$ rpki-client -vvf rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/3ETtNb69CygywHT8LEaqsM1oL94.mft File: 3ETtNb69CygywHT8LEaqsM1oL94.mft (raw, json) Hash identifier: aeV8TKnemlM4ZjIbADR/PyO5g4CFuSwLk9z7oIJRmiY= Subject key identifier: 1F:D5:60:2B:72:8B:08:00:B4:EC:24:0C:08:AF:D1:26:65:C3:2D:84 Authority key identifier: DC:44:ED:35:BE:BD:0B:28:32:C0:74:FC:2C:46:AA:B0:CD:68:2F:DE Certificate issuer: /CN=A9143B09/serialNumber=DC44ED35BEBD0B2832C074FC2C46AAB0CD682FDE Certificate serial: 10DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3ETtNb69CygywHT8LEaqsM1oL94.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/3ETtNb69CygywHT8LEaqsM1oL94.mft Manifest number: 19BF Signing time: Tue 04 Nov 2025 17:24:05 +0000 Manifest this update: Tue 04 Nov 2025 17:24:05 +0000 Manifest next update: Tue 11 Nov 2025 17:24:05 +0000 Files and hashes: 1: 3ETtNb69CygywHT8LEaqsM1oL94.crl (hash: aWOxADkswDRlwsllcx8mfo/mSjaeunuwt7SAyQMwy1Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/3ETtNb69CygywHT8LEaqsM1oL94.crl rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/3ETtNb69CygywHT8LEaqsM1oL94.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3ETtNb69CygywHT8LEaqsM1oL94.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:24:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4314 (0x10da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143B09, serialNumber=DC44ED35BEBD0B2832C074FC2C46AAB0CD682FDE Validity Not Before: Nov 4 17:24:05 2025 GMT Not After : Nov 11 17:24:05 2025 GMT Subject: CN=690a36b5-0ea3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:6c:92:7b:ae:7a:a1:0d:bb:91:89:f4:39:36: a2:2f:ac:b7:f3:29:50:db:07:a1:32:68:43:d5:b8: 20:13:77:94:04:38:5b:71:0f:3c:37:0b:f2:da:b2: 50:05:58:87:dd:2f:cf:64:06:cb:af:d5:58:5f:ff: 12:f7:f2:ce:e6:c5:c7:26:bf:18:f9:6f:7d:66:ee: 02:ca:94:6f:ad:09:6e:fb:60:4f:cb:dd:43:dc:7e: 23:60:5a:90:26:83:1d:f3:0a:6e:60:ae:d6:91:5f: c3:02:84:a9:bd:bf:4b:4f:6b:10:57:9d:7a:59:6e: 0c:c4:e1:78:87:51:fd:ad:6e:11:d7:ee:42:fe:d0: e9:d2:0e:87:95:d2:cf:65:ef:ba:f6:c1:65:d2:1c: 8d:df:06:8e:23:10:59:1b:e6:25:b9:83:8f:88:b7: 8e:21:aa:49:29:be:88:10:30:f7:37:23:a5:6c:2e: 30:4d:3c:b3:1e:63:ef:78:20:68:05:95:9f:44:83: 6c:95:0b:ef:3c:44:49:0e:da:81:ec:65:da:6e:6d: f6:fc:fd:2a:38:9a:52:16:95:74:64:7d:ee:a0:eb: 9e:0e:8d:a8:6a:1f:90:8a:3c:0e:f4:53:75:4e:86: f4:c8:ab:68:e1:4b:08:67:fe:58:c0:3e:2b:fb:ad: b3:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:D5:60:2B:72:8B:08:00:B4:EC:24:0C:08:AF:D1:26:65:C3:2D:84 X509v3 Authority Key Identifier: keyid:DC:44:ED:35:BE:BD:0B:28:32:C0:74:FC:2C:46:AA:B0:CD:68:2F:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/3ETtNb69CygywHT8LEaqsM1oL94.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3ETtNb69CygywHT8LEaqsM1oL94.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/3ETtNb69CygywHT8LEaqsM1oL94.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:09:4c:8b:b1:3a:4c:4f:a1:d8:e1:95:6a:43:ea:ba:dd:0b: de:67:27:03:97:e5:3e:3b:35:91:de:ba:b9:45:8d:67:67:6d: 4f:ef:44:ea:a5:60:0b:04:9b:cf:da:0d:d8:82:69:43:fb:b1: 4d:23:4a:65:d0:a6:5f:01:0a:80:c2:af:e1:79:67:fe:7d:05: 54:de:3c:b0:58:39:fe:a0:7e:b4:81:a5:83:75:18:0f:63:a4: 93:7b:1d:0d:bc:ed:66:04:6c:e4:6a:4d:72:9c:82:03:33:cd: b5:4e:69:ba:5c:f8:80:6c:58:9d:b9:b0:0a:2b:20:8e:7e:3d: fe:9e:12:df:72:98:6f:0a:b5:d4:6d:28:c8:2e:a7:dc:dc:1a: cd:8e:11:45:52:ec:b1:69:f4:ba:43:b7:0c:ea:43:70:9e:f7: f8:61:bd:d9:0b:59:ea:54:25:22:d1:dc:8e:b3:ad:9a:8e:4a: d5:a5:9a:c6:9d:07:4f:7c:3a:c8:15:c3:b8:d9:2a:0d:a1:3a: 19:90:3a:53:af:b6:51:52:08:85:f1:e6:08:5c:4b:36:99:84: cb:72:be:9a:75:98:66:a2:77:ff:ec:b4:2d:32:a6:33:a8:b4: b9:d8:86:d0:42:0a:ce:32:5d:d6:d2:ca:dd:90:b0:18:79:d1: 2d:94:3f:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICENowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNCMDkxMTAvBgNVBAUTKERDNDRFRDM1QkVCRDBCMjgzMkMwNzRGQzJDNDZBQUIw Q0Q2ODJGREUwHhcNMjUxMTA0MTcyNDA1WhcNMjUxMTExMTcyNDA1WjAYMRYwFAYD VQQDEw02OTBhMzZiNS0wZWEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwWySe656oQ27kYn0OTaiL6y38ylQ2wehMmhD1bggE3eUBDhbcQ88Nwvy2rJQ BViH3S/PZAbLr9VYX/8S9/LO5sXHJr8Y+W99Zu4CypRvrQlu+2BPy91D3H4jYFqQ JoMd8wpuYK7WkV/DAoSpvb9LT2sQV516WW4MxOF4h1H9rW4R1+5C/tDp0g6HldLP Ze+69sFl0hyN3waOIxBZG+YluYOPiLeOIapJKb6IEDD3NyOlbC4wTTyzHmPveCBo BZWfRINslQvvPERJDtqB7GXabm32/P0qOJpSFpV0ZH3uoOueDo2oah+QijwO9FN1 Tob0yKto4UsIZ/5YwD4r+62zywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB/VYCty iwgAtOwkDAiv0SZlwy2EMB8GA1UdIwQYMBaAFNxE7TW+vQsoMsB0/CxGqrDNaC/e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0IwOS8zQjM2N0JDRTMz QjcxMUU5QUQwRjU4N0FDNEY5QUUwMi8zRVR0TmI2OUN5Z3l3SFQ4TEVhcXNNMW9M OTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNFVHROYjY5Q3lneXdIVDhMRWFxc00xb0w5NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0IwOS8zQjM2N0JDRTMzQjcxMUU5QUQwRjU4N0FDNEY5QUUwMi8zRVR0TmI2OUN5 Z3l3SFQ4TEVhcXNNMW9MOTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbCUyLsTpMT6HY4ZVqQ+q63QveZycDl+U+OzWR3rq5RY1nZ21P70Tq pWALBJvP2g3YgmlD+7FNI0pl0KZfAQqAwq/heWf+fQVU3jywWDn+oH60gaWDdRgP Y6STex0NvO1mBGzkak1ynIIDM821Tmm6XPiAbFidubAKKyCOfj3+nhLfcphvCrXU bSjILqfc3BrNjhFFUuyxafS6Q7cM6kNwnvf4Yb3ZC1nqVCUi0dyOs62ajkrVpZrG nQdPfDrIFcO42SoNoToZkDpTr7ZRUgiF8eYIXEs2mYTLcr6adZhmonf/7LQtMqYz qLS52IbQQgrOMl3W0srdkLAYedEtlD9S -----END CERTIFICATE-----Generated at Wed Nov 5 19:28:22 2025 by rpki-client