$ rpki-client -vvf rpki.apnic.net/member_repository/A916CDAC/78D593188F3911F08632A039C4F9AE02/3fyp0DSUWlkkEWE31ih38M5Svxs.mft File: 3fyp0DSUWlkkEWE31ih38M5Svxs.mft (raw, json) Hash identifier: llPmLyyezDJr/ZS3JOnNtt0PrqX+1v+0X9+S/LNKiJw= Subject key identifier: 2F:23:B8:F4:2B:AE:47:36:3A:23:77:CA:C0:E2:3D:AF:80:CA:39:40 Authority key identifier: DD:FC:A9:D0:34:94:5A:59:24:11:61:37:D6:28:77:F0:CE:52:BF:1B Certificate issuer: /CN=A916CDAC/serialNumber=DDFCA9D034945A5924116137D62877F0CE52BF1B Certificate serial: 1C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3fyp0DSUWlkkEWE31ih38M5Svxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916CDAC/78D593188F3911F08632A039C4F9AE02/3fyp0DSUWlkkEWE31ih38M5Svxs.mft Manifest number: 17 Signing time: Tue 07 Oct 2025 08:17:24 +0000 Manifest this update: Tue 07 Oct 2025 08:17:23 +0000 Manifest next update: Tue 14 Oct 2025 08:17:23 +0000 Files and hashes: 1: 3fyp0DSUWlkkEWE31ih38M5Svxs.crl (hash: lbt0/Fg2Sc3O4Pkzop4sr53zrQhve8lutk/IGUA4IxQ=) 2: 7AA2F5228F4411F0830D0B1EC4F9AE02.roa (hash: vQDu9wcINkcPzWdSO/DWuCCS5k2RLBjzO/0TA4C/YFM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916CDAC/78D593188F3911F08632A039C4F9AE02/3fyp0DSUWlkkEWE31ih38M5Svxs.crl rsync://rpki.apnic.net/member_repository/A916CDAC/78D593188F3911F08632A039C4F9AE02/3fyp0DSUWlkkEWE31ih38M5Svxs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3fyp0DSUWlkkEWE31ih38M5Svxs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Oct 2025 08:17:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28 (0x1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916CDAC, serialNumber=DDFCA9D034945A5924116137D62877F0CE52BF1B Validity Not Before: Oct 7 08:17:23 2025 GMT Not After : Oct 14 08:17:23 2025 GMT Subject: CN=68e4cc93-df89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:3e:32:e0:ef:43:da:f7:09:09:f7:fe:bf:69: c5:f4:54:58:54:5c:57:ba:26:74:09:be:b5:62:fb: 0a:77:63:eb:21:b9:85:36:ed:53:22:b5:cd:cd:d9: 43:77:0d:0b:04:4d:03:03:ba:7a:c9:30:a9:8e:4e: 4a:0a:76:2b:4e:9a:03:63:19:52:ab:38:b2:67:e9: c2:d0:b8:ef:34:01:47:f8:15:18:e1:2f:c8:1c:e3: 3e:5a:05:e0:45:7d:c6:b9:64:1e:0c:5f:02:82:c9: a2:80:c4:a8:89:33:52:48:e7:9d:93:34:69:84:1e: 5f:4e:09:61:53:25:bd:b5:04:b9:1d:59:0c:5b:47: 57:3a:64:77:b8:72:d1:f2:03:8c:10:c4:d3:d3:33: c0:75:65:fe:76:7e:17:b9:39:f9:46:6b:21:25:c1: 1d:a4:ca:97:d7:7f:45:43:21:cd:80:00:9a:af:c4: 2f:32:75:73:22:cc:87:c2:d5:54:19:49:64:20:d1: 22:6e:6b:17:df:91:0e:ed:a2:56:ef:ff:5b:75:0d: d6:24:13:32:6a:d2:c6:c5:22:20:35:c7:4b:ff:d4: 5b:07:53:6d:2c:28:f5:11:25:26:f2:02:58:a5:70: dc:f5:4e:26:14:24:31:f7:1c:48:c0:5b:41:4f:c4: 66:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:23:B8:F4:2B:AE:47:36:3A:23:77:CA:C0:E2:3D:AF:80:CA:39:40 X509v3 Authority Key Identifier: keyid:DD:FC:A9:D0:34:94:5A:59:24:11:61:37:D6:28:77:F0:CE:52:BF:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916CDAC/78D593188F3911F08632A039C4F9AE02/3fyp0DSUWlkkEWE31ih38M5Svxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3fyp0DSUWlkkEWE31ih38M5Svxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916CDAC/78D593188F3911F08632A039C4F9AE02/3fyp0DSUWlkkEWE31ih38M5Svxs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:65:5c:10:23:45:26:0e:b4:84:94:5a:aa:ec:15:84:89:60: 91:f4:87:0b:7e:9d:b5:19:f7:3a:0c:9c:6d:17:f0:03:f7:1f: 66:b7:28:d5:01:6f:00:db:ab:b8:3e:84:16:57:7e:36:b9:6c: c7:92:ab:a5:0f:20:8a:ee:fb:ec:3d:3a:49:96:03:2f:85:8b: 51:de:a0:b8:bc:f6:0e:35:0b:e7:d2:7e:e6:c4:f7:8f:91:5f: f9:9f:9a:b7:c7:07:f0:f9:45:1b:1a:24:a6:e7:fe:d9:6e:13: 9f:05:d1:6a:12:a9:fa:4c:92:89:08:37:dd:85:6b:be:8f:af: cb:9f:7b:74:82:40:ec:1f:84:ea:a4:62:8b:a8:79:c5:30:c2: 52:3a:ec:71:34:93:2e:b4:0b:de:dd:8e:24:42:34:0e:a6:e1: db:88:0d:d3:30:00:5f:f3:27:26:93:d2:59:8b:9e:d9:2d:c5: c2:a6:15:3d:34:06:ea:0a:19:25:b3:49:13:b5:45:e8:d9:23: 6d:ac:ec:ba:e0:71:87:0d:63:85:94:78:02:18:e5:35:bb:57: bd:4d:1d:e4:73:dc:fb:2b:b2:fd:e0:f2:02:ea:20:69:e6:ba: dd:af:95:c1:ad:da:8d:f8:b3:b8:d3:3d:f8:eb:b3:ab:fd:89: ec:5b:ef:2a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 Q0RBQzExMC8GA1UEBRMoRERGQ0E5RDAzNDk0NUE1OTI0MTE2MTM3RDYyODc3RjBD RTUyQkYxQjAeFw0yNTEwMDcwODE3MjNaFw0yNTEwMTQwODE3MjNaMBgxFjAUBgNV BAMTDTY4ZTRjYzkzLWRmODkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCiPjLg70Pa9wkJ9/6/acX0VFhUXFe6JnQJvrVi+wp3Y+shuYU27VMitc3N2UN3 DQsETQMDunrJMKmOTkoKditOmgNjGVKrOLJn6cLQuO80AUf4FRjhL8gc4z5aBeBF fca5ZB4MXwKCyaKAxKiJM1JI552TNGmEHl9OCWFTJb21BLkdWQxbR1c6ZHe4ctHy A4wQxNPTM8B1Zf52fhe5OflGayElwR2kypfXf0VDIc2AAJqvxC8ydXMizIfC1VQZ SWQg0SJuaxffkQ7tolbv/1t1DdYkEzJq0sbFIiA1x0v/1FsHU20sKPURJSbyAlil cNz1TiYUJDH3HEjAW0FPxGaTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQULyO49Cuu RzY6I3fKwOI9r4DKOUAwHwYDVR0jBBgwFoAU3fyp0DSUWlkkEWE31ih38M5Svxsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZDREFDLzc4RDU5MzE4OEYz OTExRjA4NjMyQTAzOUM0RjlBRTAyLzNmeXAwRFNVV2xra0VXRTMxaWgzOE01U3Z4 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvM2Z5cDBEU1VXbGtrRVdFMzFpaDM4TTVTdnhzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZD REFDLzc4RDU5MzE4OEYzOTExRjA4NjMyQTAzOUM0RjlBRTAyLzNmeXAwRFNVV2xr a0VXRTMxaWgzOE01U3Z4cy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIVlXBAjRSYOtISUWqrsFYSJYJH0hwt+nbUZ9zoMnG0X8AP3H2a3KNUB bwDbq7g+hBZXfja5bMeSq6UPIIru++w9OkmWAy+Fi1HeoLi89g41C+fSfubE94+R X/mfmrfHB/D5RRsaJKbn/tluE58F0WoSqfpMkokIN92Fa76Pr8ufe3SCQOwfhOqk YouoecUwwlI67HE0ky60C97djiRCNA6m4duIDdMwAF/zJyaT0lmLntktxcKmFT00 BuoKGSWzSRO1RejZI22s7LrgcYcNY4WUeAIY5TW7V71NHeRz3Psrsv3g8gLqIGnm ut2vlcGt2o34s7jTPfjrs6v9iexb7yo= -----END CERTIFICATE-----Generated at Thu Oct 9 03:23:05 2025 by rpki-client