$ rpki-client -vvf rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft File: pm3QENok34rhcGvZCMukO9E4ljE.mft (raw, json) Hash identifier: Cu3/0pi6lMJIUlVGC/QQxSmqQVJNs6JlcXpYdyFMgKk= Subject key identifier: B6:BF:87:13:74:4D:B6:78:97:76:D1:BE:67:08:8D:EF:7A:75:8C:B3 Authority key identifier: A6:6D:D0:10:DA:24:DF:8A:E1:70:6B:D9:08:CB:A4:3B:D1:38:96:31 Certificate issuer: /CN=A9171753/serialNumber=A66DD010DA24DF8AE1706BD908CBA43BD1389631 Certificate serial: 34E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft Manifest number: 34D8 Signing time: Tue 04 Nov 2025 15:16:12 +0000 Manifest this update: Tue 04 Nov 2025 15:16:12 +0000 Manifest next update: Tue 11 Nov 2025 15:16:12 +0000 Files and hashes: 1: pm3QENok34rhcGvZCMukO9E4ljE.crl (hash: lAGSKKV0u9o6c7qH/fBokQTw/zphzVH2gfJGb72w4o8=) 2: DE670A60679D11EEAFBA0A5DC4F9AE02.roa (hash: zHkGq6W1DSD5ffW+BnhDs7qnRsRpvtxDIEM0SIuuDg4=) 3: C92F5F8077A211EDAF94D63EC4F9AE02.roa (hash: /yGsH3AYsghIUdTIUcXoSyBB3f9raZ59e9j2Pg64iUI=) 4: 41623A12778111ED8F236A62C4F9AE02.roa (hash: OYhGj+v27n+SqxvC/qZ2JFeWyJlSzi9WwyujTQsPl7E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.crl rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:16:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13539 (0x34e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171753, serialNumber=A66DD010DA24DF8AE1706BD908CBA43BD1389631 Validity Not Before: Nov 4 15:16:12 2025 GMT Not After : Nov 11 15:16:12 2025 GMT Subject: CN=690a18bc-7b70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:f9:90:b1:20:1e:62:93:19:5a:26:4f:88:bc: 38:3f:de:8c:3f:a2:13:de:66:3f:4a:61:0b:a2:69: c3:5a:90:13:a2:70:80:5c:fe:f6:8e:09:11:c4:51: 8b:1a:03:29:e7:40:a8:34:72:7c:99:0c:68:31:19: 50:f5:18:b1:f8:03:2a:f7:e1:fb:b5:53:1a:70:f3: 3e:52:bb:53:23:b3:01:94:ad:5c:3a:c5:b6:15:a2: 9a:83:01:b8:07:ea:37:60:08:4e:dd:20:2c:20:e8: dd:a2:7b:97:a9:13:22:bc:98:ce:ab:b6:00:3e:0c: 4c:aa:2f:f5:65:07:e6:9c:a6:5a:4c:5d:f1:3d:db: 8a:17:91:61:c0:6e:09:85:35:56:19:68:f8:d9:5a: 6d:f7:bf:2a:71:f2:c5:fb:dd:c8:be:73:6b:7d:e3: ac:c0:d9:90:d1:a6:84:d0:7e:35:66:17:e6:8a:18: 0c:d4:55:bf:14:45:ad:f0:88:56:4f:a4:0e:ad:58: c3:f6:f5:5c:6d:1b:95:87:66:f2:f3:ec:82:56:1e: 0f:51:b6:66:fa:dd:d7:5f:b1:75:ce:f4:d4:fc:8c: 5a:b1:ea:60:79:ba:a0:2f:08:21:48:51:41:f8:04: b2:b6:72:13:c1:0e:e7:05:e5:ad:36:aa:87:aa:3f: 4f:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:BF:87:13:74:4D:B6:78:97:76:D1:BE:67:08:8D:EF:7A:75:8C:B3 X509v3 Authority Key Identifier: keyid:A6:6D:D0:10:DA:24:DF:8A:E1:70:6B:D9:08:CB:A4:3B:D1:38:96:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:9c:df:c9:32:35:20:00:d2:e2:07:a7:0c:36:06:34:8e:24: d6:d0:8f:2a:6b:b0:6e:95:70:5b:40:24:32:08:97:f3:f2:0d: c2:b7:43:71:83:dc:5f:2c:be:72:a4:6e:5d:92:2b:93:2a:98: 04:d7:63:bd:ca:3b:07:32:a1:31:4d:f5:9e:d9:67:72:92:01: ed:64:a1:56:72:13:d0:92:5b:6d:3a:28:33:14:9d:1a:3c:47: 9e:90:20:1c:0f:7b:27:a7:9b:72:86:6a:74:29:4d:89:ca:1d: 84:3a:66:1c:4c:b7:f5:78:88:03:4e:46:06:94:eb:8f:f5:9d: 96:ef:0c:39:b7:1b:c2:7a:15:7f:98:5b:c5:68:7e:04:55:fa: 2d:fc:12:46:d9:7a:78:63:3e:32:9b:c9:54:9b:f5:94:5f:c8: bc:1f:33:95:61:97:3f:85:19:17:9d:a5:c3:d8:17:16:a7:6e: 9b:3e:27:7f:36:6a:db:78:fd:f9:6c:3f:b2:a0:15:96:00:98: 05:ba:5b:91:2a:5f:74:c9:5f:f4:8f:f9:ae:de:82:a9:d7:9c: 5f:a6:2b:47:07:67:b4:42:35:38:bf:0e:fc:a9:b9:02:dc:fb: d7:a0:35:45:1e:1d:01:63:e3:c6:30:4a:39:51:ad:d1:15:dc: 6f:59:72:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE3NTMxMTAvBgNVBAUTKEE2NkREMDEwREEyNERGOEFFMTcwNkJEOTA4Q0JBNDNC RDEzODk2MzEwHhcNMjUxMTA0MTUxNjEyWhcNMjUxMTExMTUxNjEyWjAYMRYwFAYD VQQDEw02OTBhMThiYy03YjcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwfmQsSAeYpMZWiZPiLw4P96MP6IT3mY/SmELomnDWpATonCAXP72jgkRxFGL GgMp50CoNHJ8mQxoMRlQ9Rix+AMq9+H7tVMacPM+UrtTI7MBlK1cOsW2FaKagwG4 B+o3YAhO3SAsIOjdonuXqRMivJjOq7YAPgxMqi/1ZQfmnKZaTF3xPduKF5FhwG4J hTVWGWj42Vpt978qcfLF+93IvnNrfeOswNmQ0aaE0H41ZhfmihgM1FW/FEWt8IhW T6QOrVjD9vVcbRuVh2by8+yCVh4PUbZm+t3XX7F1zvTU/IxasepgebqgLwghSFFB +ASytnITwQ7nBeWtNqqHqj9PrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLa/hxN0 TbZ4l3bRvmcIje96dYyzMB8GA1UdIwQYMBaAFKZt0BDaJN+K4XBr2QjLpDvROJYx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTc1My84MDUxNDU5MDFE QTcxMUUyQUFBOTRBQTEwOEIwMkNEMi9wbTNRRU5vazM0cmhjR3ZaQ011a085RTRs akUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BtM1FFTm9rMzRyaGNHdlpDTXVrTzlFNGxqRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTc1My84MDUxNDU5MDFEQTcxMUUyQUFBOTRBQTEwOEIwMkNEMi9wbTNRRU5vazM0 cmhjR3ZaQ011a085RTRsakUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAnN/JMjUgANLiB6cMNgY0jiTW0I8qa7BulXBbQCQyCJfz8g3Ct0Nx g9xfLL5ypG5dkiuTKpgE12O9yjsHMqExTfWe2WdykgHtZKFWchPQklttOigzFJ0a PEeekCAcD3snp5tyhmp0KU2Jyh2EOmYcTLf1eIgDTkYGlOuP9Z2W7ww5txvCehV/ mFvFaH4EVfot/BJG2Xp4Yz4ym8lUm/WUX8i8HzOVYZc/hRkXnaXD2BcWp26bPid/ NmrbeP35bD+yoBWWAJgFuluRKl90yV/0j/mu3oKp15xfpitHB2e0QjU4vw78qbkC 3PvXoDVFHh0BY+PGMEo5Ua3RFdxvWXKj -----END CERTIFICATE-----Generated at Wed Nov 5 04:48:49 2025 by rpki-client