$ rpki-client -vvf rpki.apnic.net/member_repository/A91813ED/677AAA3C5F3711EFBF369E58C4F9AE02/3yS01RxnhB3WAN0qYXhrzpiHhmc.mft File: 3yS01RxnhB3WAN0qYXhrzpiHhmc.mft (raw, json) Hash identifier: jriadDt+0udfUDdl2hizh+OH36jfoHRuameRRPno3D0= Subject key identifier: F6:80:16:A9:32:42:C5:8C:35:F2:E4:A5:80:63:E2:61:E1:80:F3:BE Authority key identifier: DF:24:B4:D5:1C:67:84:1D:D6:00:DD:2A:61:78:6B:CE:98:87:86:67 Certificate issuer: /CN=A91813ED/serialNumber=DF24B4D51C67841DD600DD2A61786BCE98878667 Certificate serial: DD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3yS01RxnhB3WAN0qYXhrzpiHhmc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91813ED/677AAA3C5F3711EFBF369E58C4F9AE02/3yS01RxnhB3WAN0qYXhrzpiHhmc.mft Manifest number: DB Signing time: Sun 19 Oct 2025 08:35:22 +0000 Manifest this update: Sun 19 Oct 2025 08:35:21 +0000 Manifest next update: Sun 26 Oct 2025 08:35:21 +0000 Files and hashes: 1: 3yS01RxnhB3WAN0qYXhrzpiHhmc.crl (hash: 0XxJb/Om749hdDjU0KPhzgJj5nm0AorXa6eVqJOCPaY=) 2: B21985725F3711EFA108CA0CC4F9AE02.roa (hash: hjZJ+P+DDZEo0McDoaqGVpFBbzW2XOruqYUk9+Z9bak=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91813ED/677AAA3C5F3711EFBF369E58C4F9AE02/3yS01RxnhB3WAN0qYXhrzpiHhmc.crl rsync://rpki.apnic.net/member_repository/A91813ED/677AAA3C5F3711EFBF369E58C4F9AE02/3yS01RxnhB3WAN0qYXhrzpiHhmc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3yS01RxnhB3WAN0qYXhrzpiHhmc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:35:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 221 (0xdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91813ED, serialNumber=DF24B4D51C67841DD600DD2A61786BCE98878667 Validity Not Before: Oct 19 08:35:21 2025 GMT Not After : Oct 26 08:35:21 2025 GMT Subject: CN=68f4a2ca-b742 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:e1:d4:5b:53:9c:f5:29:84:94:7e:4b:b0:06: ec:8b:d5:b9:47:93:34:02:32:f9:97:a9:52:c4:97: 06:d2:e5:dd:69:95:98:18:0a:ee:73:c0:2c:60:48: 17:75:92:7f:82:15:f1:ab:f1:4d:a8:51:b0:a4:66: 17:94:b8:07:ed:74:89:d5:ab:f8:7a:61:61:14:20: d5:87:c0:54:b8:bd:ae:a3:32:48:c8:2b:99:20:f8: d9:93:29:d2:a8:19:4a:91:f5:a6:20:8b:ad:7c:52: ff:9d:c7:08:78:fd:d6:31:65:44:8e:98:8d:67:2c: 99:0c:a4:25:3c:a3:58:df:a3:3e:50:3b:04:2e:ff: 70:4e:c4:01:28:ee:cf:88:29:0e:41:57:76:5d:43: 7f:85:dc:a0:50:c4:22:54:94:ef:36:37:70:8f:cf: 04:cc:5d:84:9a:7e:ee:05:e4:af:bf:3f:67:58:20: 0c:ea:bb:1d:2c:20:33:5a:99:92:4e:3a:7a:6f:88: 57:ce:f9:74:41:ef:0f:5d:45:f2:43:1e:ba:a0:2f: 5f:46:25:fa:30:71:f2:61:64:38:0a:7b:1c:b0:ee: 46:6c:db:18:9e:81:33:6c:7b:41:27:51:32:f3:1e: fb:be:d5:e1:36:27:75:9f:72:0c:5d:18:2a:9f:73: 9d:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:80:16:A9:32:42:C5:8C:35:F2:E4:A5:80:63:E2:61:E1:80:F3:BE X509v3 Authority Key Identifier: keyid:DF:24:B4:D5:1C:67:84:1D:D6:00:DD:2A:61:78:6B:CE:98:87:86:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91813ED/677AAA3C5F3711EFBF369E58C4F9AE02/3yS01RxnhB3WAN0qYXhrzpiHhmc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3yS01RxnhB3WAN0qYXhrzpiHhmc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91813ED/677AAA3C5F3711EFBF369E58C4F9AE02/3yS01RxnhB3WAN0qYXhrzpiHhmc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:67:f9:94:23:36:79:29:50:ca:74:a4:c6:57:a7:79:02:23: aa:65:6b:7c:4a:76:6f:f6:fc:ed:e1:43:f9:b4:31:62:66:60: 66:03:43:77:b5:bb:1a:3b:4a:58:2a:74:2e:f5:6e:13:3f:18: 7b:53:a6:ce:79:92:47:0e:68:0c:e3:fb:3a:38:bf:bc:90:09: 82:47:f6:86:bf:15:0e:20:4a:e3:0c:2d:47:af:f0:08:28:0f: d7:32:5c:5e:49:29:c8:18:47:af:c5:a0:a2:f8:fa:31:10:9a: 34:da:b7:fb:03:6d:af:cf:4a:99:9a:d4:23:da:1d:04:6e:02: 2a:0d:ac:f5:98:10:92:48:6b:14:8e:cd:e4:68:fa:d6:ae:b1: e9:01:a2:88:94:cc:24:8e:8c:dc:8b:4b:69:ea:76:a5:d7:c5: 6e:06:4a:11:11:ea:45:d3:17:8b:8f:bd:4a:da:3c:7c:ea:a0: f0:9a:98:e5:1e:f4:a2:25:66:13:e3:69:55:ab:66:e0:c8:9e: e2:c5:1f:1b:98:9c:58:67:73:cb:43:88:e0:f0:e4:87:b9:c0: 0e:78:d6:e2:77:ca:3c:ff:cb:f0:38:10:90:7f:d2:57:48:cd: ad:77:7f:c0:5b:ab:a8:e6:e1:a7:62:f0:20:b3:79:83:b7:cf: fc:6a:64:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODEzRUQxMTAvBgNVBAUTKERGMjRCNEQ1MUM2Nzg0MURENjAwREQyQTYxNzg2QkNF OTg4Nzg2NjcwHhcNMjUxMDE5MDgzNTIxWhcNMjUxMDI2MDgzNTIxWjAYMRYwFAYD VQQDEw02OGY0YTJjYS1iNzQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvuHUW1Oc9SmElH5LsAbsi9W5R5M0AjL5l6lSxJcG0uXdaZWYGAruc8AsYEgX dZJ/ghXxq/FNqFGwpGYXlLgH7XSJ1av4emFhFCDVh8BUuL2uozJIyCuZIPjZkynS qBlKkfWmIIutfFL/nccIeP3WMWVEjpiNZyyZDKQlPKNY36M+UDsELv9wTsQBKO7P iCkOQVd2XUN/hdygUMQiVJTvNjdwj88EzF2Emn7uBeSvvz9nWCAM6rsdLCAzWpmS Tjp6b4hXzvl0Qe8PXUXyQx66oC9fRiX6MHHyYWQ4CnscsO5GbNsYnoEzbHtBJ1Ey 8x77vtXhNid1n3IMXRgqn3OdawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPaAFqky QsWMNfLkpYBj4mHhgPO+MB8GA1UdIwQYMBaAFN8ktNUcZ4Qd1gDdKmF4a86Yh4Zn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTNFRC82NzdBQUEzQzVG MzcxMUVGQkYzNjlFNThDNEY5QUUwMi8zeVMwMVJ4bmhCM1dBTjBxWVhocnpwaUho bWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzN5UzAxUnhuaEIzV0FOMHFZWGhyenBpSGhtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MTNFRC82NzdBQUEzQzVGMzcxMUVGQkYzNjlFNThDNEY5QUUwMi8zeVMwMVJ4bmhC M1dBTjBxWVhocnpwaUhobWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIZ/mUIzZ5KVDKdKTGV6d5AiOqZWt8SnZv9vzt4UP5tDFiZmBmA0N3 tbsaO0pYKnQu9W4TPxh7U6bOeZJHDmgM4/s6OL+8kAmCR/aGvxUOIErjDC1Hr/AI KA/XMlxeSSnIGEevxaCi+PoxEJo02rf7A22vz0qZmtQj2h0EbgIqDaz1mBCSSGsU js3kaPrWrrHpAaKIlMwkjozci0tp6nal18VuBkoREepF0xeLj71K2jx86qDwmpjl HvSiJWYT42lVq2bgyJ7ixR8bmJxYZ3PLQ4jg8OSHucAOeNbid8o8/8vwOBCQf9JX SM2td3/AW6uo5uGnYvAgs3mDt8/8amS4 -----END CERTIFICATE-----Generated at Tue Oct 21 05:29:54 2025 by rpki-client