$ rpki-client -vvf rpki.apnic.net/member_repository/A919A016/C0677226417111EAAAD26A6CC4F9AE02/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.mft File: 3y-KdfPpJ14NTxD8ajGZl5Eb5bU.mft (raw, json) Hash identifier: YgFbVlWWRIUZVMhx4Tv1l7dsa/kNMVorGpsoRtFYMsk= Subject key identifier: BC:D3:E4:2C:4A:36:61:27:08:D8:D7:63:6C:D8:4E:9F:59:91:18:D3 Authority key identifier: DF:2F:8A:75:F3:E9:27:5E:0D:4F:10:FC:6A:31:99:97:91:1B:E5:B5 Certificate issuer: /CN=A919A016/serialNumber=DF2F8A75F3E9275E0D4F10FC6A319997911BE5B5 Certificate serial: 0B75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A016/C0677226417111EAAAD26A6CC4F9AE02/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.mft Manifest number: 0B67 Signing time: Tue 04 Nov 2025 19:13:50 +0000 Manifest this update: Tue 04 Nov 2025 19:13:49 +0000 Manifest next update: Tue 11 Nov 2025 19:13:49 +0000 Files and hashes: 1: 3y-KdfPpJ14NTxD8ajGZl5Eb5bU.crl (hash: JjQXzEDrKlMGhren6SV0UfqzBd84BE/li6jrZun80hI=) 2: 26010A0605EF11F09181F913C4F9AE02.roa (hash: e8DrNgU6wclV+/cuRuh0FDYWi/CeredwOHLzSK+l0vc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A016/C0677226417111EAAAD26A6CC4F9AE02/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.crl rsync://rpki.apnic.net/member_repository/A919A016/C0677226417111EAAAD26A6CC4F9AE02/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:13:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2933 (0xb75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A016, serialNumber=DF2F8A75F3E9275E0D4F10FC6A319997911BE5B5 Validity Not Before: Nov 4 19:13:49 2025 GMT Not After : Nov 11 19:13:49 2025 GMT Subject: CN=690a506e-8b67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:64:4b:44:0c:d4:23:41:44:1e:b7:b8:b1:92: 4f:45:8e:3c:4f:ec:41:e7:6b:67:18:57:71:62:cf: 5a:a1:9f:2d:42:83:aa:93:ee:22:43:de:4f:0d:23: 5a:99:4d:f8:66:a3:67:87:e4:4d:16:fe:93:bb:d8: d5:90:41:e1:7d:5b:bf:5d:76:2e:4e:48:d0:b4:7e: 06:c0:74:0b:95:e9:dd:d4:da:94:81:6d:5a:b5:aa: 4b:74:56:86:11:4e:66:2d:d0:0b:1d:18:1b:dc:d0: 8a:a6:ec:13:f1:fe:9f:3e:e9:e1:67:cf:8d:76:ed: bc:58:af:15:34:05:32:19:4c:61:aa:00:b8:35:81: d1:5a:41:71:48:72:6d:04:0f:b5:c4:cc:95:e5:33: d4:01:92:07:c3:1b:de:38:f2:9d:de:6f:d1:65:31: 3d:28:fd:ce:bc:42:bc:d7:3c:7b:1b:79:d4:3f:29: 1c:9d:e4:8d:71:15:4f:35:1c:cf:52:b7:6d:0a:a0: fa:f7:b6:41:15:b7:e1:20:e0:f1:86:94:15:c2:b1: 1e:b4:40:39:47:f0:90:f8:c3:c6:82:19:5f:87:70: 83:24:b5:9c:0a:ee:b9:99:6a:9f:07:37:6e:fd:80: 11:ac:29:ae:19:10:c5:10:8a:76:a2:b0:27:59:34: 36:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:D3:E4:2C:4A:36:61:27:08:D8:D7:63:6C:D8:4E:9F:59:91:18:D3 X509v3 Authority Key Identifier: keyid:DF:2F:8A:75:F3:E9:27:5E:0D:4F:10:FC:6A:31:99:97:91:1B:E5:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A016/C0677226417111EAAAD26A6CC4F9AE02/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A016/C0677226417111EAAAD26A6CC4F9AE02/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:79:fd:6b:7e:76:63:95:21:07:94:8a:73:e7:31:98:f8:84: 7d:09:21:14:e8:fc:b5:90:76:7c:e4:85:dd:ef:3c:a4:39:f8: 2f:79:01:5b:e2:27:98:e7:ad:5a:91:d2:32:17:87:f8:15:5e: 86:d7:77:98:e4:1b:d6:dc:81:74:39:8a:39:5c:74:4b:ea:b9: a1:5f:b2:4b:1e:f2:ad:b2:17:27:b2:26:e7:84:fa:d6:1d:58: be:95:44:20:23:b6:0b:c8:8d:28:a3:f3:70:80:42:c5:00:84: eb:62:38:e4:f6:bf:9a:28:be:63:1c:ad:aa:c2:16:7a:95:f5: cb:c6:91:f5:b2:68:ea:82:40:1a:fd:79:f2:ad:3e:be:25:4a: c0:51:13:27:20:2b:6a:14:67:e9:ab:48:95:ef:c4:b6:8c:11: 54:eb:bd:83:f0:0a:59:fd:e7:4b:8c:c0:91:f4:39:80:7d:6c: 94:a8:de:9f:51:34:73:bf:88:87:ec:71:a9:4c:3e:aa:f9:30: db:34:c0:62:fa:b8:95:01:09:c8:e6:9d:d9:cb:24:18:29:45: 82:12:fd:84:6e:ad:e0:3c:b1:05:57:ce:3e:9e:38:f1:73:dd: 54:63:2f:7f:05:46:f1:16:3e:88:82:e5:49:9e:89:77:54:6d: fe:8a:b5:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC3UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUEwMTYxMTAvBgNVBAUTKERGMkY4QTc1RjNFOTI3NUUwRDRGMTBGQzZBMzE5OTk3 OTExQkU1QjUwHhcNMjUxMTA0MTkxMzQ5WhcNMjUxMTExMTkxMzQ5WjAYMRYwFAYD VQQDEw02OTBhNTA2ZS04YjY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5WRLRAzUI0FEHre4sZJPRY48T+xB52tnGFdxYs9aoZ8tQoOqk+4iQ95PDSNa mU34ZqNnh+RNFv6Tu9jVkEHhfVu/XXYuTkjQtH4GwHQLlend1NqUgW1atapLdFaG EU5mLdALHRgb3NCKpuwT8f6fPunhZ8+Ndu28WK8VNAUyGUxhqgC4NYHRWkFxSHJt BA+1xMyV5TPUAZIHwxveOPKd3m/RZTE9KP3OvEK81zx7G3nUPykcneSNcRVPNRzP UrdtCqD697ZBFbfhIODxhpQVwrEetEA5R/CQ+MPGghlfh3CDJLWcCu65mWqfBzdu /YARrCmuGRDFEIp2orAnWTQ2HQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLzT5CxK NmEnCNjXY2zYTp9ZkRjTMB8GA1UdIwQYMBaAFN8vinXz6SdeDU8Q/GoxmZeRG+W1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTAxNi9DMDY3NzIyNjQx NzExMUVBQUFEMjZBNkNDNEY5QUUwMi8zeS1LZGZQcEoxNE5UeEQ4YWpHWmw1RWI1 YlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzN5LUtkZlBwSjE0TlR4RDhhakdabDVFYjViVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTAxNi9DMDY3NzIyNjQxNzExMUVBQUFEMjZBNkNDNEY5QUUwMi8zeS1LZGZQcEox NE5UeEQ4YWpHWmw1RWI1YlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAef1rfnZjlSEHlIpz5zGY+IR9CSEU6Py1kHZ85IXd7zykOfgveQFb 4ieY561akdIyF4f4FV6G13eY5BvW3IF0OYo5XHRL6rmhX7JLHvKtshcnsibnhPrW HVi+lUQgI7YLyI0oo/NwgELFAITrYjjk9r+aKL5jHK2qwhZ6lfXLxpH1smjqgkAa /XnyrT6+JUrAURMnICtqFGfpq0iV78S2jBFU672D8ApZ/edLjMCR9DmAfWyUqN6f UTRzv4iH7HGpTD6q+TDbNMBi+riVAQnI5p3ZyyQYKUWCEv2Ebq3gPLEFV84+njjx c91UYy9/BUbxFj6IguVJnol3VG3+irXx -----END CERTIFICATE-----Generated at Wed Nov 5 13:01:57 2025 by rpki-client