$ rpki-client -vvf rpki.apnic.net/member_repository/A917F116/8BCFFF066EDE11F091E02A21C4F9AE02/2y3U_v83CRJX9gGdUKI5MOxG4fs.mft File: 2y3U_v83CRJX9gGdUKI5MOxG4fs.mft (raw, json) Hash identifier: /HfiMotQNTnUiXrjT79BoTEpRXNESYvlY0uYuc5ec20= Subject key identifier: 3D:5D:1A:00:5A:8B:06:E0:D2:79:0B:33:10:2C:6D:89:20:DE:FB:3B Authority key identifier: DB:2D:D4:FE:FF:37:09:12:57:F6:01:9D:50:A2:39:30:EC:46:E1:FB Certificate issuer: /CN=A917F116/serialNumber=DB2DD4FEFF37091257F6019D50A23930EC46E1FB Certificate serial: 55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2y3U_v83CRJX9gGdUKI5MOxG4fs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F116/8BCFFF066EDE11F091E02A21C4F9AE02/2y3U_v83CRJX9gGdUKI5MOxG4fs.mft Manifest number: 44 Signing time: Mon 03 Nov 2025 15:04:09 +0000 Manifest this update: Mon 03 Nov 2025 15:04:08 +0000 Manifest next update: Mon 10 Nov 2025 15:04:08 +0000 Files and hashes: 1: 2y3U_v83CRJX9gGdUKI5MOxG4fs.crl (hash: LUHp2MbzgNFyMutYDdwV3YXP2p/JezmtfzDGXhgz4IE=) 2: 3E9B5E9C791511F09DD1364EC4F9AE02.roa (hash: Ut0wAe6zBRN5XqjP4QwqBdmfAff9ffXm1MBpJVMD0gQ=) 3: 029780A8791D11F08A28C96CC4F9AE02.roa (hash: cIhq6sJcStnFPRCzrluGkX+gdeeTmy7R7VUY7+k19nE=) 4: 1210E96E791511F08360054EC4F9AE02.roa (hash: Slh+hzXA8uH1uVgGQIbNtZEbJ8WLbIvNdBfP8qTwAu8=) 5: 5747D682B8C611F085BFD10DC4F9AE02.roa (hash: Vyslx5mdWdDu9jOFCamKT0Oyx0LSy+sxmYhw6Lcpxhg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F116/8BCFFF066EDE11F091E02A21C4F9AE02/2y3U_v83CRJX9gGdUKI5MOxG4fs.crl rsync://rpki.apnic.net/member_repository/A917F116/8BCFFF066EDE11F091E02A21C4F9AE02/2y3U_v83CRJX9gGdUKI5MOxG4fs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2y3U_v83CRJX9gGdUKI5MOxG4fs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 15:04:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 85 (0x55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F116, serialNumber=DB2DD4FEFF37091257F6019D50A23930EC46E1FB Validity Not Before: Nov 3 15:04:08 2025 GMT Not After : Nov 10 15:04:08 2025 GMT Subject: CN=6908c468-0a28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:ec:db:b6:95:fe:66:2a:1a:c7:9d:c1:3a:76: 4b:ad:6c:1f:12:e6:51:af:6f:32:27:de:82:2f:1e: 58:16:4e:01:ed:cc:60:5d:2e:4c:f8:11:b6:4d:17: c3:c5:58:a3:5e:52:c9:dc:89:0d:dd:bd:4e:83:3b: 20:ed:f3:48:22:b4:4b:07:18:15:2a:c4:02:6c:62: a7:2d:c6:10:42:b5:5f:c3:ff:3d:f0:11:a5:d1:31: ae:3c:a4:ec:b2:92:1c:41:f0:92:be:7d:b2:33:8f: dd:cc:d9:57:b7:d9:fb:9b:b9:e6:f9:fb:48:65:ad: 16:7c:20:67:5b:d8:9d:be:2f:45:60:cd:ef:82:9f: ef:30:70:ba:0d:8c:b0:ab:50:5e:2e:6a:58:dd:af: a7:51:7a:37:fb:68:78:a5:57:1b:9e:cf:93:d4:13: d2:9c:59:d8:4a:02:00:f4:f6:e7:1f:89:61:04:76: 56:c1:21:d6:49:40:e3:52:60:2c:22:11:4e:0c:28: b8:bd:e6:f5:6c:89:14:23:c0:f9:98:22:0f:81:75: c2:17:be:8d:f9:cf:c5:7e:11:7b:a8:54:23:fd:e8: fe:a4:2c:a5:e1:28:3d:00:d7:18:78:ca:32:54:33: d0:a2:50:e5:15:3a:f1:25:45:45:1e:be:23:42:8d: b8:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:5D:1A:00:5A:8B:06:E0:D2:79:0B:33:10:2C:6D:89:20:DE:FB:3B X509v3 Authority Key Identifier: keyid:DB:2D:D4:FE:FF:37:09:12:57:F6:01:9D:50:A2:39:30:EC:46:E1:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F116/8BCFFF066EDE11F091E02A21C4F9AE02/2y3U_v83CRJX9gGdUKI5MOxG4fs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2y3U_v83CRJX9gGdUKI5MOxG4fs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F116/8BCFFF066EDE11F091E02A21C4F9AE02/2y3U_v83CRJX9gGdUKI5MOxG4fs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:83:10:b4:af:51:e7:35:f5:f6:f0:d2:83:4a:3f:2a:93:a1: d7:69:cd:1f:95:7c:4e:b2:72:54:9a:a2:4c:d0:c0:53:6b:fe: b9:0a:6e:c2:99:12:b3:d2:8c:8e:00:9d:8c:6b:60:ce:55:95: a5:55:c3:4e:ed:18:97:b0:f8:77:6a:39:34:0c:a0:0d:b6:a3: 31:6a:86:cd:59:bb:30:04:34:19:36:69:18:72:44:af:5e:7c: 45:1a:de:81:3c:ae:cb:ab:a4:5b:d8:46:6f:59:17:8e:07:5a: 7c:62:d4:6d:7a:84:4a:96:fe:ed:15:d8:75:a1:9e:97:45:65: 15:04:6e:78:b9:0d:39:54:04:83:b2:01:af:5b:b3:9a:fa:3c: a0:3a:d4:23:69:20:91:eb:e5:7a:55:e3:0e:82:55:60:73:18: 82:e7:dd:1c:29:4f:38:86:cf:4f:76:17:30:fc:78:2d:9e:ba: 58:8c:b2:e1:10:46:d5:6e:f3:e4:f2:c1:82:70:0a:4a:80:3b: 55:c9:9f:0a:da:8f:80:68:09:e3:37:0c:ae:ed:32:e3:09:e1: 17:a1:7e:0c:27:5a:06:98:6a:d4:d9:7d:ea:a1:37:5c:a0:75: d2:b3:91:89:81:24:3d:0a:c2:cd:e5:fd:44:96:e5:60:ef:59: 86:c8:b3:fa -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RjExNjExMC8GA1UEBRMoREIyREQ0RkVGRjM3MDkxMjU3RjYwMTlENTBBMjM5MzBF QzQ2RTFGQjAeFw0yNTExMDMxNTA0MDhaFw0yNTExMTAxNTA0MDhaMBgxFjAUBgNV BAMTDTY5MDhjNDY4LTBhMjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDP7Nu2lf5mKhrHncE6dkutbB8S5lGvbzIn3oIvHlgWTgHtzGBdLkz4EbZNF8PF WKNeUsnciQ3dvU6DOyDt80gitEsHGBUqxAJsYqctxhBCtV/D/z3wEaXRMa48pOyy khxB8JK+fbIzj93M2Ve32fubueb5+0hlrRZ8IGdb2J2+L0Vgze+Cn+8wcLoNjLCr UF4ualjdr6dRejf7aHilVxuez5PUE9KcWdhKAgD09ucfiWEEdlbBIdZJQONSYCwi EU4MKLi95vVsiRQjwPmYIg+BdcIXvo35z8V+EXuoVCP96P6kLKXhKD0A1xh4yjJU M9CiUOUVOvElRUUeviNCjbgzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUPV0aAFqL BuDSeQszECxtiSDe+zswHwYDVR0jBBgwFoAU2y3U/v83CRJX9gGdUKI5MOxG4fsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdGMTE2LzhCQ0ZGRjA2NkVE RTExRjA5MUUwMkEyMUM0RjlBRTAyLzJ5M1VfdjgzQ1JKWDlnR2RVS0k1TU94RzRm cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMnkzVV92ODNDUkpYOWdHZFVLSTVNT3hHNGZzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdG MTE2LzhCQ0ZGRjA2NkVERTExRjA5MUUwMkEyMUM0RjlBRTAyLzJ5M1VfdjgzQ1JK WDlnR2RVS0k1TU94RzRmcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEWDELSvUec19fbw0oNKPyqToddpzR+VfE6yclSaokzQwFNr/rkKbsKZ ErPSjI4AnYxrYM5VlaVVw07tGJew+HdqOTQMoA22ozFqhs1ZuzAENBk2aRhyRK9e fEUa3oE8rsurpFvYRm9ZF44HWnxi1G16hEqW/u0V2HWhnpdFZRUEbni5DTlUBIOy Aa9bs5r6PKA61CNpIJHr5XpV4w6CVWBzGILn3RwpTziGz092FzD8eC2euliMsuEQ RtVu8+TywYJwCkqAO1XJnwraj4BoCeM3DK7tMuMJ4RehfgwnWgaYatTZfeqhN1yg ddKzkYmBJD0Kws3l/USW5WDvWYbIs/o= -----END CERTIFICATE-----Generated at Tue Nov 4 22:06:17 2025 by rpki-client