$ rpki-client -vvf rpki.apnic.net/member_repository/A918143E/A3C07B86798911EABCBA2166C4F9AE02/-r3gfSxVjb3PPDIAdre1X9-gR0A.mft File: -r3gfSxVjb3PPDIAdre1X9-gR0A.mft (raw, json) Hash identifier: pflM5Fusr5Uaqak0LcCHwFQlbmK51TsbDiACvxiS3KU= Subject key identifier: AC:10:AB:72:FC:17:DA:FA:09:9E:6A:60:7F:DA:72:E0:C6:31:CE:FF Authority key identifier: FA:BD:E0:7D:2C:55:8D:BD:CF:3C:32:00:76:B7:B5:5F:DF:A0:47:40 Certificate issuer: /CN=A918143E/serialNumber=FABDE07D2C558DBDCF3C320076B7B55FDFA04740 Certificate serial: 0A3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-r3gfSxVjb3PPDIAdre1X9-gR0A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918143E/A3C07B86798911EABCBA2166C4F9AE02/-r3gfSxVjb3PPDIAdre1X9-gR0A.mft Manifest number: 0A37 Signing time: Sat 18 Oct 2025 20:43:34 +0000 Manifest this update: Sat 18 Oct 2025 20:43:34 +0000 Manifest next update: Sat 25 Oct 2025 20:43:34 +0000 Files and hashes: 1: -r3gfSxVjb3PPDIAdre1X9-gR0A.crl (hash: yv5ONP+geobHPiPZ72Q3gWNkwWnHutIc3pXZn0QM1+E=) 2: 7E4ED0E4798B11EA90252969C4F9AE02.roa (hash: zi/2a7j2lYedIWZB1ZQVEfFe/URKlsQ3C6l5x+UUMmo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918143E/A3C07B86798911EABCBA2166C4F9AE02/-r3gfSxVjb3PPDIAdre1X9-gR0A.crl rsync://rpki.apnic.net/member_repository/A918143E/A3C07B86798911EABCBA2166C4F9AE02/-r3gfSxVjb3PPDIAdre1X9-gR0A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-r3gfSxVjb3PPDIAdre1X9-gR0A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:43:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2622 (0xa3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918143E, serialNumber=FABDE07D2C558DBDCF3C320076B7B55FDFA04740 Validity Not Before: Oct 18 20:43:34 2025 GMT Not After : Oct 25 20:43:34 2025 GMT Subject: CN=68f3fbf6-7d56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:e4:ba:e2:04:6c:8f:b4:05:5c:69:38:ad:80: 83:7e:c9:0d:57:53:27:80:bc:8a:36:ed:f5:b9:ed: af:37:f7:d5:c2:4c:85:b1:1d:29:86:7b:a3:0b:18: 5d:e8:ef:5f:e7:9e:3d:9b:2e:a0:32:e4:09:f5:27: eb:64:be:03:ce:67:0a:49:02:5b:66:63:30:c0:5f: d8:16:80:b8:f3:58:c2:fb:b6:13:15:cf:90:e1:5c: bd:6f:0f:75:0e:9a:63:93:a8:56:1a:20:32:5f:ab: 7e:37:ca:9f:e8:80:e1:d6:b2:42:a5:fa:ac:1e:c1: 70:c5:24:c7:e1:09:9c:c9:5f:ef:01:77:a6:26:27: 74:bf:d0:d9:d1:59:08:f8:3d:17:66:fb:7e:8a:1a: bc:a1:99:f0:1d:db:98:48:73:80:08:14:b8:20:5b: 83:9a:a8:de:7d:1b:a4:cf:bc:cf:14:83:69:d8:82: dd:b2:53:84:04:2d:36:30:dd:02:d1:d4:da:4d:79: f4:0d:da:59:81:cf:6a:a0:5a:ac:ba:65:01:62:e2: 4c:42:9d:f1:64:4b:54:a6:c8:0e:2b:52:47:db:ad: 0a:e8:18:fa:a7:e1:f3:f7:0b:70:51:46:83:14:3a: 7c:97:21:77:dc:6d:91:4d:c6:c9:96:60:a4:9f:30: d2:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:10:AB:72:FC:17:DA:FA:09:9E:6A:60:7F:DA:72:E0:C6:31:CE:FF X509v3 Authority Key Identifier: keyid:FA:BD:E0:7D:2C:55:8D:BD:CF:3C:32:00:76:B7:B5:5F:DF:A0:47:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918143E/A3C07B86798911EABCBA2166C4F9AE02/-r3gfSxVjb3PPDIAdre1X9-gR0A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-r3gfSxVjb3PPDIAdre1X9-gR0A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918143E/A3C07B86798911EABCBA2166C4F9AE02/-r3gfSxVjb3PPDIAdre1X9-gR0A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:64:3d:58:99:dd:91:6c:fb:ff:1a:9b:85:93:b8:4e:c8:f0: 23:d3:e1:37:54:f5:a8:02:bb:31:d1:76:66:fd:44:80:72:61: 66:1c:b4:ee:0f:39:c6:aa:f7:0b:41:30:54:48:72:c0:a1:0b: 98:7f:a6:10:25:a8:44:7f:e6:e1:a3:8e:95:80:88:b3:6a:92: 8e:b6:d1:c0:39:2f:7e:92:2f:b8:d9:37:68:d1:c7:89:3b:e7: a7:1c:fa:28:e5:7f:81:c0:0c:3e:f1:28:f6:ce:b7:b8:47:64: b6:be:6a:5a:59:95:98:cf:9d:84:06:82:8c:07:00:8b:16:5a: a3:ec:42:4f:0f:3d:c9:f0:9a:6d:f0:e2:d9:b5:d1:8c:2a:32: bc:25:a0:fc:25:9b:ab:7e:5c:8f:de:36:f3:68:19:d7:8b:89: 2e:3f:16:8b:59:d5:58:c5:0a:d7:20:51:6c:ab:8b:44:13:4e: ce:ab:f0:92:e3:01:49:f7:51:63:fc:a7:ae:2b:e0:26:56:64: 20:46:18:2a:f7:0b:58:49:18:e6:d7:79:f0:78:66:e0:38:27: ec:93:ba:ff:c4:7b:cc:e2:1d:c9:10:ad:91:07:ec:ac:ef:03: 7f:17:06:7f:32:75:fb:f9:05:0c:c0:61:b5:26:c8:11:50:7c: 89:46:10:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCj4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODE0M0UxMTAvBgNVBAUTKEZBQkRFMDdEMkM1NThEQkRDRjNDMzIwMDc2QjdCNTVG REZBMDQ3NDAwHhcNMjUxMDE4MjA0MzM0WhcNMjUxMDI1MjA0MzM0WjAYMRYwFAYD VQQDEw02OGYzZmJmNi03ZDU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAteS64gRsj7QFXGk4rYCDfskNV1MngLyKNu31ue2vN/fVwkyFsR0phnujCxhd 6O9f5549my6gMuQJ9SfrZL4DzmcKSQJbZmMwwF/YFoC481jC+7YTFc+Q4Vy9bw91 Dppjk6hWGiAyX6t+N8qf6IDh1rJCpfqsHsFwxSTH4QmcyV/vAXemJid0v9DZ0VkI +D0XZvt+ihq8oZnwHduYSHOACBS4IFuDmqjefRukz7zPFINp2ILdslOEBC02MN0C 0dTaTXn0DdpZgc9qoFqsumUBYuJMQp3xZEtUpsgOK1JH260K6Bj6p+Hz9wtwUUaD FDp8lyF33G2RTcbJlmCknzDS5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKwQq3L8 F9r6CZ5qYH/acuDGMc7/MB8GA1UdIwQYMBaAFPq94H0sVY29zzwyAHa3tV/foEdA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTQzRS9BM0MwN0I4Njc5 ODkxMUVBQkNCQTIxNjZDNEY5QUUwMi8tcjNnZlN4VmpiM1BQRElBZHJlMVg5LWdS MEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1yM2dmU3hWamIzUFBESUFkcmUxWDktZ1IwQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MTQzRS9BM0MwN0I4Njc5ODkxMUVBQkNCQTIxNjZDNEY5QUUwMi8tcjNnZlN4Vmpi M1BQRElBZHJlMVg5LWdSMEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaZD1Ymd2RbPv/GpuFk7hOyPAj0+E3VPWoArsx0XZm/USAcmFmHLTu DznGqvcLQTBUSHLAoQuYf6YQJahEf+bho46VgIizapKOttHAOS9+ki+42Tdo0ceJ O+enHPoo5X+BwAw+8Sj2zre4R2S2vmpaWZWYz52EBoKMBwCLFlqj7EJPDz3J8Jpt 8OLZtdGMKjK8JaD8JZurflyP3jbzaBnXi4kuPxaLWdVYxQrXIFFsq4tEE07Oq/CS 4wFJ91Fj/KeuK+AmVmQgRhgq9wtYSRjm13nweGbgOCfsk7r/xHvM4h3JEK2RB+ys 7wN/FwZ/MnX7+QUMwGG1JsgRUHyJRhDi -----END CERTIFICATE-----Generated at Mon Oct 20 13:51:15 2025 by rpki-client