$ rpki-client -vvf rpki.apnic.net/member_repository/A91616DC/44A7E5E8095F11EAA281681DC4F9AE02/l3a_sejqihq8j4z9b2Yic23YyjQ.mft File: l3a_sejqihq8j4z9b2Yic23YyjQ.mft (raw, json) Hash identifier: neKEFLCUEHb71/L//g6C2+BVCTNJcXyBp0s49PKbNpc= Subject key identifier: B6:E9:9A:94:81:3E:B9:03:89:F6:8B:D6:32:10:88:91:7A:F0:C5:68 Authority key identifier: 97:76:BF:B1:E8:EA:8A:1A:BC:8F:8C:FD:6F:66:22:73:6D:D8:CA:34 Certificate issuer: /CN=A91616DC/serialNumber=9776BFB1E8EA8A1ABC8F8CFD6F6622736DD8CA34 Certificate serial: 0CD2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l3a_sejqihq8j4z9b2Yic23YyjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91616DC/44A7E5E8095F11EAA281681DC4F9AE02/l3a_sejqihq8j4z9b2Yic23YyjQ.mft Manifest number: 0CA3 Signing time: Sat 18 Oct 2025 19:13:24 +0000 Manifest this update: Sat 18 Oct 2025 19:13:24 +0000 Manifest next update: Sat 25 Oct 2025 19:13:24 +0000 Files and hashes: 1: l3a_sejqihq8j4z9b2Yic23YyjQ.crl (hash: AC7LIBx+jB7Q1SAeVsIiZV+6Yb5tJzk4004+MF57Aoc=) 2: 64A2C96E919E11EEA5241125C4F9AE02.roa (hash: /Guh9JZ2GlA6fGHvz6IyFArNWYosj9/jyWCo/gIcAcc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91616DC/44A7E5E8095F11EAA281681DC4F9AE02/l3a_sejqihq8j4z9b2Yic23YyjQ.crl rsync://rpki.apnic.net/member_repository/A91616DC/44A7E5E8095F11EAA281681DC4F9AE02/l3a_sejqihq8j4z9b2Yic23YyjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l3a_sejqihq8j4z9b2Yic23YyjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:13:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3282 (0xcd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91616DC, serialNumber=9776BFB1E8EA8A1ABC8F8CFD6F6622736DD8CA34 Validity Not Before: Oct 18 19:13:24 2025 GMT Not After : Oct 25 19:13:24 2025 GMT Subject: CN=68f3e6d4-88fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:f9:bb:d6:0c:48:19:8d:85:16:11:17:dc:66: 87:dd:a1:06:40:d6:d9:9f:03:77:2f:f9:1b:79:f1: 17:32:a1:82:c7:60:85:19:4d:9d:45:40:6f:ba:54: 2a:59:a7:03:05:f1:33:20:2b:7b:c4:30:b6:3b:58: 24:9c:5f:34:86:c1:67:59:1a:03:1e:51:f9:e1:18: a2:9d:b1:5c:73:de:3a:a4:4f:fe:0c:29:46:35:d1: 0f:8a:8f:62:1a:42:a8:ad:e0:9b:06:aa:aa:2b:07: b0:6f:dd:2b:6b:b4:7a:10:78:8a:f1:3d:79:57:8f: 90:47:a4:08:e8:7d:0e:ab:2d:61:dd:9c:c9:3c:c8: 1c:6a:85:b7:4d:07:08:93:8e:ee:df:ae:b3:4e:71: 8a:4e:16:a7:64:d7:f8:6a:7e:4a:d0:75:26:f6:29: 39:7e:20:5c:8c:c6:20:92:93:f2:55:8f:6c:aa:27: 73:93:6d:73:24:2b:7c:9f:11:4d:f0:4a:f2:4d:9d: 5c:17:d4:74:30:b2:67:b4:8e:b5:00:2f:85:c2:7f: a2:48:a9:e2:f1:59:e8:f2:cd:c2:57:a3:db:e3:7b: 19:6b:4c:0b:85:b0:f3:74:5b:36:0e:47:59:96:17: 8a:3f:43:dc:5a:a5:5b:cd:47:2f:aa:f9:64:f6:dd: ee:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:E9:9A:94:81:3E:B9:03:89:F6:8B:D6:32:10:88:91:7A:F0:C5:68 X509v3 Authority Key Identifier: keyid:97:76:BF:B1:E8:EA:8A:1A:BC:8F:8C:FD:6F:66:22:73:6D:D8:CA:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91616DC/44A7E5E8095F11EAA281681DC4F9AE02/l3a_sejqihq8j4z9b2Yic23YyjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l3a_sejqihq8j4z9b2Yic23YyjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91616DC/44A7E5E8095F11EAA281681DC4F9AE02/l3a_sejqihq8j4z9b2Yic23YyjQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:0f:4b:01:b2:d2:a6:cd:01:8f:f6:1b:81:0d:96:e2:48:b8: 7c:06:c2:75:eb:ac:6d:42:97:24:df:6d:6d:6d:72:a5:5d:d1: da:15:fa:66:31:9d:44:01:75:00:d2:eb:2d:f8:6f:49:cf:62: d9:e6:3f:cb:ab:ba:f6:5d:a5:7c:80:24:9c:c0:8e:64:b2:52: 1f:46:28:84:f8:57:40:a5:58:6b:ef:c2:f0:13:e3:4e:62:e6: 25:73:35:a5:ca:3b:84:4a:bc:34:2a:82:dd:84:41:2f:72:1c: 11:d6:36:98:3e:1e:18:04:05:3c:f6:29:81:23:04:81:e3:3e: 98:d0:05:65:dd:6e:b0:41:d0:32:ed:25:98:8b:38:cd:7e:de: bc:2d:af:2a:7e:33:32:ef:7f:3e:f3:e0:71:1b:d7:ef:96:b5: 61:ae:d9:a3:52:95:88:5d:67:a9:c6:e3:f2:03:dc:78:2d:b6: bf:f7:f7:eb:5b:cd:3b:81:a8:ce:37:cb:4f:c1:64:bf:64:65: d2:f4:43:c7:9c:2e:17:7c:c7:fa:51:56:7e:73:58:11:10:4a: 58:a5:38:75:a2:1b:4f:ff:7e:a2:15:80:e2:ee:b7:12:90:4d: 80:4e:f3:4e:b4:d6:f0:4c:f9:75:86:d5:0f:29:14:e4:e6:06: 45:4b:27:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDNIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjE2REMxMTAvBgNVBAUTKDk3NzZCRkIxRThFQThBMUFCQzhGOENGRDZGNjYyMjcz NkREOENBMzQwHhcNMjUxMDE4MTkxMzI0WhcNMjUxMDI1MTkxMzI0WjAYMRYwFAYD VQQDEw02OGYzZTZkNC04OGZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr/m71gxIGY2FFhEX3GaH3aEGQNbZnwN3L/kbefEXMqGCx2CFGU2dRUBvulQq WacDBfEzICt7xDC2O1gknF80hsFnWRoDHlH54RiinbFcc946pE/+DClGNdEPio9i GkKoreCbBqqqKwewb90ra7R6EHiK8T15V4+QR6QI6H0Oqy1h3ZzJPMgcaoW3TQcI k47u366zTnGKThanZNf4an5K0HUm9ik5fiBcjMYgkpPyVY9sqidzk21zJCt8nxFN 8EryTZ1cF9R0MLJntI61AC+Fwn+iSKni8Vno8s3CV6Pb43sZa0wLhbDzdFs2DkdZ lheKP0PcWqVbzUcvqvlk9t3utQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLbpmpSB PrkDifaL1jIQiJF68MVoMB8GA1UdIwQYMBaAFJd2v7Ho6ooavI+M/W9mInNt2Mo0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MTZEQy80NEE3RTVFODA5 NUYxMUVBQTI4MTY4MURDNEY5QUUwMi9sM2Ffc2VqcWlocThqNHo5YjJZaWMyM1l5 alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2wzYV9zZWpxaWhxOGo0ejliMllpYzIzWXlqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MTZEQy80NEE3RTVFODA5NUYxMUVBQTI4MTY4MURDNEY5QUUwMi9sM2Ffc2VqcWlo cThqNHo5YjJZaWMyM1l5alEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6D0sBstKmzQGP9huBDZbiSLh8BsJ166xtQpck321tbXKlXdHaFfpm MZ1EAXUA0ust+G9Jz2LZ5j/Lq7r2XaV8gCScwI5kslIfRiiE+FdApVhr78LwE+NO YuYlczWlyjuESrw0KoLdhEEvchwR1jaYPh4YBAU89imBIwSB4z6Y0AVl3W6wQdAy 7SWYizjNft68La8qfjMy738+8+BxG9fvlrVhrtmjUpWIXWepxuPyA9x4Lba/9/fr W807gajON8tPwWS/ZGXS9EPHnC4XfMf6UVZ+c1gREEpYpTh1ohtP/36iFYDi7rcS kE2ATvNOtNbwTPl1htUPKRTk5gZFSyfF -----END CERTIFICATE-----Generated at Mon Oct 20 10:47:01 2025 by rpki-client