$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5201/45AAA1E81B5511F0A395B813C4F9AE02/3uW4vIUKW2vLRtfjtMl-i4Mop6A.mft File: 3uW4vIUKW2vLRtfjtMl-i4Mop6A.mft (raw, json) Hash identifier: xX24cDrJf1ifjs2Kiuzpou/6mmVp9NvImCxTfEfj5F4= Subject key identifier: 79:35:B5:41:99:6D:69:AB:CA:57:1C:38:26:57:AF:F4:49:63:F8:62 Authority key identifier: DE:E5:B8:BC:85:0A:5B:6B:CB:46:D7:E3:B4:C9:7E:8B:83:28:A7:A0 Certificate issuer: /CN=A91A5201/serialNumber=DEE5B8BC850A5B6BCB46D7E3B4C97E8B8328A7A0 Certificate serial: 62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3uW4vIUKW2vLRtfjtMl-i4Mop6A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5201/45AAA1E81B5511F0A395B813C4F9AE02/3uW4vIUKW2vLRtfjtMl-i4Mop6A.mft Manifest number: 61 Signing time: Sat 25 Oct 2025 10:58:56 +0000 Manifest this update: Sat 25 Oct 2025 10:58:56 +0000 Manifest next update: Sat 01 Nov 2025 10:58:56 +0000 Files and hashes: 1: 3uW4vIUKW2vLRtfjtMl-i4Mop6A.crl (hash: Kf9BF6w04bt6WI9xSuLSqf1WDVppdJy7ftlisKNzSAw=) 2: D0CA23541BC611F09FDAC047C4F9AE02.roa (hash: KE/ITB6hhJ+i5ZAAKHW4Wk+MiRqF5kXhTWgdF88Y+V8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5201/45AAA1E81B5511F0A395B813C4F9AE02/3uW4vIUKW2vLRtfjtMl-i4Mop6A.crl rsync://rpki.apnic.net/member_repository/A91A5201/45AAA1E81B5511F0A395B813C4F9AE02/3uW4vIUKW2vLRtfjtMl-i4Mop6A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3uW4vIUKW2vLRtfjtMl-i4Mop6A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Nov 2025 10:58:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 98 (0x62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5201, serialNumber=DEE5B8BC850A5B6BCB46D7E3B4C97E8B8328A7A0 Validity Not Before: Oct 25 10:58:56 2025 GMT Not After : Nov 1 10:58:56 2025 GMT Subject: CN=68fcad70-45ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:62:95:5c:89:65:2a:36:1b:b0:dc:93:f4:5f: 96:4e:74:0b:23:20:42:fe:09:85:96:8a:06:9f:5b: e1:19:15:7e:91:92:70:9b:e7:95:f6:27:6b:e4:52: c1:cd:72:bf:93:1c:7a:bc:47:84:59:0f:57:53:3a: f9:a8:0e:29:97:f6:d5:b2:db:71:65:1f:4b:f3:1a: 89:89:4f:7d:af:1a:83:8d:90:02:8a:3f:19:d2:ac: 20:35:dc:30:c3:a5:ce:58:b0:a2:93:c7:9f:c0:23: 56:4f:e5:02:10:ae:d9:d0:1d:12:62:ce:ec:f9:83: aa:36:9e:30:ce:44:62:1a:45:d6:c1:c9:69:d8:cf: f0:a9:55:6a:c9:86:d0:d1:a9:27:c3:d5:e6:65:ba: 8b:e5:03:f5:40:31:ba:0d:5a:b9:9b:0a:aa:48:23: 76:dc:25:6f:78:47:1c:29:19:5d:25:2f:31:f5:9d: 1c:89:53:9b:14:34:a4:c1:63:8c:06:2c:27:4c:00: a9:19:a7:8e:7a:6f:34:9c:70:9b:e4:90:ac:ad:08: 96:cd:cb:5c:a1:11:4b:dd:8a:fa:17:a0:ab:df:20: 36:fc:66:e8:63:c5:67:e3:f9:08:b9:2f:0c:c3:2b: 1f:da:2f:8b:88:c1:5d:71:3f:78:8d:bb:a7:9f:e6: 8b:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:35:B5:41:99:6D:69:AB:CA:57:1C:38:26:57:AF:F4:49:63:F8:62 X509v3 Authority Key Identifier: keyid:DE:E5:B8:BC:85:0A:5B:6B:CB:46:D7:E3:B4:C9:7E:8B:83:28:A7:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5201/45AAA1E81B5511F0A395B813C4F9AE02/3uW4vIUKW2vLRtfjtMl-i4Mop6A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3uW4vIUKW2vLRtfjtMl-i4Mop6A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5201/45AAA1E81B5511F0A395B813C4F9AE02/3uW4vIUKW2vLRtfjtMl-i4Mop6A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:a1:34:06:fb:1b:51:35:e9:92:43:33:be:43:7a:d3:81:a7: bc:c3:b4:8a:c8:6f:1a:5d:75:c8:4d:52:f2:6d:5d:f9:13:7f: da:1a:5b:af:88:88:35:13:16:23:a5:79:b7:17:1b:e5:c8:df: cf:e0:29:d7:c7:49:b5:ee:ef:16:4f:26:a4:c8:e7:8f:35:45: da:10:06:aa:44:c6:d4:77:14:51:3a:fa:5e:0d:11:3a:67:cf: f8:7d:9b:a7:19:35:53:53:4e:e0:d6:57:a5:37:0b:dc:0f:4d: e1:3b:d1:06:11:a4:a7:73:1c:a8:a6:06:5d:63:2a:30:ef:cd: 95:85:6e:8f:ee:ff:b8:05:f8:27:ec:e7:96:45:dd:1a:ac:8f: a3:9a:88:fc:40:b3:8e:ba:b8:9b:93:4c:f4:75:99:71:51:e9: 9d:1e:cb:cf:d7:2e:f4:5f:6b:db:f4:30:27:b2:32:bc:bf:a0: a1:b9:b5:17:85:98:b5:68:29:cd:c1:39:26:ed:be:d8:18:0f: 61:41:b9:eb:da:71:d8:15:e9:93:b7:e7:63:f5:02:c0:71:b7: 17:c3:79:b9:36:f4:79:78:c6:19:bb:f7:68:7e:44:16:3d:56: de:ca:76:c7:f2:7a:85:83:c8:43:ff:74:06:8e:8a:47:50:eb: 84:79:c4:8f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NTIwMTExMC8GA1UEBRMoREVFNUI4QkM4NTBBNUI2QkNCNDZEN0UzQjRDOTdFOEI4 MzI4QTdBMDAeFw0yNTEwMjUxMDU4NTZaFw0yNTExMDExMDU4NTZaMBgxFjAUBgNV BAMTDTY4ZmNhZDcwLTQ1ZWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDjYpVciWUqNhuw3JP0X5ZOdAsjIEL+CYWWigafW+EZFX6RknCb55X2J2vkUsHN cr+THHq8R4RZD1dTOvmoDimX9tWy23FlH0vzGomJT32vGoONkAKKPxnSrCA13DDD pc5YsKKTx5/AI1ZP5QIQrtnQHRJizuz5g6o2njDORGIaRdbByWnYz/CpVWrJhtDR qSfD1eZluovlA/VAMboNWrmbCqpII3bcJW94RxwpGV0lLzH1nRyJU5sUNKTBY4wG LCdMAKkZp456bzSccJvkkKytCJbNy1yhEUvdivoXoKvfIDb8ZuhjxWfj+Qi5LwzD Kx/aL4uIwV1xP3iNu6ef5ovzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUeTW1QZlt aavKVxw4Jlev9Elj+GIwHwYDVR0jBBgwFoAU3uW4vIUKW2vLRtfjtMl+i4Mop6Aw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1MjAxLzQ1QUFBMUU4MUI1 NTExRjBBMzk1QjgxM0M0RjlBRTAyLzN1VzR2SVVLVzJ2TFJ0Zmp0TWwtaTRNb3A2 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM3VXNHZJVUtXMnZMUnRmanRNbC1pNE1vcDZBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1 MjAxLzQ1QUFBMUU4MUI1NTExRjBBMzk1QjgxM0M0RjlBRTAyLzN1VzR2SVVLVzJ2 TFJ0Zmp0TWwtaTRNb3A2QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALuhNAb7G1E16ZJDM75DetOBp7zDtIrIbxpddchNUvJtXfkTf9oaW6+I iDUTFiOlebcXG+XI38/gKdfHSbXu7xZPJqTI5481RdoQBqpExtR3FFE6+l4NETpn z/h9m6cZNVNTTuDWV6U3C9wPTeE70QYRpKdzHKimBl1jKjDvzZWFbo/u/7gF+Cfs 55ZF3Rqsj6OaiPxAs466uJuTTPR1mXFR6Z0ey8/XLvRfa9v0MCeyMry/oKG5tReF mLVoKc3BOSbtvtgYD2FBuevacdgV6ZO352P1AsBxtxfDebk29Hl4xhm792h+RBY9 Vt7KdsfyeoWDyEP/dAaOikdQ64R5xI8= -----END CERTIFICATE-----Generated at Mon Oct 27 04:42:07 2025 by rpki-client