$ rpki-client -vvf rpki.apnic.net/member_repository/A916C473/FEAE12A25DDF11F0A5BFD66FC4F9AE02/-3sFh4NlHpP6MN2W1iZebi81JVQ.mft File: -3sFh4NlHpP6MN2W1iZebi81JVQ.mft (raw, json) Hash identifier: 6MfLdVNaXZecqEHaWYpDHEZykVzaHqZc251cgT+/3dY= Subject key identifier: E8:1C:3E:24:F5:11:C0:7B:D8:1C:2B:91:98:76:E8:1F:BB:2D:33:06 Authority key identifier: FB:7B:05:87:83:65:1E:93:FA:30:DD:96:D6:26:5E:6E:2F:35:25:54 Certificate issuer: /CN=A916C473/serialNumber=FB7B058783651E93FA30DD96D6265E6E2F352554 Certificate serial: 3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-3sFh4NlHpP6MN2W1iZebi81JVQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C473/FEAE12A25DDF11F0A5BFD66FC4F9AE02/-3sFh4NlHpP6MN2W1iZebi81JVQ.mft Manifest number: 3D Signing time: Wed 05 Nov 2025 07:40:13 +0000 Manifest this update: Wed 05 Nov 2025 07:40:12 +0000 Manifest next update: Wed 12 Nov 2025 07:40:12 +0000 Files and hashes: 1: -3sFh4NlHpP6MN2W1iZebi81JVQ.crl (hash: CbOhTdVotpzYUi8rip+hijPoBioSx4qXctlK8UYWC60=) 2: 2BB9711E5DE111F09B775D76C4F9AE02.roa (hash: p5eDJJHEh4Ku0YkaqmxVa+vpX9QHKpmMPC5rYwtTVzI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C473/FEAE12A25DDF11F0A5BFD66FC4F9AE02/-3sFh4NlHpP6MN2W1iZebi81JVQ.crl rsync://rpki.apnic.net/member_repository/A916C473/FEAE12A25DDF11F0A5BFD66FC4F9AE02/-3sFh4NlHpP6MN2W1iZebi81JVQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-3sFh4NlHpP6MN2W1iZebi81JVQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:40:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62 (0x3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C473, serialNumber=FB7B058783651E93FA30DD96D6265E6E2F352554 Validity Not Before: Nov 5 07:40:12 2025 GMT Not After : Nov 12 07:40:12 2025 GMT Subject: CN=690aff5c-59c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:ba:2f:0f:bd:56:0a:64:8e:3a:76:63:11:e3: ba:8a:7d:68:ed:4e:70:06:ee:9e:bd:5b:e2:22:b9: 55:4d:c9:50:e7:18:90:4b:f0:35:b8:b7:8c:c3:29: cf:e1:69:41:ff:ac:39:52:38:9c:d7:09:6e:d5:7c: 1b:3b:ec:2d:c4:fc:46:a3:f8:d2:45:43:b2:7c:4f: 4b:d6:e6:69:a6:8c:1d:3b:ad:de:11:ec:49:a6:c8: 5b:74:dd:3c:43:66:dd:b7:f9:1e:e5:26:df:a6:97: 9f:4f:6a:85:7b:a2:a5:47:ca:17:5b:84:09:12:bf: fd:71:41:28:06:3a:67:15:0c:c3:94:31:6c:e8:00: 11:d3:3c:77:d4:4f:34:0e:a5:56:02:59:d2:aa:7e: 37:ca:10:00:a2:59:7e:07:a8:0b:cf:90:03:b6:cf: fa:a5:96:72:e4:69:20:71:51:96:a7:55:98:b8:63: 7d:dc:48:6d:da:69:a6:17:e1:22:a9:00:eb:82:6b: 8a:3b:55:4c:e6:06:3f:d8:c3:21:82:00:a6:42:41: 48:66:b1:9b:ff:de:e7:b9:75:31:4d:c3:aa:a5:ab: dd:e2:3f:94:e6:74:5e:32:1f:31:7c:c5:d5:19:aa: 52:ec:ee:e9:4d:9b:6c:5e:ce:d9:74:03:ad:79:78: 59:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:1C:3E:24:F5:11:C0:7B:D8:1C:2B:91:98:76:E8:1F:BB:2D:33:06 X509v3 Authority Key Identifier: keyid:FB:7B:05:87:83:65:1E:93:FA:30:DD:96:D6:26:5E:6E:2F:35:25:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C473/FEAE12A25DDF11F0A5BFD66FC4F9AE02/-3sFh4NlHpP6MN2W1iZebi81JVQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-3sFh4NlHpP6MN2W1iZebi81JVQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C473/FEAE12A25DDF11F0A5BFD66FC4F9AE02/-3sFh4NlHpP6MN2W1iZebi81JVQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:47:16:1e:bd:cf:33:aa:86:08:38:87:c9:80:84:da:06:17: 07:67:de:06:80:cd:cb:c0:b9:b6:58:b7:31:2a:f2:b8:a5:c8: cf:ee:b4:b1:b2:2b:f5:03:87:68:e7:48:00:ac:e9:99:21:b3: e4:3f:9a:db:0c:82:91:70:50:db:a8:98:76:14:1b:29:26:b5: 49:3c:60:6d:a3:ae:18:f6:cf:fe:9c:c5:9f:60:66:ce:71:5b: 70:79:30:35:64:3a:fb:62:2c:43:7f:5a:40:47:60:21:54:8a: 75:3b:4d:03:72:ad:c6:4e:63:e2:30:f2:ff:67:6c:3a:04:74: 2c:9c:94:69:3a:35:af:da:e3:23:09:bd:bd:e0:fa:96:c2:b5: 92:1c:71:74:4a:3e:85:58:78:24:1b:64:f4:8e:43:cd:cb:c8: 6a:1d:f9:38:f8:f7:63:0b:9c:d5:43:e6:d7:b5:14:75:5b:ed: eb:70:d9:52:f5:4d:5d:eb:5c:3b:3b:76:7b:23:16:51:e8:78: 51:81:64:6a:7c:82:aa:00:ad:b1:31:04:ef:5b:65:b4:7e:a1: 0f:e9:3f:03:49:7f:33:e3:16:1b:4a:ad:df:cd:33:2c:c4:16: fc:ea:d2:71:bf:fb:33:c6:e6:f5:10:2c:ec:a1:9b:4c:db:cb: 5f:fb:60:1b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 QzQ3MzExMC8GA1UEBRMoRkI3QjA1ODc4MzY1MUU5M0ZBMzBERDk2RDYyNjVFNkUy RjM1MjU1NDAeFw0yNTExMDUwNzQwMTJaFw0yNTExMTIwNzQwMTJaMBgxFjAUBgNV BAMTDTY5MGFmZjVjLTU5YzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCyui8PvVYKZI46dmMR47qKfWjtTnAG7p69W+IiuVVNyVDnGJBL8DW4t4zDKc/h aUH/rDlSOJzXCW7VfBs77C3E/Eaj+NJFQ7J8T0vW5mmmjB07rd4R7EmmyFt03TxD Zt23+R7lJt+ml59PaoV7oqVHyhdbhAkSv/1xQSgGOmcVDMOUMWzoABHTPHfUTzQO pVYCWdKqfjfKEACiWX4HqAvPkAO2z/qllnLkaSBxUZanVZi4Y33cSG3aaaYX4SKp AOuCa4o7VUzmBj/YwyGCAKZCQUhmsZv/3ue5dTFNw6qlq93iP5TmdF4yHzF8xdUZ qlLs7ulNm2xeztl0A615eFlxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU6Bw+JPUR wHvYHCuRmHboH7stMwYwHwYDVR0jBBgwFoAU+3sFh4NlHpP6MN2W1iZebi81JVQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZDNDczL0ZFQUUxMkEyNURE RjExRjBBNUJGRDY2RkM0RjlBRTAyLy0zc0ZoNE5sSHBQNk1OMlcxaVplYmk4MUpW US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvLTNzRmg0TmxIcFA2TU4yVzFpWmViaTgxSlZRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZD NDczL0ZFQUUxMkEyNURERjExRjBBNUJGRDY2RkM0RjlBRTAyLy0zc0ZoNE5sSHBQ Nk1OMlcxaVplYmk4MUpWUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAF9HFh69zzOqhgg4h8mAhNoGFwdn3gaAzcvAubZYtzEq8rilyM/utLGy K/UDh2jnSACs6Zkhs+Q/mtsMgpFwUNuomHYUGykmtUk8YG2jrhj2z/6cxZ9gZs5x W3B5MDVkOvtiLEN/WkBHYCFUinU7TQNyrcZOY+Iw8v9nbDoEdCyclGk6Na/a4yMJ vb3g+pbCtZIccXRKPoVYeCQbZPSOQ83LyGod+Tj492MLnNVD5te1FHVb7etw2VL1 TV3rXDs7dnsjFlHoeFGBZGp8gqoArbExBO9bZbR+oQ/pPwNJfzPjFhtKrd/NMyzE Fvzq0nG/+zPG5vUQLOyhm0zby1/7YBs= -----END CERTIFICATE-----Generated at Wed Nov 5 12:05:47 2025 by rpki-client