$ rpki-client -vvf rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.mft File: 3q8cjeT-PFHGkVP8r5_owq1vjiY.mft (raw, json) Hash identifier: xzgGV9KWKuz0zni/POi5bDDk8zcSM3uGjpAJzwSidqQ= Subject key identifier: E8:19:05:68:1E:A1:46:7D:77:4F:60:F8:88:78:42:FA:C3:22:AA:97 Authority key identifier: DE:AF:1C:8D:E4:FE:3C:51:C6:91:53:FC:AF:9F:E8:C2:AD:6F:8E:26 Certificate issuer: /CN=A917AC33/serialNumber=DEAF1C8DE4FE3C51C69153FCAF9FE8C2AD6F8E26 Certificate serial: 016A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3q8cjeT-PFHGkVP8r5_owq1vjiY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.mft Manifest number: 0167 Signing time: Mon 03 Nov 2025 03:57:21 +0000 Manifest this update: Mon 03 Nov 2025 03:57:21 +0000 Manifest next update: Mon 10 Nov 2025 03:57:21 +0000 Files and hashes: 1: 3q8cjeT-PFHGkVP8r5_owq1vjiY.crl (hash: nMzrk/8Nwny6+AyhIFXW/6Zfwd9EiJSKt9FLcajNYjE=) 2: 1C2EA330925011EE9571EE40C4F9AE02.roa (hash: g1vuB/s+fKkz9lQDwgz7uwUHIIgwyYOpfROfbA+7Aro=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.crl rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3q8cjeT-PFHGkVP8r5_owq1vjiY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:57:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 362 (0x16a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AC33, serialNumber=DEAF1C8DE4FE3C51C69153FCAF9FE8C2AD6F8E26 Validity Not Before: Nov 3 03:57:21 2025 GMT Not After : Nov 10 03:57:21 2025 GMT Subject: CN=69082821-4898 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:da:fa:35:11:ce:2e:c1:31:6b:b5:f1:26:74: 81:b0:fd:2c:5b:b4:3c:09:49:82:b4:7d:d0:b5:b3: e7:73:1a:25:4b:14:50:1a:96:06:1e:6d:59:d5:af: a6:7c:b6:7c:46:b2:e9:f7:c6:05:4a:20:60:ce:22: 45:ac:f9:87:62:98:d8:77:86:bd:d6:cb:2d:b0:5e: ba:2b:2f:bd:f0:b4:b4:13:7b:53:8e:54:83:3d:47: 69:97:cc:2f:26:90:11:b1:fe:f2:07:d1:0e:59:d0: 49:fb:fe:80:88:3c:6e:95:80:84:5c:59:1d:5a:39: e3:ed:84:e7:b3:19:c0:87:ff:0c:50:77:77:d2:86: 16:f7:22:fb:81:72:e5:f2:e3:1a:41:7e:e4:5b:a9: 4f:d4:a6:4c:0e:8a:83:3a:4f:85:69:82:e5:f7:22: 09:46:48:4c:bf:93:e5:78:5b:91:7d:30:b6:60:97: 46:d8:4b:75:16:45:4a:ea:33:b0:ce:bb:2d:18:81: d2:54:c9:cd:91:6e:0a:6c:c3:7e:b6:30:59:36:8a: 6f:21:f4:9d:cf:c7:89:60:fc:81:c3:c6:26:98:d5: 1d:cd:fb:22:73:98:70:0b:95:bb:70:fe:7d:22:75: 97:5c:9f:c8:b5:b7:67:0a:4f:3a:f0:09:1e:5b:fb: 76:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:19:05:68:1E:A1:46:7D:77:4F:60:F8:88:78:42:FA:C3:22:AA:97 X509v3 Authority Key Identifier: keyid:DE:AF:1C:8D:E4:FE:3C:51:C6:91:53:FC:AF:9F:E8:C2:AD:6F:8E:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3q8cjeT-PFHGkVP8r5_owq1vjiY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ce:3b:da:25:20:02:ea:9a:aa:78:45:0d:a5:e8:f7:8f:5f:ca: f3:b5:77:e4:9f:74:86:c6:c2:61:22:7d:37:58:f5:a2:65:2e: f6:90:4f:98:65:50:08:8e:e6:c2:68:d6:94:ab:10:97:c9:2a: 9a:1e:2e:16:32:db:15:9e:aa:4b:c2:2e:67:f0:02:c3:2e:7c: 7b:a6:11:67:88:48:2e:9e:8d:75:af:4e:9f:76:6a:de:08:99: a2:d9:d2:1e:7f:43:14:7b:1d:c3:75:ed:fe:06:3d:0a:21:b4: 94:eb:c5:0c:ba:2b:2a:6c:de:4d:da:e1:64:87:8a:76:2a:74: d8:25:09:8a:74:fa:0e:8f:ea:d7:9e:06:a1:a3:c3:77:35:5b: ae:2f:48:05:8e:ed:aa:11:6c:ca:37:6a:98:75:20:7e:a5:b8: 6b:39:57:a9:be:65:c8:dc:36:89:f6:6e:4a:cf:a5:cc:3f:c1: a9:09:55:80:be:e2:aa:0d:11:cc:5b:65:3a:a6:24:0c:10:bc: bd:aa:05:d4:80:36:02:87:9b:af:6f:66:92:5f:94:04:ff:2d: c4:b5:53:5e:b5:8d:5d:db:f9:ab:5c:e3:9f:83:e6:2c:16:97: 6f:81:16:8f:37:a5:43:5c:1e:c9:04:94:91:5f:03:4b:3b:29: ad:48:64:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FDMzMxMTAvBgNVBAUTKERFQUYxQzhERTRGRTNDNTFDNjkxNTNGQ0FGOUZFOEMy QUQ2RjhFMjYwHhcNMjUxMTAzMDM1NzIxWhcNMjUxMTEwMDM1NzIxWjAYMRYwFAYD VQQDEw02OTA4MjgyMS00ODk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvdr6NRHOLsExa7XxJnSBsP0sW7Q8CUmCtH3QtbPncxolSxRQGpYGHm1Z1a+m fLZ8RrLp98YFSiBgziJFrPmHYpjYd4a91sstsF66Ky+98LS0E3tTjlSDPUdpl8wv JpARsf7yB9EOWdBJ+/6AiDxulYCEXFkdWjnj7YTnsxnAh/8MUHd30oYW9yL7gXLl 8uMaQX7kW6lP1KZMDoqDOk+FaYLl9yIJRkhMv5PleFuRfTC2YJdG2Et1FkVK6jOw zrstGIHSVMnNkW4KbMN+tjBZNopvIfSdz8eJYPyBw8YmmNUdzfsic5hwC5W7cP59 InWXXJ/ItbdnCk868AkeW/t2cwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOgZBWge oUZ9d09g+Ih4QvrDIqqXMB8GA1UdIwQYMBaAFN6vHI3k/jxRxpFT/K+f6MKtb44m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUMzMy9CMEJGQUMzNDky NEYxMUVFQThDMjI0NDBDNEY5QUUwMi8zcThjamVULVBGSEdrVlA4cjVfb3dxMXZq aVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNxOGNqZVQtUEZIR2tWUDhyNV9vd3ExdmppWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUMzMy9CMEJGQUMzNDkyNEYxMUVFQThDMjI0NDBDNEY5QUUwMi8zcThjamVULVBG SEdrVlA4cjVfb3dxMXZqaVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDOO9olIALqmqp4RQ2l6PePX8rztXfkn3SGxsJhIn03WPWiZS72kE+Y ZVAIjubCaNaUqxCXySqaHi4WMtsVnqpLwi5n8ALDLnx7phFniEguno11r06fdmre CJmi2dIef0MUex3Dde3+Bj0KIbSU68UMuisqbN5N2uFkh4p2KnTYJQmKdPoOj+rX ngaho8N3NVuuL0gFju2qEWzKN2qYdSB+pbhrOVepvmXI3DaJ9m5Kz6XMP8GpCVWA vuKqDRHMW2U6piQMELy9qgXUgDYCh5uvb2aSX5QE/y3EtVNetY1d2/mrXOOfg+Ys FpdvgRaPN6VDXB7JBJSRXwNLOymtSGTD -----END CERTIFICATE-----Generated at Tue Nov 4 08:18:22 2025 by rpki-client