$ rpki-client -vvf rpki.apnic.net/member_repository/A9189311/13AFF6F6B24D11E4B67F185FC4F9AE02/e3dUqC3QY6R-jsNdFj72skSNEts.mft File: e3dUqC3QY6R-jsNdFj72skSNEts.mft (raw, json) Hash identifier: dGHokYTAO3l3pqROL153JLk0dPy6v9cppsFGjfes+pI= Subject key identifier: A9:2F:A1:A9:D6:F2:8A:30:D8:52:C1:44:37:3B:1C:60:73:A9:34:5E Authority key identifier: 7B:77:54:A8:2D:D0:63:A4:7E:8E:C3:5D:16:3E:F6:B2:44:8D:12:DB Certificate issuer: /CN=A9189311/serialNumber=7B7754A82DD063A47E8EC35D163EF6B2448D12DB Certificate serial: 27DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e3dUqC3QY6R-jsNdFj72skSNEts.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189311/13AFF6F6B24D11E4B67F185FC4F9AE02/e3dUqC3QY6R-jsNdFj72skSNEts.mft Manifest number: 27CC Signing time: Tue 04 Nov 2025 15:42:44 +0000 Manifest this update: Tue 04 Nov 2025 15:42:44 +0000 Manifest next update: Tue 11 Nov 2025 15:42:44 +0000 Files and hashes: 1: e3dUqC3QY6R-jsNdFj72skSNEts.crl (hash: /QZsqMmXxciXvmEmb8bh1VQRwjY9slQkRG+G4yjbKKY=) 2: F5BBEA5AF6A611E7B40C7427C4F9AE02.roa (hash: EeUXim59YsvGI7qIffiR5WtPWhD5kVEeYtKpW1EoALs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189311/13AFF6F6B24D11E4B67F185FC4F9AE02/e3dUqC3QY6R-jsNdFj72skSNEts.crl rsync://rpki.apnic.net/member_repository/A9189311/13AFF6F6B24D11E4B67F185FC4F9AE02/e3dUqC3QY6R-jsNdFj72skSNEts.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e3dUqC3QY6R-jsNdFj72skSNEts.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:42:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10207 (0x27df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189311, serialNumber=7B7754A82DD063A47E8EC35D163EF6B2448D12DB Validity Not Before: Nov 4 15:42:44 2025 GMT Not After : Nov 11 15:42:44 2025 GMT Subject: CN=690a1ef4-402b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:ac:db:1f:fa:70:70:20:36:9f:af:f8:54:85: cf:84:1d:c4:4d:4a:d0:aa:bf:8b:6b:a2:6b:74:4e: f1:25:31:44:ba:85:9c:bd:ea:fb:6a:4b:d1:c9:f5: 61:33:ef:bd:82:e4:27:1b:e8:65:5c:d1:2f:55:99: a3:bd:92:74:dc:e5:09:a9:a6:64:e9:36:19:5c:42: 29:d6:83:e5:33:1d:cd:a4:00:34:50:9a:b9:38:8e: b2:67:49:15:ce:a7:73:e2:13:0f:46:ac:fe:89:27: 7d:bf:a1:5f:a7:34:1d:d5:6e:14:13:1b:9d:15:a2: bc:42:e1:30:7a:d9:ca:a8:1b:9e:0b:d8:01:14:7f: 31:15:50:5c:e3:f9:39:b8:2e:22:63:d8:11:dc:98: 71:a9:be:a2:ba:97:02:3a:1c:22:92:76:08:79:f1: 2a:b2:df:54:26:9e:93:70:ac:a0:8f:26:60:1e:c9: 33:5c:4e:78:e4:38:20:4d:85:27:64:69:64:21:1e: 82:3e:08:b1:2a:63:ca:7d:f9:26:c7:cd:82:a8:94: f0:0f:6f:e8:90:7d:39:39:42:00:0d:c0:65:38:51: 16:1f:c9:10:f6:cc:96:f4:6c:10:19:61:9c:0b:ba: d3:a6:cf:ef:dc:01:16:b3:55:c3:1b:54:83:8a:e3: 79:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:2F:A1:A9:D6:F2:8A:30:D8:52:C1:44:37:3B:1C:60:73:A9:34:5E X509v3 Authority Key Identifier: keyid:7B:77:54:A8:2D:D0:63:A4:7E:8E:C3:5D:16:3E:F6:B2:44:8D:12:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189311/13AFF6F6B24D11E4B67F185FC4F9AE02/e3dUqC3QY6R-jsNdFj72skSNEts.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e3dUqC3QY6R-jsNdFj72skSNEts.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189311/13AFF6F6B24D11E4B67F185FC4F9AE02/e3dUqC3QY6R-jsNdFj72skSNEts.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:bb:b4:ef:90:68:86:f8:25:5e:dc:0e:7b:ae:91:22:98:fd: 7c:76:cd:8c:54:2d:a1:e3:9f:65:a9:d4:e6:ae:4f:51:1c:df: 3c:7a:08:58:ec:e4:71:23:10:e6:e9:1f:63:f0:1d:ad:38:15: d4:4b:13:35:80:4b:8c:5d:47:3f:2f:3a:21:4d:13:fd:ee:ea: d3:b2:b2:93:44:76:88:38:18:58:66:c3:18:e4:66:02:98:80: 5d:b1:44:1e:a4:67:b0:bf:32:a4:18:06:e3:dd:4e:6f:e1:86: a0:b5:54:70:f0:1a:a1:1e:06:82:3c:11:80:c1:3a:53:4c:2a: 3c:55:2b:12:04:3b:27:d9:fc:b1:32:a2:05:d4:e9:cc:a8:b0: ca:e5:1b:90:cd:bf:fc:4d:5d:9e:08:94:c1:a6:d7:f6:a9:49: b3:1e:d7:35:3f:2d:81:a1:af:e5:e5:a5:80:37:40:45:4d:b6: 3d:99:b8:ff:bc:9f:47:ba:f2:e5:05:1b:9c:c8:7d:1a:02:2d: 66:d3:d8:9e:ec:36:93:27:d5:a7:32:17:50:5c:19:2d:bb:e0: 2e:d2:24:d9:ff:19:a6:8c:db:d9:b4:d5:cc:de:59:23:2d:d0: db:a4:6e:f8:bf:9e:a2:5f:a3:e9:99:c2:69:e9:21:ac:b4:60: 61:f0:88:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJ98wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkzMTExMTAvBgNVBAUTKDdCNzc1NEE4MkREMDYzQTQ3RThFQzM1RDE2M0VGNkIy NDQ4RDEyREIwHhcNMjUxMTA0MTU0MjQ0WhcNMjUxMTExMTU0MjQ0WjAYMRYwFAYD VQQDEw02OTBhMWVmNC00MDJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA66zbH/pwcCA2n6/4VIXPhB3ETUrQqr+La6JrdE7xJTFEuoWcver7akvRyfVh M++9guQnG+hlXNEvVZmjvZJ03OUJqaZk6TYZXEIp1oPlMx3NpAA0UJq5OI6yZ0kV zqdz4hMPRqz+iSd9v6FfpzQd1W4UExudFaK8QuEwetnKqBueC9gBFH8xFVBc4/k5 uC4iY9gR3Jhxqb6iupcCOhwiknYIefEqst9UJp6TcKygjyZgHskzXE545DggTYUn ZGlkIR6CPgixKmPKffkmx82CqJTwD2/okH05OUIADcBlOFEWH8kQ9syW9GwQGWGc C7rTps/v3AEWs1XDG1SDiuN5FQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKkvoanW 8oow2FLBRDc7HGBzqTReMB8GA1UdIwQYMBaAFHt3VKgt0GOkfo7DXRY+9rJEjRLb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTMxMS8xM0FGRjZGNkIy NEQxMUU0QjY3RjE4NUZDNEY5QUUwMi9lM2RVcUMzUVk2Ui1qc05kRmo3MnNrU05F dHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2UzZFVxQzNRWTZSLWpzTmRGajcyc2tTTkV0cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTMxMS8xM0FGRjZGNkIyNEQxMUU0QjY3RjE4NUZDNEY5QUUwMi9lM2RVcUMzUVk2 Ui1qc05kRmo3MnNrU05FdHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMu7TvkGiG+CVe3A57rpEimP18ds2MVC2h459lqdTmrk9RHN88eghY 7ORxIxDm6R9j8B2tOBXUSxM1gEuMXUc/LzohTRP97urTsrKTRHaIOBhYZsMY5GYC mIBdsUQepGewvzKkGAbj3U5v4YagtVRw8BqhHgaCPBGAwTpTTCo8VSsSBDsn2fyx MqIF1OnMqLDK5RuQzb/8TV2eCJTBptf2qUmzHtc1Py2Boa/l5aWAN0BFTbY9mbj/ vJ9HuvLlBRucyH0aAi1m09ie7DaTJ9WnMhdQXBktu+Au0iTZ/xmmjNvZtNXM3lkj LdDbpG74v56iX6PpmcJp6SGstGBh8IgV -----END CERTIFICATE-----Generated at Wed Nov 5 13:26:24 2025 by rpki-client