$ rpki-client -vvf rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft File: A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft (raw, json) Hash identifier: cd0bybVs5eu9P8jX+gDhTb+84xvkHuKkyiGrKREkQEg= Subject key identifier: AB:6A:0F:39:F5:24:35:75:30:EE:17:DD:AD:A4:14:D1:7A:84:FD:5D Authority key identifier: 03:77:B9:3C:91:FD:AF:46:9A:59:1B:4C:52:D2:4C:B1:55:5D:2B:D4 Certificate issuer: /CN=A91822BF/serialNumber=0377B93C91FDAF469A591B4C52D24CB1555D2BD4 Certificate serial: 0C28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft Manifest number: 0C20 Signing time: Sun 02 Nov 2025 18:41:43 +0000 Manifest this update: Sun 02 Nov 2025 18:41:42 +0000 Manifest next update: Sun 09 Nov 2025 18:41:42 +0000 Files and hashes: 1: A3e5PJH9r0aaWRtMUtJMsVVdK9Q.crl (hash: hnPj1kyENXFigIlqQbieTs70AXpVnFzf1XKkGxB6zYA=) 2: 37EA3E261ADC11EA8EB46F37C4F9AE02.roa (hash: ELFkrkGvrGXpvAeGB34G/wdhCkAvgz4ejLB+gQtN8Ps=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.crl rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:41:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3112 (0xc28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91822BF, serialNumber=0377B93C91FDAF469A591B4C52D24CB1555D2BD4 Validity Not Before: Nov 2 18:41:42 2025 GMT Not After : Nov 9 18:41:42 2025 GMT Subject: CN=6907a5e6-990a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:3f:4a:5d:54:e0:4b:78:40:e6:d1:a4:03:5c: c4:56:9f:a2:6e:aa:11:c2:92:22:32:ba:58:68:5d: 49:1b:87:c3:b9:2a:8c:7b:5a:46:6a:ba:e6:9d:bb: bf:35:b1:04:fa:2c:20:23:01:a0:a9:92:18:97:a8: 04:68:c7:58:ad:49:d9:8b:cf:7e:33:d8:14:be:53: 6f:0d:58:59:f0:ae:21:d0:84:44:44:fb:7f:e1:dc: 1d:18:9f:27:b3:87:a5:c2:12:32:d9:45:22:39:7b: 59:3b:76:db:1b:a9:c2:64:48:c2:5d:22:b3:ec:43: aa:b2:c3:33:17:f4:a2:1f:ac:dc:d3:38:be:f0:f4: f6:06:aa:ee:c8:af:b8:7d:24:ce:f8:16:e5:17:46: ff:e2:a7:63:fd:35:5e:7b:20:73:b3:97:02:80:ac: 5f:21:dc:91:49:5f:60:bf:0c:fd:08:f1:5a:11:9d: 93:e7:be:29:32:b1:9f:6c:f2:d9:bb:bb:87:82:0b: 48:a8:d6:38:67:a4:f0:c4:7a:68:dc:c2:57:36:eb: 44:01:81:53:36:47:e6:b4:8c:18:a4:7a:1d:6e:51: 12:9c:18:4e:95:fb:bb:b2:2e:e7:17:c1:59:ec:60: ac:d1:61:d8:be:d6:a4:b1:d6:60:33:77:80:88:9a: 56:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:6A:0F:39:F5:24:35:75:30:EE:17:DD:AD:A4:14:D1:7A:84:FD:5D X509v3 Authority Key Identifier: keyid:03:77:B9:3C:91:FD:AF:46:9A:59:1B:4C:52:D2:4C:B1:55:5D:2B:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:06:e3:47:79:c4:37:e7:a5:59:f1:03:22:22:4f:4c:43:9c: 3f:fa:21:d7:95:2a:12:18:d0:e5:c6:ae:9d:1a:1e:c5:2f:67: a6:51:da:8e:29:3c:39:9a:9d:29:5a:2f:99:e2:b3:75:67:7c: af:78:e8:7d:82:95:c1:7b:7d:cf:94:de:64:d4:4f:80:25:e0: cd:5d:a2:d5:a4:f5:ce:3e:df:b8:7f:96:db:71:21:43:0f:74: 6a:6b:0f:72:98:f4:71:b1:58:a8:c9:10:19:4e:9f:88:9f:0d: ba:07:13:b7:b5:15:b3:67:a5:c5:8c:9b:97:ec:1c:44:d3:fc: b3:52:5a:b1:6a:39:28:42:7d:62:db:68:d6:fd:a4:32:1f:73: d8:7e:ec:cd:97:29:25:75:be:ef:a3:a1:06:c2:63:1a:69:ac: 27:64:c3:b5:40:bb:ab:bb:90:4d:9a:ee:b5:69:9a:20:55:fc: 69:9a:a8:c8:c9:4b:db:bf:5d:b9:d1:1f:36:a3:37:82:32:5f: 08:68:a7:eb:f5:88:5c:13:5d:16:c2:35:96:04:bd:d7:df:07: 7e:94:ee:c9:26:e5:52:c7:33:d9:7b:9a:d9:d9:ca:92:ee:3d: 8d:ca:52:ee:64:b1:d2:32:90:85:9e:83:67:c9:47:d3:50:d0: a3:11:c7:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODIyQkYxMTAvBgNVBAUTKDAzNzdCOTNDOTFGREFGNDY5QTU5MUI0QzUyRDI0Q0Ix NTU1RDJCRDQwHhcNMjUxMTAyMTg0MTQyWhcNMjUxMTA5MTg0MTQyWjAYMRYwFAYD VQQDEw02OTA3YTVlNi05OTBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxz9KXVTgS3hA5tGkA1zEVp+ibqoRwpIiMrpYaF1JG4fDuSqMe1pGarrmnbu/ NbEE+iwgIwGgqZIYl6gEaMdYrUnZi89+M9gUvlNvDVhZ8K4h0IRERPt/4dwdGJ8n s4elwhIy2UUiOXtZO3bbG6nCZEjCXSKz7EOqssMzF/SiH6zc0zi+8PT2BqruyK+4 fSTO+BblF0b/4qdj/TVeeyBzs5cCgKxfIdyRSV9gvwz9CPFaEZ2T574pMrGfbPLZ u7uHggtIqNY4Z6TwxHpo3MJXNutEAYFTNkfmtIwYpHodblESnBhOlfu7si7nF8FZ 7GCs0WHYvtaksdZgM3eAiJpW2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKtqDzn1 JDV1MO4X3a2kFNF6hP1dMB8GA1UdIwQYMBaAFAN3uTyR/a9GmlkbTFLSTLFVXSvU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjJCRi8xMDM5QkM0MDFB REIxMUVBQUEzQTgyMzVDNEY5QUUwMi9BM2U1UEpIOXIwYWFXUnRNVXRKTXNWVmRL OVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EzZTVQSkg5cjBhYVdSdE1VdEpNc1ZWZEs5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjJCRi8xMDM5QkM0MDFBREIxMUVBQUEzQTgyMzVDNEY5QUUwMi9BM2U1UEpIOXIw YWFXUnRNVXRKTXNWVmRLOVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYBuNHecQ356VZ8QMiIk9MQ5w/+iHXlSoSGNDlxq6dGh7FL2emUdqO KTw5mp0pWi+Z4rN1Z3yveOh9gpXBe33PlN5k1E+AJeDNXaLVpPXOPt+4f5bbcSFD D3Rqaw9ymPRxsVioyRAZTp+Inw26BxO3tRWzZ6XFjJuX7BxE0/yzUlqxajkoQn1i 22jW/aQyH3PYfuzNlykldb7vo6EGwmMaaawnZMO1QLuru5BNmu61aZogVfxpmqjI yUvbv1250R82ozeCMl8IaKfr9YhcE10WwjWWBL3X3wd+lO7JJuVSxzPZe5rZ2cqS 7j2NylLuZLHSMpCFnoNnyUfTUNCjEcfQ -----END CERTIFICATE-----Generated at Mon Nov 3 18:16:29 2025 by rpki-client