$ rpki-client -vvf rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft File: S3IqOmeTvzLJvPUuTncuCm86Yxk.mft (raw, json) Hash identifier: KiKV1H8+RoaZl+qZuJSr6rHFCm8zcF4xdW5D28Bx+gY= Subject key identifier: F2:BF:F1:F7:31:12:2A:3D:17:67:45:10:30:41:F6:01:3A:E7:49:FF Authority key identifier: 4B:72:2A:3A:67:93:BF:32:C9:BC:F5:2E:4E:77:2E:0A:6F:3A:63:19 Certificate issuer: /CN=A917A67E/serialNumber=4B722A3A6793BF32C9BCF52E4E772E0A6F3A6319 Certificate serial: 01BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft Manifest number: 01B8 Signing time: Mon 03 Nov 2025 03:05:25 +0000 Manifest this update: Mon 03 Nov 2025 03:05:24 +0000 Manifest next update: Mon 10 Nov 2025 03:05:24 +0000 Files and hashes: 1: S3IqOmeTvzLJvPUuTncuCm86Yxk.crl (hash: SQIS21zfdk+nWaa9jSsiEcA6Fqh0JcAFOMEVePGwtkk=) 2: E3901F981BD711EEB9597921C4F9AE02.roa (hash: sLVF2uLBYBc6LDSXH2VUz3ksriL+t2pMsQjafYLst9Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.crl rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:05:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 444 (0x1bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A67E, serialNumber=4B722A3A6793BF32C9BCF52E4E772E0A6F3A6319 Validity Not Before: Nov 3 03:05:24 2025 GMT Not After : Nov 10 03:05:24 2025 GMT Subject: CN=69081bf4-71a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:c0:13:cf:fb:4e:8a:a5:af:a6:7d:16:75:6f: 5c:69:a2:97:7f:5c:9b:fa:bf:a9:91:df:58:c2:9c: 49:b4:0e:7c:69:f3:40:63:6d:5b:b2:cd:29:bc:99: 67:aa:01:d1:a3:12:a4:64:1e:7f:0e:a7:72:21:59: 95:1c:07:e7:64:dc:a8:d1:07:65:4a:26:a5:a2:a3: 4a:ae:61:3a:56:54:c8:bb:c8:0f:d7:14:4e:dc:42: 78:4e:e0:e5:96:cb:da:8d:a6:fc:cb:91:31:6b:e9: 92:b1:df:81:94:da:7b:f5:7f:8a:86:d5:4f:a3:94: c8:ff:56:ef:9d:6a:22:de:84:ca:4c:29:14:12:76: 6d:a9:93:48:b7:b0:bb:01:a5:40:87:22:fc:58:3c: 04:ba:5d:33:ce:f9:28:18:73:f4:f9:06:61:27:81: 5b:81:4c:b5:f5:56:26:22:45:f5:85:6c:2f:7c:3f: 2c:e9:67:3e:e4:5c:65:2f:bf:59:3e:36:3e:93:26: 35:c4:bf:f6:a4:e5:1c:2e:a6:c4:f9:43:e0:62:f3: f8:33:f8:21:2d:20:df:48:d5:a1:c5:77:f6:4c:96: 2f:d1:f4:bb:24:90:78:ae:1e:37:4a:a2:40:89:b2: 7f:3b:b0:0b:a5:5c:85:65:9e:a0:4d:5f:05:4c:86: f8:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:BF:F1:F7:31:12:2A:3D:17:67:45:10:30:41:F6:01:3A:E7:49:FF X509v3 Authority Key Identifier: keyid:4B:72:2A:3A:67:93:BF:32:C9:BC:F5:2E:4E:77:2E:0A:6F:3A:63:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:3f:08:2c:e5:ce:1b:cf:c0:c4:9b:b1:ae:c3:6c:27:f5:bd: 3d:d0:55:d8:c5:f8:57:8e:0f:c8:b3:49:57:c4:c6:72:2a:cf: c5:58:41:f3:1a:7e:fa:69:9b:7f:4a:ac:a7:cd:76:20:1d:15: 09:c9:f3:4b:5c:1e:c3:d6:84:0d:99:1e:37:8c:c7:06:ab:90: 51:76:ca:d1:75:66:8a:a8:9e:7b:bb:33:88:a3:c0:8f:18:6a: 80:42:8a:0d:2d:d1:2c:8d:2d:1e:5d:99:e6:93:ec:93:ea:1e: d9:e2:51:42:5d:3e:74:48:3a:eb:57:b6:11:23:ad:f5:a0:cf: 07:fc:0b:df:4e:64:25:07:01:58:ef:11:43:bf:10:28:f6:21: 17:72:12:9f:24:2e:57:c4:ea:f3:69:58:c1:82:eb:b6:fd:e9: 2d:26:ee:6e:80:7a:7e:b4:9c:82:03:44:74:5b:94:5f:bd:99: 76:47:b9:77:b8:1f:f7:a3:c9:ae:b9:d7:a2:77:d1:90:ee:81: 0b:fc:0d:8a:e2:06:20:dc:69:ce:e0:e2:b1:1c:e1:1d:5e:06: 09:b7:26:3c:e8:97:48:1a:3c:c9:b4:60:9e:90:c4:48:6b:ba: 8b:0c:31:aa:90:b1:4c:58:6f:61:c4:08:05:95:a3:cb:99:b7: 28:52:af:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E2N0UxMTAvBgNVBAUTKDRCNzIyQTNBNjc5M0JGMzJDOUJDRjUyRTRFNzcyRTBB NkYzQTYzMTkwHhcNMjUxMTAzMDMwNTI0WhcNMjUxMTEwMDMwNTI0WjAYMRYwFAYD VQQDEw02OTA4MWJmNC03MWE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk8ATz/tOiqWvpn0WdW9caaKXf1yb+r+pkd9YwpxJtA58afNAY21bss0pvJln qgHRoxKkZB5/DqdyIVmVHAfnZNyo0QdlSialoqNKrmE6VlTIu8gP1xRO3EJ4TuDl lsvajab8y5Exa+mSsd+BlNp79X+KhtVPo5TI/1bvnWoi3oTKTCkUEnZtqZNIt7C7 AaVAhyL8WDwEul0zzvkoGHP0+QZhJ4FbgUy19VYmIkX1hWwvfD8s6Wc+5FxlL79Z PjY+kyY1xL/2pOUcLqbE+UPgYvP4M/ghLSDfSNWhxXf2TJYv0fS7JJB4rh43SqJA ibJ/O7ALpVyFZZ6gTV8FTIb48QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPK/8fcx Eio9F2dFEDBB9gE650n/MB8GA1UdIwQYMBaAFEtyKjpnk78yybz1Lk53LgpvOmMZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTY3RS82N0I0Q0I4NDFC RDMxMUVFOTY1RkVGMzhDNEY5QUUwMi9TM0lxT21lVHZ6TEp2UFV1VG5jdUNtODZZ eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1MzSXFPbWVUdnpMSnZQVXVUbmN1Q204Nll4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTY3RS82N0I0Q0I4NDFCRDMxMUVFOTY1RkVGMzhDNEY5QUUwMi9TM0lxT21lVHZ6 TEp2UFV1VG5jdUNtODZZeGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVPwgs5c4bz8DEm7Guw2wn9b090FXYxfhXjg/Is0lXxMZyKs/FWEHz Gn76aZt/SqynzXYgHRUJyfNLXB7D1oQNmR43jMcGq5BRdsrRdWaKqJ57uzOIo8CP GGqAQooNLdEsjS0eXZnmk+yT6h7Z4lFCXT50SDrrV7YRI631oM8H/AvfTmQlBwFY 7xFDvxAo9iEXchKfJC5XxOrzaVjBguu2/ektJu5ugHp+tJyCA0R0W5RfvZl2R7l3 uB/3o8muudeid9GQ7oEL/A2K4gYg3GnO4OKxHOEdXgYJtyY86JdIGjzJtGCekMRI a7qLDDGqkLFMWG9hxAgFlaPLmbcoUq96 -----END CERTIFICATE-----Generated at Wed Nov 5 02:17:37 2025 by rpki-client