$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.mft File: Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.mft (raw, json) Hash identifier: 5ZZb3Eon+jZDKN0r4t7yxU3gTR1ABe35TY76FHXIthQ= Subject key identifier: 61:79:71:5C:90:C0:18:03:5F:51:DF:97:DD:41:14:0D:AB:E0:BF:D9 Authority key identifier: 3D:BD:D7:ED:41:24:80:E9:35:5C:27:F3:C1:13:B5:64:0D:31:86:B3 Certificate issuer: /CN=A91A3399/serialNumber=3DBDD7ED412480E9355C27F3C113B5640D3186B3 Certificate serial: 019B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.mft Manifest number: 0192 Signing time: Mon 03 Nov 2025 03:32:54 +0000 Manifest this update: Mon 03 Nov 2025 03:32:54 +0000 Manifest next update: Mon 10 Nov 2025 03:32:54 +0000 Files and hashes: 1: Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.crl (hash: nb9IHUWRLI8G8N9MimQWqXlWgjDqviNRoAqpivp5KFw=) 2: 553596D65DB511EE841C151FC4F9AE02.roa (hash: 5aNVVXrrk5+fzIwBo8UDYAZxVOdmHrz5HqTDIZHkN8o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.crl rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:32:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 411 (0x19b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3399, serialNumber=3DBDD7ED412480E9355C27F3C113B5640D3186B3 Validity Not Before: Nov 3 03:32:54 2025 GMT Not After : Nov 10 03:32:54 2025 GMT Subject: CN=69082266-df1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:5e:63:6f:06:fd:3a:7e:60:e0:4e:99:99:38: 3f:27:c5:33:90:b6:c8:b3:e9:52:de:6f:69:ea:ab: f5:97:a8:d6:12:a5:8e:2a:96:fd:21:ba:df:5f:8d: 4b:a9:51:d4:bb:f7:01:4b:ca:ef:ab:95:01:19:46: c9:bc:12:f5:af:84:97:45:db:7c:c0:9f:57:90:9b: 00:13:05:4d:ea:26:8f:ee:53:14:56:7e:b4:35:de: f8:f8:6a:04:8a:16:eb:10:3e:1b:20:00:8b:39:fc: 3a:4f:fa:78:31:cf:a6:39:f1:b9:ee:19:68:5f:d0: 33:48:df:1e:06:6a:a2:ba:ca:13:07:d5:53:3b:e0: f0:7c:a8:98:19:94:b0:cb:56:e7:5d:07:e5:95:78: 43:a5:1d:42:09:d8:c8:e0:f5:46:58:7e:8c:0a:b9: 6e:6a:79:e2:b7:c1:09:74:bf:c7:55:b8:37:9c:74: 0c:bf:82:a4:61:c8:b6:85:b0:69:0e:44:7b:8b:2f: 58:ff:87:af:6d:df:3f:4b:82:e0:fb:8c:68:0b:4e: 14:d1:ba:78:92:fd:c9:09:dc:44:de:7c:be:6f:5e: d8:ff:e6:ea:71:32:a1:6b:7a:60:87:84:08:94:a5: 0d:3e:7f:0f:7b:70:9f:2e:84:b9:a5:6f:e8:ad:36: e3:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:79:71:5C:90:C0:18:03:5F:51:DF:97:DD:41:14:0D:AB:E0:BF:D9 X509v3 Authority Key Identifier: keyid:3D:BD:D7:ED:41:24:80:E9:35:5C:27:F3:C1:13:B5:64:0D:31:86:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:11:34:f4:e5:b6:b2:8f:e9:20:4f:4c:2d:37:1c:6f:54:5e: d4:37:2e:18:c5:54:19:00:bb:fe:dc:ce:9a:a8:48:bf:59:37: 8e:61:3e:c3:e8:f3:65:e3:61:a7:76:5a:d2:12:cf:7a:65:be: 4e:3c:81:18:4c:55:cc:4f:9f:40:fc:e9:d6:86:d1:56:31:ef: 76:fd:b6:1e:2b:70:d7:7d:32:c2:b0:70:5e:c8:cd:05:9e:63: d4:17:24:71:77:f3:97:e8:f1:ba:7a:4f:3c:2d:11:34:c0:31: dd:ce:e2:71:35:4f:72:4d:18:a7:40:22:b1:b3:a7:99:28:86: 5b:7d:7b:13:a6:f3:27:1e:a3:fd:a1:db:17:1e:d4:98:92:cb: aa:b3:54:65:37:ba:38:11:70:cd:81:7e:bc:77:89:e0:58:2c: fa:c9:45:88:7a:be:c2:b1:7c:33:60:95:c5:6a:d3:24:08:17: 8a:6d:e5:81:91:b2:6f:e3:b4:8e:46:d0:b7:4f:31:ce:9e:32: 15:2d:89:73:f8:7f:04:14:0a:0e:fc:46:9c:b4:be:f5:d4:cc: 98:52:36:ce:6c:4b:ba:68:7d:0d:d2:b5:fe:e6:9a:33:23:cc: 9c:79:52:4a:49:f1:28:37:b5:dd:98:00:4b:3e:a1:b7:3e:f4: d8:0a:f4:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTMzOTkxMTAvBgNVBAUTKDNEQkREN0VENDEyNDgwRTkzNTVDMjdGM0MxMTNCNTY0 MEQzMTg2QjMwHhcNMjUxMTAzMDMzMjU0WhcNMjUxMTEwMDMzMjU0WjAYMRYwFAYD VQQDEw02OTA4MjI2Ni1kZjFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx15jbwb9On5g4E6ZmTg/J8UzkLbIs+lS3m9p6qv1l6jWEqWOKpb9IbrfX41L qVHUu/cBS8rvq5UBGUbJvBL1r4SXRdt8wJ9XkJsAEwVN6iaP7lMUVn60Nd74+GoE ihbrED4bIACLOfw6T/p4Mc+mOfG57hloX9AzSN8eBmqiusoTB9VTO+DwfKiYGZSw y1bnXQfllXhDpR1CCdjI4PVGWH6MCrluannit8EJdL/HVbg3nHQMv4KkYci2hbBp DkR7iy9Y/4evbd8/S4Lg+4xoC04U0bp4kv3JCdxE3ny+b17Y/+bqcTKha3pgh4QI lKUNPn8Pe3CfLoS5pW/orTbjOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGF5cVyQ wBgDX1Hfl91BFA2r4L/ZMB8GA1UdIwQYMBaAFD291+1BJIDpNVwn88ETtWQNMYaz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzM5OS9CQTY4QzMyODVD QjgxMUVFODUyM0JDN0FDNEY5QUUwMi9QYjNYN1VFa2dPazFYQ2Z6d1JPMVpBMHho ck0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BiM1g3VUVrZ09rMVhDZnp3Uk8xWkEweGhyTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzM5OS9CQTY4QzMyODVDQjgxMUVFODUyM0JDN0FDNEY5QUUwMi9QYjNYN1VFa2dP azFYQ2Z6d1JPMVpBMHhock0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgETT05bayj+kgT0wtNxxvVF7UNy4YxVQZALv+3M6aqEi/WTeOYT7D 6PNl42GndlrSEs96Zb5OPIEYTFXMT59A/OnWhtFWMe92/bYeK3DXfTLCsHBeyM0F nmPUFyRxd/OX6PG6ek88LRE0wDHdzuJxNU9yTRinQCKxs6eZKIZbfXsTpvMnHqP9 odsXHtSYksuqs1RlN7o4EXDNgX68d4ngWCz6yUWIer7CsXwzYJXFatMkCBeKbeWB kbJv47SORtC3TzHOnjIVLYlz+H8EFAoO/EactL711MyYUjbObEu6aH0N0rX+5poz I8yceVJKSfEoN7XdmABLPqG3PvTYCvQT -----END CERTIFICATE-----Generated at Mon Nov 3 18:20:16 2025 by rpki-client