$ rpki-client -vvf rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft File: pm3QENok34rhcGvZCMukO9E4ljE.mft (raw, json) Hash identifier: LmJG+loBuccHga0DqpiE0WXj+RUj0BTBv6gKUIcssa0= Subject key identifier: DD:4C:71:6D:0F:FE:53:CE:34:AA:01:FC:A1:20:49:34:2A:AD:A7:5E Authority key identifier: A6:6D:D0:10:DA:24:DF:8A:E1:70:6B:D9:08:CB:A4:3B:D1:38:96:31 Certificate issuer: /CN=A9171753/serialNumber=A66DD010DA24DF8AE1706BD908CBA43BD1389631 Certificate serial: 34DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft Manifest number: 34D4 Signing time: Tue 28 Oct 2025 15:14:06 +0000 Manifest this update: Tue 28 Oct 2025 15:14:06 +0000 Manifest next update: Tue 04 Nov 2025 15:14:06 +0000 Files and hashes: 1: pm3QENok34rhcGvZCMukO9E4ljE.crl (hash: fJcxAI+FkVlrqqSzX4EuSJqO5SeEsu8iDuHocY0ny0Y=) 2: DE670A60679D11EEAFBA0A5DC4F9AE02.roa (hash: zHkGq6W1DSD5ffW+BnhDs7qnRsRpvtxDIEM0SIuuDg4=) 3: C92F5F8077A211EDAF94D63EC4F9AE02.roa (hash: /yGsH3AYsghIUdTIUcXoSyBB3f9raZ59e9j2Pg64iUI=) 4: 41623A12778111ED8F236A62C4F9AE02.roa (hash: OYhGj+v27n+SqxvC/qZ2JFeWyJlSzi9WwyujTQsPl7E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.crl rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Nov 2025 15:14:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13535 (0x34df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171753, serialNumber=A66DD010DA24DF8AE1706BD908CBA43BD1389631 Validity Not Before: Oct 28 15:14:06 2025 GMT Not After : Nov 4 15:14:06 2025 GMT Subject: CN=6900ddbe-11b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:a5:14:b4:3c:03:7f:66:c5:0b:f4:db:f3:31: 74:cc:65:c6:88:f9:31:20:30:de:1f:a2:77:72:b0: f4:c3:21:8e:55:68:4b:72:ec:2f:3f:c2:7e:50:5b: 90:c3:8c:90:d0:c9:a7:0f:34:c6:72:19:a5:ed:cc: 59:ae:63:96:04:a6:7b:3a:9d:cb:0b:90:2a:aa:53: 78:64:a7:3d:4a:ce:e7:bb:a9:4e:a4:5b:3e:c7:c6: dd:9c:20:99:5e:c1:35:67:14:66:2c:4d:bb:42:6b: 82:bd:88:0f:5a:dc:c6:bb:b6:cc:e3:e4:da:ea:9e: 6a:be:c3:da:4a:ec:0e:c8:1f:81:13:0c:3c:16:92: 16:e5:0b:16:0b:30:34:24:57:75:40:5b:bd:91:38: 7b:e4:ce:be:07:5a:09:f4:6e:ce:46:9b:b7:38:ed: 81:65:ca:99:da:d6:05:c2:2e:9c:61:94:31:a9:08: 74:b9:ac:e4:94:86:16:6e:b6:d8:86:d5:d9:c3:49: 3c:ce:e1:68:19:f2:c7:4a:44:96:b4:ec:02:76:6b: 17:e8:4f:be:1a:a8:97:e8:06:69:36:ae:c5:0b:e7: ee:60:d8:b9:fe:5f:92:a3:f4:91:3f:94:0b:f5:47: eb:df:e1:aa:4e:32:ca:9c:19:81:1c:6c:4d:96:63: fa:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:4C:71:6D:0F:FE:53:CE:34:AA:01:FC:A1:20:49:34:2A:AD:A7:5E X509v3 Authority Key Identifier: keyid:A6:6D:D0:10:DA:24:DF:8A:E1:70:6B:D9:08:CB:A4:3B:D1:38:96:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:d3:9f:18:16:a2:4a:7f:14:c4:1d:d5:7e:42:2e:fc:d4:fb: 0a:3c:d1:39:d8:a6:f6:c2:b7:d5:ab:aa:34:03:c7:76:d4:af: 48:92:26:a6:8c:11:a1:d4:d5:06:ad:f4:6a:72:cd:29:c2:8c: fd:33:48:ab:52:5b:c2:f4:77:76:49:6d:4a:2c:ff:8b:93:7f: 85:f1:f8:92:8a:e9:0e:2d:aa:ec:1b:8a:05:b2:db:0c:c5:11: e2:ae:8f:a3:41:6b:4f:df:e7:7c:fa:2e:de:d3:6f:f9:2a:a8: 5b:35:7e:d4:d1:f1:37:ea:b4:6d:74:89:03:3d:73:29:35:8b: 42:3a:b5:2b:50:de:80:d0:18:fa:97:1c:ed:28:0e:17:3e:84: b0:75:b9:67:5e:f9:2f:33:fb:45:b1:be:40:6e:e3:43:15:2b: 26:6a:f4:44:df:a0:1f:40:23:a6:5b:1f:f2:3c:8c:68:b1:8a: 2a:4f:c8:bf:1d:f3:7b:0c:4c:6d:7c:3c:e2:e1:5c:9e:ed:2f: 1c:11:47:3f:09:d6:96:09:8c:17:d7:e2:71:d2:d6:48:20:02: 9d:ae:7d:68:ae:18:55:d6:e1:d5:70:f2:1c:12:2d:f5:9d:08: e8:92:d1:b6:6e:79:4f:78:4f:10:b3:db:2a:fd:16:1c:55:55: 7e:4c:05:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE3NTMxMTAvBgNVBAUTKEE2NkREMDEwREEyNERGOEFFMTcwNkJEOTA4Q0JBNDNC RDEzODk2MzEwHhcNMjUxMDI4MTUxNDA2WhcNMjUxMTA0MTUxNDA2WjAYMRYwFAYD VQQDEw02OTAwZGRiZS0xMWIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4KUUtDwDf2bFC/Tb8zF0zGXGiPkxIDDeH6J3crD0wyGOVWhLcuwvP8J+UFuQ w4yQ0MmnDzTGchml7cxZrmOWBKZ7Op3LC5AqqlN4ZKc9Ss7nu6lOpFs+x8bdnCCZ XsE1ZxRmLE27QmuCvYgPWtzGu7bM4+Ta6p5qvsPaSuwOyB+BEww8FpIW5QsWCzA0 JFd1QFu9kTh75M6+B1oJ9G7ORpu3OO2BZcqZ2tYFwi6cYZQxqQh0uazklIYWbrbY htXZw0k8zuFoGfLHSkSWtOwCdmsX6E++GqiX6AZpNq7FC+fuYNi5/l+So/SRP5QL 9Ufr3+GqTjLKnBmBHGxNlmP6GQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN1McW0P /lPONKoB/KEgSTQqradeMB8GA1UdIwQYMBaAFKZt0BDaJN+K4XBr2QjLpDvROJYx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTc1My84MDUxNDU5MDFE QTcxMUUyQUFBOTRBQTEwOEIwMkNEMi9wbTNRRU5vazM0cmhjR3ZaQ011a085RTRs akUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BtM1FFTm9rMzRyaGNHdlpDTXVrTzlFNGxqRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTc1My84MDUxNDU5MDFEQTcxMUUyQUFBOTRBQTEwOEIwMkNEMi9wbTNRRU5vazM0 cmhjR3ZaQ011a085RTRsakUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAR058YFqJKfxTEHdV+Qi781PsKPNE52Kb2wrfVq6o0A8d21K9Ikiam jBGh1NUGrfRqcs0pwoz9M0irUlvC9Hd2SW1KLP+Lk3+F8fiSiukOLarsG4oFstsM xRHiro+jQWtP3+d8+i7e02/5KqhbNX7U0fE36rRtdIkDPXMpNYtCOrUrUN6A0Bj6 lxztKA4XPoSwdblnXvkvM/tFsb5AbuNDFSsmavRE36AfQCOmWx/yPIxosYoqT8i/ HfN7DExtfDzi4Vye7S8cEUc/CdaWCYwX1+Jx0tZIIAKdrn1orhhV1uHVcPIcEi31 nQjoktG2bnlPeE8Qs9sq/RYcVVV+TAVo -----END CERTIFICATE-----Generated at Wed Oct 29 01:11:56 2025 by rpki-client