$ rpki-client -vvf rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft File: pm3QENok34rhcGvZCMukO9E4ljE.mft (raw, json) Hash identifier: DmBd5P2SwbEyf02fycbAxe+aGSazhu+jNx0Ufy+I5SU= Subject key identifier: F5:0A:C2:81:F8:9A:C8:1F:F8:AD:37:8C:CC:FC:59:49:55:6C:71:67 Authority key identifier: A6:6D:D0:10:DA:24:DF:8A:E1:70:6B:D9:08:CB:A4:3B:D1:38:96:31 Certificate issuer: /CN=A9171753/serialNumber=A66DD010DA24DF8AE1706BD908CBA43BD1389631 Certificate serial: 34DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft Manifest number: 34CF Signing time: Sat 18 Oct 2025 15:23:07 +0000 Manifest this update: Sat 18 Oct 2025 15:23:06 +0000 Manifest next update: Sat 25 Oct 2025 15:23:06 +0000 Files and hashes: 1: pm3QENok34rhcGvZCMukO9E4ljE.crl (hash: 0xjTV26bcNSS2H57YiV2zr+FHzl49cJR9wGaDx6YU+w=) 2: DE670A60679D11EEAFBA0A5DC4F9AE02.roa (hash: zHkGq6W1DSD5ffW+BnhDs7qnRsRpvtxDIEM0SIuuDg4=) 3: C92F5F8077A211EDAF94D63EC4F9AE02.roa (hash: /yGsH3AYsghIUdTIUcXoSyBB3f9raZ59e9j2Pg64iUI=) 4: 41623A12778111ED8F236A62C4F9AE02.roa (hash: OYhGj+v27n+SqxvC/qZ2JFeWyJlSzi9WwyujTQsPl7E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.crl rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 15:23:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13530 (0x34da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171753, serialNumber=A66DD010DA24DF8AE1706BD908CBA43BD1389631 Validity Not Before: Oct 18 15:23:06 2025 GMT Not After : Oct 25 15:23:06 2025 GMT Subject: CN=68f3b0db-2855 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:0c:f2:13:ba:46:d0:65:01:3e:83:de:63:e5: cd:64:16:42:f3:7d:61:71:ac:67:29:7c:0f:ad:9e: 3e:a2:1e:be:71:50:3d:2d:9f:11:b7:62:a4:12:c2: e4:f6:88:f4:35:ed:48:8b:9e:62:92:1b:38:23:7f: 4e:33:31:59:2d:13:7e:4e:64:20:91:40:86:0a:46: 80:b1:dd:09:a3:ef:39:d9:4b:fd:a8:2e:6d:59:40: 3e:7f:46:77:b0:17:73:f8:73:a9:b0:de:31:b7:55: 65:88:02:e4:7b:98:b1:f2:14:c1:bf:26:ea:6b:65: b5:6f:a6:d7:4c:f2:51:07:d4:a8:7a:eb:46:8e:0f: 22:d0:17:a9:f2:71:27:29:d5:41:08:d0:3a:13:12: 31:53:b6:f7:d2:f0:bd:c5:95:44:8f:67:08:c4:28: ae:1f:c2:3c:2d:1a:bc:11:7a:60:d1:98:79:b7:b2: c2:4e:a2:40:fb:d8:56:9d:2b:96:b4:83:44:01:10: a6:1d:1f:78:ab:82:ee:ec:7b:73:13:8e:38:55:1e: a8:be:3b:d7:a4:dc:70:f7:2a:f0:1c:a6:1d:c4:98: d8:75:36:93:9a:57:73:5e:8b:d3:3c:be:3e:bd:83: 63:84:69:4f:ec:22:bb:c9:3a:80:8f:3e:38:51:24: b6:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:0A:C2:81:F8:9A:C8:1F:F8:AD:37:8C:CC:FC:59:49:55:6C:71:67 X509v3 Authority Key Identifier: keyid:A6:6D:D0:10:DA:24:DF:8A:E1:70:6B:D9:08:CB:A4:3B:D1:38:96:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:7b:48:e7:92:80:14:33:61:11:fd:03:04:15:fb:0b:9f:5b: e2:db:c0:fb:f0:14:10:75:c6:d1:60:51:66:37:e7:24:79:2b: bf:9f:bd:d3:cb:89:f4:44:15:79:eb:af:8c:f8:45:18:66:6a: 37:fe:46:ab:9d:88:f4:ae:b0:44:48:07:20:f1:1c:69:6c:f4: 70:26:07:a3:5f:6a:a1:71:9d:bf:89:c7:cf:92:0d:02:a4:c3: a0:34:aa:b1:60:f4:15:27:f4:f0:75:56:36:c2:08:90:e7:67: d0:5c:f8:d1:f2:69:dd:da:20:a9:a7:47:25:78:22:7d:51:41: 7c:89:35:95:09:58:20:5e:92:46:98:28:36:13:c5:0d:4f:74: 0c:3d:f3:7d:90:c3:0a:82:b3:41:46:e5:38:49:e5:b2:0f:16: 98:77:3e:0e:21:12:67:1c:85:51:f7:5b:f8:31:00:2d:eb:41: 5a:d3:ae:98:e3:bc:97:4f:e4:23:44:62:e7:b7:bb:8c:f6:6d: 94:62:28:40:f8:76:f0:4a:bb:f9:e8:8c:61:06:89:21:c1:59: 5f:c4:66:fc:cf:d8:65:ae:e5:51:11:74:b4:cc:43:55:8a:d6: fd:0f:9a:12:ce:33:c0:eb:f3:75:74:ff:cb:9c:d4:ea:53:6e: 19:13:cf:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE3NTMxMTAvBgNVBAUTKEE2NkREMDEwREEyNERGOEFFMTcwNkJEOTA4Q0JBNDNC RDEzODk2MzEwHhcNMjUxMDE4MTUyMzA2WhcNMjUxMDI1MTUyMzA2WjAYMRYwFAYD VQQDEw02OGYzYjBkYi0yODU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwAzyE7pG0GUBPoPeY+XNZBZC831hcaxnKXwPrZ4+oh6+cVA9LZ8Rt2KkEsLk 9oj0Ne1Ii55ikhs4I39OMzFZLRN+TmQgkUCGCkaAsd0Jo+852Uv9qC5tWUA+f0Z3 sBdz+HOpsN4xt1VliALke5ix8hTBvybqa2W1b6bXTPJRB9SoeutGjg8i0Bep8nEn KdVBCNA6ExIxU7b30vC9xZVEj2cIxCiuH8I8LRq8EXpg0Zh5t7LCTqJA+9hWnSuW tINEARCmHR94q4Lu7HtzE444VR6ovjvXpNxw9yrwHKYdxJjYdTaTmldzXovTPL4+ vYNjhGlP7CK7yTqAjz44USS2jwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPUKwoH4 msgf+K03jMz8WUlVbHFnMB8GA1UdIwQYMBaAFKZt0BDaJN+K4XBr2QjLpDvROJYx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTc1My84MDUxNDU5MDFE QTcxMUUyQUFBOTRBQTEwOEIwMkNEMi9wbTNRRU5vazM0cmhjR3ZaQ011a085RTRs akUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BtM1FFTm9rMzRyaGNHdlpDTXVrTzlFNGxqRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTc1My84MDUxNDU5MDFEQTcxMUUyQUFBOTRBQTEwOEIwMkNEMi9wbTNRRU5vazM0 cmhjR3ZaQ011a085RTRsakUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCge0jnkoAUM2ER/QMEFfsLn1vi28D78BQQdcbRYFFmN+ckeSu/n73T y4n0RBV566+M+EUYZmo3/karnYj0rrBESAcg8RxpbPRwJgejX2qhcZ2/icfPkg0C pMOgNKqxYPQVJ/TwdVY2wgiQ52fQXPjR8mnd2iCpp0cleCJ9UUF8iTWVCVggXpJG mCg2E8UNT3QMPfN9kMMKgrNBRuU4SeWyDxaYdz4OIRJnHIVR91v4MQAt60Fa066Y 47yXT+QjRGLnt7uM9m2UYihA+HbwSrv56IxhBokhwVlfxGb8z9hlruVREXS0zENV itb9D5oSzjPA6/N1dP/LnNTqU24ZE8+R -----END CERTIFICATE-----Generated at Mon Oct 20 01:44:26 2025 by rpki-client