$ rpki-client -vvf rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft File: 3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft (raw, json) Hash identifier: ENbTZvnBTlPZa693YWaWV4K7WYC09oENATrmBVyxYGA= Subject key identifier: 53:19:56:FD:18:B2:8A:B3:B4:DB:87:0D:B7:D4:85:6A:7D:AB:DD:92 Authority key identifier: DC:62:20:08:A8:A1:AD:42:BE:2A:25:49:43:49:1A:FA:A8:45:49:A5 Certificate issuer: /CN=A911035A/serialNumber=DC622008A8A1AD42BE2A254943491AFAA84549A5 Certificate serial: 0A4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft Manifest number: 0A39 Signing time: Tue 04 Nov 2025 19:50:26 +0000 Manifest this update: Tue 04 Nov 2025 19:50:25 +0000 Manifest next update: Tue 11 Nov 2025 19:50:25 +0000 Files and hashes: 1: 3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl (hash: 401BZUEbA3P7u20RYbSQqLyxpdDTY9GFrIhRaLHw4Sc=) 2: 5B57754A026F11EDBE22EF64C4F9AE02.roa (hash: ihAIG4OoPwthC+h4NtPo2Q0pwt/cIHMn8RF1lo5PumY=) 3: 5A472FBA026F11EDBE22EF64C4F9AE02.roa (hash: vIMBF1bBAJdpKyG7NryScSCm1A4V3l1tKWGtKbJDwKU=) 4: C1B3DE082BBE11EF809E1831C4F9AE02.roa (hash: lx///Z7Da35SlsWklk353QqekT8yYXigifaMtdugzeQ=) 5: E1935B7A36DD11EFB1E53717C4F9AE02.roa (hash: H0HQ+QBIGliAyxj5H0/8pAJ49x4cCntNY4DcwIy3B3Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:50:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2634 (0xa4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911035A, serialNumber=DC622008A8A1AD42BE2A254943491AFAA84549A5 Validity Not Before: Nov 4 19:50:25 2025 GMT Not After : Nov 11 19:50:25 2025 GMT Subject: CN=690a5902-4492 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:fe:d2:f9:c4:95:11:33:c3:e2:4e:43:21:5c: 7a:9f:33:e5:c2:09:73:c8:4c:a4:fd:a7:fd:15:75: cd:b2:37:fc:3c:cf:ea:be:71:4d:d1:3d:f6:63:ef: f2:00:8c:94:3d:ee:13:9d:62:e1:cb:f3:0b:c9:34: 10:d8:b0:98:2e:f1:e2:df:b7:cc:34:93:99:01:27: ed:76:3f:e9:76:bb:52:57:67:3a:7c:16:67:0f:5e: e1:50:d1:35:5e:9e:51:1d:23:bd:92:7d:e2:4c:b8: ba:ca:e6:43:5d:d8:27:9a:e0:07:52:6d:c8:8a:46: b0:76:72:f5:cf:8f:8a:fb:8e:22:78:74:ba:3f:89: cd:25:82:47:34:dc:8b:21:1f:2b:f7:b0:9d:94:c6: 9a:03:f0:c8:61:85:ef:cb:76:b0:b6:11:bb:fc:bd: 11:49:6a:bd:4e:62:83:ab:41:c0:69:51:6d:b7:9d: 2d:7c:3c:c2:57:09:63:ba:26:01:6a:c2:ff:18:11: f7:ae:0a:64:87:da:e4:30:66:81:c1:ba:84:98:b3: 5b:a6:16:9b:f7:4d:a2:79:fd:27:96:ac:2d:88:86: 0a:99:06:57:81:1f:4d:f3:72:cc:29:7e:93:e6:5a: 05:eb:fc:ed:72:a9:01:84:5c:b6:11:a2:16:e4:23: 27:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:19:56:FD:18:B2:8A:B3:B4:DB:87:0D:B7:D4:85:6A:7D:AB:DD:92 X509v3 Authority Key Identifier: keyid:DC:62:20:08:A8:A1:AD:42:BE:2A:25:49:43:49:1A:FA:A8:45:49:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:f9:69:52:94:da:f6:de:b2:23:91:89:41:af:1b:aa:86:4d: 51:a9:5f:9e:0b:cb:f5:f2:25:c6:b1:e6:9f:16:c6:d4:f6:5d: 46:f2:b2:06:79:ba:b4:50:9c:47:8e:44:f2:7f:70:2f:83:0e: de:19:9b:db:5f:4a:40:ea:31:76:25:61:55:23:f8:86:6b:6e: 50:a5:1a:ae:43:1a:e5:c1:0a:25:d6:fe:20:6e:c6:88:85:2a: 77:3b:06:61:36:29:43:d9:0e:df:d8:6f:e1:b1:8a:93:a7:c8: 29:70:31:4b:e8:d4:1e:f0:17:c5:db:df:f7:1f:1f:0c:ce:a2: be:20:23:df:52:e2:63:cc:e0:fc:32:21:58:b5:b9:c7:ee:bc: b1:31:d8:da:7d:a7:cf:f4:03:1d:ee:cf:80:98:60:14:a7:3c: 3a:a9:6c:8f:10:15:e6:bd:79:fb:ae:bc:28:7c:57:43:e6:6c: 5c:64:36:1a:23:a2:e6:ab:73:3b:02:cd:7b:15:70:fa:1a:a7: 13:17:98:7c:23:27:3b:1f:76:bb:ec:7b:6a:a3:57:97:05:aa: 97:30:6a:a9:ac:6b:19:92:28:07:94:ed:2a:49:71:40:07:c6: 0b:ff:e4:a9:fe:69:a4:4e:1c:95:55:d3:1a:50:96:c1:ad:b9: 36:2e:86:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCkowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTAzNUExMTAvBgNVBAUTKERDNjIyMDA4QThBMUFENDJCRTJBMjU0OTQzNDkxQUZB QTg0NTQ5QTUwHhcNMjUxMTA0MTk1MDI1WhcNMjUxMTExMTk1MDI1WjAYMRYwFAYD VQQDEw02OTBhNTkwMi00NDkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu/7S+cSVETPD4k5DIVx6nzPlwglzyEyk/af9FXXNsjf8PM/qvnFN0T32Y+/y AIyUPe4TnWLhy/MLyTQQ2LCYLvHi37fMNJOZASftdj/pdrtSV2c6fBZnD17hUNE1 Xp5RHSO9kn3iTLi6yuZDXdgnmuAHUm3IikawdnL1z4+K+44ieHS6P4nNJYJHNNyL IR8r97CdlMaaA/DIYYXvy3awthG7/L0RSWq9TmKDq0HAaVFtt50tfDzCVwljuiYB asL/GBH3rgpkh9rkMGaBwbqEmLNbphab902ief0nlqwtiIYKmQZXgR9N83LMKX6T 5loF6/ztcqkBhFy2EaIW5CMn0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFMZVv0Y soqztNuHDbfUhWp9q92SMB8GA1UdIwQYMBaAFNxiIAiooa1CviolSUNJGvqoRUml MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDM1QS8zQzYwOUI0NDdD NjYxMUVBODA4OUYzNTFDNEY5QUUwMi8zR0lnQ0tpaHJVSy1LaVZKUTBrYS1xaEZT YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNHSWdDS2loclVLLUtpVkpRMGthLXFoRlNhVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDM1QS8zQzYwOUI0NDdDNjYxMUVBODA4OUYzNTFDNEY5QUUwMi8zR0lnQ0tpaHJV Sy1LaVZKUTBrYS1xaEZTYVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAU+WlSlNr23rIjkYlBrxuqhk1RqV+eC8v18iXGseafFsbU9l1G8rIG ebq0UJxHjkTyf3Avgw7eGZvbX0pA6jF2JWFVI/iGa25QpRquQxrlwQol1v4gbsaI hSp3OwZhNilD2Q7f2G/hsYqTp8gpcDFL6NQe8BfF29/3Hx8MzqK+ICPfUuJjzOD8 MiFYtbnH7ryxMdjafafP9AMd7s+AmGAUpzw6qWyPEBXmvXn7rrwofFdD5mxcZDYa I6Lmq3M7As17FXD6GqcTF5h8Iyc7H3a77Htqo1eXBaqXMGqprGsZkigHlO0qSXFA B8YL/+Sp/mmkThyVVdMaUJbBrbk2Lobp -----END CERTIFICATE-----Generated at Wed Nov 5 05:25:39 2025 by rpki-client