$ rpki-client -vvf rpki.apnic.net/member_repository/A917C11A/C086EA985A3911EB8E59C266C4F9AE02/3oFz59KP6tHsOpLJdljacyhQk-U.mft File: 3oFz59KP6tHsOpLJdljacyhQk-U.mft (raw, json) Hash identifier: UN2tqCi4TwzqxWM785599d65bKVuJ+/JcuKJd9btzcI= Subject key identifier: D4:B3:27:94:E4:1A:22:39:C8:6A:95:D2:A4:21:71:CC:FB:53:DB:BC Authority key identifier: DE:81:73:E7:D2:8F:EA:D1:EC:3A:92:C9:76:58:DA:73:28:50:93:E5 Certificate issuer: /CN=A917C11A/serialNumber=DE8173E7D28FEAD1EC3A92C97658DA73285093E5 Certificate serial: 071B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oFz59KP6tHsOpLJdljacyhQk-U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C11A/C086EA985A3911EB8E59C266C4F9AE02/3oFz59KP6tHsOpLJdljacyhQk-U.mft Manifest number: 0715 Signing time: Tue 04 Nov 2025 21:56:19 +0000 Manifest this update: Tue 04 Nov 2025 21:56:19 +0000 Manifest next update: Tue 11 Nov 2025 21:56:19 +0000 Files and hashes: 1: 3oFz59KP6tHsOpLJdljacyhQk-U.crl (hash: 6YIOthIyM3T7pT6eLdTpxp3DeT8YVxeOubVDYjj300s=) 2: 4002E4BA5A3B11EBA4020D68C4F9AE02.roa (hash: owZNdsc75aBAEeMxk8dZOIuYb/+Ukc36obf7oLhTJGg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C11A/C086EA985A3911EB8E59C266C4F9AE02/3oFz59KP6tHsOpLJdljacyhQk-U.crl rsync://rpki.apnic.net/member_repository/A917C11A/C086EA985A3911EB8E59C266C4F9AE02/3oFz59KP6tHsOpLJdljacyhQk-U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oFz59KP6tHsOpLJdljacyhQk-U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:56:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1819 (0x71b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C11A, serialNumber=DE8173E7D28FEAD1EC3A92C97658DA73285093E5 Validity Not Before: Nov 4 21:56:19 2025 GMT Not After : Nov 11 21:56:19 2025 GMT Subject: CN=690a7683-9db1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:e6:23:3a:05:ad:35:9e:88:4e:fa:55:d8:70: 07:fa:fb:f6:6b:cf:3a:79:13:b5:d6:3c:08:89:41: da:39:db:1f:40:de:e8:5a:bc:3b:be:76:4f:4b:6e: e5:bc:b0:21:72:f7:eb:e7:8c:8f:27:a8:20:c2:f2: 70:0c:c6:30:b5:da:19:eb:75:64:30:b1:7d:79:e6: 51:02:8a:a6:a1:b4:66:4b:2d:c3:32:e5:3e:db:32: 46:74:13:9a:6f:9b:02:d0:69:07:28:66:8f:d5:52: c4:a6:56:9d:e2:9f:25:88:61:f8:95:4e:93:b4:4c: 3c:f2:46:bd:dc:6b:63:48:f2:ff:eb:51:db:25:05: 67:3d:1d:29:5e:a0:37:5d:61:7f:89:fb:ac:6f:2f: 05:36:d5:d0:fc:fd:ab:de:eb:10:98:35:39:61:4a: 45:b6:eb:61:9a:82:95:67:9e:6a:a3:1b:1d:8e:84: 94:08:dd:82:69:a4:a4:bf:4b:54:ff:95:3c:d7:76: 9d:e0:98:60:01:d3:cf:64:fc:1f:39:6d:75:cf:e5: 73:9a:ce:ff:4e:ba:3a:a4:d8:88:30:c1:fc:37:6c: 78:d5:d0:8a:69:4a:be:69:93:d0:f0:fa:f7:3b:30: 29:a1:14:69:45:6c:ed:b7:9a:d5:12:d8:d8:7b:d2: 1b:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:B3:27:94:E4:1A:22:39:C8:6A:95:D2:A4:21:71:CC:FB:53:DB:BC X509v3 Authority Key Identifier: keyid:DE:81:73:E7:D2:8F:EA:D1:EC:3A:92:C9:76:58:DA:73:28:50:93:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C11A/C086EA985A3911EB8E59C266C4F9AE02/3oFz59KP6tHsOpLJdljacyhQk-U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oFz59KP6tHsOpLJdljacyhQk-U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C11A/C086EA985A3911EB8E59C266C4F9AE02/3oFz59KP6tHsOpLJdljacyhQk-U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:b9:31:3b:ce:69:1a:6d:16:91:af:ee:10:f9:76:d0:b4:36: 28:81:50:f5:51:9a:84:eb:e2:8e:ef:83:8c:52:4a:2c:89:57: 8d:78:2d:65:81:42:70:bf:8c:8c:3f:31:c1:26:a4:99:91:df: 23:02:62:9f:9b:9e:ad:70:b5:5e:12:93:c8:4e:81:78:d7:27: dc:cb:a0:4c:e0:34:26:b5:b4:39:ab:7f:04:64:37:cb:02:9f: b2:31:ab:7d:fc:ec:54:d0:d5:47:5c:33:ad:6e:f8:bd:56:a2: 36:96:8e:a6:93:49:91:33:0a:74:e4:36:a4:0b:7d:e0:67:15: 13:4a:48:d1:b3:c3:d0:53:ef:4a:55:55:f9:84:cd:28:2f:cc: 65:fe:50:bf:af:99:d8:44:37:24:ae:2f:b2:b0:89:13:b1:43: 60:31:4f:6d:0f:58:68:2b:20:8f:67:a1:c6:0d:a7:37:61:40: 9d:5e:1e:a2:4e:28:27:e7:8b:d9:60:31:b2:66:2d:a2:b1:a0: eb:e0:39:b1:0d:3e:c6:0b:27:ff:d5:5d:95:1a:4c:cc:0b:7f: 0b:a0:c4:e3:ee:50:00:92:88:a9:46:9b:06:f4:31:26:39:95: 2c:ed:55:4b:46:85:2d:6f:42:ac:47:01:3f:8d:65:a8:34:c8: 7e:55:16:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBxswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0MxMUExMTAvBgNVBAUTKERFODE3M0U3RDI4RkVBRDFFQzNBOTJDOTc2NThEQTcz Mjg1MDkzRTUwHhcNMjUxMTA0MjE1NjE5WhcNMjUxMTExMjE1NjE5WjAYMRYwFAYD VQQDEw02OTBhNzY4My05ZGIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4uYjOgWtNZ6ITvpV2HAH+vv2a886eRO11jwIiUHaOdsfQN7oWrw7vnZPS27l vLAhcvfr54yPJ6ggwvJwDMYwtdoZ63VkMLF9eeZRAoqmobRmSy3DMuU+2zJGdBOa b5sC0GkHKGaP1VLEplad4p8liGH4lU6TtEw88ka93GtjSPL/61HbJQVnPR0pXqA3 XWF/ifusby8FNtXQ/P2r3usQmDU5YUpFtuthmoKVZ55qoxsdjoSUCN2CaaSkv0tU /5U813ad4JhgAdPPZPwfOW11z+Vzms7/Tro6pNiIMMH8N2x41dCKaUq+aZPQ8Pr3 OzApoRRpRWztt5rVEtjYe9Ib4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNSzJ5Tk GiI5yGqV0qQhccz7U9u8MB8GA1UdIwQYMBaAFN6Bc+fSj+rR7DqSyXZY2nMoUJPl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzExQS9DMDg2RUE5ODVB MzkxMUVCOEU1OUMyNjZDNEY5QUUwMi8zb0Z6NTlLUDZ0SHNPcExKZGxqYWN5aFFr LVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNvRno1OUtQNnRIc09wTEpkbGphY3loUWstVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzExQS9DMDg2RUE5ODVBMzkxMUVCOEU1OUMyNjZDNEY5QUUwMi8zb0Z6NTlLUDZ0 SHNPcExKZGxqYWN5aFFrLVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2uTE7zmkabRaRr+4Q+XbQtDYogVD1UZqE6+KO74OMUkosiVeNeC1l gUJwv4yMPzHBJqSZkd8jAmKfm56tcLVeEpPIToF41yfcy6BM4DQmtbQ5q38EZDfL Ap+yMat9/OxU0NVHXDOtbvi9VqI2lo6mk0mRMwp05DakC33gZxUTSkjRs8PQU+9K VVX5hM0oL8xl/lC/r5nYRDckri+ysIkTsUNgMU9tD1hoKyCPZ6HGDac3YUCdXh6i Tign54vZYDGyZi2isaDr4DmxDT7GCyf/1V2VGkzMC38LoMTj7lAAkoipRpsG9DEm OZUs7VVLRoUtb0KsRwE/jWWoNMh+VRYg -----END CERTIFICATE-----Generated at Wed Nov 5 16:42:01 2025 by rpki-client