$ rpki-client -vvf rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.mft File: 3Bh_yEFs5bNHuvIho2E6O0eCjog.mft (raw, json) Hash identifier: T/K0N/bDPiz28ph1Rp5P29HxWIflLS2+lJXDKce95Ik= Subject key identifier: 47:83:24:68:90:DE:DD:8E:81:93:48:13:09:D2:B0:33:01:8F:BD:6A Authority key identifier: DC:18:7F:C8:41:6C:E5:B3:47:BA:F2:21:A3:61:3A:3B:47:82:8E:88 Certificate issuer: /CN=A91717D1/serialNumber=DC187FC8416CE5B347BAF221A3613A3B47828E88 Certificate serial: 0F30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bh_yEFs5bNHuvIho2E6O0eCjog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.mft Manifest number: 0F22 Signing time: Sat 18 Oct 2025 18:12:59 +0000 Manifest this update: Sat 18 Oct 2025 18:12:58 +0000 Manifest next update: Sat 25 Oct 2025 18:12:58 +0000 Files and hashes: 1: 3Bh_yEFs5bNHuvIho2E6O0eCjog.crl (hash: 80ewh2PNb9W8y+bsCDmb0xJEb3q0k50OmL71qHxXWTs=) 2: 085B4576C35711EC9F5ADC3DC4F9AE02.roa (hash: LJ768Cu3JxipfpTsVr1alEqz1iSEePAZhcCKQ/8p8EU=) 3: 0963FDF0C35711EC9F5ADC3DC4F9AE02.roa (hash: 6UUZGVX+yz33BPFW9zj9LAK08O51N58DNxWBC06Z/8c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.crl rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bh_yEFs5bNHuvIho2E6O0eCjog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:12:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3888 (0xf30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91717D1, serialNumber=DC187FC8416CE5B347BAF221A3613A3B47828E88 Validity Not Before: Oct 18 18:12:58 2025 GMT Not After : Oct 25 18:12:58 2025 GMT Subject: CN=68f3d8aa-82f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:65:26:39:06:5d:b0:c0:eb:4c:8e:d7:79:b6: 38:bf:16:67:e9:9b:43:dd:9b:69:1e:a4:33:d9:2f: a4:3c:e3:f6:2e:d3:99:90:9e:30:7f:80:b4:15:23: 9b:fb:47:6c:42:5b:5a:f7:73:a8:da:af:ce:5f:32: f8:a0:7a:47:12:18:18:0b:80:89:cd:b1:a0:4e:b6: a2:e8:0d:b2:ba:1b:8d:02:e7:32:e3:3f:fb:78:e1: ee:5d:fb:21:14:ee:a8:f0:e1:ff:de:d4:da:cf:3e: fa:f1:e3:ee:f4:62:36:d9:45:f8:2a:45:6f:d2:a4: 4c:64:f9:87:42:9e:2e:c3:08:00:5d:94:ff:fc:39: 4e:4f:26:cd:8a:ac:cf:60:d4:ba:09:95:6a:02:38: b7:2d:f9:f2:e1:b8:f3:5e:7b:c7:77:0b:5a:58:52: 25:c3:de:3e:2e:17:99:57:9d:41:f3:58:db:48:26: 06:9c:bc:7e:8b:bd:f8:12:82:29:e9:a4:8a:f6:96: b5:1d:59:c3:8e:7e:8f:fc:72:3d:35:1d:b9:28:45: fa:38:e1:2c:98:d0:5e:49:56:91:62:8a:eb:bb:a2: 1c:65:9b:d1:10:7a:51:35:27:e5:7a:e9:71:0f:33: a1:2f:49:2f:92:d4:07:10:04:ee:a8:b9:f1:9e:dd: 67:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:83:24:68:90:DE:DD:8E:81:93:48:13:09:D2:B0:33:01:8F:BD:6A X509v3 Authority Key Identifier: keyid:DC:18:7F:C8:41:6C:E5:B3:47:BA:F2:21:A3:61:3A:3B:47:82:8E:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bh_yEFs5bNHuvIho2E6O0eCjog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:d8:eb:2e:d1:82:b6:da:11:2b:c2:fa:ab:d5:ad:f7:ed:aa: 4b:9d:a6:b6:7f:90:6b:49:0e:99:89:7c:e6:72:80:1c:c8:2a: 77:f2:31:68:3c:e9:9a:f3:3b:fd:1a:45:62:d6:fa:a4:9e:f0: 8a:44:c5:33:d1:a3:75:4d:23:02:f2:d1:07:da:47:d7:58:be: ac:69:5a:06:e9:62:24:62:f3:79:78:75:2b:fb:b4:ab:13:2c: a4:bc:09:66:bb:76:13:bf:68:1d:98:9c:a5:d3:ef:c0:14:9a: 38:04:e7:b4:fb:8e:1f:0c:14:2f:4b:43:eb:b0:0a:ca:69:21: 67:2a:87:5e:bb:1e:95:18:79:10:72:4e:74:82:d5:13:11:95: 90:8d:34:6d:92:1a:c5:6d:c2:b1:9e:2b:82:e6:d0:e8:ce:c4: 6d:5f:65:23:ae:81:76:83:76:37:1d:1d:49:13:b9:9e:bc:e7: fc:f7:b6:02:91:53:5f:d2:1e:36:65:3a:d3:86:93:47:7f:47: 7e:e0:e2:90:6f:22:32:1f:6f:ef:13:d1:e9:0d:12:2a:54:be: 6e:67:64:27:7d:9b:22:e8:5f:a9:b2:f8:e9:db:49:0a:86:65: cf:99:a1:6a:95:14:44:60:0d:45:21:e2:bd:06:f9:06:bf:58: cd:cc:96:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDzAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE3RDExMTAvBgNVBAUTKERDMTg3RkM4NDE2Q0U1QjM0N0JBRjIyMUEzNjEzQTNC NDc4MjhFODgwHhcNMjUxMDE4MTgxMjU4WhcNMjUxMDI1MTgxMjU4WjAYMRYwFAYD VQQDEw02OGYzZDhhYS04MmY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6mUmOQZdsMDrTI7XebY4vxZn6ZtD3ZtpHqQz2S+kPOP2LtOZkJ4wf4C0FSOb +0dsQlta93Oo2q/OXzL4oHpHEhgYC4CJzbGgTrai6A2yuhuNAucy4z/7eOHuXfsh FO6o8OH/3tTazz768ePu9GI22UX4KkVv0qRMZPmHQp4uwwgAXZT//DlOTybNiqzP YNS6CZVqAji3Lfny4bjzXnvHdwtaWFIlw94+LheZV51B81jbSCYGnLx+i734EoIp 6aSK9pa1HVnDjn6P/HI9NR25KEX6OOEsmNBeSVaRYorru6IcZZvREHpRNSfleulx DzOhL0kvktQHEATuqLnxnt1nwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEeDJGiQ 3t2OgZNIEwnSsDMBj71qMB8GA1UdIwQYMBaAFNwYf8hBbOWzR7ryIaNhOjtHgo6I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTdEMS85QTlCNDhBMjgy QTMxMUU5OUU1ODIzODRDNEY5QUUwMi8zQmhfeUVGczViTkh1dklobzJFNk8wZUNq b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNCaF95RUZzNWJOSHV2SWhvMkU2TzBlQ2pvZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTdEMS85QTlCNDhBMjgyQTMxMUU5OUU1ODIzODRDNEY5QUUwMi8zQmhfeUVGczVi Tkh1dklobzJFNk8wZUNqb2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAy2Osu0YK22hErwvqr1a337apLnaa2f5BrSQ6ZiXzmcoAcyCp38jFo POma8zv9GkVi1vqknvCKRMUz0aN1TSMC8tEH2kfXWL6saVoG6WIkYvN5eHUr+7Sr EyykvAlmu3YTv2gdmJyl0+/AFJo4BOe0+44fDBQvS0PrsArKaSFnKodeux6VGHkQ ck50gtUTEZWQjTRtkhrFbcKxniuC5tDozsRtX2UjroF2g3Y3HR1JE7mevOf897YC kVNf0h42ZTrThpNHf0d+4OKQbyIyH2/vE9HpDRIqVL5uZ2QnfZsi6F+psvjp20kK hmXPmaFqlRREYA1FIeK9BvkGv1jNzJaG -----END CERTIFICATE-----Generated at Sun Oct 19 23:31:59 2025 by rpki-client