$ rpki-client -vvf rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.mft File: 3GF8-u34v7Cj7PfWcULmwdUmQ1w.mft (raw, json) Hash identifier: +mcogNOyQk5JTYRgnwX88Jy1MXMVMpF9E1dBupLj6qY= Subject key identifier: 44:BA:B1:40:B8:AC:DC:E5:5D:65:EA:3D:04:98:98:D0:BA:34:79:5B Authority key identifier: DC:61:7C:FA:ED:F8:BF:B0:A3:EC:F7:D6:71:42:E6:C1:D5:26:43:5C Certificate issuer: /CN=A9199AFB/serialNumber=DC617CFAEDF8BFB0A3ECF7D67142E6C1D526435C Certificate serial: 0355 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GF8-u34v7Cj7PfWcULmwdUmQ1w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.mft Manifest number: 0350 Signing time: Mon 03 Nov 2025 00:56:49 +0000 Manifest this update: Mon 03 Nov 2025 00:56:49 +0000 Manifest next update: Mon 10 Nov 2025 00:56:49 +0000 Files and hashes: 1: 3GF8-u34v7Cj7PfWcULmwdUmQ1w.crl (hash: tZ2WiH1vw4vvc/qP+pDkv6i1ORRVVLX+uHFTG51SPgc=) 2: 9E9EC628D9C511EC81B54F47C4F9AE02.roa (hash: BkyDK7N8MqPzb7yz7N5nQ1LHqHZV+xDxLFOlL/0hv/I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.crl rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GF8-u34v7Cj7PfWcULmwdUmQ1w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:56:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 853 (0x355) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199AFB, serialNumber=DC617CFAEDF8BFB0A3ECF7D67142E6C1D526435C Validity Not Before: Nov 3 00:56:49 2025 GMT Not After : Nov 10 00:56:49 2025 GMT Subject: CN=6907fdd1-45b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:ed:0d:c0:b2:18:f9:d9:7d:a5:90:ad:08:db: 46:7d:11:6b:f8:35:fd:8f:7d:36:82:4e:c1:e4:3f: b8:ac:5a:27:a6:e7:81:f0:4d:c7:62:9d:b8:96:cb: cd:6a:d4:07:40:56:37:82:61:bf:b2:3c:0e:dc:d7: f9:05:9d:a9:e2:32:eb:4d:20:82:07:71:22:9c:7e: a3:c1:bc:3c:8c:62:2e:dc:d7:4f:03:a5:13:34:c7: d8:ee:d3:4b:c2:28:20:65:7c:0d:c8:55:88:26:66: 53:40:8c:b4:e6:5e:47:0a:9c:17:d4:c8:61:38:e9: 82:75:ca:2f:29:7d:5a:90:93:71:21:5a:bb:10:fd: e9:a8:df:92:e0:a1:d4:4e:8f:76:af:31:8a:2b:c6: ea:41:f3:01:2e:cd:f1:eb:58:c3:e8:f8:97:11:a4: 0f:b6:d0:e5:b9:36:33:0b:68:0e:bc:c2:8a:f6:78: 3c:84:1b:cd:ce:21:40:ea:d6:44:ca:da:b4:bc:02: 1a:b1:3f:44:9c:4f:36:1f:1b:5e:30:dd:f2:36:85: 5d:a8:8e:21:97:ae:7e:da:5b:51:ed:58:c0:bd:7f: 98:3a:4d:34:ea:1f:39:e4:30:d3:66:d7:3a:bf:c8: b1:33:4e:9f:b3:e8:82:e8:50:12:09:82:f3:18:de: b2:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:BA:B1:40:B8:AC:DC:E5:5D:65:EA:3D:04:98:98:D0:BA:34:79:5B X509v3 Authority Key Identifier: keyid:DC:61:7C:FA:ED:F8:BF:B0:A3:EC:F7:D6:71:42:E6:C1:D5:26:43:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GF8-u34v7Cj7PfWcULmwdUmQ1w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:d9:dd:51:b1:f5:61:71:57:c0:37:5c:04:fa:e9:bc:68:b2: 23:52:8d:3d:3a:e6:ff:01:54:0f:a1:74:ff:10:7c:36:0a:7c: fd:9d:22:55:28:a6:29:f7:5e:9f:01:46:f5:18:58:75:81:87: 49:6a:54:58:45:b0:df:3f:0f:ce:99:98:8c:2a:70:a7:ef:70: e7:27:dd:5a:9c:f8:5a:58:30:be:3e:40:a6:47:22:96:2b:8e: e8:b4:fa:df:48:93:9f:75:73:8a:37:ad:39:34:b2:21:d7:62: 0b:15:7a:77:0f:ad:db:bd:57:7e:91:15:83:d1:f3:33:e5:ab: e5:8e:dd:b5:c4:95:36:63:9c:bc:69:84:f9:36:86:e6:5a:da: 7a:4b:d2:a6:7d:6a:d7:91:c8:c8:1d:e0:9c:df:28:58:4e:d5: 74:4f:10:98:6f:de:c7:1b:ff:c7:5a:38:b7:ec:d5:5e:91:62: 69:89:1a:41:b3:bd:5e:6e:a1:85:c0:3e:e5:3f:84:39:a8:99: 6a:1b:36:9d:b7:71:5b:64:31:3f:d8:86:61:75:0f:e2:d3:b7: fb:1c:85:86:1f:28:7e:e2:1f:28:c1:ec:59:74:de:a1:32:3d: 8a:64:81:bf:9c:4a:6c:db:b2:d3:91:04:f9:a8:2c:c3:13:d2: 23:dd:e6:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA1UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTlBRkIxMTAvBgNVBAUTKERDNjE3Q0ZBRURGOEJGQjBBM0VDRjdENjcxNDJFNkMx RDUyNjQzNUMwHhcNMjUxMTAzMDA1NjQ5WhcNMjUxMTEwMDA1NjQ5WjAYMRYwFAYD VQQDEw02OTA3ZmRkMS00NWI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmO0NwLIY+dl9pZCtCNtGfRFr+DX9j302gk7B5D+4rFonpueB8E3HYp24lsvN atQHQFY3gmG/sjwO3Nf5BZ2p4jLrTSCCB3EinH6jwbw8jGIu3NdPA6UTNMfY7tNL wiggZXwNyFWIJmZTQIy05l5HCpwX1MhhOOmCdcovKX1akJNxIVq7EP3pqN+S4KHU To92rzGKK8bqQfMBLs3x61jD6PiXEaQPttDluTYzC2gOvMKK9ng8hBvNziFA6tZE ytq0vAIasT9EnE82HxteMN3yNoVdqI4hl65+2ltR7VjAvX+YOk006h855DDTZtc6 v8ixM06fs+iC6FASCYLzGN6yZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFES6sUC4 rNzlXWXqPQSYmNC6NHlbMB8GA1UdIwQYMBaAFNxhfPrt+L+wo+z31nFC5sHVJkNc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OUFGQi80NDM0RDU5MEQ5 QzIxMUVDODg3Rjk4NDZDNEY5QUUwMi8zR0Y4LXUzNHY3Q2o3UGZXY1VMbXdkVW1R MXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNHRjgtdTM0djdDajdQZldjVUxtd2RVbVExdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OUFGQi80NDM0RDU5MEQ5QzIxMUVDODg3Rjk4NDZDNEY5QUUwMi8zR0Y4LXUzNHY3 Q2o3UGZXY1VMbXdkVW1RMXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCn2d1RsfVhcVfAN1wE+um8aLIjUo09Oub/AVQPoXT/EHw2Cnz9nSJV KKYp916fAUb1GFh1gYdJalRYRbDfPw/OmZiMKnCn73DnJ91anPhaWDC+PkCmRyKW K47otPrfSJOfdXOKN605NLIh12ILFXp3D63bvVd+kRWD0fMz5avljt21xJU2Y5y8 aYT5NobmWtp6S9KmfWrXkcjIHeCc3yhYTtV0TxCYb97HG//HWji37NVekWJpiRpB s71ebqGFwD7lP4Q5qJlqGzadt3FbZDE/2IZhdQ/i07f7HIWGHyh+4h8owexZdN6h Mj2KZIG/nEps27LTkQT5qCzDE9Ij3eYz -----END CERTIFICATE-----Generated at Mon Nov 3 18:13:19 2025 by rpki-client