$ rpki-client -vvf rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/3dU_UiXtL42o0J56rZgsgLbOrag.mft File: 3dU_UiXtL42o0J56rZgsgLbOrag.mft (raw, json) Hash identifier: 4Sbm5q8ZPKC+AdMwpQHIie6tp7ygjT7B/23nkviLuW0= Subject key identifier: 68:43:04:68:15:63:4C:EE:5A:A2:F5:C7:FC:03:44:AB:F8:2E:87:EE Authority key identifier: DD:D5:3F:52:25:ED:2F:8D:A8:D0:9E:7A:AD:98:2C:80:B6:CE:AD:A8 Certificate issuer: /CN=A91658EF/serialNumber=DDD53F5225ED2F8DA8D09E7AAD982C80B6CEADA8 Certificate serial: 07E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3dU_UiXtL42o0J56rZgsgLbOrag.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/3dU_UiXtL42o0J56rZgsgLbOrag.mft Manifest number: 2C7D Signing time: Tue 04 Nov 2025 16:52:54 +0000 Manifest this update: Tue 04 Nov 2025 16:52:53 +0000 Manifest next update: Tue 11 Nov 2025 16:52:53 +0000 Files and hashes: 1: 3dU_UiXtL42o0J56rZgsgLbOrag.crl (hash: iabcv3k5UZ0ZMdOatrUR01YaWAYcJBJ3/ifDs7P1pLQ=) 2: A20F3364D9CD11EF93ACA765C4F9AE02.roa (hash: GlYsHzeq/9zAsgZDgmAiaFOhydbYqGstJVX7MNbtJFs=) 3: CD0ACC3AD9CE11EFA393BC6AC4F9AE02.roa (hash: zPBNAdtnIGt+ra2FI390H36UQCaUhQl2E2/fPAphoFM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/3dU_UiXtL42o0J56rZgsgLbOrag.crl rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/3dU_UiXtL42o0J56rZgsgLbOrag.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3dU_UiXtL42o0J56rZgsgLbOrag.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:52:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2020 (0x7e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91658EF, serialNumber=DDD53F5225ED2F8DA8D09E7AAD982C80B6CEADA8 Validity Not Before: Nov 4 16:52:53 2025 GMT Not After : Nov 11 16:52:53 2025 GMT Subject: CN=690a2f65-ed56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:21:ba:76:58:4a:2f:f5:57:e4:95:d2:96:7a: fb:e2:b7:0e:78:5f:d6:51:be:42:7c:0a:7d:a2:a1: fc:29:5b:fc:b7:79:4b:ff:b8:d3:02:58:a1:44:e2: 4d:ca:22:6c:21:f3:a4:8d:3e:2c:2d:2d:7d:5c:1b: e2:24:de:9b:f5:7e:03:65:3c:90:e3:c8:e6:55:1b: ea:23:dd:cb:9a:6c:d0:06:83:3a:95:a5:2f:95:0f: b4:b7:ac:28:48:2a:2e:a1:f6:80:00:39:6d:22:8d: 5e:7d:73:a5:e7:2e:bd:76:fe:a5:54:d0:53:3f:01: 9b:e4:f4:bc:84:f1:e4:b9:03:2d:5f:4b:5c:7a:0a: 9c:57:a2:21:30:b9:8a:ce:bc:7d:97:a9:44:a2:ce: e7:62:b0:a5:9b:01:2a:0f:8e:69:26:32:81:5c:dc: 6b:46:44:7a:81:29:ac:eb:1f:de:1a:61:35:3b:b9: 38:d6:10:02:d0:ca:cf:c4:55:ab:14:10:44:b0:c0: b7:48:e3:54:d2:a5:cb:dd:ab:f0:62:db:1d:0b:4f: 5b:92:fa:a2:7b:53:c6:65:55:29:2a:b0:31:fc:8b: 37:d9:2a:95:fb:f2:e2:9b:52:ec:0d:d8:fe:22:4f: 4b:f5:70:60:f7:a6:a6:3c:93:64:26:f5:75:89:2f: 0b:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:43:04:68:15:63:4C:EE:5A:A2:F5:C7:FC:03:44:AB:F8:2E:87:EE X509v3 Authority Key Identifier: keyid:DD:D5:3F:52:25:ED:2F:8D:A8:D0:9E:7A:AD:98:2C:80:B6:CE:AD:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/3dU_UiXtL42o0J56rZgsgLbOrag.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3dU_UiXtL42o0J56rZgsgLbOrag.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/3dU_UiXtL42o0J56rZgsgLbOrag.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:e8:b1:00:ee:39:e1:26:20:88:27:d4:e2:00:8b:4f:0e:51: 55:42:9b:29:1b:98:f2:99:7d:92:bb:c7:b3:45:1c:aa:41:aa: 13:8f:66:a5:24:1f:cf:cd:80:71:23:78:28:4b:07:4a:00:75: 47:22:c6:45:4a:20:45:21:41:33:5a:39:e0:3a:68:0d:4b:99: 27:35:a5:1a:37:a8:eb:70:3d:92:1b:00:ac:ed:8b:1b:54:a7: 71:6d:90:dc:6c:23:62:2a:37:b1:c8:a8:19:0d:59:db:c3:bb: b2:e6:82:7a:fb:7f:33:41:15:c1:34:4e:d2:a3:32:85:f7:d9: 39:89:37:37:d7:34:6b:cf:6e:f6:d3:94:f8:19:bf:3f:56:5d: ea:5e:8f:17:1c:61:c8:64:35:a1:f7:bc:ce:57:0d:9a:c3:53: 67:5f:78:a1:cb:c0:0b:14:13:21:96:cc:d6:a6:41:8c:0a:fd: 66:2a:b1:31:2c:b5:91:33:7d:f7:60:15:d9:81:2c:5d:49:92: a7:1a:ec:0b:72:1a:7e:59:3f:24:6a:e5:f8:65:71:3e:13:4d: 93:84:ee:a3:0a:c8:e2:c7:f9:2b:fa:5b:07:53:66:ba:a2:49: 78:1f:cf:ad:cc:d7:ea:b0:0c:bf:de:10:4c:40:5c:17:83:31: b1:47:77:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB+QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU4RUYxMTAvBgNVBAUTKERERDUzRjUyMjVFRDJGOERBOEQwOUU3QUFEOTgyQzgw QjZDRUFEQTgwHhcNMjUxMTA0MTY1MjUzWhcNMjUxMTExMTY1MjUzWjAYMRYwFAYD VQQDEw02OTBhMmY2NS1lZDU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApSG6dlhKL/VX5JXSlnr74rcOeF/WUb5CfAp9oqH8KVv8t3lL/7jTAlihROJN yiJsIfOkjT4sLS19XBviJN6b9X4DZTyQ48jmVRvqI93LmmzQBoM6laUvlQ+0t6wo SCouofaAADltIo1efXOl5y69dv6lVNBTPwGb5PS8hPHkuQMtX0tcegqcV6IhMLmK zrx9l6lEos7nYrClmwEqD45pJjKBXNxrRkR6gSms6x/eGmE1O7k41hAC0MrPxFWr FBBEsMC3SONU0qXL3avwYtsdC09bkvqie1PGZVUpKrAx/Is32SqV+/Lim1LsDdj+ Ik9L9XBg96amPJNkJvV1iS8LmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGhDBGgV Y0zuWqL1x/wDRKv4LofuMB8GA1UdIwQYMBaAFN3VP1Il7S+NqNCeeq2YLIC2zq2o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NThFRi9EMjQzMzc5NjRB RUMxMUU4ODQxN0YzNEFDNEY5QUUwMi8zZFVfVWlYdEw0Mm8wSjU2clpnc2dMYk9y YWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNkVV9VaVh0TDQybzBKNTZyWmdzZ0xiT3JhZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NThFRi9EMjQzMzc5NjRBRUMxMUU4ODQxN0YzNEFDNEY5QUUwMi8zZFVfVWlYdEw0 Mm8wSjU2clpnc2dMYk9yYWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBe6LEA7jnhJiCIJ9TiAItPDlFVQpspG5jymX2Su8ezRRyqQaoTj2al JB/PzYBxI3goSwdKAHVHIsZFSiBFIUEzWjngOmgNS5knNaUaN6jrcD2SGwCs7Ysb VKdxbZDcbCNiKjexyKgZDVnbw7uy5oJ6+38zQRXBNE7SozKF99k5iTc31zRrz272 05T4Gb8/Vl3qXo8XHGHIZDWh97zOVw2aw1NnX3ihy8ALFBMhlszWpkGMCv1mKrEx LLWRM333YBXZgSxdSZKnGuwLchp+WT8kauX4ZXE+E02ThO6jCsjix/kr+lsHU2a6 okl4H8+tzNfqsAy/3hBMQFwXgzGxR3dM -----END CERTIFICATE-----Generated at Wed Nov 5 19:32:41 2025 by rpki-client