$ rpki-client -vvf rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft File: S3IqOmeTvzLJvPUuTncuCm86Yxk.mft (raw, json) Hash identifier: vd/iCUM6fTlJl6Efn+IlQkourG2o+Yb6kkpIhtchM7E= Subject key identifier: 03:D6:1F:C3:7E:F6:4E:80:55:1B:9F:33:38:E7:4C:2C:F3:DC:2A:D2 Authority key identifier: 4B:72:2A:3A:67:93:BF:32:C9:BC:F5:2E:4E:77:2E:0A:6F:3A:63:19 Certificate issuer: /CN=A917A67E/serialNumber=4B722A3A6793BF32C9BCF52E4E772E0A6F3A6319 Certificate serial: 01B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft Manifest number: 01B1 Signing time: Sun 19 Oct 2025 05:41:15 +0000 Manifest this update: Sun 19 Oct 2025 05:41:14 +0000 Manifest next update: Sun 26 Oct 2025 05:41:14 +0000 Files and hashes: 1: S3IqOmeTvzLJvPUuTncuCm86Yxk.crl (hash: i6zpSVPOJQkV3F8BAhNhmdf6BYbMxzjML/fNbG3QFgg=) 2: E3901F981BD711EEB9597921C4F9AE02.roa (hash: sLVF2uLBYBc6LDSXH2VUz3ksriL+t2pMsQjafYLst9Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.crl rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:41:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 437 (0x1b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A67E, serialNumber=4B722A3A6793BF32C9BCF52E4E772E0A6F3A6319 Validity Not Before: Oct 19 05:41:14 2025 GMT Not After : Oct 26 05:41:14 2025 GMT Subject: CN=68f479fa-7684 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:2c:e3:75:66:ec:3a:34:62:cc:7b:eb:dd:6a: 78:29:2a:ac:7c:83:dc:9e:02:fa:10:68:c9:6d:64: 2c:e1:1a:3f:53:09:1c:35:99:7f:a4:44:6c:09:a4: ed:ef:a9:fd:80:3a:c0:9e:bc:cc:c3:a5:b1:c6:b0: 02:25:b4:ab:44:31:37:fc:27:cb:3f:50:93:51:08: 35:ca:2f:24:4d:a0:8a:47:8f:68:82:5a:6c:8d:5b: fe:f0:7d:f5:d4:ad:29:4f:52:94:60:be:a5:bf:e2: ae:89:57:98:c6:35:73:41:d7:67:1c:44:d0:32:15: 64:2f:b1:ad:af:ba:f2:30:c7:e6:3f:f8:87:0c:06: 92:5c:eb:fb:a2:b0:8c:b1:1e:53:a3:45:13:41:27: b1:45:5d:a1:fc:a7:cd:e0:ad:5e:0a:c5:b4:5f:9c: 21:68:e3:5c:5b:99:be:38:08:c0:16:71:fe:a5:63: b3:96:c0:e4:a4:37:3c:65:53:bb:cb:3f:6c:6d:10: eb:ab:f1:17:ba:64:62:ec:8f:c7:3c:fb:c2:d5:59: f2:14:73:b6:6a:44:9b:5b:9b:91:ba:db:9c:23:3b: 2f:ec:84:bf:14:7d:81:8e:15:a3:4e:e2:7e:4e:62: 30:1e:75:7c:f0:d0:d3:94:34:a6:b1:b1:44:1c:f3: b9:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:D6:1F:C3:7E:F6:4E:80:55:1B:9F:33:38:E7:4C:2C:F3:DC:2A:D2 X509v3 Authority Key Identifier: keyid:4B:72:2A:3A:67:93:BF:32:C9:BC:F5:2E:4E:77:2E:0A:6F:3A:63:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:1a:30:f4:e4:00:ec:88:39:d6:57:4b:b8:06:e7:b3:2c:b3: 4b:5b:98:05:39:41:30:a9:c1:a7:b7:39:f7:af:0d:8a:dd:10: 09:9a:c5:7c:7b:2a:5e:e3:93:65:8d:41:fd:5a:a0:3a:2a:55: af:28:b4:e6:8e:bf:19:4a:4f:5b:1e:cf:ff:bd:28:20:3a:7d: 76:12:de:eb:da:63:2f:08:ea:a0:a4:e6:13:15:00:5a:c2:fd: 0d:6d:8c:73:f2:95:64:8f:9e:06:f9:e3:b4:18:ea:9e:58:3d: 14:a2:91:fe:56:cd:fa:3d:cd:9d:e1:7d:72:bf:9a:bb:0a:b2: 47:d6:45:67:bb:4b:08:c9:78:28:b2:04:86:6d:c4:ed:1e:20: 29:c6:2d:0b:2e:98:ce:f0:34:68:c0:69:ad:9b:25:9c:3c:54: 6d:01:4b:94:c7:a6:60:06:d3:1a:2e:2d:6f:4a:6f:74:63:43: 4e:7a:7d:27:a7:5f:33:97:01:72:7a:e9:5c:0f:e5:83:3f:d5: 70:09:bc:67:e6:6a:9f:e2:45:74:ec:43:6f:40:0f:c8:bd:44: d1:f4:e2:31:78:63:98:39:66:30:b2:36:eb:56:e1:27:70:7e: 93:fd:f5:d2:77:41:ba:d8:dd:16:24:a6:72:fc:52:22:af:13: d5:8b:61:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E2N0UxMTAvBgNVBAUTKDRCNzIyQTNBNjc5M0JGMzJDOUJDRjUyRTRFNzcyRTBB NkYzQTYzMTkwHhcNMjUxMDE5MDU0MTE0WhcNMjUxMDI2MDU0MTE0WjAYMRYwFAYD VQQDEw02OGY0NzlmYS03Njg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtSzjdWbsOjRizHvr3Wp4KSqsfIPcngL6EGjJbWQs4Ro/UwkcNZl/pERsCaTt 76n9gDrAnrzMw6WxxrACJbSrRDE3/CfLP1CTUQg1yi8kTaCKR49oglpsjVv+8H31 1K0pT1KUYL6lv+KuiVeYxjVzQddnHETQMhVkL7Gtr7ryMMfmP/iHDAaSXOv7orCM sR5To0UTQSexRV2h/KfN4K1eCsW0X5whaONcW5m+OAjAFnH+pWOzlsDkpDc8ZVO7 yz9sbRDrq/EXumRi7I/HPPvC1VnyFHO2akSbW5uRutucIzsv7IS/FH2BjhWjTuJ+ TmIwHnV88NDTlDSmsbFEHPO50wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAPWH8N+ 9k6AVRufMzjnTCzz3CrSMB8GA1UdIwQYMBaAFEtyKjpnk78yybz1Lk53LgpvOmMZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTY3RS82N0I0Q0I4NDFC RDMxMUVFOTY1RkVGMzhDNEY5QUUwMi9TM0lxT21lVHZ6TEp2UFV1VG5jdUNtODZZ eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1MzSXFPbWVUdnpMSnZQVXVUbmN1Q204Nll4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTY3RS82N0I0Q0I4NDFCRDMxMUVFOTY1RkVGMzhDNEY5QUUwMi9TM0lxT21lVHZ6 TEp2UFV1VG5jdUNtODZZeGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSGjD05ADsiDnWV0u4BuezLLNLW5gFOUEwqcGntzn3rw2K3RAJmsV8 eype45NljUH9WqA6KlWvKLTmjr8ZSk9bHs//vSggOn12Et7r2mMvCOqgpOYTFQBa wv0NbYxz8pVkj54G+eO0GOqeWD0UopH+Vs36Pc2d4X1yv5q7CrJH1kVnu0sIyXgo sgSGbcTtHiApxi0LLpjO8DRowGmtmyWcPFRtAUuUx6ZgBtMaLi1vSm90Y0NOen0n p18zlwFyeulcD+WDP9VwCbxn5mqf4kV07ENvQA/IvUTR9OIxeGOYOWYwsjbrVuEn cH6T/fXSd0G62N0WJKZy/FIirxPVi2EO -----END CERTIFICATE-----Generated at Mon Oct 20 11:36:42 2025 by rpki-client