$ rpki-client -vvf rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft File: DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft (raw, json) Hash identifier: LU0QIvPcUN7paR6/aRa1IYmYHfoXgYbhpUfsfFmtCXM= Subject key identifier: 45:0F:C0:6C:A1:98:80:55:1B:CD:AC:16:09:F7:29:73:12:70:96:D3 Authority key identifier: 0D:E1:67:9D:21:D3:9B:61:F0:26:50:A4:14:EC:9D:04:62:C5:E4:18 Certificate issuer: /CN=A917D3A1/serialNumber=0DE1679D21D39B61F02650A414EC9D0462C5E418 Certificate serial: 3530 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft Manifest number: 3509 Signing time: Sat 18 Oct 2025 14:29:13 +0000 Manifest this update: Sat 18 Oct 2025 14:29:12 +0000 Manifest next update: Sat 25 Oct 2025 14:29:12 +0000 Files and hashes: 1: DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl (hash: DvSANWP9eXh1s4PvfeT4lYiK8r/GPfBZy4LJoWt7QME=) 2: B3B5B50E117711EEA0E5E040C4F9AE02.roa (hash: 6CSktOcA4MnBe9beO9qKaaWhMjSNipfCRcL+x7I1JgE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 14:29:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13616 (0x3530) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D3A1, serialNumber=0DE1679D21D39B61F02650A414EC9D0462C5E418 Validity Not Before: Oct 18 14:29:12 2025 GMT Not After : Oct 25 14:29:12 2025 GMT Subject: CN=68f3a438-caae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:c8:22:9f:cd:bf:ff:c7:2b:e0:c3:1e:c0:42: 3b:53:4c:58:40:90:20:29:da:8e:8c:c5:36:84:9e: c0:05:c4:3e:a3:e1:1e:cc:18:00:53:1c:9e:20:7f: 6b:d5:1e:c5:1e:f4:56:b4:c3:e5:ba:b3:e5:42:fe: 40:0e:8e:73:e5:82:31:38:74:ec:ae:32:1d:f2:ac: ff:6a:88:02:c2:1c:ae:5d:77:11:0c:be:58:8f:fe: 24:ec:c7:b8:62:66:47:ea:bf:dd:5a:24:5c:f2:67: 4c:08:80:a0:49:2e:5c:e8:75:9b:e6:09:c6:d0:72: f1:e7:3f:6a:03:90:18:12:95:48:b1:fb:56:e8:8b: 55:a5:ce:03:3e:96:1f:92:9c:f3:be:a1:1c:c9:1b: 0e:32:3b:32:c9:73:7b:4d:79:60:90:d5:08:2b:43: 1a:11:e9:42:5e:d2:d9:b6:80:36:67:d2:3c:ed:04: b3:db:dc:d9:88:1b:25:f3:7a:f2:92:d6:4f:91:92: 14:52:e6:07:74:bc:46:79:c4:b6:c7:45:aa:ba:6c: c2:ac:77:36:db:42:98:5c:ae:7e:fd:27:e1:0c:71: 6d:9c:01:9f:25:0c:58:32:3d:8c:21:42:62:6b:26: f3:3c:ac:36:86:0e:6b:5f:ca:4d:4d:d1:38:b9:af: e2:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:0F:C0:6C:A1:98:80:55:1B:CD:AC:16:09:F7:29:73:12:70:96:D3 X509v3 Authority Key Identifier: keyid:0D:E1:67:9D:21:D3:9B:61:F0:26:50:A4:14:EC:9D:04:62:C5:E4:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:75:d8:91:2e:d1:e3:a8:79:0e:ca:db:2f:6d:da:0f:86:19: ab:9d:74:ea:5b:a1:f9:64:ca:19:d3:a5:1a:41:f3:91:5d:3b: c2:54:c7:cd:8a:ce:46:3d:f3:b0:1e:27:fc:00:63:c9:93:0b: d9:eb:8a:60:92:4d:6b:de:1d:2a:9a:ea:6b:04:82:64:83:ac: cd:b2:80:9d:63:11:ca:ee:f2:95:9e:30:c7:0e:6a:d4:43:5d: 13:13:aa:6d:5e:83:c9:5c:1a:82:68:a5:b7:00:87:d5:ab:3d: e0:3a:58:ea:d6:af:6a:16:af:72:c8:ea:dc:a1:45:fd:d7:e6: 6e:17:93:d2:11:5a:2f:3e:b3:4f:3e:72:f3:ae:9a:d4:ce:f3: f6:a5:c5:aa:af:93:97:5c:42:92:af:db:91:1b:c3:da:eb:c2: 9a:51:c9:c6:92:48:04:73:23:73:55:1e:38:9a:e3:8f:7c:5a: 72:70:9b:34:fa:58:10:8f:ba:bf:07:08:10:d3:ff:4c:62:45: 39:8c:cc:b6:3f:98:18:ee:5d:38:e1:b6:d4:f1:29:6d:0e:2a: ce:48:05:2c:49:72:4a:b0:e1:25:04:50:7b:a4:b3:c7:9a:ae: a1:00:60:1e:43:d9:23:b7:10:97:90:34:1b:2d:5f:98:9c:8f: 74:b1:e8:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNTAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0QzQTExMTAvBgNVBAUTKDBERTE2NzlEMjFEMzlCNjFGMDI2NTBBNDE0RUM5RDA0 NjJDNUU0MTgwHhcNMjUxMDE4MTQyOTEyWhcNMjUxMDI1MTQyOTEyWjAYMRYwFAYD VQQDEw02OGYzYTQzOC1jYWFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7Mgin82//8cr4MMewEI7U0xYQJAgKdqOjMU2hJ7ABcQ+o+EezBgAUxyeIH9r 1R7FHvRWtMPlurPlQv5ADo5z5YIxOHTsrjId8qz/aogCwhyuXXcRDL5Yj/4k7Me4 YmZH6r/dWiRc8mdMCICgSS5c6HWb5gnG0HLx5z9qA5AYEpVIsftW6ItVpc4DPpYf kpzzvqEcyRsOMjsyyXN7TXlgkNUIK0MaEelCXtLZtoA2Z9I87QSz29zZiBsl83ry ktZPkZIUUuYHdLxGecS2x0WqumzCrHc220KYXK5+/SfhDHFtnAGfJQxYMj2MIUJi aybzPKw2hg5rX8pNTdE4ua/iRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEUPwGyh mIBVG82sFgn3KXMScJbTMB8GA1UdIwQYMBaAFA3hZ50h05th8CZQpBTsnQRixeQY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDNBMS82MDdBRTk1NDFE ODYxMUUyOTlCQTk0REQwOEIwMkNEMi9EZUZublNIVG0ySHdKbENrRk95ZEJHTEY1 QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RlRm5uU0hUbTJId0psQ2tGT3lkQkdMRjVCZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDNBMS82MDdBRTk1NDFEODYxMUUyOTlCQTk0REQwOEIwMkNEMi9EZUZublNIVG0y SHdKbENrRk95ZEJHTEY1QmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCzddiRLtHjqHkOytsvbdoPhhmrnXTqW6H5ZMoZ06UaQfORXTvCVMfN is5GPfOwHif8AGPJkwvZ64pgkk1r3h0qmuprBIJkg6zNsoCdYxHK7vKVnjDHDmrU Q10TE6ptXoPJXBqCaKW3AIfVqz3gOljq1q9qFq9yyOrcoUX91+ZuF5PSEVovPrNP PnLzrprUzvP2pcWqr5OXXEKSr9uRG8Pa68KaUcnGkkgEcyNzVR44muOPfFpycJs0 +lgQj7q/BwgQ0/9MYkU5jMy2P5gY7l044bbU8SltDirOSAUsSXJKsOElBFB7pLPH mq6hAGAeQ9kjtxCXkDQbLV+YnI90seio -----END CERTIFICATE-----Generated at Mon Oct 20 04:20:41 2025 by rpki-client