$ rpki-client -vvf rpki.apnic.net/member_repository/A9119C32/C4EA1B9E46E211EEA2372F41C4F9AE02/3glSX1epVbpvLTKtIoMwQhUYLkU.mft File: 3glSX1epVbpvLTKtIoMwQhUYLkU.mft (raw, json) Hash identifier: jlSW1v/r+kYOkCU77xwE9MN6bw3zaGv1GcKi92qc5h0= Subject key identifier: 8D:F3:81:B2:77:EF:BE:7A:D1:76:E9:0E:AD:98:3B:C4:FF:A1:73:31 Authority key identifier: DE:09:52:5F:57:A9:55:BA:6F:2D:32:AD:22:83:30:42:15:18:2E:45 Certificate issuer: /CN=A9119C32/serialNumber=DE09525F57A955BA6F2D32AD2283304215182E45 Certificate serial: 0198 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3glSX1epVbpvLTKtIoMwQhUYLkU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119C32/C4EA1B9E46E211EEA2372F41C4F9AE02/3glSX1epVbpvLTKtIoMwQhUYLkU.mft Manifest number: 0194 Signing time: Sun 19 Oct 2025 06:02:07 +0000 Manifest this update: Sun 19 Oct 2025 06:02:07 +0000 Manifest next update: Sun 26 Oct 2025 06:02:07 +0000 Files and hashes: 1: 3glSX1epVbpvLTKtIoMwQhUYLkU.crl (hash: BGMWRkoOz5ZAStILLQ6K6vCoqMP1//12HNEU0ZldwUk=) 2: 5D79BDF8486C11EEB3C19A71C4F9AE02.roa (hash: Pq73PgAG6oMeQVEVi6eMUHjuXX4heTdR3HOjLtOdzzc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119C32/C4EA1B9E46E211EEA2372F41C4F9AE02/3glSX1epVbpvLTKtIoMwQhUYLkU.crl rsync://rpki.apnic.net/member_repository/A9119C32/C4EA1B9E46E211EEA2372F41C4F9AE02/3glSX1epVbpvLTKtIoMwQhUYLkU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3glSX1epVbpvLTKtIoMwQhUYLkU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:02:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 408 (0x198) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119C32, serialNumber=DE09525F57A955BA6F2D32AD2283304215182E45 Validity Not Before: Oct 19 06:02:07 2025 GMT Not After : Oct 26 06:02:07 2025 GMT Subject: CN=68f47edf-daa6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:00:3d:87:f1:95:dc:ea:87:75:1d:83:59:8a: a3:8c:c1:53:d8:f4:c5:e9:a0:61:a5:b4:ca:b6:1f: a3:df:17:88:92:d0:d5:42:f0:7c:c2:5b:24:32:8c: ee:f0:b1:8d:6f:96:bb:cd:52:ff:ec:c4:4f:5c:c2: 5f:78:d9:68:64:f9:31:47:29:a3:eb:18:00:9e:37: b6:af:5f:8a:dd:77:ea:86:4d:86:dc:dd:fd:19:44: 43:01:a8:cf:77:10:8d:dd:a6:6a:c2:86:e8:bf:80: da:7b:83:b4:a3:25:e1:4d:70:1d:e1:0e:77:8f:13: 14:75:2d:12:b1:29:cb:42:89:7c:8e:9b:96:bc:95: af:df:50:5d:68:24:af:95:64:a1:dd:c3:57:72:2a: 38:7c:75:ad:2f:8a:dc:94:37:fd:60:d2:ee:78:34: 4e:a0:16:e0:09:9b:c2:3d:62:b4:41:d5:de:a4:5b: 15:4c:74:cb:89:c5:d9:28:3d:e1:a5:3c:e0:96:59: b4:bd:26:cf:10:e0:ab:74:36:d3:a5:59:37:a4:25: b3:52:6b:b6:3d:48:ce:4f:5c:b1:62:4a:21:70:bd: ee:3e:19:5f:01:a5:df:a7:d5:8a:ac:a7:8e:90:f3: b0:11:26:52:cc:19:93:b4:d9:4c:5c:2f:c9:f2:90: 41:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:F3:81:B2:77:EF:BE:7A:D1:76:E9:0E:AD:98:3B:C4:FF:A1:73:31 X509v3 Authority Key Identifier: keyid:DE:09:52:5F:57:A9:55:BA:6F:2D:32:AD:22:83:30:42:15:18:2E:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119C32/C4EA1B9E46E211EEA2372F41C4F9AE02/3glSX1epVbpvLTKtIoMwQhUYLkU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3glSX1epVbpvLTKtIoMwQhUYLkU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119C32/C4EA1B9E46E211EEA2372F41C4F9AE02/3glSX1epVbpvLTKtIoMwQhUYLkU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:6d:c8:5c:80:5c:62:6f:7c:61:1f:da:56:cf:51:cb:c8:5d: 11:87:f6:a2:24:21:06:8c:fd:c5:99:f7:b0:b8:29:5f:a3:41: 36:34:5b:b4:df:9c:27:87:56:92:df:73:fd:7e:44:05:8d:bb: 15:ad:20:51:66:92:24:27:1d:8d:b4:f1:d7:a5:41:56:2d:0b: da:bf:8f:13:3b:11:6a:7b:bf:89:f1:69:93:d9:39:56:1e:ca: ee:ea:92:e6:2a:7c:2d:44:bf:8f:65:c8:08:f2:c9:68:0d:22: be:8d:8d:55:60:4a:39:1e:5d:12:e7:5e:7f:53:2d:76:4c:a7: 9e:f5:e8:36:2f:e2:8a:b2:be:e7:64:4e:70:f9:12:a4:15:1e: 71:f7:6b:5d:ac:6c:e5:4b:50:5a:65:47:0d:a2:60:b6:2c:b6: ed:c6:a3:41:41:42:10:94:57:86:29:6c:de:5c:a9:68:d7:43: ec:e8:4c:02:fc:0c:c4:4a:18:5d:c8:63:6b:f0:69:fd:72:8d: 8b:60:65:62:b4:00:86:93:fd:37:e9:f0:24:5c:c7:4a:10:e7: d1:dd:21:01:bc:53:95:d7:50:ad:79:42:04:8c:f6:5f:08:b8: 11:26:b4:59:53:09:b0:0f:55:95:7e:b6:73:b9:39:c5:4f:3d: 0c:ef:be:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTlDMzIxMTAvBgNVBAUTKERFMDk1MjVGNTdBOTU1QkE2RjJEMzJBRDIyODMzMDQy MTUxODJFNDUwHhcNMjUxMDE5MDYwMjA3WhcNMjUxMDI2MDYwMjA3WjAYMRYwFAYD VQQDEw02OGY0N2VkZi1kYWE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsgA9h/GV3OqHdR2DWYqjjMFT2PTF6aBhpbTKth+j3xeIktDVQvB8wlskMozu 8LGNb5a7zVL/7MRPXMJfeNloZPkxRymj6xgAnje2r1+K3Xfqhk2G3N39GURDAajP dxCN3aZqwobov4Dae4O0oyXhTXAd4Q53jxMUdS0SsSnLQol8jpuWvJWv31BdaCSv lWSh3cNXcio4fHWtL4rclDf9YNLueDROoBbgCZvCPWK0QdXepFsVTHTLicXZKD3h pTzgllm0vSbPEOCrdDbTpVk3pCWzUmu2PUjOT1yxYkohcL3uPhlfAaXfp9WKrKeO kPOwESZSzBmTtNlMXC/J8pBBeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI3zgbJ3 77560XbpDq2YO8T/oXMxMB8GA1UdIwQYMBaAFN4JUl9XqVW6by0yrSKDMEIVGC5F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOUMzMi9DNEVBMUI5RTQ2 RTIxMUVFQTIzNzJGNDFDNEY5QUUwMi8zZ2xTWDFlcFZicHZMVEt0SW9Nd1FoVVlM a1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNnbFNYMWVwVmJwdkxUS3RJb013UWhVWUxrVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OUMzMi9DNEVBMUI5RTQ2RTIxMUVFQTIzNzJGNDFDNEY5QUUwMi8zZ2xTWDFlcFZi cHZMVEt0SW9Nd1FoVVlMa1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmbchcgFxib3xhH9pWz1HLyF0Rh/aiJCEGjP3FmfewuClfo0E2NFu0 35wnh1aS33P9fkQFjbsVrSBRZpIkJx2NtPHXpUFWLQvav48TOxFqe7+J8WmT2TlW Hsru6pLmKnwtRL+PZcgI8sloDSK+jY1VYEo5Hl0S515/Uy12TKee9eg2L+KKsr7n ZE5w+RKkFR5x92tdrGzlS1BaZUcNomC2LLbtxqNBQUIQlFeGKWzeXKlo10Ps6EwC /AzEShhdyGNr8Gn9co2LYGVitACGk/036fAkXMdKEOfR3SEBvFOV11CteUIEjPZf CLgRJrRZUwmwD1WVfrZzuTnFTz0M777j -----END CERTIFICATE-----Generated at Tue Oct 21 01:04:05 2025 by rpki-client