$ rpki-client -vvf rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.mft File: fT3bIK_-cUyPNUllHB7oD1VgEbg.mft (raw, json) Hash identifier: 9W4uSe9eubpzOGkPROEZbqEq/irmdnmiEtwVKxDCet0= Subject key identifier: BA:A3:6A:E2:87:76:E8:09:6A:96:FB:61:F6:8D:18:1D:77:B5:E6:A9 Authority key identifier: 7D:3D:DB:20:AF:FE:71:4C:8F:35:49:65:1C:1E:E8:0F:55:60:11:B8 Certificate issuer: /CN=A91319EA/serialNumber=7D3DDB20AFFE714C8F3549651C1EE80F556011B8 Certificate serial: 02FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fT3bIK_-cUyPNUllHB7oD1VgEbg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.mft Manifest number: 02FB Signing time: Mon 03 Nov 2025 01:09:12 +0000 Manifest this update: Mon 03 Nov 2025 01:09:12 +0000 Manifest next update: Mon 10 Nov 2025 01:09:12 +0000 Files and hashes: 1: fT3bIK_-cUyPNUllHB7oD1VgEbg.crl (hash: wpLaU3MM34d0NcgVHw0awsLpUr1ogT0sD7lTRc9jPg0=) 2: BFD5E8EAF8EB11EC9C39C677C4F9AE02.roa (hash: 42NoXRc68AJI33l+b1k0SiSR1RteYpJ6pHpYeUhh2BI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.crl rsync://rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fT3bIK_-cUyPNUllHB7oD1VgEbg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 01:09:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 767 (0x2ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91319EA, serialNumber=7D3DDB20AFFE714C8F3549651C1EE80F556011B8 Validity Not Before: Nov 3 01:09:12 2025 GMT Not After : Nov 10 01:09:12 2025 GMT Subject: CN=690800b8-f381 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:b7:e5:72:e2:62:31:11:ee:22:85:b2:df:96: f5:00:ac:b1:3b:f8:cb:5e:cb:c0:16:d8:d8:23:52: 2b:ca:52:d8:83:10:2e:13:0c:2e:24:fd:1f:db:92: 9c:a8:78:d0:fd:dc:48:7c:bf:c1:b0:a0:7f:74:76: 39:ea:34:6e:f5:73:2b:ae:0e:84:2c:78:83:aa:1a: a1:21:a0:98:22:4d:87:af:92:1a:2a:36:6f:fb:86: d1:7d:47:74:5b:16:12:00:99:ec:53:cc:d3:23:57: 35:42:0b:4f:27:28:d3:10:c3:f3:bf:45:c5:57:77: 0b:f5:16:78:c8:5b:94:b3:88:1a:fe:c2:37:a7:c8: 03:a6:bf:70:5b:71:b0:58:8c:f0:bc:72:e1:fd:95: 7b:55:c8:f7:83:a4:75:39:1d:d1:19:8c:dd:50:61: b8:d1:f4:f3:ba:f0:1a:0f:f4:57:50:54:cf:10:ca: 39:40:2f:88:57:a4:55:5d:5e:c3:97:5c:14:a4:87: 22:e8:27:a2:dd:58:5b:1c:8b:28:7a:32:c1:2b:62: 0e:12:29:47:7c:8a:70:34:46:cb:0c:fd:32:b6:07: ba:f6:8e:2a:cb:80:2c:52:6f:fb:36:65:e2:8a:c8: c0:a1:cd:d5:bc:b6:54:e5:2e:01:2f:38:93:cb:38: 76:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:A3:6A:E2:87:76:E8:09:6A:96:FB:61:F6:8D:18:1D:77:B5:E6:A9 X509v3 Authority Key Identifier: keyid:7D:3D:DB:20:AF:FE:71:4C:8F:35:49:65:1C:1E:E8:0F:55:60:11:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fT3bIK_-cUyPNUllHB7oD1VgEbg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:db:87:65:1f:ea:6a:a2:de:64:ae:58:ad:aa:82:4c:18:7f: 33:4e:a6:68:b1:82:58:f0:cc:69:2c:f8:c1:b8:e9:14:6d:9a: 11:78:11:2a:60:56:e7:6c:e5:f2:2d:f1:48:79:1f:31:67:16: 9f:ad:50:e1:05:29:02:09:90:49:9d:d8:24:19:95:fe:07:f1: b6:8d:fc:a7:64:0f:d1:1c:f2:67:eb:58:88:0b:27:25:5a:05: 2b:bf:3b:f0:1e:41:2f:ca:bd:0e:23:0e:3a:b8:af:8e:80:18: 18:85:01:0d:41:5d:52:de:7f:de:cb:75:45:59:23:b2:63:c1: 4f:3e:8d:eb:7c:e2:72:3e:c0:96:36:1a:93:8c:ca:08:6c:98: f3:04:de:33:7c:8e:63:6a:e0:bd:e5:aa:84:7c:91:1d:23:30: 8f:f7:06:71:98:20:0d:6e:ce:fd:28:40:63:7d:24:ac:54:30: 21:9c:90:53:91:e3:57:ec:fc:93:c1:f3:87:29:4e:67:26:cd: c6:bf:60:f3:bc:d9:7e:c6:fc:a9:f0:f9:8d:cc:51:c8:10:9c: c2:e5:54:0d:47:bd:02:10:69:c0:76:ed:79:13:73:53:b5:c4: a9:84:43:65:a7:3e:d0:f9:42:ca:f8:9b:ec:ec:e0:6f:8e:a8: ea:24:1b:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAv8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE5RUExMTAvBgNVBAUTKDdEM0REQjIwQUZGRTcxNEM4RjM1NDk2NTFDMUVFODBG NTU2MDExQjgwHhcNMjUxMTAzMDEwOTEyWhcNMjUxMTEwMDEwOTEyWjAYMRYwFAYD VQQDEw02OTA4MDBiOC1mMzgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzrflcuJiMRHuIoWy35b1AKyxO/jLXsvAFtjYI1IrylLYgxAuEwwuJP0f25Kc qHjQ/dxIfL/BsKB/dHY56jRu9XMrrg6ELHiDqhqhIaCYIk2Hr5IaKjZv+4bRfUd0 WxYSAJnsU8zTI1c1QgtPJyjTEMPzv0XFV3cL9RZ4yFuUs4ga/sI3p8gDpr9wW3Gw WIzwvHLh/ZV7Vcj3g6R1OR3RGYzdUGG40fTzuvAaD/RXUFTPEMo5QC+IV6RVXV7D l1wUpIci6Cei3VhbHIsoejLBK2IOEilHfIpwNEbLDP0ytge69o4qy4AsUm/7NmXi isjAoc3VvLZU5S4BLziTyzh2mQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLqjauKH dugJapb7YfaNGB13teapMB8GA1UdIwQYMBaAFH092yCv/nFMjzVJZRwe6A9VYBG4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTlFQS9EMjZDNDEyOEY4 RTgxMUVDOEI1NzcyNzFDNEY5QUUwMi9mVDNiSUtfLWNVeVBOVWxsSEI3b0QxVmdF YmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZUM2JJS18tY1V5UE5VbGxIQjdvRDFWZ0ViZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTlFQS9EMjZDNDEyOEY4RTgxMUVDOEI1NzcyNzFDNEY5QUUwMi9mVDNiSUtfLWNV eVBOVWxsSEI3b0QxVmdFYmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBp24dlH+pqot5krlitqoJMGH8zTqZosYJY8MxpLPjBuOkUbZoReBEq YFbnbOXyLfFIeR8xZxafrVDhBSkCCZBJndgkGZX+B/G2jfynZA/RHPJn61iICycl WgUrvzvwHkEvyr0OIw46uK+OgBgYhQENQV1S3n/ey3VFWSOyY8FPPo3rfOJyPsCW NhqTjMoIbJjzBN4zfI5jauC95aqEfJEdIzCP9wZxmCANbs79KEBjfSSsVDAhnJBT keNX7PyTwfOHKU5nJs3Gv2DzvNl+xvyp8PmNzFHIEJzC5VQNR70CEGnAdu15E3NT tcSphENlpz7Q+ULK+Jvs7OBvjqjqJBtQ -----END CERTIFICATE-----Generated at Mon Nov 3 18:14:30 2025 by rpki-client