$ rpki-client -vvf rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft File: 3zHPGFCQ4VSWXv_7xmS91yHYB18.mft (raw, json) Hash identifier: R/yX9l1f5OsdR15DcHRMir0ieR3z6/ZDEp+06Gfhnk8= Subject key identifier: AB:38:92:7E:F7:38:BA:6C:52:23:41:5B:D2:93:50:26:E5:03:77:95 Authority key identifier: DF:31:CF:18:50:90:E1:54:96:5E:FF:FB:C6:64:BD:D7:21:D8:07:5F Certificate issuer: /CN=A9155ECF/serialNumber=DF31CF185090E154965EFFFBC664BDD721D8075F Certificate serial: 62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft Manifest number: 5D Signing time: Sun 19 Oct 2025 10:33:15 +0000 Manifest this update: Sun 19 Oct 2025 10:33:15 +0000 Manifest next update: Sun 26 Oct 2025 10:33:15 +0000 Files and hashes: 1: 3zHPGFCQ4VSWXv_7xmS91yHYB18.crl (hash: 3CddpTYek4RkQw55zEtOchlU6/CSfNuYulZhLxdpvGA=) 2: 4EFDF38A967011F0B0AB8765C4F9AE02.roa (hash: Oq4mEMZ7D64o5eA9eSKluYrtkP+uWt5I4dDTD5h28z0=) 3: 7434E1F4967011F0A5651266C4F9AE02.roa (hash: TKYCIXjYDfxKBYRDIucVJqM6YAGNqcFrboZxfDC0WWc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.crl rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:33:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 98 (0x62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155ECF, serialNumber=DF31CF185090E154965EFFFBC664BDD721D8075F Validity Not Before: Oct 19 10:33:15 2025 GMT Not After : Oct 26 10:33:15 2025 GMT Subject: CN=68f4be6b-a351 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:58:5f:17:be:c6:8e:c4:5c:da:61:14:a8:e2: 7f:c9:5a:7f:70:01:91:6a:42:56:87:d7:17:24:30: f4:73:45:92:b6:58:b4:03:23:e6:b1:b7:20:98:7b: ec:9a:ef:c5:4b:c0:85:f0:24:9d:7c:bf:29:b5:82: 2e:c3:2e:74:da:36:f6:67:04:a6:57:83:03:00:9a: bb:70:f1:bb:40:34:ee:04:fc:a0:b7:ff:5e:18:0b: a0:ab:1f:f4:a1:63:20:95:c9:20:23:4a:7a:51:e3: 04:2d:e2:2e:33:0b:e4:8b:c6:66:a1:38:bf:4f:41: a0:de:08:29:0b:1b:74:eb:18:30:c3:12:aa:0e:f5: c0:6a:13:47:38:82:4c:dc:96:99:1c:38:9b:15:2a: eb:08:4f:9b:08:82:a5:d8:2e:4e:40:d5:06:78:fc: 9b:c9:ea:58:79:ef:6d:41:d3:b6:83:13:74:aa:7d: d4:81:af:70:1a:bb:b6:39:41:26:f7:0b:ae:e0:ad: bf:03:f0:81:78:a5:ec:85:74:a8:eb:9f:73:49:00: 2d:6e:49:64:88:d9:00:32:9c:2a:03:09:6b:37:08: 94:93:7d:5d:2d:ec:ce:75:fc:b5:ec:0a:c4:3e:8b: 89:c5:ba:d9:de:b9:06:56:17:b5:71:9e:cd:bd:90: ed:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:38:92:7E:F7:38:BA:6C:52:23:41:5B:D2:93:50:26:E5:03:77:95 X509v3 Authority Key Identifier: keyid:DF:31:CF:18:50:90:E1:54:96:5E:FF:FB:C6:64:BD:D7:21:D8:07:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:b8:38:6e:89:e7:3e:88:46:ec:62:e9:29:b7:13:8e:74:64: 4a:d0:d9:38:34:b2:80:30:7f:42:9b:b5:78:f6:ce:2c:11:09: 4d:56:ee:11:90:98:fd:ed:e1:87:0d:11:c9:68:da:89:bd:97: de:45:78:de:f1:9c:5c:12:4d:b1:d1:a8:31:ae:ca:f4:68:11: c2:3e:9f:3b:5a:bb:91:4b:63:b9:0f:f8:83:8d:9e:82:77:8b: 9e:e3:1f:1b:7f:4c:8c:37:95:9c:86:53:fd:a2:e7:8a:d7:bc: 6b:2a:46:ba:da:00:ca:2c:38:11:78:f3:6f:d4:91:43:98:5c: a5:e9:19:7c:7b:ea:8c:e5:79:3e:61:8c:91:63:8d:aa:99:52: da:72:98:22:bb:5f:29:f2:6d:70:68:0f:e6:bc:43:ba:55:e3: b4:60:e2:ac:79:2f:dd:ec:5c:66:cb:54:82:4f:78:b0:41:25: 10:ea:c3:f4:03:5d:a7:9f:41:1a:ce:da:2f:92:aa:42:56:89: b3:89:de:2f:42:68:55:73:31:64:e2:80:d1:26:a8:cc:15:75: fb:d7:4c:e4:92:66:f7:bb:48:2f:5c:31:2e:13:ee:3e:c4:e9: 7d:21:56:22:26:98:79:49:40:47:72:1f:0d:13:57:77:dc:b8: 9c:52:42:85 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NUVDRjExMC8GA1UEBRMoREYzMUNGMTg1MDkwRTE1NDk2NUVGRkZCQzY2NEJERDcy MUQ4MDc1RjAeFw0yNTEwMTkxMDMzMTVaFw0yNTEwMjYxMDMzMTVaMBgxFjAUBgNV BAMTDTY4ZjRiZTZiLWEzNTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDZWF8XvsaOxFzaYRSo4n/JWn9wAZFqQlaH1xckMPRzRZK2WLQDI+axtyCYe+ya 78VLwIXwJJ18vym1gi7DLnTaNvZnBKZXgwMAmrtw8btANO4E/KC3/14YC6CrH/Sh YyCVySAjSnpR4wQt4i4zC+SLxmahOL9PQaDeCCkLG3TrGDDDEqoO9cBqE0c4gkzc lpkcOJsVKusIT5sIgqXYLk5A1QZ4/JvJ6lh5721B07aDE3SqfdSBr3Aau7Y5QSb3 C67grb8D8IF4peyFdKjrn3NJAC1uSWSI2QAynCoDCWs3CJSTfV0t7M51/LXsCsQ+ i4nFutneuQZWF7Vxns29kO3rAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUqziSfvc4 umxSI0Fb0pNQJuUDd5UwHwYDVR0jBBgwFoAU3zHPGFCQ4VSWXv/7xmS91yHYB18w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1RUNGL0VGNkI5MDVDMjVG NTExRjA4QkVGREE0OUM0RjlBRTAyLzN6SFBHRkNRNFZTV1h2Xzd4bVM5MXlIWUIx OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM3pIUEdGQ1E0VlNXWHZfN3htUzkxeUhZQjE4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1 RUNGL0VGNkI5MDVDMjVGNTExRjA4QkVGREE0OUM0RjlBRTAyLzN6SFBHRkNRNFZT V1h2Xzd4bVM5MXlIWUIxOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKG4OG6J5z6IRuxi6Sm3E450ZErQ2Tg0soAwf0KbtXj2ziwRCU1W7hGQ mP3t4YcNEclo2om9l95FeN7xnFwSTbHRqDGuyvRoEcI+nztau5FLY7kP+IONnoJ3 i57jHxt/TIw3lZyGU/2i54rXvGsqRrraAMosOBF482/UkUOYXKXpGXx76ozleT5h jJFjjaqZUtpymCK7XynybXBoD+a8Q7pV47Rg4qx5L93sXGbLVIJPeLBBJRDqw/QD XaefQRrO2i+SqkJWibOJ3i9CaFVzMWTigNEmqMwVdfvXTOSSZve7SC9cMS4T7j7E 6X0hViImmHlJQEdyHw0TV3fcuJxSQoU= -----END CERTIFICATE-----Generated at Mon Oct 20 16:16:54 2025 by rpki-client