$ rpki-client -vvf rpki.apnic.net/member_repository/A917CD31/75F57B10823A11EB8AE2360AC4F9AE02/3HxGdMlvt2fql8B49oDvV07eu78.mft File: 3HxGdMlvt2fql8B49oDvV07eu78.mft (raw, json) Hash identifier: GrbwGsjHrVAiOua1m/M/f3x+PyXlYttYYZJMI47GPpU= Subject key identifier: 06:0D:B9:17:9B:C0:1E:1E:12:74:8F:35:54:DE:F1:5D:EF:F8:9E:6F Authority key identifier: DC:7C:46:74:C9:6F:B7:67:EA:97:C0:78:F6:80:EF:57:4E:DE:BB:BF Certificate issuer: /CN=A917CD31/serialNumber=DC7C4674C96FB767EA97C078F680EF574EDEBBBF Certificate serial: 06BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3HxGdMlvt2fql8B49oDvV07eu78.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917CD31/75F57B10823A11EB8AE2360AC4F9AE02/3HxGdMlvt2fql8B49oDvV07eu78.mft Manifest number: 06B5 Signing time: Tue 04 Nov 2025 22:18:48 +0000 Manifest this update: Tue 04 Nov 2025 22:18:47 +0000 Manifest next update: Tue 11 Nov 2025 22:18:47 +0000 Files and hashes: 1: 3HxGdMlvt2fql8B49oDvV07eu78.crl (hash: zWC8Q910uBgc6Q0bq5iWtrPSX5Gq1iuYak+rZRJoRNc=) 2: A88A17FA823C11EBB35EF50FC4F9AE02.roa (hash: w4Og6ZXZfhcGLwCGrYKzyuX9/ySsrXuevHVn0ggUgdE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917CD31/75F57B10823A11EB8AE2360AC4F9AE02/3HxGdMlvt2fql8B49oDvV07eu78.crl rsync://rpki.apnic.net/member_repository/A917CD31/75F57B10823A11EB8AE2360AC4F9AE02/3HxGdMlvt2fql8B49oDvV07eu78.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3HxGdMlvt2fql8B49oDvV07eu78.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:18:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1725 (0x6bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917CD31, serialNumber=DC7C4674C96FB767EA97C078F680EF574EDEBBBF Validity Not Before: Nov 4 22:18:47 2025 GMT Not After : Nov 11 22:18:47 2025 GMT Subject: CN=690a7bc8-b0a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:c6:7f:73:51:2b:91:cc:a1:34:68:0b:e0:cd: 58:27:8d:8e:d1:58:66:46:ee:89:eb:09:f6:1d:35: 30:31:59:c9:36:07:36:58:3a:10:b9:cc:19:47:ba: ec:24:f0:44:37:df:f0:3c:fb:30:54:e5:86:ab:7c: 08:7c:8d:be:cd:bc:00:db:87:a3:4f:c1:c0:06:2d: 90:0e:53:50:e0:8e:a4:63:1a:ad:b1:f3:fc:ef:58: b9:2a:fb:70:a8:0b:98:23:fd:d3:a8:e1:7a:9f:07: 18:be:c3:3b:b3:68:7b:92:55:0b:16:21:fa:7d:f1: b1:42:a6:f5:e7:7d:3a:06:ce:12:ed:5c:85:42:46: c1:67:6e:0a:1c:e7:de:ed:6b:df:bf:ea:28:a0:06: 55:a9:92:8b:ab:75:b5:4a:e2:94:6c:de:d2:98:ef: 57:50:b5:37:3d:2e:29:5f:8d:0d:b5:03:a3:d4:0e: 3b:b7:54:38:c8:0b:6d:b5:ef:ff:1d:74:0d:02:93: 65:75:d7:5f:36:8c:4c:4b:ca:16:5f:46:06:47:11: 05:80:47:f7:f1:06:2b:2c:9c:02:31:e9:b3:ef:19: b9:7a:e3:e7:09:22:ec:43:bd:b1:84:50:8c:f4:74: ce:45:a7:de:f6:5d:03:e8:67:24:91:9f:6e:4f:51: e0:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:0D:B9:17:9B:C0:1E:1E:12:74:8F:35:54:DE:F1:5D:EF:F8:9E:6F X509v3 Authority Key Identifier: keyid:DC:7C:46:74:C9:6F:B7:67:EA:97:C0:78:F6:80:EF:57:4E:DE:BB:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917CD31/75F57B10823A11EB8AE2360AC4F9AE02/3HxGdMlvt2fql8B49oDvV07eu78.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3HxGdMlvt2fql8B49oDvV07eu78.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917CD31/75F57B10823A11EB8AE2360AC4F9AE02/3HxGdMlvt2fql8B49oDvV07eu78.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:86:e9:f9:53:8c:4a:2f:91:aa:81:13:48:2f:8c:0c:ac:28: 32:f7:7e:f0:3f:cd:d9:78:32:6f:8b:44:58:5a:6f:1e:fe:7e: ef:63:86:ba:16:04:92:ba:f0:c4:6c:8d:02:ba:fe:d2:c4:5e: 65:f4:2a:29:e3:5d:6d:65:05:6c:5d:88:42:eb:d6:4d:35:28: c6:d8:1c:31:26:71:a0:c1:af:5a:c4:e5:c0:fb:26:a6:94:9e: e6:62:c6:4e:e8:9a:fd:2d:86:e8:8e:15:5a:8e:2e:aa:a3:62: 73:73:6d:e7:a7:d2:34:42:3b:59:57:da:5d:cf:cc:77:d3:70: a6:b2:7e:b2:52:8d:a6:09:59:36:bf:3f:96:5c:07:96:a1:6b: cf:a2:26:62:65:71:d1:05:d7:45:9c:10:f8:3a:f2:d5:69:12: 79:28:c7:78:5f:bd:31:96:39:67:31:ae:10:8a:c0:4d:09:74: 5c:c9:3f:f5:d1:59:d4:fb:ba:8b:f8:d6:d1:2f:99:f4:33:ec: 90:5b:40:29:c4:49:b4:80:12:c7:cd:c8:2b:42:5a:fe:a4:6a: 18:d1:ce:e0:7b:f5:7b:13:1e:92:60:dc:f9:61:e9:d4:98:b8: 9f:aa:e2:79:c5:c5:d6:f1:71:15:ee:58:77:c7:4d:32:bd:1a: 8c:c9:29:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBr0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0NEMzExMTAvBgNVBAUTKERDN0M0Njc0Qzk2RkI3NjdFQTk3QzA3OEY2ODBFRjU3 NEVERUJCQkYwHhcNMjUxMTA0MjIxODQ3WhcNMjUxMTExMjIxODQ3WjAYMRYwFAYD VQQDEw02OTBhN2JjOC1iMGE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzcZ/c1ErkcyhNGgL4M1YJ42O0VhmRu6J6wn2HTUwMVnJNgc2WDoQucwZR7rs JPBEN9/wPPswVOWGq3wIfI2+zbwA24ejT8HABi2QDlNQ4I6kYxqtsfP871i5Kvtw qAuYI/3TqOF6nwcYvsM7s2h7klULFiH6ffGxQqb15306Bs4S7VyFQkbBZ24KHOfe 7Wvfv+oooAZVqZKLq3W1SuKUbN7SmO9XULU3PS4pX40NtQOj1A47t1Q4yAttte// HXQNApNldddfNoxMS8oWX0YGRxEFgEf38QYrLJwCMemz7xm5euPnCSLsQ72xhFCM 9HTORafe9l0D6GckkZ9uT1HgKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAYNuReb wB4eEnSPNVTe8V3v+J5vMB8GA1UdIwQYMBaAFNx8RnTJb7dn6pfAePaA71dO3ru/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Q0QzMS83NUY1N0IxMDgy M0ExMUVCOEFFMjM2MEFDNEY5QUUwMi8zSHhHZE1sdnQyZnFsOEI0OW9EdlYwN2V1 NzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNIeEdkTWx2dDJmcWw4QjQ5b0R2VjA3ZXU3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 Q0QzMS83NUY1N0IxMDgyM0ExMUVCOEFFMjM2MEFDNEY5QUUwMi8zSHhHZE1sdnQy ZnFsOEI0OW9EdlYwN2V1NzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5hun5U4xKL5GqgRNIL4wMrCgy937wP83ZeDJvi0RYWm8e/n7vY4a6 FgSSuvDEbI0Cuv7SxF5l9Cop411tZQVsXYhC69ZNNSjG2BwxJnGgwa9axOXA+yam lJ7mYsZO6Jr9LYbojhVaji6qo2Jzc23np9I0QjtZV9pdz8x303Cmsn6yUo2mCVk2 vz+WXAeWoWvPoiZiZXHRBddFnBD4OvLVaRJ5KMd4X70xljlnMa4QisBNCXRcyT/1 0VnU+7qL+NbRL5n0M+yQW0ApxEm0gBLHzcgrQlr+pGoY0c7ge/V7Ex6SYNz5YenU mLifquJ5xcXW8XEV7lh3x00yvRqMySlB -----END CERTIFICATE-----Generated at Wed Nov 5 21:15:21 2025 by rpki-client