$ rpki-client -vvf rpki.apnic.net/member_repository/A918EF94/5B24A5C8A6C111E98C379E0FC4F9AE02/p3fkgYyg3MY4LlYlcG-YyB6TByA.mft File: p3fkgYyg3MY4LlYlcG-YyB6TByA.mft (raw, json) Hash identifier: aFR+PaueQUEPpI+oaV1kbZgqFUYWFHW+tW1sDM+Jexg= Subject key identifier: 24:B8:69:7F:D2:3E:D4:27:A2:4F:E7:6D:F0:C9:03:4E:70:AB:1D:4A Authority key identifier: A7:77:E4:81:8C:A0:DC:C6:38:2E:56:25:70:6F:98:C8:1E:93:07:20 Certificate issuer: /CN=A918EF94/serialNumber=A777E4818CA0DCC6382E5625706F98C81E930720 Certificate serial: 0E7D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p3fkgYyg3MY4LlYlcG-YyB6TByA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EF94/5B24A5C8A6C111E98C379E0FC4F9AE02/p3fkgYyg3MY4LlYlcG-YyB6TByA.mft Manifest number: 0E75 Signing time: Tue 04 Nov 2025 17:49:06 +0000 Manifest this update: Tue 04 Nov 2025 17:49:05 +0000 Manifest next update: Tue 11 Nov 2025 17:49:05 +0000 Files and hashes: 1: p3fkgYyg3MY4LlYlcG-YyB6TByA.crl (hash: jJv6jnxnAQOqD10PaRWEn1JLBt7uV0f8qbR3S6LfWpA=) 2: EE78BE36068611EDA1C2070DC4F9AE02.roa (hash: X7Dq3eZ/GJf+9yPNH4D4Wvo3ddILMQm0OljP2i+67DY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EF94/5B24A5C8A6C111E98C379E0FC4F9AE02/p3fkgYyg3MY4LlYlcG-YyB6TByA.crl rsync://rpki.apnic.net/member_repository/A918EF94/5B24A5C8A6C111E98C379E0FC4F9AE02/p3fkgYyg3MY4LlYlcG-YyB6TByA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p3fkgYyg3MY4LlYlcG-YyB6TByA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:49:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3709 (0xe7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EF94, serialNumber=A777E4818CA0DCC6382E5625706F98C81E930720 Validity Not Before: Nov 4 17:49:05 2025 GMT Not After : Nov 11 17:49:05 2025 GMT Subject: CN=690a3c92-a06e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:ad:e2:b3:be:b1:6a:fb:ec:dd:7b:bb:9a:f8: e6:56:8e:09:d3:3c:8c:d6:53:23:8c:1a:ce:25:84: cb:56:ac:40:b5:f8:7f:f9:9e:50:b3:c9:e5:d0:fa: 33:3e:39:dc:e4:34:57:7b:8a:7c:6d:e9:97:b5:4b: 8b:05:5a:36:73:e4:d3:fc:57:d2:5b:a0:cb:d0:df: c9:13:6e:d9:8b:b0:3c:7c:54:37:1b:10:d7:94:8d: 8f:03:ba:fa:39:cc:52:89:56:38:2c:dc:85:78:a2: d0:a1:59:e2:3f:8a:16:4b:59:75:11:3d:fd:e3:26: 34:6e:e6:d0:9f:ce:79:ad:0f:67:fc:7c:c8:c1:76: 84:81:ca:c9:69:c8:94:27:38:7f:ba:26:64:73:08: 3d:e6:45:fd:5d:36:c7:bc:5c:10:9b:22:a9:35:d2: ef:cc:ce:ce:5c:c8:a1:82:b6:b3:35:17:e1:5c:2c: 08:5a:34:eb:18:60:ee:96:47:fe:20:d3:fc:2b:f8: 28:1e:29:7b:8a:82:ab:af:76:00:a6:e7:16:78:0a: e7:4f:98:4d:ba:bc:a4:89:12:ed:b5:b7:a9:02:c5: 8b:2e:a2:4e:54:f3:5c:63:fb:2d:00:28:aa:7b:11: 69:2d:94:d4:6c:91:da:d4:2c:68:e6:4c:be:00:a2: fe:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:B8:69:7F:D2:3E:D4:27:A2:4F:E7:6D:F0:C9:03:4E:70:AB:1D:4A X509v3 Authority Key Identifier: keyid:A7:77:E4:81:8C:A0:DC:C6:38:2E:56:25:70:6F:98:C8:1E:93:07:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EF94/5B24A5C8A6C111E98C379E0FC4F9AE02/p3fkgYyg3MY4LlYlcG-YyB6TByA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p3fkgYyg3MY4LlYlcG-YyB6TByA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EF94/5B24A5C8A6C111E98C379E0FC4F9AE02/p3fkgYyg3MY4LlYlcG-YyB6TByA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:49:9f:f8:e2:76:37:1c:07:9f:db:bb:2a:d3:96:77:a8:f8: d7:3d:df:a8:95:2e:b2:d0:1e:0f:cb:c2:56:9d:0c:61:3b:43: 86:52:b1:d0:c8:30:96:10:29:7d:96:b8:57:ab:b2:31:4b:c4: 4c:7c:3a:60:db:fb:30:72:c3:a5:ee:51:26:b5:f0:97:38:20: ef:57:79:20:7d:c8:26:33:80:2e:4e:b1:67:c0:39:ae:11:db: c8:f1:9a:f2:88:92:f9:38:34:92:94:9a:53:4b:a3:4d:cb:46: 4c:34:60:59:ca:07:13:67:e3:6a:bf:00:61:64:d4:2e:1c:9b: ee:5c:ad:c0:84:f0:c4:3f:96:eb:82:09:7f:22:fe:b1:02:ce: a7:dd:b7:f6:31:b6:47:80:3c:c3:46:b1:d7:3c:be:38:e0:a3: 30:a4:c6:06:61:62:4d:1d:de:01:6f:ae:2e:76:22:58:c7:06: 4e:bb:78:d6:9e:3c:69:19:fb:ea:98:15:62:2c:4f:9a:73:b1: 5c:76:69:f5:9f:80:5d:e7:72:3c:01:84:37:eb:c4:c8:79:61: a8:93:37:35:fb:40:e2:31:78:b4:c7:25:63:60:e4:c2:d6:6c: c0:bd:bf:c0:c2:ca:a0:db:a2:81:98:a9:50:36:37:d9:7c:99: 31:cd:b4:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDn0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVGOTQxMTAvBgNVBAUTKEE3NzdFNDgxOENBMERDQzYzODJFNTYyNTcwNkY5OEM4 MUU5MzA3MjAwHhcNMjUxMTA0MTc0OTA1WhcNMjUxMTExMTc0OTA1WjAYMRYwFAYD VQQDEw02OTBhM2M5Mi1hMDZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnq3is76xavvs3Xu7mvjmVo4J0zyM1lMjjBrOJYTLVqxAtfh/+Z5Qs8nl0Poz Pjnc5DRXe4p8bemXtUuLBVo2c+TT/FfSW6DL0N/JE27Zi7A8fFQ3GxDXlI2PA7r6 OcxSiVY4LNyFeKLQoVniP4oWS1l1ET394yY0bubQn855rQ9n/HzIwXaEgcrJaciU Jzh/uiZkcwg95kX9XTbHvFwQmyKpNdLvzM7OXMihgrazNRfhXCwIWjTrGGDulkf+ INP8K/goHil7ioKrr3YApucWeArnT5hNurykiRLttbepAsWLLqJOVPNcY/stACiq exFpLZTUbJHa1Cxo5ky+AKL+/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCS4aX/S PtQnok/nbfDJA05wqx1KMB8GA1UdIwQYMBaAFKd35IGMoNzGOC5WJXBvmMgekwcg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RUY5NC81QjI0QTVDOEE2 QzExMUU5OEMzNzlFMEZDNEY5QUUwMi9wM2ZrZ1l5ZzNNWTRMbFlsY0ctWXlCNlRC eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3AzZmtnWXlnM01ZNExsWWxjRy1ZeUI2VEJ5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RUY5NC81QjI0QTVDOEE2QzExMUU5OEMzNzlFMEZDNEY5QUUwMi9wM2ZrZ1l5ZzNN WTRMbFlsY0ctWXlCNlRCeUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnSZ/44nY3HAef27sq05Z3qPjXPd+olS6y0B4Py8JWnQxhO0OGUrHQ yDCWECl9lrhXq7IxS8RMfDpg2/swcsOl7lEmtfCXOCDvV3kgfcgmM4AuTrFnwDmu EdvI8ZryiJL5ODSSlJpTS6NNy0ZMNGBZygcTZ+NqvwBhZNQuHJvuXK3AhPDEP5br ggl/Iv6xAs6n3bf2MbZHgDzDRrHXPL444KMwpMYGYWJNHd4Bb64udiJYxwZOu3jW njxpGfvqmBViLE+ac7Fcdmn1n4Bd53I8AYQ368TIeWGokzc1+0DiMXi0xyVjYOTC 1mzAvb/Awsqg26KBmKlQNjfZfJkxzbT7 -----END CERTIFICATE-----Generated at Wed Nov 5 12:04:14 2025 by rpki-client