$ rpki-client -vvf rpki.apnic.net/member_repository/A916EB98/B0FC35DC2ACA11EA87562740C4F9AE02/U3pyvmM5N4xMTSlwK-12dczMFGo.mft File: U3pyvmM5N4xMTSlwK-12dczMFGo.mft (raw, json) Hash identifier: 3Ru4736w5rO9Ot9fq2Q0EI5WKk8NK5Pz2JXsEzbCqZw= Subject key identifier: 67:E1:77:3E:11:99:78:1E:B4:70:DF:1C:46:D2:4F:ED:57:01:B5:6C Authority key identifier: 53:7A:72:BE:63:39:37:8C:4C:4D:29:70:2B:ED:76:75:CC:CC:14:6A Certificate issuer: /CN=A916EB98/serialNumber=537A72BE6339378C4C4D29702BED7675CCCC146A Certificate serial: 0BD6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3pyvmM5N4xMTSlwK-12dczMFGo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916EB98/B0FC35DC2ACA11EA87562740C4F9AE02/U3pyvmM5N4xMTSlwK-12dczMFGo.mft Manifest number: 0BCF Signing time: Sun 02 Nov 2025 18:52:42 +0000 Manifest this update: Sun 02 Nov 2025 18:52:41 +0000 Manifest next update: Sun 09 Nov 2025 18:52:41 +0000 Files and hashes: 1: U3pyvmM5N4xMTSlwK-12dczMFGo.crl (hash: rWlxXC33EgFAewEIeCOMrdSP0orNHTKOkEl/GpkVcPE=) 2: DD716A222ACC11EAAB36B444C4F9AE02.roa (hash: 9YLAXbZ28k13vNilzcTMcnMd0WVPI4XdwJeol/Aq30I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916EB98/B0FC35DC2ACA11EA87562740C4F9AE02/U3pyvmM5N4xMTSlwK-12dczMFGo.crl rsync://rpki.apnic.net/member_repository/A916EB98/B0FC35DC2ACA11EA87562740C4F9AE02/U3pyvmM5N4xMTSlwK-12dczMFGo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3pyvmM5N4xMTSlwK-12dczMFGo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:52:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3030 (0xbd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916EB98, serialNumber=537A72BE6339378C4C4D29702BED7675CCCC146A Validity Not Before: Nov 2 18:52:41 2025 GMT Not After : Nov 9 18:52:41 2025 GMT Subject: CN=6907a879-ba9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:a4:a4:08:8f:13:04:46:07:76:39:df:33:4c: 41:44:40:51:51:fb:50:62:ac:81:a6:65:05:6a:61: 1e:8d:24:ad:c9:f9:72:00:43:be:df:98:c6:ac:e3: 5d:1a:d7:50:ae:bd:7f:ad:65:15:60:4a:20:57:04: f4:50:b8:9e:25:57:47:96:15:74:f1:ac:26:c5:5a: ef:0f:8e:15:56:7f:bc:96:3e:26:8e:9b:e4:1b:65: 2b:73:d6:04:f8:da:2e:a3:ea:1f:60:6e:d3:74:fe: bd:8d:3e:52:e4:44:3d:3f:3e:14:e5:c3:79:29:7a: 07:eb:0b:86:60:0d:6d:0d:5a:e5:2c:a0:8a:d5:10: cc:8a:f8:56:3f:34:10:d5:09:50:46:d4:d3:24:d7: f3:8a:5c:ad:37:aa:5c:22:6e:e6:f5:27:78:0b:43: 89:bf:70:94:4f:13:4e:7b:8a:ec:81:b1:7d:a2:be: c9:37:29:bf:2d:ec:ed:28:6b:d0:5e:aa:01:60:04: cf:eb:a7:f6:e5:21:f6:37:a3:66:18:7b:9a:45:fe: 06:62:92:38:39:7c:76:f7:6a:81:1f:0c:a2:ca:98: 84:af:dd:35:f6:60:fe:a8:a1:fa:5c:a6:c6:3c:4c: da:e2:d8:c2:1f:c9:5e:c4:a5:cb:4f:7d:ab:63:05: f8:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:E1:77:3E:11:99:78:1E:B4:70:DF:1C:46:D2:4F:ED:57:01:B5:6C X509v3 Authority Key Identifier: keyid:53:7A:72:BE:63:39:37:8C:4C:4D:29:70:2B:ED:76:75:CC:CC:14:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916EB98/B0FC35DC2ACA11EA87562740C4F9AE02/U3pyvmM5N4xMTSlwK-12dczMFGo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3pyvmM5N4xMTSlwK-12dczMFGo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916EB98/B0FC35DC2ACA11EA87562740C4F9AE02/U3pyvmM5N4xMTSlwK-12dczMFGo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:4e:ff:6d:48:3e:68:18:89:30:e0:54:f7:79:cb:eb:c4:2a: 0a:42:a2:c7:1f:d0:61:3b:56:8b:9c:e9:f9:a1:25:6f:95:c9: 3f:d1:16:8a:b1:ec:e8:08:99:85:a6:83:0b:9b:2d:9c:6c:27: 7e:a5:81:72:56:d4:22:58:2a:c2:9c:1b:fa:d8:84:8f:35:69: 74:10:c7:48:5d:04:ea:fe:ee:97:2a:37:e2:e0:29:61:55:d4: 39:c2:f1:ee:23:3c:69:8b:00:ce:0a:8d:1d:9b:e3:cf:95:de: 02:72:98:b5:11:50:e6:d2:30:19:1f:d8:ea:a7:93:f9:89:7c: e0:01:6b:88:90:fa:6a:14:4a:8f:09:ea:7c:0a:83:a7:7f:ed: 68:41:57:14:ea:d9:99:40:9e:3e:cd:c8:ee:aa:ac:23:de:35: d1:70:82:87:38:85:a8:37:07:4c:7e:28:44:9a:5f:26:08:cf: 25:05:b3:fa:d7:f0:86:05:0e:a3:a3:a9:a1:77:fc:f5:b2:0d: b0:68:86:6e:9b:ae:50:ff:2b:4d:8e:75:e7:da:9f:a4:b5:b2: c5:d9:6f:f9:28:0a:df:3c:59:e8:8e:3b:c1:82:6d:48:cf:19: 62:f7:32:c4:e1:a8:5b:62:57:2f:32:29:4e:09:f1:a0:d7:d5: 24:a7:14:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC9YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkVCOTgxMTAvBgNVBAUTKDUzN0E3MkJFNjMzOTM3OEM0QzREMjk3MDJCRUQ3Njc1 Q0NDQzE0NkEwHhcNMjUxMTAyMTg1MjQxWhcNMjUxMTA5MTg1MjQxWjAYMRYwFAYD VQQDEw02OTA3YTg3OS1iYTliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA06SkCI8TBEYHdjnfM0xBREBRUftQYqyBpmUFamEejSStyflyAEO+35jGrONd GtdQrr1/rWUVYEogVwT0ULieJVdHlhV08awmxVrvD44VVn+8lj4mjpvkG2Urc9YE +Nouo+ofYG7TdP69jT5S5EQ9Pz4U5cN5KXoH6wuGYA1tDVrlLKCK1RDMivhWPzQQ 1QlQRtTTJNfzilytN6pcIm7m9Sd4C0OJv3CUTxNOe4rsgbF9or7JNym/LeztKGvQ XqoBYATP66f25SH2N6NmGHuaRf4GYpI4OXx292qBHwyiypiEr9019mD+qKH6XKbG PEza4tjCH8lexKXLT32rYwX4dQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGfhdz4R mXgetHDfHEbST+1XAbVsMB8GA1UdIwQYMBaAFFN6cr5jOTeMTE0pcCvtdnXMzBRq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RUI5OC9CMEZDMzVEQzJB Q0ExMUVBODc1NjI3NDBDNEY5QUUwMi9VM3B5dm1NNU40eE1UU2x3Sy0xMmRjek1G R28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UzcHl2bU01TjR4TVRTbHdLLTEyZGN6TUZHby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RUI5OC9CMEZDMzVEQzJBQ0ExMUVBODc1NjI3NDBDNEY5QUUwMi9VM3B5dm1NNU40 eE1UU2x3Sy0xMmRjek1GR28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYTv9tSD5oGIkw4FT3ecvrxCoKQqLHH9BhO1aLnOn5oSVvlck/0RaK sezoCJmFpoMLmy2cbCd+pYFyVtQiWCrCnBv62ISPNWl0EMdIXQTq/u6XKjfi4Clh VdQ5wvHuIzxpiwDOCo0dm+PPld4Ccpi1EVDm0jAZH9jqp5P5iXzgAWuIkPpqFEqP Cep8CoOnf+1oQVcU6tmZQJ4+zcjuqqwj3jXRcIKHOIWoNwdMfihEml8mCM8lBbP6 1/CGBQ6jo6mhd/z1sg2waIZum65Q/ytNjnXn2p+ktbLF2W/5KArfPFnojjvBgm1I zxli9zLE4ahbYlcvMilOCfGg19UkpxT3 -----END CERTIFICATE-----Generated at Mon Nov 3 18:10:15 2025 by rpki-client