$ rpki-client -vvf rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.mft File: 3GF8-u34v7Cj7PfWcULmwdUmQ1w.mft (raw, json) Hash identifier: RYSeKm428+xQXXA+tJoohMFjHdxBpRRPPCdCS0LVwCE= Subject key identifier: 04:B9:5E:11:02:D3:02:EE:75:5D:E6:02:0E:BC:D1:76:A4:91:BE:C3 Authority key identifier: DC:61:7C:FA:ED:F8:BF:B0:A3:EC:F7:D6:71:42:E6:C1:D5:26:43:5C Certificate issuer: /CN=A9199AFB/serialNumber=DC617CFAEDF8BFB0A3ECF7D67142E6C1D526435C Certificate serial: 032F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GF8-u34v7Cj7PfWcULmwdUmQ1w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.mft Manifest number: 032A Signing time: Sat 23 Aug 2025 01:22:29 +0000 Manifest this update: Sat 23 Aug 2025 01:22:29 +0000 Manifest next update: Sat 30 Aug 2025 01:22:29 +0000 Files and hashes: 1: 3GF8-u34v7Cj7PfWcULmwdUmQ1w.crl (hash: K9Rhdetdqoe0SSZRFTW+APCaOZX97uMNmXezw9M+Sus=) 2: 9E9EC628D9C511EC81B54F47C4F9AE02.roa (hash: BkyDK7N8MqPzb7yz7N5nQ1LHqHZV+xDxLFOlL/0hv/I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.crl rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GF8-u34v7Cj7PfWcULmwdUmQ1w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:22:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 815 (0x32f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199AFB, serialNumber=DC617CFAEDF8BFB0A3ECF7D67142E6C1D526435C Validity Not Before: Aug 23 01:22:29 2025 GMT Not After : Aug 30 01:22:29 2025 GMT Subject: CN=68a917d5-3d28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:8c:d2:9b:28:76:33:18:42:75:2c:ce:04:6d: ae:16:b2:cb:2a:15:d1:95:d4:77:de:f2:50:7a:e8: 22:0c:c1:e9:9d:5f:be:0a:bd:1e:77:00:f0:d6:7b: cc:fe:51:ed:aa:eb:e4:c4:d1:92:74:e2:3e:94:80: e6:db:af:15:db:6a:b0:c9:25:93:0e:c7:49:58:7d: fd:30:36:3e:fb:61:55:4b:5a:03:81:92:88:ea:da: 4f:39:3f:cc:43:c5:cf:c9:4a:49:7a:1b:5d:c7:b5: 15:3f:db:85:81:cc:2c:99:04:18:88:c3:35:56:65: fc:5d:82:9e:ee:09:34:da:cd:42:88:1b:05:7c:65: 65:65:b1:0d:73:06:29:64:4d:d6:93:33:20:7e:1e: 1f:84:04:03:3b:23:d1:d8:b1:47:ca:63:ef:28:a3: 11:b5:47:e7:e2:b0:5c:a7:82:64:2a:bd:7f:b7:e8: fc:e7:a9:50:bc:87:f9:9a:55:ab:f4:88:34:a3:c3: b3:cc:41:81:d4:0f:82:64:02:31:34:34:01:dc:8d: 4c:53:3c:5a:b0:ac:ec:49:c6:cb:44:05:d6:4e:d5: bb:86:97:49:ba:23:1d:36:b7:44:2f:cd:1a:3a:a4: 9a:d1:d6:a5:01:1e:bd:2f:70:9b:9d:af:02:77:13: 6e:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:B9:5E:11:02:D3:02:EE:75:5D:E6:02:0E:BC:D1:76:A4:91:BE:C3 X509v3 Authority Key Identifier: keyid:DC:61:7C:FA:ED:F8:BF:B0:A3:EC:F7:D6:71:42:E6:C1:D5:26:43:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GF8-u34v7Cj7PfWcULmwdUmQ1w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:b2:f3:d2:d6:7f:83:ad:f8:88:a8:12:5b:3f:b5:00:f4:25: ef:d2:2e:f3:d3:e1:8e:40:7f:96:7f:e3:0b:d7:fb:09:89:91: 4b:7d:74:36:5a:14:2c:83:3b:ea:8d:62:ca:51:07:e8:b4:12: 87:bc:52:44:f4:dc:fe:0b:f2:74:05:72:75:29:94:cd:e0:32: f7:84:25:fb:b4:45:62:62:7e:2b:07:62:f4:61:f0:db:50:ff: 90:cf:b0:93:b2:65:c3:6c:bc:5f:cf:6b:f2:f2:39:ca:83:52: 0b:97:de:92:af:95:6f:04:64:65:ac:8d:8c:ed:10:b9:88:b7: 52:e4:98:35:ba:2f:cd:62:15:50:b2:90:78:b3:26:70:bf:91: c2:33:82:db:72:cd:e0:e1:a4:5f:39:97:ab:c3:7f:d9:29:09: e9:f8:fc:66:9d:2b:b8:3e:97:7e:1b:51:59:88:a6:12:44:b8: a4:37:db:bb:2c:50:75:fd:5a:20:fc:b3:89:69:90:23:2f:10: b5:f8:e3:9e:2b:ca:99:68:51:5b:cf:e1:04:87:77:ab:a2:c7: 57:da:15:0b:84:07:2f:e4:7e:7b:a6:61:a4:56:ff:b5:18:b0: f4:dc:2c:fa:1f:32:9d:32:17:f3:cd:2f:74:55:78:91:c1:62: a2:df:b8:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAy8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTlBRkIxMTAvBgNVBAUTKERDNjE3Q0ZBRURGOEJGQjBBM0VDRjdENjcxNDJFNkMx RDUyNjQzNUMwHhcNMjUwODIzMDEyMjI5WhcNMjUwODMwMDEyMjI5WjAYMRYwFAYD VQQDEw02OGE5MTdkNS0zZDI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsozSmyh2MxhCdSzOBG2uFrLLKhXRldR33vJQeugiDMHpnV++Cr0edwDw1nvM /lHtquvkxNGSdOI+lIDm268V22qwySWTDsdJWH39MDY++2FVS1oDgZKI6tpPOT/M Q8XPyUpJehtdx7UVP9uFgcwsmQQYiMM1VmX8XYKe7gk02s1CiBsFfGVlZbENcwYp ZE3WkzMgfh4fhAQDOyPR2LFHymPvKKMRtUfn4rBcp4JkKr1/t+j856lQvIf5mlWr 9Ig0o8OzzEGB1A+CZAIxNDQB3I1MUzxasKzsScbLRAXWTtW7hpdJuiMdNrdEL80a OqSa0dalAR69L3Cbna8CdxNuMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAS5XhEC 0wLudV3mAg680Xakkb7DMB8GA1UdIwQYMBaAFNxhfPrt+L+wo+z31nFC5sHVJkNc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OUFGQi80NDM0RDU5MEQ5 QzIxMUVDODg3Rjk4NDZDNEY5QUUwMi8zR0Y4LXUzNHY3Q2o3UGZXY1VMbXdkVW1R MXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNHRjgtdTM0djdDajdQZldjVUxtd2RVbVExdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OUFGQi80NDM0RDU5MEQ5QzIxMUVDODg3Rjk4NDZDNEY5QUUwMi8zR0Y4LXUzNHY3 Q2o3UGZXY1VMbXdkVW1RMXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHsvPS1n+DrfiIqBJbP7UA9CXv0i7z0+GOQH+Wf+ML1/sJiZFLfXQ2 WhQsgzvqjWLKUQfotBKHvFJE9Nz+C/J0BXJ1KZTN4DL3hCX7tEViYn4rB2L0YfDb UP+Qz7CTsmXDbLxfz2vy8jnKg1ILl96Sr5VvBGRlrI2M7RC5iLdS5Jg1ui/NYhVQ spB4syZwv5HCM4Lbcs3g4aRfOZerw3/ZKQnp+PxmnSu4Ppd+G1FZiKYSRLikN9u7 LFB1/Vog/LOJaZAjLxC1+OOeK8qZaFFbz+EEh3erosdX2hULhAcv5H57pmGkVv+1 GLD03Cz6HzKdMhfzzS90VXiRwWKi37gs -----END CERTIFICATE-----Generated at Sun Aug 24 03:12:52 2025 by rpki-client