf9wcuFQUHCVAu5D2ICujYCl4fRZ42ga LeU+Ukyx8XEIGduwQU7LEEdDndUv4DfCP2W//SngH4sTwjkkiAcbH7WE4nSCsDVg d/5LUsL0kgPgrR278KiasnhGs1wWfqEyzKVdIk45Ezz79qkYrep+N5YR82xLS2go LNC0miHmDjxfLx+EmK+5VZoYTWjEOnyXzWThPKRLXlkHvz3C+C9E9AgCQt2ErYcn UOctUWRwiSGDnuB2mWGbcs3W7QgxZECnJws4ITVlhzf1fHqrUbWp65kjHilVvE1t xmHi0iwgvNcguJXCvROXgNeAiE+s23LO -----END CERTIFICATE-----Generated at Sat Aug 23 16:42:40 2025 by rpki-client