$ rpki-client -vvf rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft File: S3IqOmeTvzLJvPUuTncuCm86Yxk.mft (raw, json) Hash identifier: m6ewk2i7LPyF5u7dyzaREcZicsWg1vHvPrkOmEqkZNs= Subject key identifier: E7:07:E7:F6:2E:2D:63:E0:DB:66:C1:0B:62:B9:D7:AF:28:84:87:1A Authority key identifier: 4B:72:2A:3A:67:93:BF:32:C9:BC:F5:2E:4E:77:2E:0A:6F:3A:63:19 Certificate issuer: /CN=A917A67E/serialNumber=4B722A3A6793BF32C9BCF52E4E772E0A6F3A6319 Certificate serial: 01B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft Manifest number: 01B4 Signing time: Mon 27 Oct 2025 04:55:12 +0000 Manifest this update: Mon 27 Oct 2025 04:55:12 +0000 Manifest next update: Mon 03 Nov 2025 04:55:11 +0000 Files and hashes: 1: S3IqOmeTvzLJvPUuTncuCm86Yxk.crl (hash: 1Cw6W67+rlzhIkaFEK1/96TOZAKxTa7cAo5XGh0Iv5k=) 2: E3901F981BD711EEB9597921C4F9AE02.roa (hash: sLVF2uLBYBc6LDSXH2VUz3ksriL+t2pMsQjafYLst9Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.crl rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 04:55:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 440 (0x1b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A67E, serialNumber=4B722A3A6793BF32C9BCF52E4E772E0A6F3A6319 Validity Not Before: Oct 27 04:55:12 2025 GMT Not After : Nov 3 04:55:11 2025 GMT Subject: CN=68fefb30-2bc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:25:3e:40:94:ef:23:95:26:73:61:67:3b:d5: 16:bb:fe:4b:a5:33:47:93:66:cd:8e:3e:07:a3:41: 20:72:55:ee:84:0d:3d:2e:da:80:c7:7e:49:02:e5: 72:50:f7:80:f1:be:fd:de:fc:2c:fd:2e:26:27:53: 4f:8f:cc:de:bd:14:d4:27:b5:7c:26:ff:8c:e2:27: cc:e3:f2:19:40:96:91:f9:30:f8:5c:a1:34:b5:fb: 17:4f:0c:fe:08:36:92:40:53:9b:8d:41:72:c8:2f: ab:fa:3c:00:03:0f:53:2b:ef:27:cf:ae:ad:b0:64: 6c:7a:cd:50:ae:17:4b:35:d5:00:e1:06:8e:52:3a: 50:d6:fd:8c:fa:41:36:80:2b:4e:48:57:6f:4f:a3: e0:3b:33:72:e6:7f:72:5d:50:5f:71:c2:8c:67:4a: 84:c8:a9:74:c2:ed:9a:9c:16:27:0c:52:71:f7:b7: 0e:41:dc:bb:fb:6f:10:f9:6d:96:1b:19:e3:7b:e7: b5:34:78:2a:5a:8b:4f:c5:e5:9f:d8:7d:8b:ad:32: 0d:1b:ae:f4:01:98:a9:6a:5e:87:2a:1d:08:ee:9f: 44:da:d0:33:bf:82:2c:92:51:e3:b6:67:1a:af:1d: 03:f1:3a:19:8e:b0:d0:75:9b:80:cc:ab:58:9e:fc: f0:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:07:E7:F6:2E:2D:63:E0:DB:66:C1:0B:62:B9:D7:AF:28:84:87:1A X509v3 Authority Key Identifier: keyid:4B:72:2A:3A:67:93:BF:32:C9:BC:F5:2E:4E:77:2E:0A:6F:3A:63:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:7d:4e:20:bb:3e:62:78:3f:3c:c7:da:a8:e8:c4:a8:6c:00: e3:22:05:ec:76:ca:04:6f:43:05:8f:31:99:dc:ad:aa:43:5d: 23:74:a7:d4:85:7e:e2:db:1e:1a:35:3c:a6:bb:c2:9a:79:01: 36:b2:be:31:66:78:81:c6:7c:61:67:c0:57:e5:96:51:6b:ed: c5:7f:38:b2:29:3d:07:a5:e9:ba:b0:d8:1a:06:9b:94:1d:e8: 77:42:61:fa:05:35:8e:5f:5c:c1:9e:67:95:ca:c9:35:59:2b: c5:0e:ae:60:b7:3a:cd:e5:53:83:f5:12:ff:53:69:fd:f6:aa: ac:97:ed:a7:4b:e4:56:e9:35:7a:62:10:4a:53:6b:61:f9:0e: 6c:9d:63:e2:9c:6e:5a:08:d0:be:c4:3d:3e:41:ec:33:c9:cd: c0:fb:ea:d3:9e:53:1a:df:e5:c1:f2:ae:f3:2c:a6:34:43:e7: 84:8c:8f:af:b8:ba:0a:f9:75:0f:f6:b6:d3:5b:ce:3c:12:02: 2f:b7:8c:08:89:47:3e:e3:95:d1:f4:63:a8:e9:56:2f:ed:8e: 94:ca:cf:14:b6:1a:d7:8d:25:10:ee:d6:33:98:28:ac:df:44: c6:c7:f0:be:7c:24:31:de:b7:6a:3e:1f:79:3c:24:0b:da:64: bf:a3:60:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E2N0UxMTAvBgNVBAUTKDRCNzIyQTNBNjc5M0JGMzJDOUJDRjUyRTRFNzcyRTBB NkYzQTYzMTkwHhcNMjUxMDI3MDQ1NTEyWhcNMjUxMTAzMDQ1NTExWjAYMRYwFAYD VQQDEw02OGZlZmIzMC0yYmMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0CU+QJTvI5Umc2FnO9UWu/5LpTNHk2bNjj4Ho0EgclXuhA09LtqAx35JAuVy UPeA8b793vws/S4mJ1NPj8zevRTUJ7V8Jv+M4ifM4/IZQJaR+TD4XKE0tfsXTwz+ CDaSQFObjUFyyC+r+jwAAw9TK+8nz66tsGRses1QrhdLNdUA4QaOUjpQ1v2M+kE2 gCtOSFdvT6PgOzNy5n9yXVBfccKMZ0qEyKl0wu2anBYnDFJx97cOQdy7+28Q+W2W Gxnje+e1NHgqWotPxeWf2H2LrTING670AZipal6HKh0I7p9E2tAzv4IsklHjtmca rx0D8ToZjrDQdZuAzKtYnvzw7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOcH5/Yu LWPg22bBC2K5168ohIcaMB8GA1UdIwQYMBaAFEtyKjpnk78yybz1Lk53LgpvOmMZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTY3RS82N0I0Q0I4NDFC RDMxMUVFOTY1RkVGMzhDNEY5QUUwMi9TM0lxT21lVHZ6TEp2UFV1VG5jdUNtODZZ eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1MzSXFPbWVUdnpMSnZQVXVUbmN1Q204Nll4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTY3RS82N0I0Q0I4NDFCRDMxMUVFOTY1RkVGMzhDNEY5QUUwMi9TM0lxT21lVHZ6 TEp2UFV1VG5jdUNtODZZeGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJfU4guz5ieD88x9qo6MSobADjIgXsdsoEb0MFjzGZ3K2qQ10jdKfU hX7i2x4aNTymu8KaeQE2sr4xZniBxnxhZ8BX5ZZRa+3FfziyKT0Hpem6sNgaBpuU Heh3QmH6BTWOX1zBnmeVysk1WSvFDq5gtzrN5VOD9RL/U2n99qqsl+2nS+RW6TV6 YhBKU2th+Q5snWPinG5aCNC+xD0+Qewzyc3A++rTnlMa3+XB8q7zLKY0Q+eEjI+v uLoK+XUP9rbTW848EgIvt4wIiUc+45XR9GOo6VYv7Y6Uys8UthrXjSUQ7tYzmCis 30TGx/C+fCQx3rdqPh95PCQL2mS/o2BD -----END CERTIFICATE-----Generated at Tue Oct 28 06:05:33 2025 by rpki-client