$ rpki-client -vvf rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft File: 3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft (raw, json) Hash identifier: IhIycmqik33xSWMX/mrC4F3zhswyyvvY5puW1Dn1WoI= Subject key identifier: 8F:6F:6A:86:A3:A2:13:B7:E2:67:89:B3:75:93:86:55:EF:8D:62:E1 Authority key identifier: DF:25:34:84:DC:E5:2C:41:37:CB:D1:C8:ED:44:D9:CB:25:57:F4:3F Certificate issuer: /CN=A9158568/serialNumber=DF253484DCE52C4137CBD1C8ED44D9CB2557F43F Certificate serial: 0C56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yU0hNzlLEE3y9HI7UTZyyVX9D8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft Manifest number: 0C3C Signing time: Tue 04 Nov 2025 18:47:09 +0000 Manifest this update: Tue 04 Nov 2025 18:47:08 +0000 Manifest next update: Tue 11 Nov 2025 18:47:08 +0000 Files and hashes: 1: 3yU0hNzlLEE3y9HI7UTZyyVX9D8.crl (hash: sBgzlrDFVlwxln1gCxBxVdxPiW92XyxjadGl+4KE6zo=) 2: 3A5A84F8CB7111EBA9EEF440C4F9AE02.roa (hash: LcxIbKxK3jutvAgu3ThkdTt7YT68VEQAWEq5z0WaOxY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.crl rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yU0hNzlLEE3y9HI7UTZyyVX9D8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:47:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3158 (0xc56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158568, serialNumber=DF253484DCE52C4137CBD1C8ED44D9CB2557F43F Validity Not Before: Nov 4 18:47:08 2025 GMT Not After : Nov 11 18:47:08 2025 GMT Subject: CN=690a4a2c-b2ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:69:89:13:b4:3c:de:b6:d0:66:7c:ac:f9:43: 3f:9f:9d:ce:50:5b:24:c1:b2:ac:c8:e8:96:c9:4f: 23:1a:0a:a2:af:52:c7:ac:93:8b:7c:09:ba:15:9b: e4:c5:3d:84:f5:f8:c5:7c:63:80:84:f4:c5:c6:29: 32:2f:5c:77:00:80:fb:ce:04:eb:5f:61:c9:7a:7f: 87:19:a5:85:12:df:e1:3a:dc:18:15:a7:66:48:60: 89:7c:00:8e:0e:4e:f3:64:35:27:4b:a2:38:18:de: 64:a2:ec:c2:49:df:13:9f:4c:f9:18:e1:d4:2b:4d: 1a:24:ea:8f:7f:c4:ab:5f:5a:ff:23:36:74:dd:ff: bd:b8:5d:cd:c4:a1:db:84:9d:f0:74:52:c3:d5:87: 5f:e2:a1:83:89:3a:5a:37:cf:a0:0d:8c:21:53:15: cf:7c:92:26:0f:91:40:d7:dc:68:f3:01:59:55:08: a7:65:84:70:59:9d:75:fd:aa:3f:20:d9:dc:2c:d5: 27:8c:1b:02:12:8f:d0:3a:a2:92:77:52:2d:00:e3: ef:2e:2f:d4:26:09:a1:34:c8:55:e0:1d:31:56:6f: 2b:5b:bb:14:5e:03:fc:1b:be:c5:a8:8b:d8:c6:2d: 31:b7:80:b6:3b:9a:48:c1:2c:75:67:3d:3e:23:1b: dd:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:6F:6A:86:A3:A2:13:B7:E2:67:89:B3:75:93:86:55:EF:8D:62:E1 X509v3 Authority Key Identifier: keyid:DF:25:34:84:DC:E5:2C:41:37:CB:D1:C8:ED:44:D9:CB:25:57:F4:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yU0hNzlLEE3y9HI7UTZyyVX9D8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:5b:e6:c7:1d:0f:9e:7a:29:db:67:17:6b:03:b6:f1:53:b4: 50:a2:84:24:ff:6b:97:5c:00:1d:d6:05:1c:59:a3:f6:1c:8e: 4b:84:25:79:88:57:61:8e:90:cc:13:df:3f:75:8c:f6:83:b1: ce:03:74:23:fb:d4:f8:a7:1f:d0:bf:b3:ed:62:83:e8:59:7f: b1:48:fb:51:52:ff:21:58:42:ec:74:ad:49:14:9c:24:01:e9: ad:a7:5a:7f:bc:62:50:2f:52:6f:70:00:13:39:c5:9f:02:ff: f7:49:bf:07:97:45:6a:76:ca:90:2a:96:11:0d:72:2a:a8:1f: cc:f0:d0:01:c7:72:62:e9:36:9a:ba:87:13:85:c6:25:36:98: 4f:1b:88:4b:d7:67:de:41:e8:75:bd:d9:25:82:b2:46:e9:5d: c7:5a:4d:55:aa:22:d0:2a:e4:66:33:de:6e:e4:99:1d:21:3b: ff:3b:6f:24:e7:3a:5b:d5:10:e5:05:42:4e:36:54:b9:ac:7f: f6:09:31:c7:b7:97:93:b1:58:23:b9:d7:81:42:3a:51:a0:88: 8e:b8:4a:f1:79:37:01:37:00:68:b2:ae:96:e9:5c:0c:f5:ec: 9d:3d:99:3c:ba:35:be:67:37:e9:be:0f:85:4e:37:c7:96:0f: d4:eb:a4:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg1NjgxMTAvBgNVBAUTKERGMjUzNDg0RENFNTJDNDEzN0NCRDFDOEVENDREOUNC MjU1N0Y0M0YwHhcNMjUxMTA0MTg0NzA4WhcNMjUxMTExMTg0NzA4WjAYMRYwFAYD VQQDEw02OTBhNGEyYy1iMmFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwGmJE7Q83rbQZnys+UM/n53OUFskwbKsyOiWyU8jGgqir1LHrJOLfAm6FZvk xT2E9fjFfGOAhPTFxikyL1x3AID7zgTrX2HJen+HGaWFEt/hOtwYFadmSGCJfACO Dk7zZDUnS6I4GN5kouzCSd8Tn0z5GOHUK00aJOqPf8SrX1r/IzZ03f+9uF3NxKHb hJ3wdFLD1Ydf4qGDiTpaN8+gDYwhUxXPfJImD5FA19xo8wFZVQinZYRwWZ11/ao/ INncLNUnjBsCEo/QOqKSd1ItAOPvLi/UJgmhNMhV4B0xVm8rW7sUXgP8G77FqIvY xi0xt4C2O5pIwSx1Zz0+Ixvd8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI9vaoaj ohO34meJs3WThlXvjWLhMB8GA1UdIwQYMBaAFN8lNITc5SxBN8vRyO1E2cslV/Q/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODU2OC9EMzEzMDY3NjE4 NTcxMUVBOTg2MzQxNUVDNEY5QUUwMi8zeVUwaE56bExFRTN5OUhJN1VUWnl5Vlg5 RDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzN5VTBoTnpsTEVFM3k5SEk3VVRaeXlWWDlEOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODU2OC9EMzEzMDY3NjE4NTcxMUVBOTg2MzQxNUVDNEY5QUUwMi8zeVUwaE56bExF RTN5OUhJN1VUWnl5Vlg5RDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrW+bHHQ+eeinbZxdrA7bxU7RQooQk/2uXXAAd1gUcWaP2HI5LhCV5 iFdhjpDME98/dYz2g7HOA3Qj+9T4px/Qv7PtYoPoWX+xSPtRUv8hWELsdK1JFJwk Aemtp1p/vGJQL1JvcAATOcWfAv/3Sb8Hl0VqdsqQKpYRDXIqqB/M8NABx3Ji6Taa uocThcYlNphPG4hL12feQeh1vdklgrJG6V3HWk1VqiLQKuRmM95u5JkdITv/O28k 5zpb1RDlBUJONlS5rH/2CTHHt5eTsVgjudeBQjpRoIiOuErxeTcBNwBosq6W6VwM 9eydPZk8ujW+Zzfpvg+FTjfHlg/U66SM -----END CERTIFICATE-----Generated at Wed Nov 5 12:04:46 2025 by rpki-client