$ rpki-client -vvf rpki.apnic.net/member_repository/A9127686/C74B1FFE304211ECAF185A10C4F9AE02/r3H1sWeV-bfPKyRYSAd-EWhbpvA.mft File: r3H1sWeV-bfPKyRYSAd-EWhbpvA.mft (raw, json) Hash identifier: AWqaw688I+d88PoZNk3LvbzarUTiAdMIygKmGDUog7c= Subject key identifier: 88:46:DF:20:88:AD:DA:45:5A:8C:37:F2:8B:9A:30:25:EB:91:42:64 Authority key identifier: AF:71:F5:B1:67:95:F9:B7:CF:2B:24:58:48:07:7E:11:68:5B:A6:F0 Certificate issuer: /CN=A9127686/serialNumber=AF71F5B16795F9B7CF2B245848077E11685BA6F0 Certificate serial: 0500 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3H1sWeV-bfPKyRYSAd-EWhbpvA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127686/C74B1FFE304211ECAF185A10C4F9AE02/r3H1sWeV-bfPKyRYSAd-EWhbpvA.mft Manifest number: 04FA Signing time: Sun 19 Oct 2025 01:27:50 +0000 Manifest this update: Sun 19 Oct 2025 01:27:49 +0000 Manifest next update: Sun 26 Oct 2025 01:27:49 +0000 Files and hashes: 1: r3H1sWeV-bfPKyRYSAd-EWhbpvA.crl (hash: aS/DrW1uW6PcamiqazlcAQuBzq1J9CMtfBr8nnBHNFQ=) 2: 54BBE48A304411EC830F8610C4F9AE02.roa (hash: 8X5eBnJACDnF25R5obyjBzrkQFPgd4fVGHDaVysBGCI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127686/C74B1FFE304211ECAF185A10C4F9AE02/r3H1sWeV-bfPKyRYSAd-EWhbpvA.crl rsync://rpki.apnic.net/member_repository/A9127686/C74B1FFE304211ECAF185A10C4F9AE02/r3H1sWeV-bfPKyRYSAd-EWhbpvA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3H1sWeV-bfPKyRYSAd-EWhbpvA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:27:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1280 (0x500) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127686, serialNumber=AF71F5B16795F9B7CF2B245848077E11685BA6F0 Validity Not Before: Oct 19 01:27:49 2025 GMT Not After : Oct 26 01:27:49 2025 GMT Subject: CN=68f43e95-7d98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:bb:81:72:4a:99:73:fd:8d:7d:1e:34:bd:d1: cd:9f:c4:19:54:f9:9f:97:cf:80:ee:fd:39:f0:3c: 06:74:0c:ad:48:2b:03:6d:49:27:33:cc:4d:6e:b3: 63:a3:0b:06:d9:21:29:2c:62:76:71:7d:43:60:ce: 02:26:ed:7f:61:c8:8b:4d:39:1b:00:f2:6d:56:de: 35:4a:cb:63:fe:3a:7e:1a:2f:a5:90:86:a8:2c:7f: 04:f1:0a:07:71:80:d1:3f:16:7e:7f:ac:57:bf:d7: ab:90:c4:2a:88:8c:16:5c:31:43:d9:45:4c:22:b2: d8:5a:cd:d5:89:0d:14:02:3b:51:d7:d2:08:81:29: db:ef:f5:a3:71:ef:e4:7a:32:85:26:74:e6:6b:ac: a4:9e:85:69:f7:46:d7:11:da:46:62:37:11:f7:2f: 71:8e:86:47:b4:1a:2f:3d:7e:55:cd:9f:6e:9d:94: b5:cd:cb:7e:37:27:8d:9c:05:54:f8:04:7f:b9:f0: 5f:ca:2b:72:af:db:9b:f4:c2:5c:9e:7c:27:9c:3a: 7c:f8:f8:00:de:66:31:a1:0e:2e:c8:a2:fe:09:14: 71:a8:b9:b9:be:2d:c1:5b:b3:0c:07:bb:3d:bc:5c: b6:57:62:ae:54:e8:95:5b:b6:a5:e2:bf:28:8d:d4: 93:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:46:DF:20:88:AD:DA:45:5A:8C:37:F2:8B:9A:30:25:EB:91:42:64 X509v3 Authority Key Identifier: keyid:AF:71:F5:B1:67:95:F9:B7:CF:2B:24:58:48:07:7E:11:68:5B:A6:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127686/C74B1FFE304211ECAF185A10C4F9AE02/r3H1sWeV-bfPKyRYSAd-EWhbpvA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3H1sWeV-bfPKyRYSAd-EWhbpvA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127686/C74B1FFE304211ECAF185A10C4F9AE02/r3H1sWeV-bfPKyRYSAd-EWhbpvA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:e5:cb:05:e8:10:d7:a3:cc:40:fb:84:3a:51:bd:fb:e1:a4: 8e:5b:c2:a1:ce:e8:8e:81:ad:65:84:58:c0:07:1b:05:80:27: 0e:b3:33:c2:af:0c:d1:a7:b8:88:35:78:55:cf:4a:e5:94:65: 53:bf:af:3d:73:bf:8c:89:ae:01:ee:f4:e9:2f:08:ab:46:f4: 3f:fe:41:8d:bf:c6:97:6b:84:d7:f0:66:12:39:f6:db:5d:3d: 94:36:a3:52:59:03:2a:93:50:e8:f5:bc:93:83:aa:40:14:01: 4d:89:61:a9:92:38:9a:8f:9d:51:37:ed:14:aa:62:bd:c9:0d: 30:32:ba:06:14:87:a1:e9:0c:ae:89:3b:1f:6c:09:b1:12:e9: 4a:7f:86:ef:66:dc:61:df:3c:04:1b:0a:26:3e:dd:ba:7f:eb: b2:6a:a7:c1:f3:41:38:dc:07:3c:df:d2:37:79:1e:8e:89:ba: 17:39:c2:63:c5:a5:a4:f9:6d:6a:27:c7:2f:cf:28:af:4c:8a: 41:94:05:71:b6:55:fb:ab:d0:3d:1e:ff:42:5e:f8:39:8d:94: 4b:f8:fe:c7:2e:e7:31:c1:65:80:ef:46:28:07:a2:f1:b2:b7: 46:ff:e7:16:1f:5f:9a:55:ad:2e:e1:d5:d1:b0:d7:fe:47:bc: 6b:d9:79:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc2ODYxMTAvBgNVBAUTKEFGNzFGNUIxNjc5NUY5QjdDRjJCMjQ1ODQ4MDc3RTEx Njg1QkE2RjAwHhcNMjUxMDE5MDEyNzQ5WhcNMjUxMDI2MDEyNzQ5WjAYMRYwFAYD VQQDEw02OGY0M2U5NS03ZDk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxLuBckqZc/2NfR40vdHNn8QZVPmfl8+A7v058DwGdAytSCsDbUknM8xNbrNj owsG2SEpLGJ2cX1DYM4CJu1/YciLTTkbAPJtVt41Sstj/jp+Gi+lkIaoLH8E8QoH cYDRPxZ+f6xXv9erkMQqiIwWXDFD2UVMIrLYWs3ViQ0UAjtR19IIgSnb7/Wjce/k ejKFJnTma6yknoVp90bXEdpGYjcR9y9xjoZHtBovPX5VzZ9unZS1zct+NyeNnAVU +AR/ufBfyityr9ub9MJcnnwnnDp8+PgA3mYxoQ4uyKL+CRRxqLm5vi3BW7MMB7s9 vFy2V2KuVOiVW7al4r8ojdSTowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIhG3yCI rdpFWow38ouaMCXrkUJkMB8GA1UdIwQYMBaAFK9x9bFnlfm3zyskWEgHfhFoW6bw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzY4Ni9DNzRCMUZGRTMw NDIxMUVDQUYxODVBMTBDNEY5QUUwMi9yM0gxc1dlVi1iZlBLeVJZU0FkLUVXaGJw dkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3IzSDFzV2VWLWJmUEt5UllTQWQtRVdoYnB2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzY4Ni9DNzRCMUZGRTMwNDIxMUVDQUYxODVBMTBDNEY5QUUwMi9yM0gxc1dlVi1i ZlBLeVJZU0FkLUVXaGJwdkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCK5csF6BDXo8xA+4Q6Ub374aSOW8KhzuiOga1lhFjABxsFgCcOszPC rwzRp7iINXhVz0rllGVTv689c7+Mia4B7vTpLwirRvQ//kGNv8aXa4TX8GYSOfbb XT2UNqNSWQMqk1Do9byTg6pAFAFNiWGpkjiaj51RN+0UqmK9yQ0wMroGFIeh6Qyu iTsfbAmxEulKf4bvZtxh3zwEGwomPt26f+uyaqfB80E43Ac839I3eR6OiboXOcJj xaWk+W1qJ8cvzyivTIpBlAVxtlX7q9A9Hv9CXvg5jZRL+P7HLucxwWWA70YoB6Lx srdG/+cWH1+aVa0u4dXRsNf+R7xr2Xlm -----END CERTIFICATE-----Generated at Mon Oct 20 14:01:20 2025 by rpki-client