$ rpki-client -vvf rpki.apnic.net/member_repository/A91476FE/90FE4720083711F09DB91B70C4F9AE02/_3wGiSUYZz7M4Ea2pxfzU85TxQk.mft File: _3wGiSUYZz7M4Ea2pxfzU85TxQk.mft (raw, json) Hash identifier: kwsHNg0UuJbLms9XEf657Eo97MT06RmsURlHKUfF4/k= Subject key identifier: 58:33:68:45:34:C4:1A:91:40:61:FB:46:DE:4F:7A:99:B6:FF:48:AE Authority key identifier: FF:7C:06:89:25:18:67:3E:CC:E0:46:B6:A7:17:F3:53:CE:53:C5:09 Certificate issuer: /CN=A91476FE/serialNumber=FF7C06892518673ECCE046B6A717F353CE53C509 Certificate serial: 7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_3wGiSUYZz7M4Ea2pxfzU85TxQk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91476FE/90FE4720083711F09DB91B70C4F9AE02/_3wGiSUYZz7M4Ea2pxfzU85TxQk.mft Manifest number: 78 Signing time: Wed 05 Nov 2025 07:03:28 +0000 Manifest this update: Wed 05 Nov 2025 07:03:28 +0000 Manifest next update: Wed 12 Nov 2025 07:03:28 +0000 Files and hashes: 1: _3wGiSUYZz7M4Ea2pxfzU85TxQk.crl (hash: TUaIK8cFmKpge2QFEzR1ZqNHx+xCFPrLdN06MSgSiYs=) 2: CC704C6639B711F09D08292CC4F9AE02.roa (hash: M1ecwuMzW/hIMvSj6913M6NZRe+PJV/YKqOHZ/y8oF0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91476FE/90FE4720083711F09DB91B70C4F9AE02/_3wGiSUYZz7M4Ea2pxfzU85TxQk.crl rsync://rpki.apnic.net/member_repository/A91476FE/90FE4720083711F09DB91B70C4F9AE02/_3wGiSUYZz7M4Ea2pxfzU85TxQk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_3wGiSUYZz7M4Ea2pxfzU85TxQk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:03:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 123 (0x7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91476FE, serialNumber=FF7C06892518673ECCE046B6A717F353CE53C509 Validity Not Before: Nov 5 07:03:28 2025 GMT Not After : Nov 12 07:03:28 2025 GMT Subject: CN=690af6c0-d466 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:9d:c7:0c:40:9f:d5:a7:e3:b6:f0:61:49:42: fd:f5:45:b7:42:f1:ef:b7:4a:7e:8b:ca:34:ba:61: 7a:4e:3c:32:fb:63:d3:58:2e:69:7d:a4:61:74:c5: 0c:b2:a7:7b:71:bd:11:1b:89:7c:d4:c5:f3:66:8d: e4:a5:20:cd:50:d5:98:61:17:5d:c8:9c:5d:80:cd: 92:2b:a0:1e:37:9b:20:ef:4e:d8:09:8d:e4:e4:c9: ec:90:31:b6:b9:fb:5b:9d:32:08:e8:82:c1:8e:fc: 6b:51:87:6c:11:3c:4d:2a:5e:c0:15:76:27:26:a6: 5d:c1:35:cc:18:f9:4b:8d:d4:fc:f3:28:96:45:6c: c5:f8:2b:9b:fe:30:1d:2d:60:85:90:59:de:8e:4a: 63:3d:9d:91:98:04:3d:b7:b8:83:41:92:02:a0:a2: 45:06:16:57:5d:bb:42:02:3f:6e:f4:11:08:73:db: 64:63:29:a9:3e:11:e9:7f:6c:07:e3:d0:1d:38:f7: 8b:07:59:e5:cd:67:aa:96:22:f5:45:e3:0d:15:11: b2:35:29:ac:57:1b:82:40:dd:ae:e1:93:fd:0c:59: 0c:67:ae:a3:5d:19:37:43:74:94:5a:ce:26:5e:e1: a1:e7:92:29:71:dc:57:a6:20:6d:ed:fd:31:26:da: 49:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:33:68:45:34:C4:1A:91:40:61:FB:46:DE:4F:7A:99:B6:FF:48:AE X509v3 Authority Key Identifier: keyid:FF:7C:06:89:25:18:67:3E:CC:E0:46:B6:A7:17:F3:53:CE:53:C5:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91476FE/90FE4720083711F09DB91B70C4F9AE02/_3wGiSUYZz7M4Ea2pxfzU85TxQk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_3wGiSUYZz7M4Ea2pxfzU85TxQk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91476FE/90FE4720083711F09DB91B70C4F9AE02/_3wGiSUYZz7M4Ea2pxfzU85TxQk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:94:6d:b6:e5:ee:01:c4:63:d7:7b:98:bf:2b:86:40:ab:20: 4e:a2:2b:7e:45:ff:4a:15:b5:b8:b8:e1:a4:ae:38:8c:0b:18: 52:07:63:73:e9:2b:0f:03:57:73:ae:32:c3:f0:2e:d0:9d:19: a0:65:e2:35:b6:10:cd:6e:a3:52:39:8e:05:0d:57:19:45:f3: b0:94:04:f6:25:9f:bb:79:92:ea:65:70:0b:44:78:3a:d1:83: 34:0b:39:ca:d8:44:b0:45:c3:9e:0d:94:aa:0b:9d:f4:9f:c5: 8d:82:6a:16:01:50:07:21:2d:10:1f:2a:47:98:9e:1f:95:4c: ab:10:11:54:a8:9a:f1:d1:0a:1c:e6:bc:6e:d2:87:5a:39:b3: a9:dd:35:3a:77:b3:0c:a8:d7:6d:0b:14:9d:dd:a5:7c:9b:f7: 1c:34:37:ca:2d:76:62:ed:cf:60:b8:e7:6b:eb:81:b9:00:c9: 3b:50:03:09:4b:1d:ec:e4:29:e8:e4:d3:62:f9:fe:2a:b3:7d: 37:09:66:6f:ec:36:9d:90:99:cc:d4:45:1a:e2:0f:d3:ba:b9: f3:8a:96:1e:4b:39:79:c5:48:56:5a:12:23:d2:7d:67:f9:e3: ad:5e:b6:e4:d9:5a:54:f2:25:83:de:a9:00:3b:a0:15:32:e8: 5e:60:be:c3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBezANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NzZGRTExMC8GA1UEBRMoRkY3QzA2ODkyNTE4NjczRUNDRTA0NkI2QTcxN0YzNTND RTUzQzUwOTAeFw0yNTExMDUwNzAzMjhaFw0yNTExMTIwNzAzMjhaMBgxFjAUBgNV BAMTDTY5MGFmNmMwLWQ0NjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCanccMQJ/Vp+O28GFJQv31RbdC8e+3Sn6LyjS6YXpOPDL7Y9NYLml9pGF0xQyy p3txvREbiXzUxfNmjeSlIM1Q1ZhhF13InF2AzZIroB43myDvTtgJjeTkyeyQMba5 +1udMgjogsGO/GtRh2wRPE0qXsAVdicmpl3BNcwY+UuN1PzzKJZFbMX4K5v+MB0t YIWQWd6OSmM9nZGYBD23uINBkgKgokUGFlddu0ICP270EQhz22RjKak+Eel/bAfj 0B0494sHWeXNZ6qWIvVF4w0VEbI1KaxXG4JA3a7hk/0MWQxnrqNdGTdDdJRaziZe 4aHnkilx3FemIG3t/TEm2knbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUWDNoRTTE GpFAYftG3k96mbb/SK4wHwYDVR0jBBgwFoAU/3wGiSUYZz7M4Ea2pxfzU85TxQkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ3NkZFLzkwRkU0NzIwMDgz NzExRjA5REI5MUI3MEM0RjlBRTAyL18zd0dpU1VZWno3TTRFYTJweGZ6VTg1VHhR ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvXzN3R2lTVVlaejdNNEVhMnB4ZnpVODVUeFFrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ3 NkZFLzkwRkU0NzIwMDgzNzExRjA5REI5MUI3MEM0RjlBRTAyL18zd0dpU1VZWno3 TTRFYTJweGZ6VTg1VHhRay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACCUbbbl7gHEY9d7mL8rhkCrIE6iK35F/0oVtbi44aSuOIwLGFIHY3Pp Kw8DV3OuMsPwLtCdGaBl4jW2EM1uo1I5jgUNVxlF87CUBPYln7t5kuplcAtEeDrR gzQLOcrYRLBFw54NlKoLnfSfxY2CahYBUAchLRAfKkeYnh+VTKsQEVSomvHRChzm vG7Sh1o5s6ndNTp3swyo120LFJ3dpXyb9xw0N8otdmLtz2C452vrgbkAyTtQAwlL HezkKejk02L5/iqzfTcJZm/sNp2QmczURRriD9O6ufOKlh5LOXnFSFZaEiPSfWf5 461etuTZWlTyJYPeqQA7oBUy6F5gvsM= -----END CERTIFICATE-----Generated at Wed Nov 5 13:05:39 2025 by rpki-client