$ rpki-client -vvf rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft File: 3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft (raw, json) Hash identifier: QZ+nPWqo9h0LmPTUzUEdaYTmXvMsPWEUrfons6z0dxA= Subject key identifier: C3:F3:FC:C3:25:B2:D4:4B:BC:3E:F2:44:AC:0E:EC:0F:9E:FD:15:84 Authority key identifier: DC:62:20:08:A8:A1:AD:42:BE:2A:25:49:43:49:1A:FA:A8:45:49:A5 Certificate issuer: /CN=A911035A/serialNumber=DC622008A8A1AD42BE2A254943491AFAA84549A5 Certificate serial: 0A41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft Manifest number: 0A30 Signing time: Sat 18 Oct 2025 20:45:48 +0000 Manifest this update: Sat 18 Oct 2025 20:45:47 +0000 Manifest next update: Sat 25 Oct 2025 20:45:47 +0000 Files and hashes: 1: 3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl (hash: BIjoSYlSPKpwr4z8QOWliSnbt3wms2JIWydHEaZO974=) 2: 5B57754A026F11EDBE22EF64C4F9AE02.roa (hash: ihAIG4OoPwthC+h4NtPo2Q0pwt/cIHMn8RF1lo5PumY=) 3: 5A472FBA026F11EDBE22EF64C4F9AE02.roa (hash: vIMBF1bBAJdpKyG7NryScSCm1A4V3l1tKWGtKbJDwKU=) 4: C1B3DE082BBE11EF809E1831C4F9AE02.roa (hash: lx///Z7Da35SlsWklk353QqekT8yYXigifaMtdugzeQ=) 5: E1935B7A36DD11EFB1E53717C4F9AE02.roa (hash: H0HQ+QBIGliAyxj5H0/8pAJ49x4cCntNY4DcwIy3B3Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:45:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2625 (0xa41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911035A, serialNumber=DC622008A8A1AD42BE2A254943491AFAA84549A5 Validity Not Before: Oct 18 20:45:47 2025 GMT Not After : Oct 25 20:45:47 2025 GMT Subject: CN=68f3fc7c-1d5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:09:c3:6d:4d:e1:3e:4c:83:30:b5:1f:1b:a1: 05:0f:52:a1:d7:0e:59:8e:63:af:f7:ba:d5:a2:08: dc:b2:ff:e0:0a:04:d1:d3:4e:3d:b4:ab:7b:d2:25: 4a:c5:37:30:d2:6d:5e:46:c5:5e:c1:72:6c:3e:67: ba:ee:0f:ff:34:3f:f1:b5:e9:d7:e1:95:32:be:d1: bd:9b:94:36:65:4c:fa:20:6a:e1:06:ec:43:28:4c: 94:09:0f:2a:da:96:88:f2:c0:b2:7c:2a:ea:6d:d1: 1c:9e:52:57:29:b3:6c:e9:48:b5:06:a9:e3:1b:2e: da:aa:14:b5:73:aa:fc:e2:8f:c8:4c:4b:36:6c:7a: c9:a1:88:75:56:17:2c:d1:63:f4:8e:82:0c:50:6c: ef:7f:25:e1:8d:b7:20:55:09:6b:51:4d:00:7b:5a: 0c:9f:38:98:86:bd:df:19:f2:6e:de:63:76:74:a0: 58:36:3a:62:ee:b3:71:a6:88:bd:e2:b1:98:fa:0e: 98:1f:d4:02:bf:0a:4d:54:df:06:c7:33:69:a2:97: c6:14:4e:a3:c3:4e:94:dd:68:dd:ea:79:8a:cc:41: f9:0f:e4:a0:e6:af:e0:c7:7e:26:79:2a:3b:24:17: ee:68:94:c2:5d:ed:20:be:f4:75:c4:21:a5:94:3b: eb:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:F3:FC:C3:25:B2:D4:4B:BC:3E:F2:44:AC:0E:EC:0F:9E:FD:15:84 X509v3 Authority Key Identifier: keyid:DC:62:20:08:A8:A1:AD:42:BE:2A:25:49:43:49:1A:FA:A8:45:49:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:af:06:9c:4a:32:6d:b6:0c:da:05:ec:3c:3b:5a:e6:d5:73: f0:91:d2:ea:9b:dd:55:71:d9:e2:27:5a:cf:88:02:9d:29:70: 35:7b:e1:ed:3b:b4:0f:93:e1:c3:a0:ca:9a:1c:eb:67:24:71: 8f:3e:32:d0:85:91:0d:6e:5d:fa:b6:0f:6e:91:4d:5e:19:9c: 74:71:48:6b:84:59:52:c6:f7:e2:98:fa:d2:70:28:74:f7:72: 1f:a9:ac:b3:45:42:ff:e5:9e:68:b7:06:21:8c:28:e5:8c:d2: d7:dc:d2:60:5e:50:c2:b4:96:41:c2:85:78:3c:ba:3a:bc:f2: 76:58:8b:e6:24:d6:c8:3f:0a:8f:60:7b:26:a0:57:11:fc:e4: d2:fd:41:e7:e3:d6:57:ba:26:6a:c0:db:79:8f:9f:79:b0:b6: 94:6c:b3:8c:ea:44:f6:6b:90:92:36:72:2e:89:73:09:c9:7d: 01:de:ae:4b:a1:0a:b9:ad:28:f4:21:26:5f:5f:fa:0f:44:7b: 02:7a:8c:4c:82:50:f7:cc:48:a0:06:f3:b3:93:7b:a7:cf:40: 84:23:24:8b:25:21:0c:35:59:b9:56:c1:3f:a0:74:f6:28:da: b8:ac:62:66:2a:64:88:e7:6f:5e:2a:e2:81:e3:f1:35:03:5d: 4f:ec:ad:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCkEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTAzNUExMTAvBgNVBAUTKERDNjIyMDA4QThBMUFENDJCRTJBMjU0OTQzNDkxQUZB QTg0NTQ5QTUwHhcNMjUxMDE4MjA0NTQ3WhcNMjUxMDI1MjA0NTQ3WjAYMRYwFAYD VQQDEw02OGYzZmM3Yy0xZDVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4wnDbU3hPkyDMLUfG6EFD1Kh1w5ZjmOv97rVogjcsv/gCgTR0049tKt70iVK xTcw0m1eRsVewXJsPme67g//ND/xtenX4ZUyvtG9m5Q2ZUz6IGrhBuxDKEyUCQ8q 2paI8sCyfCrqbdEcnlJXKbNs6Ui1BqnjGy7aqhS1c6r84o/ITEs2bHrJoYh1Vhcs 0WP0joIMUGzvfyXhjbcgVQlrUU0Ae1oMnziYhr3fGfJu3mN2dKBYNjpi7rNxpoi9 4rGY+g6YH9QCvwpNVN8GxzNpopfGFE6jw06U3Wjd6nmKzEH5D+Sg5q/gx34meSo7 JBfuaJTCXe0gvvR1xCGllDvrsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMPz/MMl stRLvD7yRKwO7A+e/RWEMB8GA1UdIwQYMBaAFNxiIAiooa1CviolSUNJGvqoRUml MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDM1QS8zQzYwOUI0NDdD NjYxMUVBODA4OUYzNTFDNEY5QUUwMi8zR0lnQ0tpaHJVSy1LaVZKUTBrYS1xaEZT YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNHSWdDS2loclVLLUtpVkpRMGthLXFoRlNhVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDM1QS8zQzYwOUI0NDdDNjYxMUVBODA4OUYzNTFDNEY5QUUwMi8zR0lnQ0tpaHJV Sy1LaVZKUTBrYS1xaEZTYVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrrwacSjJttgzaBew8O1rm1XPwkdLqm91VcdniJ1rPiAKdKXA1e+Ht O7QPk+HDoMqaHOtnJHGPPjLQhZENbl36tg9ukU1eGZx0cUhrhFlSxvfimPrScCh0 93IfqayzRUL/5Z5otwYhjCjljNLX3NJgXlDCtJZBwoV4PLo6vPJ2WIvmJNbIPwqP YHsmoFcR/OTS/UHn49ZXuiZqwNt5j595sLaUbLOM6kT2a5CSNnIuiXMJyX0B3q5L oQq5rSj0ISZfX/oPRHsCeoxMglD3zEigBvOzk3unz0CEIySLJSEMNVm5VsE/oHT2 KNq4rGJmKmSI529eKuKB4/E1A11P7K33 -----END CERTIFICATE-----Generated at Mon Oct 20 16:43:05 2025 by rpki-client