$ rpki-client -vvf rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/3AMsXdBC7T6N4qcQ-yaBipVzQmY.mft File: 3AMsXdBC7T6N4qcQ-yaBipVzQmY.mft (raw, json) Hash identifier: IogzKku/QeG3qcEGQPPkJ1rZL9663AHaPUQroXK7Si8= Subject key identifier: 17:DE:77:37:57:F4:35:19:BC:74:FD:FB:36:36:F6:34:5A:69:06:9C Authority key identifier: DC:03:2C:5D:D0:42:ED:3E:8D:E2:A7:10:FB:26:81:8A:95:73:42:66 Certificate issuer: /CN=A911C8B7/serialNumber=DC032C5DD042ED3E8DE2A710FB26818A95734266 Certificate serial: 0C47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3AMsXdBC7T6N4qcQ-yaBipVzQmY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/3AMsXdBC7T6N4qcQ-yaBipVzQmY.mft Manifest number: 0C3B Signing time: Tue 04 Nov 2025 18:46:06 +0000 Manifest this update: Tue 04 Nov 2025 18:46:04 +0000 Manifest next update: Tue 11 Nov 2025 18:46:04 +0000 Files and hashes: 1: 3AMsXdBC7T6N4qcQ-yaBipVzQmY.crl (hash: 9JUG2Z/MdTpRvcGQRlTv6snuvb7KVBLV5AhIrfVaf4o=) 2: F66D3E4C175911EA9D8EF44FC4F9AE02.roa (hash: QTmQ+b0TWigH3ktAvPS5L4JGC6TmpCstJJc/am/VnB0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/3AMsXdBC7T6N4qcQ-yaBipVzQmY.crl rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/3AMsXdBC7T6N4qcQ-yaBipVzQmY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3AMsXdBC7T6N4qcQ-yaBipVzQmY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:46:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3143 (0xc47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C8B7, serialNumber=DC032C5DD042ED3E8DE2A710FB26818A95734266 Validity Not Before: Nov 4 18:46:04 2025 GMT Not After : Nov 11 18:46:04 2025 GMT Subject: CN=690a49ed-37c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:cc:b0:cb:b9:31:04:55:bd:27:e6:06:62:04: ff:fb:4b:f0:fb:e6:6f:82:22:5e:d0:51:1d:be:2a: 50:ca:ad:e6:d0:e9:a7:5c:ed:6e:d4:12:79:40:46: 10:26:d5:e1:fa:31:bc:09:2f:73:2d:c1:33:50:7d: 93:de:3f:eb:58:27:28:5c:d9:de:5b:b8:7b:d5:6b: fc:49:66:8f:32:a0:7d:6a:ce:ec:35:d4:90:70:60: 30:4f:a4:65:59:0b:d3:77:54:c8:22:69:26:2b:14: 84:e0:5f:8f:30:90:80:13:d5:7b:47:b9:60:1c:58: 85:3a:96:b5:8f:d8:de:2d:bd:6d:17:8d:d4:98:5e: 3b:a4:58:d9:c4:3c:31:13:86:db:4f:46:ad:3c:60: 5f:37:77:62:23:57:f7:0a:a2:40:eb:d1:c6:9b:0c: cd:ed:9a:b6:0b:b2:20:2e:3b:0d:18:e9:73:96:f6: 84:aa:a8:da:ac:fd:ae:f9:93:0b:c9:f1:ec:a0:c2: 74:b3:c3:d4:68:18:ab:ec:15:fb:8e:78:6d:49:b9: 1b:45:39:1b:0d:0d:eb:1d:1e:ff:2e:35:98:53:b1: b6:4b:c8:c2:ef:f1:9e:48:a3:39:65:f9:d2:a0:7d: 8c:35:7c:d1:6c:e9:df:1d:4f:e8:06:4e:10:91:bd: 65:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:DE:77:37:57:F4:35:19:BC:74:FD:FB:36:36:F6:34:5A:69:06:9C X509v3 Authority Key Identifier: keyid:DC:03:2C:5D:D0:42:ED:3E:8D:E2:A7:10:FB:26:81:8A:95:73:42:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/3AMsXdBC7T6N4qcQ-yaBipVzQmY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3AMsXdBC7T6N4qcQ-yaBipVzQmY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/3AMsXdBC7T6N4qcQ-yaBipVzQmY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:db:b0:f5:83:1c:42:b7:7e:2a:7f:76:be:d8:a3:22:e1:39: be:ab:2a:2e:a5:ad:85:95:b6:92:30:85:7e:9c:cb:a2:ac:86: 8e:29:ba:18:f6:45:bb:57:0e:c5:28:ac:49:a6:3b:f0:c5:e7: d7:71:b1:fc:ee:3c:ea:65:02:28:f1:65:18:e0:8f:7c:51:e3: 5f:fd:f5:16:ec:03:a6:98:ae:c6:ad:64:e2:4b:ee:ec:e2:5d: 78:2a:7d:18:5a:af:3a:4f:01:32:f0:34:60:cd:64:d1:b4:a2: aa:eb:6b:ec:35:66:7a:a2:e3:bb:bb:a0:8b:7b:87:c0:d9:8c: 44:98:8b:9e:43:4f:13:cf:36:9f:7c:61:15:d1:43:69:73:01: f9:74:e4:25:29:4a:bc:a8:8c:20:2b:ba:e3:df:c2:72:7c:d1: 3c:f7:5e:19:d2:31:78:6d:83:4c:fe:5c:04:9b:c5:57:7f:3a: e6:d8:3d:d1:1e:21:61:6d:eb:07:3a:c8:99:85:9a:66:46:56: 20:be:96:6c:cc:eb:97:89:af:7b:b1:29:30:b8:b7:05:05:9a: 0d:4d:90:30:38:6a:43:9f:d5:bc:d4:ea:4a:cb:75:5d:bb:4e: 0e:ae:ea:e3:d5:d4:f4:29:70:62:20:fd:88:fe:c2:dc:8d:d9: 55:68:ca:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM4QjcxMTAvBgNVBAUTKERDMDMyQzVERDA0MkVEM0U4REUyQTcxMEZCMjY4MThB OTU3MzQyNjYwHhcNMjUxMTA0MTg0NjA0WhcNMjUxMTExMTg0NjA0WjAYMRYwFAYD VQQDEw02OTBhNDllZC0zN2MyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqsywy7kxBFW9J+YGYgT/+0vw++ZvgiJe0FEdvipQyq3m0OmnXO1u1BJ5QEYQ JtXh+jG8CS9zLcEzUH2T3j/rWCcoXNneW7h71Wv8SWaPMqB9as7sNdSQcGAwT6Rl WQvTd1TIImkmKxSE4F+PMJCAE9V7R7lgHFiFOpa1j9jeLb1tF43UmF47pFjZxDwx E4bbT0atPGBfN3diI1f3CqJA69HGmwzN7Zq2C7IgLjsNGOlzlvaEqqjarP2u+ZML yfHsoMJ0s8PUaBir7BX7jnhtSbkbRTkbDQ3rHR7/LjWYU7G2S8jC7/GeSKM5ZfnS oH2MNXzRbOnfHU/oBk4Qkb1lWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBfedzdX 9DUZvHT9+zY29jRaaQacMB8GA1UdIwQYMBaAFNwDLF3QQu0+jeKnEPsmgYqVc0Jm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzhCNy82NjlCNDU1MjE3 NTkxMUVBOEI0QTgwNEZDNEY5QUUwMi8zQU1zWGRCQzdUNk40cWNRLXlhQmlwVnpR bVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNBTXNYZEJDN1Q2TjRxY1EteWFCaXBWelFtWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzhCNy82NjlCNDU1MjE3NTkxMUVBOEI0QTgwNEZDNEY5QUUwMi8zQU1zWGRCQzdU Nk40cWNRLXlhQmlwVnpRbVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB627D1gxxCt34qf3a+2KMi4Tm+qyoupa2FlbaSMIV+nMuirIaOKboY 9kW7Vw7FKKxJpjvwxefXcbH87jzqZQIo8WUY4I98UeNf/fUW7AOmmK7GrWTiS+7s 4l14Kn0YWq86TwEy8DRgzWTRtKKq62vsNWZ6ouO7u6CLe4fA2YxEmIueQ08Tzzaf fGEV0UNpcwH5dOQlKUq8qIwgK7rj38JyfNE8914Z0jF4bYNM/lwEm8VXfzrm2D3R HiFhbesHOsiZhZpmRlYgvpZszOuXia97sSkwuLcFBZoNTZAwOGpDn9W81OpKy3Vd u04Orurj1dT0KXBiIP2I/sLcjdlVaMqS -----END CERTIFICATE-----Generated at Wed Nov 5 12:03:50 2025 by rpki-client