$ rpki-client -vvf rpki.apnic.net/member_repository/A916CDAC/78D593188F3911F08632A039C4F9AE02/3fyp0DSUWlkkEWE31ih38M5Svxs.mft File: 3fyp0DSUWlkkEWE31ih38M5Svxs.mft (raw, json) Hash identifier: tjQuIJruwQniJmptmcaYihjjoWmQr+07I0wgP9d/gwE= Subject key identifier: 8B:84:13:DD:F9:3C:0E:6C:9F:BA:BF:A6:21:32:52:24:2F:03:DB:F7 Authority key identifier: DD:FC:A9:D0:34:94:5A:59:24:11:61:37:D6:28:77:F0:CE:52:BF:1B Certificate issuer: /CN=A916CDAC/serialNumber=DDFCA9D034945A5924116137D62877F0CE52BF1B Certificate serial: 29 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3fyp0DSUWlkkEWE31ih38M5Svxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916CDAC/78D593188F3911F08632A039C4F9AE02/3fyp0DSUWlkkEWE31ih38M5Svxs.mft Manifest number: 24 Signing time: Mon 03 Nov 2025 07:48:47 +0000 Manifest this update: Mon 03 Nov 2025 07:48:46 +0000 Manifest next update: Mon 10 Nov 2025 07:48:46 +0000 Files and hashes: 1: 3fyp0DSUWlkkEWE31ih38M5Svxs.crl (hash: w5fw9tc9IyiV4vrURLFwWLGfQ/0UoHHTwhEyobqjDPo=) 2: 7AA2F5228F4411F0830D0B1EC4F9AE02.roa (hash: vQDu9wcINkcPzWdSO/DWuCCS5k2RLBjzO/0TA4C/YFM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916CDAC/78D593188F3911F08632A039C4F9AE02/3fyp0DSUWlkkEWE31ih38M5Svxs.crl rsync://rpki.apnic.net/member_repository/A916CDAC/78D593188F3911F08632A039C4F9AE02/3fyp0DSUWlkkEWE31ih38M5Svxs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3fyp0DSUWlkkEWE31ih38M5Svxs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:48:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41 (0x29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916CDAC, serialNumber=DDFCA9D034945A5924116137D62877F0CE52BF1B Validity Not Before: Nov 3 07:48:46 2025 GMT Not After : Nov 10 07:48:46 2025 GMT Subject: CN=69085e5e-791f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:16:e9:8a:6e:e5:c8:e7:3f:a9:f7:a4:88:65: 70:0f:cf:02:41:98:7d:7b:cb:8e:74:67:36:1c:86: c8:08:2b:9d:06:67:e3:b2:93:b2:b1:cf:6c:02:af: 73:4b:8c:a7:45:36:b1:8c:13:ea:21:c3:fd:18:ad: d8:1b:38:95:39:d2:2c:a4:96:6a:f6:e8:60:38:ed: 14:f4:28:6f:2b:f9:e9:dd:51:6b:c6:a2:70:e3:5e: c3:2c:04:54:2d:82:16:41:09:ae:3a:ea:6a:b1:f4: 0f:e5:8a:a9:b2:c8:4b:e9:19:6b:fa:6f:d8:af:54: 8f:4a:1c:34:8d:e7:2c:8a:33:6a:c0:c9:c6:28:d4: 66:00:44:15:cc:d6:ef:86:81:6e:c9:79:74:91:5e: 12:92:12:c2:6d:25:4d:fc:39:ac:ad:1b:11:11:20: f9:e2:94:cf:ab:fa:5d:f8:99:8e:ee:61:95:39:f9: 49:7e:12:ba:64:16:0a:99:98:40:31:04:56:0d:f0: ec:66:c2:d5:0a:2a:2d:ac:ed:76:fe:e3:20:b6:a1: 58:a7:1e:ad:de:04:3a:b3:79:fc:62:b3:1c:da:e7: a1:19:6d:f2:01:ed:23:8e:5c:fe:98:b8:d6:b4:71: 8a:bb:32:ca:bc:69:d6:e0:79:99:85:18:f9:36:8e: 2a:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:84:13:DD:F9:3C:0E:6C:9F:BA:BF:A6:21:32:52:24:2F:03:DB:F7 X509v3 Authority Key Identifier: keyid:DD:FC:A9:D0:34:94:5A:59:24:11:61:37:D6:28:77:F0:CE:52:BF:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916CDAC/78D593188F3911F08632A039C4F9AE02/3fyp0DSUWlkkEWE31ih38M5Svxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3fyp0DSUWlkkEWE31ih38M5Svxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916CDAC/78D593188F3911F08632A039C4F9AE02/3fyp0DSUWlkkEWE31ih38M5Svxs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:e1:db:74:67:3e:04:d0:e2:e3:7e:27:ef:c9:18:d2:49:fa: 14:35:9f:c6:1f:4f:51:87:43:22:d5:bf:6f:e8:25:af:a6:98: f9:5c:d4:84:28:3b:8f:59:84:17:df:40:79:ed:4f:8d:19:a8: c9:83:68:a3:5f:2e:2b:9d:37:29:78:d7:57:c8:fb:56:95:9c: c2:68:20:08:ab:11:ac:5f:f8:40:1e:9b:57:7a:31:f2:4d:55: 06:b9:ee:ce:1d:91:be:dd:57:f7:db:6c:3d:c4:0c:57:6e:28: 38:fb:97:98:13:c2:43:34:f3:81:08:2e:88:53:76:a9:df:59: 60:76:4b:a6:b5:6b:61:4a:cd:1e:d5:7f:59:0c:93:19:68:31: b0:f3:f8:54:0f:28:ed:0a:c3:2f:09:72:11:e1:26:fd:37:07: 13:17:d6:66:f1:e4:c2:a0:17:af:69:00:e7:10:6a:dd:fa:7e: 58:34:c2:69:1f:9b:36:ba:71:a8:42:51:29:b6:a7:48:29:b0: 66:d5:4c:c2:d6:0a:74:6a:22:1b:68:b1:9d:c7:4d:c8:8e:88: f1:e3:51:32:80:3c:19:c7:c0:cd:94:51:09:88:da:2d:32:be: 72:cc:60:5f:76:98:15:12:4a:65:28:87:23:fc:01:dd:12:6f: 1d:6a:42:4c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 Q0RBQzExMC8GA1UEBRMoRERGQ0E5RDAzNDk0NUE1OTI0MTE2MTM3RDYyODc3RjBD RTUyQkYxQjAeFw0yNTExMDMwNzQ4NDZaFw0yNTExMTAwNzQ4NDZaMBgxFjAUBgNV BAMTDTY5MDg1ZTVlLTc5MWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDSFumKbuXI5z+p96SIZXAPzwJBmH17y450ZzYchsgIK50GZ+Oyk7Kxz2wCr3NL jKdFNrGME+ohw/0YrdgbOJU50iyklmr26GA47RT0KG8r+endUWvGonDjXsMsBFQt ghZBCa466mqx9A/liqmyyEvpGWv6b9ivVI9KHDSN5yyKM2rAycYo1GYARBXM1u+G gW7JeXSRXhKSEsJtJU38OaytGxERIPnilM+r+l34mY7uYZU5+Ul+ErpkFgqZmEAx BFYN8OxmwtUKKi2s7Xb+4yC2oVinHq3eBDqzefxisxza56EZbfIB7SOOXP6YuNa0 cYq7Msq8adbgeZmFGPk2jipdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUi4QT3fk8 Dmyfur+mITJSJC8D2/cwHwYDVR0jBBgwFoAU3fyp0DSUWlkkEWE31ih38M5Svxsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZDREFDLzc4RDU5MzE4OEYz OTExRjA4NjMyQTAzOUM0RjlBRTAyLzNmeXAwRFNVV2xra0VXRTMxaWgzOE01U3Z4 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvM2Z5cDBEU1VXbGtrRVdFMzFpaDM4TTVTdnhzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZD REFDLzc4RDU5MzE4OEYzOTExRjA4NjMyQTAzOUM0RjlBRTAyLzNmeXAwRFNVV2xr a0VXRTMxaWgzOE01U3Z4cy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKrh23RnPgTQ4uN+J+/JGNJJ+hQ1n8YfT1GHQyLVv2/oJa+mmPlc1IQo O49ZhBffQHntT40ZqMmDaKNfLiudNyl411fI+1aVnMJoIAirEaxf+EAem1d6MfJN VQa57s4dkb7dV/fbbD3EDFduKDj7l5gTwkM084EILohTdqnfWWB2S6a1a2FKzR7V f1kMkxloMbDz+FQPKO0Kwy8JchHhJv03BxMX1mbx5MKgF69pAOcQat36flg0wmkf mza6cahCUSm2p0gpsGbVTMLWCnRqIhtosZ3HTciOiPHjUTKAPBnHwM2UUQmI2i0y vnLMYF92mBUSSmUohyP8Ad0Sbx1qQkw= -----END CERTIFICATE-----Generated at Tue Nov 4 21:10:37 2025 by rpki-client