$ rpki-client -vvf rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.mft File: 3GF8-u34v7Cj7PfWcULmwdUmQ1w.mft (raw, json) Hash identifier: W+IlKGNqx6Xs2WDFyIYEza/1tmhyNiFe0LSa5MnJ0PA= Subject key identifier: E9:F9:76:E7:27:4B:BB:79:D6:9C:03:52:6B:80:D4:C8:08:AC:FD:E8 Authority key identifier: DC:61:7C:FA:ED:F8:BF:B0:A3:EC:F7:D6:71:42:E6:C1:D5:26:43:5C Certificate issuer: /CN=A9199AFB/serialNumber=DC617CFAEDF8BFB0A3ECF7D67142E6C1D526435C Certificate serial: 034E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GF8-u34v7Cj7PfWcULmwdUmQ1w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.mft Manifest number: 0349 Signing time: Sun 19 Oct 2025 03:04:18 +0000 Manifest this update: Sun 19 Oct 2025 03:04:18 +0000 Manifest next update: Sun 26 Oct 2025 03:04:18 +0000 Files and hashes: 1: 3GF8-u34v7Cj7PfWcULmwdUmQ1w.crl (hash: jkPusgKA1QrvxFAvGN9EA1I5ss4ULP14sxGXDl4qp6Q=) 2: 9E9EC628D9C511EC81B54F47C4F9AE02.roa (hash: BkyDK7N8MqPzb7yz7N5nQ1LHqHZV+xDxLFOlL/0hv/I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.crl rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GF8-u34v7Cj7PfWcULmwdUmQ1w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:04:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 846 (0x34e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199AFB, serialNumber=DC617CFAEDF8BFB0A3ECF7D67142E6C1D526435C Validity Not Before: Oct 19 03:04:18 2025 GMT Not After : Oct 26 03:04:18 2025 GMT Subject: CN=68f45532-53dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:15:e3:ca:0d:63:c3:28:94:31:b0:c4:6a:b5: 57:f0:14:30:2c:5d:fe:22:0f:47:57:94:9f:2e:b1: 31:a5:df:dc:1f:fa:82:84:66:60:12:c1:be:fe:62: 0e:11:d3:9a:c7:b8:83:62:a7:4a:83:d5:5f:87:b8: e0:2d:7c:21:5e:72:e4:02:f9:ff:b0:ad:30:b7:67: 21:80:7e:29:1c:49:39:35:f5:a7:d5:e7:51:75:7d: a7:38:f8:3b:b5:60:07:b6:ea:6b:c8:ef:61:fb:38: ef:34:3c:2d:59:e1:b5:7a:0e:eb:22:b8:b4:19:31: 5e:e7:9d:19:5f:81:a7:2f:ba:5a:7e:57:5e:d3:bb: 91:64:51:91:91:4d:26:41:cf:aa:10:dd:d2:e8:87: 72:9e:92:d1:cd:a3:ea:49:bc:6d:3d:e4:af:f9:4e: d5:13:ee:a8:07:85:2a:f0:cb:5d:0f:69:8b:57:8e: 1c:06:0b:96:18:c6:1d:6b:a8:59:cb:a7:8f:cd:2d: 18:b2:a8:96:fb:71:cf:0d:c4:93:0d:d2:2d:52:24: 94:c2:d5:34:cc:d8:35:3c:51:b9:9b:08:f1:dd:32: 8a:12:e4:8f:f3:ca:b2:01:98:f5:cc:58:d6:9e:96: 69:1f:90:b8:9d:58:c5:ea:40:26:8d:c5:5d:04:21: 48:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:F9:76:E7:27:4B:BB:79:D6:9C:03:52:6B:80:D4:C8:08:AC:FD:E8 X509v3 Authority Key Identifier: keyid:DC:61:7C:FA:ED:F8:BF:B0:A3:EC:F7:D6:71:42:E6:C1:D5:26:43:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GF8-u34v7Cj7PfWcULmwdUmQ1w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:2a:81:d2:05:27:c7:0b:2a:55:59:5f:c5:c9:3e:a1:29:7b: 7e:0f:87:e6:43:9d:e8:45:45:eb:02:58:28:54:f1:e9:7b:86: 51:a3:32:0c:c3:1e:19:66:0c:62:20:ec:9e:de:82:90:83:24: d9:8c:5d:a9:49:04:99:ee:8f:41:17:f4:84:f3:16:04:c7:e9: a3:5c:88:5f:a6:01:d2:4b:f1:1b:82:08:8b:e8:41:f3:56:57: 5e:f3:56:8d:c5:26:3e:f6:58:32:20:f5:c7:1d:0c:04:0a:0c: 80:28:e0:84:5a:24:ab:5a:e9:a0:21:69:38:b2:fa:f8:8f:bd: 4e:c1:bf:51:bd:7d:39:e0:6c:3d:a7:5e:29:1e:80:41:05:b8: c6:ca:6c:97:28:d8:05:42:82:1c:1a:06:89:ca:df:c0:16:b0: c9:24:e3:22:de:75:c7:15:c7:3c:13:6c:86:d0:32:b6:38:c1: 4f:0d:c5:05:a5:2d:9e:71:26:b2:5e:cf:54:42:85:4e:87:13: 18:0f:3f:f5:17:d6:65:34:6c:e9:7d:a1:eb:ce:ea:03:8d:4f: d4:94:69:8c:e7:71:7c:08:7a:a9:86:a0:b4:c4:a9:cb:ee:2c: 8e:65:61:e3:c4:7d:87:bf:58:97:bb:b5:85:fc:80:ec:0e:da: be:1b:3a:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA04wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTlBRkIxMTAvBgNVBAUTKERDNjE3Q0ZBRURGOEJGQjBBM0VDRjdENjcxNDJFNkMx RDUyNjQzNUMwHhcNMjUxMDE5MDMwNDE4WhcNMjUxMDI2MDMwNDE4WjAYMRYwFAYD VQQDEw02OGY0NTUzMi01M2RjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyhXjyg1jwyiUMbDEarVX8BQwLF3+Ig9HV5SfLrExpd/cH/qChGZgEsG+/mIO EdOax7iDYqdKg9Vfh7jgLXwhXnLkAvn/sK0wt2chgH4pHEk5NfWn1edRdX2nOPg7 tWAHtupryO9h+zjvNDwtWeG1eg7rIri0GTFe550ZX4GnL7paflde07uRZFGRkU0m Qc+qEN3S6IdynpLRzaPqSbxtPeSv+U7VE+6oB4Uq8MtdD2mLV44cBguWGMYda6hZ y6ePzS0YsqiW+3HPDcSTDdItUiSUwtU0zNg1PFG5mwjx3TKKEuSP88qyAZj1zFjW npZpH5C4nVjF6kAmjcVdBCFIiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOn5ducn S7t51pwDUmuA1MgIrP3oMB8GA1UdIwQYMBaAFNxhfPrt+L+wo+z31nFC5sHVJkNc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OUFGQi80NDM0RDU5MEQ5 QzIxMUVDODg3Rjk4NDZDNEY5QUUwMi8zR0Y4LXUzNHY3Q2o3UGZXY1VMbXdkVW1R MXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNHRjgtdTM0djdDajdQZldjVUxtd2RVbVExdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OUFGQi80NDM0RDU5MEQ5QzIxMUVDODg3Rjk4NDZDNEY5QUUwMi8zR0Y4LXUzNHY3 Q2o3UGZXY1VMbXdkVW1RMXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCeKoHSBSfHCypVWV/FyT6hKXt+D4fmQ53oRUXrAlgoVPHpe4ZRozIM wx4ZZgxiIOye3oKQgyTZjF2pSQSZ7o9BF/SE8xYEx+mjXIhfpgHSS/EbggiL6EHz Vlde81aNxSY+9lgyIPXHHQwECgyAKOCEWiSrWumgIWk4svr4j71Owb9RvX054Gw9 p14pHoBBBbjGymyXKNgFQoIcGgaJyt/AFrDJJOMi3nXHFcc8E2yG0DK2OMFPDcUF pS2ecSayXs9UQoVOhxMYDz/1F9ZlNGzpfaHrzuoDjU/UlGmM53F8CHqphqC0xKnL 7iyOZWHjxH2Hv1iXu7WF/IDsDtq+Gzpj -----END CERTIFICATE-----Generated at Mon Oct 20 12:42:21 2025 by rpki-client