$ rpki-client -vvf rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.mft File: 3GF8-u34v7Cj7PfWcULmwdUmQ1w.mft (raw, json) Hash identifier: XDbremN1UG8VwTT/zee2zpKlemG+kUOykTM6RGy11Lg= Subject key identifier: AC:B4:9A:27:17:CC:DA:61:36:6E:FC:32:D9:6F:01:68:0C:5C:6B:20 Authority key identifier: DC:61:7C:FA:ED:F8:BF:B0:A3:EC:F7:D6:71:42:E6:C1:D5:26:43:5C Certificate issuer: /CN=A9199AFB/serialNumber=DC617CFAEDF8BFB0A3ECF7D67142E6C1D526435C Certificate serial: 0311 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GF8-u34v7Cj7PfWcULmwdUmQ1w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.mft Manifest number: 030D Signing time: Tue 01 Jul 2025 01:49:52 +0000 Manifest this update: Tue 01 Jul 2025 01:49:52 +0000 Manifest next update: Tue 08 Jul 2025 01:49:52 +0000 Files and hashes: 1: 3GF8-u34v7Cj7PfWcULmwdUmQ1w.crl (hash: EjWwN+lATc2YxrPXbHE1C6mlcez+n3U3N1brMcDRMkY=) 2: 9E9EC628D9C511EC81B54F47C4F9AE02.roa (hash: eVqCt6jrx+C1JB/X7OKow2VBehCM/YMsmg/5OjY9iwk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.crl rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GF8-u34v7Cj7PfWcULmwdUmQ1w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 01:49:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 785 (0x311) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199AFB, serialNumber=DC617CFAEDF8BFB0A3ECF7D67142E6C1D526435C Validity Not Before: Jul 1 01:49:52 2025 GMT Not After : Jul 8 01:49:52 2025 GMT Subject: CN=68633ec0-9aa9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:07:89:42:3f:7b:66:33:ff:b0:9b:7a:21:a2: 76:db:2b:4f:22:8e:a1:1c:69:0a:f5:19:86:42:05: c2:b8:b1:b6:99:78:7e:12:50:31:b2:8b:d0:07:00: f3:46:f3:2d:f3:4a:91:d2:4f:56:5d:a2:6d:84:c2: 33:3d:05:f3:78:3a:e5:c2:9e:36:7f:3d:e8:14:72: 1b:c3:0c:83:17:04:b9:91:b1:6f:72:0b:53:9a:08: fc:77:70:5d:e7:d5:5a:39:2c:a4:a7:a8:81:40:54: c3:ec:13:cf:7c:21:14:3d:a4:4f:6b:43:7b:8a:b5: 28:f1:2a:c2:00:fe:4b:36:86:e1:2c:c7:f6:ec:91: 4f:30:d1:30:8c:fb:ff:2e:92:1d:04:06:7c:3e:eb: 8e:f8:82:55:16:90:3a:6e:6b:10:68:a9:7f:71:94: 00:5e:63:a7:bf:0c:f3:ba:3e:39:46:10:1a:1c:49: fe:29:e9:d8:00:7f:e2:14:a8:e6:47:ad:f3:55:7f: 6d:22:56:a7:04:5b:87:d9:c9:a7:c7:a9:c6:56:5a: d4:cf:15:e2:48:5f:d7:5e:0b:f0:df:14:92:85:75: f5:e5:a6:dc:70:10:09:20:64:28:f2:ef:f5:84:3c: da:1d:98:01:3d:cc:6e:01:bb:65:df:28:42:e4:30: 1b:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:B4:9A:27:17:CC:DA:61:36:6E:FC:32:D9:6F:01:68:0C:5C:6B:20 X509v3 Authority Key Identifier: keyid:DC:61:7C:FA:ED:F8:BF:B0:A3:EC:F7:D6:71:42:E6:C1:D5:26:43:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GF8-u34v7Cj7PfWcULmwdUmQ1w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:50:fa:17:ed:4f:9f:cd:1a:16:f5:9c:81:97:e3:49:70:ed: 50:a0:8d:19:82:c6:cd:9e:dd:88:f7:17:d9:79:7c:da:2a:49: 5a:44:18:c3:69:3e:a1:e1:ae:07:30:7f:a5:68:fd:5b:0d:bd: dc:c0:40:49:f9:09:bb:fc:75:00:66:a2:36:50:84:a1:23:14: 92:b2:7e:c3:34:97:10:20:82:20:e1:56:52:d3:e8:08:e4:5a: 4a:c5:f5:e6:47:19:25:13:d6:cd:50:db:c2:22:d6:1d:5e:28: e8:c6:1e:df:da:35:c7:77:f0:0d:d8:fd:3a:bf:7b:c6:ee:69: 4b:87:83:b2:8a:ff:4f:99:88:aa:28:46:21:fc:76:52:e1:a9: d6:37:c1:b1:27:27:fb:f1:7d:d2:41:76:ea:e0:96:c6:89:cb: ae:03:a1:86:5e:b1:51:b4:b8:e7:b8:0c:15:0b:13:3e:e4:5f: 49:3c:f2:60:9e:02:ee:0f:ae:22:ef:55:3f:88:04:c5:d7:7a: ec:d6:60:8d:c6:86:e1:fc:bb:b0:0e:74:f9:f9:b6:30:db:42: de:ce:73:30:53:aa:14:60:e6:bb:af:12:c8:a7:88:77:be:b0: fd:74:0b:b0:19:c6:00:7b:87:93:b6:7c:fc:c9:b0:53:20:91: 9d:e2:e2:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAxEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTlBRkIxMTAvBgNVBAUTKERDNjE3Q0ZBRURGOEJGQjBBM0VDRjdENjcxNDJFNkMx RDUyNjQzNUMwHhcNMjUwNzAxMDE0OTUyWhcNMjUwNzA4MDE0OTUyWjAYMRYwFAYD VQQDEw02ODYzM2VjMC05YWE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzgeJQj97ZjP/sJt6IaJ22ytPIo6hHGkK9RmGQgXCuLG2mXh+ElAxsovQBwDz RvMt80qR0k9WXaJthMIzPQXzeDrlwp42fz3oFHIbwwyDFwS5kbFvcgtTmgj8d3Bd 59VaOSykp6iBQFTD7BPPfCEUPaRPa0N7irUo8SrCAP5LNobhLMf27JFPMNEwjPv/ LpIdBAZ8PuuO+IJVFpA6bmsQaKl/cZQAXmOnvwzzuj45RhAaHEn+KenYAH/iFKjm R63zVX9tIlanBFuH2cmnx6nGVlrUzxXiSF/XXgvw3xSShXX15abccBAJIGQo8u/1 hDzaHZgBPcxuAbtl3yhC5DAbRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKy0micX zNphNm78MtlvAWgMXGsgMB8GA1UdIwQYMBaAFNxhfPrt+L+wo+z31nFC5sHVJkNc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OUFGQi80NDM0RDU5MEQ5 QzIxMUVDODg3Rjk4NDZDNEY5QUUwMi8zR0Y4LXUzNHY3Q2o3UGZXY1VMbXdkVW1R MXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNHRjgtdTM0djdDajdQZldjVUxtd2RVbVExdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OUFGQi80NDM0RDU5MEQ5QzIxMUVDODg3Rjk4NDZDNEY5QUUwMi8zR0Y4LXUzNHY3 Q2o3UGZXY1VMbXdkVW1RMXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhUPoX7U+fzRoW9ZyBl+NJcO1QoI0ZgsbNnt2I9xfZeXzaKklaRBjD aT6h4a4HMH+laP1bDb3cwEBJ+Qm7/HUAZqI2UIShIxSSsn7DNJcQIIIg4VZS0+gI 5FpKxfXmRxklE9bNUNvCItYdXijoxh7f2jXHd/AN2P06v3vG7mlLh4Oyiv9PmYiq KEYh/HZS4anWN8GxJyf78X3SQXbq4JbGicuuA6GGXrFRtLjnuAwVCxM+5F9JPPJg ngLuD64i71U/iATF13rs1mCNxobh/LuwDnT5+bYw20LeznMwU6oUYOa7rxLIp4h3 vrD9dAuwGcYAe4eTtnz8ybBTIJGd4uIF -----END CERTIFICATE-----Generated at Wed Jul 2 23:34:55 2025 by rpki-client