$ rpki-client -vvf rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.mft File: 3SgIKP8JlqjL7ym_DZFN8lLfHL0.mft (raw, json) Hash identifier: A2O6TgetAK3d3FbodJ4wk6cKZ5rTkuOnIzmTzADND5o= Subject key identifier: B5:BC:DF:C1:AB:FB:53:F9:30:7E:64:E2:78:B5:E5:BC:BB:14:EF:3D Authority key identifier: DD:28:08:28:FF:09:96:A8:CB:EF:29:BF:0D:91:4D:F2:52:DF:1C:BD Certificate issuer: /CN=A9147CA8/serialNumber=DD280828FF0996A8CBEF29BF0D914DF252DF1CBD Certificate serial: 31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3SgIKP8JlqjL7ym_DZFN8lLfHL0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.mft Manifest number: 31 Signing time: Mon 03 Nov 2025 07:37:19 +0000 Manifest this update: Mon 03 Nov 2025 07:37:18 +0000 Manifest next update: Mon 10 Nov 2025 07:37:18 +0000 Files and hashes: 1: 3SgIKP8JlqjL7ym_DZFN8lLfHL0.crl (hash: b0AbVeo6yulYMwLDJCgrC2yQeG8LYGIo+XKCYE9fyOs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.crl rsync://rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3SgIKP8JlqjL7ym_DZFN8lLfHL0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:37:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49 (0x31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147CA8, serialNumber=DD280828FF0996A8CBEF29BF0D914DF252DF1CBD Validity Not Before: Nov 3 07:37:18 2025 GMT Not After : Nov 10 07:37:18 2025 GMT Subject: CN=69085bae-3912 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:15:65:bf:17:e8:7b:e6:24:1d:4b:29:ed:0b: 9f:24:61:ca:a8:eb:ab:85:7d:da:d0:ff:c3:f9:55: cd:2e:83:77:49:1a:06:7f:93:15:54:24:07:fe:c7: 3e:42:6b:85:82:d1:52:57:ee:3a:6e:c5:4d:84:1c: d6:c3:92:2f:30:12:88:ba:0b:90:a1:08:19:65:ea: f5:25:5c:eb:14:96:13:8b:cf:3b:b0:94:f0:e6:7b: 50:ee:55:78:c0:a8:af:d5:bc:47:f0:15:2a:31:a5: c5:b4:4b:57:fa:2d:6d:93:e0:de:c3:ce:19:f1:37: 79:21:59:fc:70:e6:25:5d:54:95:34:08:5b:42:c5: a9:48:81:71:52:80:27:25:0b:a3:6a:54:2a:43:18: e5:56:73:43:bb:96:28:b0:3d:1a:e0:45:8d:6e:6a: 6d:3e:38:4d:22:2b:2a:43:17:66:d7:18:33:7b:34: 40:45:b8:2c:6f:e1:71:4b:a4:3a:31:3e:e5:be:de: 76:4b:59:94:21:8b:4b:f3:c7:9e:70:6f:96:b9:8e: 9a:a2:ea:13:08:83:96:6f:69:2b:34:85:a9:2a:56: cb:00:94:dc:ba:e3:74:9d:82:ea:8f:c5:ff:84:a5: 4b:31:f7:ca:63:af:6e:e7:1f:55:45:e1:d5:6e:a8: fe:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:BC:DF:C1:AB:FB:53:F9:30:7E:64:E2:78:B5:E5:BC:BB:14:EF:3D X509v3 Authority Key Identifier: keyid:DD:28:08:28:FF:09:96:A8:CB:EF:29:BF:0D:91:4D:F2:52:DF:1C:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3SgIKP8JlqjL7ym_DZFN8lLfHL0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:03:40:c1:82:71:ea:e8:c6:9a:21:11:86:28:6f:e6:95:4f: 92:e7:39:08:b1:5e:ac:87:5a:c6:d1:0a:ba:2d:3f:e7:6b:68: fb:3c:e2:c6:f3:bb:2b:e7:20:11:f2:f7:d6:3b:7d:2f:7f:f2: 50:e3:34:bf:c6:9b:b3:e2:9e:b8:48:70:9a:d2:d6:ec:dd:a0: f3:48:f9:d7:8f:48:fa:7c:fc:fb:fd:a7:4f:00:19:7c:5f:29: a1:9d:1b:e4:1a:73:0d:cb:dc:07:58:f9:3b:74:9b:78:78:06: ba:39:33:bf:8b:72:67:1c:fd:35:e9:09:08:a1:18:d2:b1:20: 19:64:3b:b4:49:67:8d:3a:b6:04:bc:46:2f:02:83:c6:24:da: 7c:75:96:12:b1:83:0c:44:8b:27:d0:a4:00:b8:0c:f0:8d:c0: 77:98:83:d5:68:2f:ff:e4:3c:6b:03:04:fd:fc:e9:ec:82:04: e6:b8:c5:b0:ee:b5:70:bb:9a:b7:40:a8:3e:41:de:3e:bc:44: 22:ee:90:16:af:67:c7:63:e0:c5:21:92:6d:91:33:e4:b2:9c: f4:96:65:a5:20:9e:ab:37:bf:fc:48:dc:eb:99:5e:1f:0d:72: 02:9a:17:3b:07:dc:d1:2f:75:2d:f7:b5:d3:ea:4f:1f:1b:4f: 8c:b4:2a:57 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 N0NBODExMC8GA1UEBRMoREQyODA4MjhGRjA5OTZBOENCRUYyOUJGMEQ5MTRERjI1 MkRGMUNCRDAeFw0yNTExMDMwNzM3MThaFw0yNTExMTAwNzM3MThaMBgxFjAUBgNV BAMTDTY5MDg1YmFlLTM5MTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDVFWW/F+h75iQdSyntC58kYcqo66uFfdrQ/8P5Vc0ug3dJGgZ/kxVUJAf+xz5C a4WC0VJX7jpuxU2EHNbDki8wEoi6C5ChCBll6vUlXOsUlhOLzzuwlPDme1DuVXjA qK/VvEfwFSoxpcW0S1f6LW2T4N7DzhnxN3khWfxw5iVdVJU0CFtCxalIgXFSgCcl C6NqVCpDGOVWc0O7liiwPRrgRY1uam0+OE0iKypDF2bXGDN7NEBFuCxv4XFLpDox PuW+3nZLWZQhi0vzx55wb5a5jpqi6hMIg5ZvaSs0hakqVssAlNy643SdguqPxf+E pUsx98pjr27nH1VF4dVuqP6VAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUtbzfwav7 U/kwfmTieLXlvLsU7z0wHwYDVR0jBBgwFoAU3SgIKP8JlqjL7ym/DZFN8lLfHL0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ3Q0E4LzZBOUU5MTVDNkVF OTExRjBCMzAxRjY2N0M0RjlBRTAyLzNTZ0lLUDhKbHFqTDd5bV9EWkZOOGxMZkhM MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM1NnSUtQOEpscWpMN3ltX0RaRk44bExmSEwwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ3 Q0E4LzZBOUU5MTVDNkVFOTExRjBCMzAxRjY2N0M0RjlBRTAyLzNTZ0lLUDhKbHFq TDd5bV9EWkZOOGxMZkhMMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIsDQMGCceroxpohEYYob+aVT5LnOQixXqyHWsbRCrotP+draPs84sbz uyvnIBHy99Y7fS9/8lDjNL/Gm7PinrhIcJrS1uzdoPNI+dePSPp8/Pv9p08AGXxf KaGdG+Qacw3L3AdY+Tt0m3h4Bro5M7+Lcmcc/TXpCQihGNKxIBlkO7RJZ406tgS8 Ri8Cg8Yk2nx1lhKxgwxEiyfQpAC4DPCNwHeYg9VoL//kPGsDBP386eyCBOa4xbDu tXC7mrdAqD5B3j68RCLukBavZ8dj4MUhkm2RM+SynPSWZaUgnqs3v/xI3OuZXh8N cgKaFzsH3NEvdS33tdPqTx8bT4y0Klc= -----END CERTIFICATE-----Generated at Wed Nov 5 05:25:07 2025 by rpki-client