$ rpki-client -vvf rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft File: 3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft (raw, json) Hash identifier: eRJPDeZpTBw8BqHJuN0g1jlVSGLI3nYJnk7XesoWJ5M= Subject key identifier: E4:76:DA:F4:EE:B1:C4:61:80:F6:F9:57:45:89:FE:BA:83:99:1E:47 Authority key identifier: DC:62:20:08:A8:A1:AD:42:BE:2A:25:49:43:49:1A:FA:A8:45:49:A5 Certificate issuer: /CN=A911035A/serialNumber=DC622008A8A1AD42BE2A254943491AFAA84549A5 Certificate serial: 0A49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft Manifest number: 0A38 Signing time: Sun 02 Nov 2025 19:42:37 +0000 Manifest this update: Sun 02 Nov 2025 19:42:37 +0000 Manifest next update: Sun 09 Nov 2025 19:42:37 +0000 Files and hashes: 1: 3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl (hash: ruzl/rsuapqTXCVCdGjdOVo96EgCyOf/wBTrD5v/+lQ=) 2: 5B57754A026F11EDBE22EF64C4F9AE02.roa (hash: ihAIG4OoPwthC+h4NtPo2Q0pwt/cIHMn8RF1lo5PumY=) 3: 5A472FBA026F11EDBE22EF64C4F9AE02.roa (hash: vIMBF1bBAJdpKyG7NryScSCm1A4V3l1tKWGtKbJDwKU=) 4: C1B3DE082BBE11EF809E1831C4F9AE02.roa (hash: lx///Z7Da35SlsWklk353QqekT8yYXigifaMtdugzeQ=) 5: E1935B7A36DD11EFB1E53717C4F9AE02.roa (hash: H0HQ+QBIGliAyxj5H0/8pAJ49x4cCntNY4DcwIy3B3Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 19:42:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2633 (0xa49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911035A, serialNumber=DC622008A8A1AD42BE2A254943491AFAA84549A5 Validity Not Before: Nov 2 19:42:37 2025 GMT Not After : Nov 9 19:42:37 2025 GMT Subject: CN=6907b42d-8749 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:93:db:b0:8c:f6:4d:d0:0a:77:2b:63:5a:3a: 65:43:7b:e6:4a:3d:6d:be:c5:44:2b:9c:65:6c:53: d9:f9:1f:00:c0:3c:ef:45:7c:1e:95:d8:fa:dd:df: e0:10:11:69:41:ad:17:ed:35:5b:04:ef:bf:e8:d3: 0a:7a:95:63:af:ea:d8:fb:ff:5d:30:72:b2:4f:36: 71:84:cb:71:9e:40:01:99:7f:57:96:85:33:c4:c7: 84:f3:97:1b:e1:6e:ca:e5:72:43:0e:09:2f:b0:5a: 63:c7:02:e2:20:15:58:4e:a7:d6:fc:5c:68:1f:45: 82:6e:2f:d5:33:78:4b:eb:57:02:35:25:2b:a6:a2: 3d:ca:b8:75:2a:d4:b9:fc:e5:df:bf:9e:03:8e:fd: e6:53:b5:02:a4:8a:0f:b9:2f:63:d6:d7:83:d5:e3: d0:3f:d9:dd:8e:b2:97:a3:92:6e:19:43:56:46:53: 2c:87:ed:02:ae:cd:6d:3c:a2:8c:c4:f6:2b:12:77: 20:1c:6e:71:40:5d:95:28:c6:d6:61:61:ee:08:e2: 91:04:8e:eb:28:2b:71:ea:eb:ea:37:49:75:d5:66: 76:dc:1a:3a:7d:ab:8d:21:98:83:8a:c7:fe:b9:22: 40:0b:59:87:dd:df:f5:88:6f:75:dd:da:8d:d3:7d: 72:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:76:DA:F4:EE:B1:C4:61:80:F6:F9:57:45:89:FE:BA:83:99:1E:47 X509v3 Authority Key Identifier: keyid:DC:62:20:08:A8:A1:AD:42:BE:2A:25:49:43:49:1A:FA:A8:45:49:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:06:ab:d1:78:64:50:83:95:97:d7:3f:5a:68:35:bc:4e:33: b5:28:8c:6d:f2:3d:05:42:6b:92:14:cf:27:e9:61:c1:e4:e4: 91:b4:1e:44:ef:63:28:b4:25:b9:2a:a1:82:8c:63:e0:17:6e: f3:6f:3e:28:a7:66:e2:80:45:d9:2d:9a:3e:d8:59:78:76:36: c6:d9:17:53:c6:5a:46:c2:1b:6b:57:19:22:9e:2c:b9:97:de: 04:21:75:a3:76:b7:97:22:da:44:85:94:69:e0:a7:4c:ae:fc: b2:60:bf:be:bf:99:43:cf:66:7c:34:e3:8b:eb:78:10:96:d8: f2:5a:f4:ad:64:d4:f1:d5:61:c5:2a:b9:17:fd:3a:8f:40:bd: ae:cc:cb:db:7e:cd:24:c3:a6:75:cf:cd:df:93:a6:c9:88:13: 87:53:5b:6c:74:95:82:87:7a:05:8a:48:ef:5b:56:be:08:b2: eb:d2:88:e3:50:14:f0:0b:7a:d5:b7:6c:f7:a6:ac:fc:88:78: 8e:45:ed:33:07:af:bb:e0:ca:48:9a:d9:86:2c:12:aa:bb:87: 15:5f:33:9d:75:a1:1a:fe:90:47:b4:99:d4:b9:d8:c5:ef:80: 92:24:ae:76:24:d1:be:50:67:0d:b9:3a:98:dd:e4:86:b0:9d: 2b:d6:82:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCkkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTAzNUExMTAvBgNVBAUTKERDNjIyMDA4QThBMUFENDJCRTJBMjU0OTQzNDkxQUZB QTg0NTQ5QTUwHhcNMjUxMTAyMTk0MjM3WhcNMjUxMTA5MTk0MjM3WjAYMRYwFAYD VQQDEw02OTA3YjQyZC04NzQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv5PbsIz2TdAKdytjWjplQ3vmSj1tvsVEK5xlbFPZ+R8AwDzvRXweldj63d/g EBFpQa0X7TVbBO+/6NMKepVjr+rY+/9dMHKyTzZxhMtxnkABmX9XloUzxMeE85cb 4W7K5XJDDgkvsFpjxwLiIBVYTqfW/FxoH0WCbi/VM3hL61cCNSUrpqI9yrh1KtS5 /OXfv54Djv3mU7UCpIoPuS9j1teD1ePQP9ndjrKXo5JuGUNWRlMsh+0Crs1tPKKM xPYrEncgHG5xQF2VKMbWYWHuCOKRBI7rKCtx6uvqN0l11WZ23Bo6fauNIZiDisf+ uSJAC1mH3d/1iG913dqN031yXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOR22vTu scRhgPb5V0WJ/rqDmR5HMB8GA1UdIwQYMBaAFNxiIAiooa1CviolSUNJGvqoRUml MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDM1QS8zQzYwOUI0NDdD NjYxMUVBODA4OUYzNTFDNEY5QUUwMi8zR0lnQ0tpaHJVSy1LaVZKUTBrYS1xaEZT YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNHSWdDS2loclVLLUtpVkpRMGthLXFoRlNhVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDM1QS8zQzYwOUI0NDdDNjYxMUVBODA4OUYzNTFDNEY5QUUwMi8zR0lnQ0tpaHJV Sy1LaVZKUTBrYS1xaEZTYVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCoBqvReGRQg5WX1z9aaDW8TjO1KIxt8j0FQmuSFM8n6WHB5OSRtB5E 72MotCW5KqGCjGPgF27zbz4op2bigEXZLZo+2Fl4djbG2RdTxlpGwhtrVxkiniy5 l94EIXWjdreXItpEhZRp4KdMrvyyYL++v5lDz2Z8NOOL63gQltjyWvStZNTx1WHF KrkX/TqPQL2uzMvbfs0kw6Z1z83fk6bJiBOHU1tsdJWCh3oFikjvW1a+CLLr0ojj UBTwC3rVt2z3pqz8iHiORe0zB6+74MpImtmGLBKqu4cVXzOddaEa/pBHtJnUudjF 74CSJK52JNG+UGcNuTqY3eSGsJ0r1oKg -----END CERTIFICATE-----Generated at Tue Nov 4 02:15:07 2025 by rpki-client