$ rpki-client -vvf rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft File: 3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft (raw, json) Hash identifier: A0DyYT4iJm5ZZRYxCMy/sPG8jmjNLHBGg37PmayNA8I= Subject key identifier: 31:F8:66:C2:53:E2:4E:C2:CC:4B:BB:1E:83:46:B5:8E:02:6E:81:67 Authority key identifier: DF:25:34:84:DC:E5:2C:41:37:CB:D1:C8:ED:44:D9:CB:25:57:F4:3F Certificate issuer: /CN=A9158568/serialNumber=DF253484DCE52C4137CBD1C8ED44D9CB2557F43F Certificate serial: 0C51 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yU0hNzlLEE3y9HI7UTZyyVX9D8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft Manifest number: 0C37 Signing time: Sun 26 Oct 2025 19:07:24 +0000 Manifest this update: Sun 26 Oct 2025 19:07:24 +0000 Manifest next update: Sun 02 Nov 2025 19:07:24 +0000 Files and hashes: 1: 3yU0hNzlLEE3y9HI7UTZyyVX9D8.crl (hash: ZhBM3RFKAIK455Le2KwTPcyvfHj8PQNN/05hoon85qM=) 2: 3A5A84F8CB7111EBA9EEF440C4F9AE02.roa (hash: LcxIbKxK3jutvAgu3ThkdTt7YT68VEQAWEq5z0WaOxY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.crl rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yU0hNzlLEE3y9HI7UTZyyVX9D8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Nov 2025 19:07:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3153 (0xc51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158568, serialNumber=DF253484DCE52C4137CBD1C8ED44D9CB2557F43F Validity Not Before: Oct 26 19:07:24 2025 GMT Not After : Nov 2 19:07:24 2025 GMT Subject: CN=68fe716c-e920 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:a1:c3:b1:c2:e4:e4:ca:c7:39:c5:14:ce:07: d4:05:80:da:7f:55:77:4f:30:30:2b:fe:0f:d7:8e: 90:4d:2b:d1:a5:22:ab:ea:63:f2:9e:65:83:9d:e0: 60:e1:ca:45:6a:76:04:a6:14:67:cd:fd:d8:61:58: 7f:f6:d3:31:1e:34:19:48:1a:4d:4b:fb:07:03:f2: 10:16:31:ab:57:9a:08:ce:7d:f5:9e:35:5b:ae:1c: f2:2c:1e:87:82:6c:15:3a:6e:d8:c0:82:6f:2f:06: bc:08:d6:fe:26:8e:4d:e3:bb:d6:fd:d3:6b:6c:97: 1d:d6:ab:a6:45:54:d5:25:44:ae:b9:eb:96:d0:82: 2d:62:a8:44:a7:bb:0a:42:7c:84:7a:9e:d9:77:f7: 4f:67:f8:b2:3b:13:c2:01:a7:1d:6b:1d:79:63:8c: 19:2c:24:d6:9a:0f:92:c1:c5:cb:f8:f9:03:78:7c: b0:3b:a9:8b:17:fb:93:2a:ff:9f:70:ab:15:7e:fe: 85:2f:89:30:52:81:5e:15:00:6a:25:5e:3c:84:32: 65:df:fb:e2:18:04:bc:e5:78:80:56:ae:ab:b9:84: 0b:9c:17:e1:6a:13:21:25:f7:8c:03:9d:af:46:96: f3:1d:b4:ed:ce:ab:a8:1f:70:21:19:1d:da:54:ca: 5a:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:F8:66:C2:53:E2:4E:C2:CC:4B:BB:1E:83:46:B5:8E:02:6E:81:67 X509v3 Authority Key Identifier: keyid:DF:25:34:84:DC:E5:2C:41:37:CB:D1:C8:ED:44:D9:CB:25:57:F4:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yU0hNzlLEE3y9HI7UTZyyVX9D8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:cb:28:71:a4:e2:bd:74:0f:2c:8a:e7:24:b0:f6:af:a3:77: a1:e6:e7:28:cd:99:c3:6b:2d:75:b6:6d:51:63:6b:d0:52:ac: fa:59:59:76:31:b7:87:09:57:5a:87:87:27:ad:6a:99:8b:95: a0:5e:fa:45:b7:fb:bf:a1:c4:d6:0d:b7:74:cb:f0:82:1b:45: 78:3a:c9:28:37:a0:67:61:37:b5:be:6f:df:83:f0:67:02:07: f7:a5:12:69:80:44:33:d8:2e:d4:15:cd:21:a4:b7:6b:05:1e: 92:d7:cf:2e:16:5e:f0:3a:1c:79:fd:91:58:c0:39:5f:17:e3: 82:92:e5:a8:11:56:01:8e:71:95:c0:b3:3b:1c:f4:62:4a:78: 53:2e:be:a5:6e:fa:f1:2b:80:b5:8c:b4:18:da:02:3c:d5:6b: 5a:94:eb:7e:7b:7e:bd:b9:7d:37:4d:b6:b2:b5:b8:8d:cc:3c: 2d:df:4a:20:d5:d1:6e:b1:8a:89:86:ff:16:42:91:de:83:a2: e0:15:c4:10:f4:2b:f1:c4:05:54:b3:81:a8:fc:54:7d:31:bd: 5f:02:c4:47:99:99:c3:56:7a:45:c4:03:03:3b:6c:35:8e:29: ff:af:38:ba:9a:3c:7b:15:fc:9a:88:2a:c9:b6:53:eb:6d:b3: 34:0b:58:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg1NjgxMTAvBgNVBAUTKERGMjUzNDg0RENFNTJDNDEzN0NCRDFDOEVENDREOUNC MjU1N0Y0M0YwHhcNMjUxMDI2MTkwNzI0WhcNMjUxMTAyMTkwNzI0WjAYMRYwFAYD VQQDEw02OGZlNzE2Yy1lOTIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyqHDscLk5MrHOcUUzgfUBYDaf1V3TzAwK/4P146QTSvRpSKr6mPynmWDneBg 4cpFanYEphRnzf3YYVh/9tMxHjQZSBpNS/sHA/IQFjGrV5oIzn31njVbrhzyLB6H gmwVOm7YwIJvLwa8CNb+Jo5N47vW/dNrbJcd1qumRVTVJUSuueuW0IItYqhEp7sK QnyEep7Zd/dPZ/iyOxPCAacdax15Y4wZLCTWmg+SwcXL+PkDeHywO6mLF/uTKv+f cKsVfv6FL4kwUoFeFQBqJV48hDJl3/viGAS85XiAVq6ruYQLnBfhahMhJfeMA52v RpbzHbTtzquoH3AhGR3aVMpaDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDH4ZsJT 4k7CzEu7HoNGtY4CboFnMB8GA1UdIwQYMBaAFN8lNITc5SxBN8vRyO1E2cslV/Q/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODU2OC9EMzEzMDY3NjE4 NTcxMUVBOTg2MzQxNUVDNEY5QUUwMi8zeVUwaE56bExFRTN5OUhJN1VUWnl5Vlg5 RDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzN5VTBoTnpsTEVFM3k5SEk3VVRaeXlWWDlEOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODU2OC9EMzEzMDY3NjE4NTcxMUVBOTg2MzQxNUVDNEY5QUUwMi8zeVUwaE56bExF RTN5OUhJN1VUWnl5Vlg5RDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXyyhxpOK9dA8siucksPavo3eh5ucozZnDay11tm1RY2vQUqz6WVl2 MbeHCVdah4cnrWqZi5WgXvpFt/u/ocTWDbd0y/CCG0V4OskoN6BnYTe1vm/fg/Bn Agf3pRJpgEQz2C7UFc0hpLdrBR6S188uFl7wOhx5/ZFYwDlfF+OCkuWoEVYBjnGV wLM7HPRiSnhTLr6lbvrxK4C1jLQY2gI81WtalOt+e369uX03TbaytbiNzDwt30og 1dFusYqJhv8WQpHeg6LgFcQQ9CvxxAVUs4Go/FR9Mb1fAsRHmZnDVnpFxAMDO2w1 jin/rzi6mjx7FfyaiCrJtlPrbbM0C1ih -----END CERTIFICATE-----Generated at Mon Oct 27 12:10:48 2025 by rpki-client