$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3aSfQfYYpV-cp8_FW66nthbZV2I.mft File: 3aSfQfYYpV-cp8_FW66nthbZV2I.mft (raw, json) Hash identifier: wxBPA1duXSCeGzVgCRRgKgTz0V0hIgHzVCt78L1+voA= Subject key identifier: 5E:19:73:15:B7:A1:5A:45:98:8F:E2:67:82:0B:44:32:8E:E2:92:0E Authority key identifier: DD:A4:9F:41:F6:18:A5:5F:9C:A7:CF:C5:5B:AE:A7:B6:16:D9:57:62 Certificate issuer: /CN=A91A7273/serialNumber=DDA49F41F618A55F9CA7CFC55BAEA7B616D95762 Certificate serial: 8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3aSfQfYYpV-cp8_FW66nthbZV2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3aSfQfYYpV-cp8_FW66nthbZV2I.mft Manifest number: 8B Signing time: Mon 03 Nov 2025 06:35:07 +0000 Manifest this update: Mon 03 Nov 2025 06:35:07 +0000 Manifest next update: Mon 10 Nov 2025 06:35:07 +0000 Files and hashes: 1: 3aSfQfYYpV-cp8_FW66nthbZV2I.crl (hash: /mOeM5rek0MZXaxK4vp53bU/a6bSxS15QfDMY8NkhRg=) 2: 3958EEC642BB11F0B449BB81C4F9AE02.roa (hash: SygYrtM3v/MPPC9qe7TYDUy1/kulSQDEnXRN8vMuKwo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3aSfQfYYpV-cp8_FW66nthbZV2I.crl rsync://rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3aSfQfYYpV-cp8_FW66nthbZV2I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3aSfQfYYpV-cp8_FW66nthbZV2I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:35:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 140 (0x8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7273, serialNumber=DDA49F41F618A55F9CA7CFC55BAEA7B616D95762 Validity Not Before: Nov 3 06:35:07 2025 GMT Not After : Nov 10 06:35:07 2025 GMT Subject: CN=69084d1b-a2ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:8b:ba:71:34:c9:a9:b7:45:39:7c:20:f2:a4: bd:99:20:87:fa:b5:fe:8c:d3:a6:30:53:b7:0f:0c: 74:92:cc:2d:fd:a3:0a:47:0a:1d:c1:30:ca:38:d1: 29:82:22:ef:a3:60:18:aa:7a:1a:67:0f:f1:11:95: a9:45:b4:4a:18:ea:84:bd:36:2c:1b:8f:e4:fd:9a: af:d3:51:8a:6e:9f:7b:0f:aa:62:ec:18:b7:8b:b6: 12:6b:ff:ac:52:4c:02:bd:10:5e:f0:bf:e9:9b:ef: 50:76:89:f1:d8:09:df:f0:6e:f3:d1:f6:19:f4:74: 69:b9:c2:1e:26:5b:c5:12:a9:cd:71:39:4c:23:1f: 45:bf:13:54:23:3a:b4:d2:e7:28:f4:fa:e3:ec:7d: b2:bb:d1:8e:d2:f2:e3:90:13:63:8a:74:85:85:00: 9c:12:69:33:d6:0f:b1:68:47:2d:2e:ee:8b:48:a2: 95:a7:8c:2d:c3:b6:ff:fd:b2:4b:4b:78:67:83:d0: 37:e6:1d:bc:d7:66:9e:e8:2e:7d:9b:90:d8:fb:2a: 24:59:ca:24:6b:e6:de:4f:e2:42:85:a0:c4:e7:cb: b6:32:a2:18:81:f0:06:37:56:e9:48:da:40:48:9a: ea:ae:ca:6e:ae:b3:2b:09:b1:56:5e:d6:00:22:a7: dd:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:19:73:15:B7:A1:5A:45:98:8F:E2:67:82:0B:44:32:8E:E2:92:0E X509v3 Authority Key Identifier: keyid:DD:A4:9F:41:F6:18:A5:5F:9C:A7:CF:C5:5B:AE:A7:B6:16:D9:57:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3aSfQfYYpV-cp8_FW66nthbZV2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3aSfQfYYpV-cp8_FW66nthbZV2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3aSfQfYYpV-cp8_FW66nthbZV2I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:b7:1c:e2:10:90:c5:19:c6:45:43:59:28:2e:02:e7:e3:a8: d0:30:ea:11:f1:41:93:4f:e2:e9:46:8d:5d:22:bf:db:86:fc: 1d:d3:d3:4b:e8:ae:48:c9:cf:bc:cd:f7:57:5e:fb:d1:eb:1f: 72:65:37:90:ce:d0:b9:d2:b7:88:82:55:ef:d4:39:9d:a0:8b: 30:7a:5e:10:fb:bd:9b:de:b3:e3:85:41:1a:f1:40:42:3a:d6: 74:f8:db:a3:13:ed:43:b9:70:36:3a:51:83:84:78:37:f9:cb: 85:a8:7c:8a:62:03:71:6a:c4:1f:5b:38:e8:95:d5:19:b5:58: b6:d4:25:ef:50:a8:4e:9c:7f:b8:b0:a6:6f:6b:95:6f:48:f2: 41:1a:ad:0a:43:eb:97:b9:a7:c6:47:f7:41:2c:a9:62:86:c3: 6a:d2:c7:3a:94:c6:18:20:55:21:c1:d8:b2:91:93:89:37:7b: 89:e1:73:7f:0b:3b:62:b4:31:28:6e:db:4b:77:35:e7:42:29: c6:71:de:81:d3:37:4a:58:1d:75:02:fe:13:9e:ce:17:48:eb: 41:d9:bb:15:09:cb:df:7d:2f:e9:22:57:77:5b:0b:7a:0c:f7: a9:32:8b:49:b3:35:b5:aa:be:d4:11:f8:9f:2f:37:94:06:cc: 78:ec:f3:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTcyNzMxMTAvBgNVBAUTKEREQTQ5RjQxRjYxOEE1NUY5Q0E3Q0ZDNTVCQUVBN0I2 MTZEOTU3NjIwHhcNMjUxMTAzMDYzNTA3WhcNMjUxMTEwMDYzNTA3WjAYMRYwFAYD VQQDEw02OTA4NGQxYi1hMmVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Yu6cTTJqbdFOXwg8qS9mSCH+rX+jNOmMFO3Dwx0kswt/aMKRwodwTDKONEp giLvo2AYqnoaZw/xEZWpRbRKGOqEvTYsG4/k/Zqv01GKbp97D6pi7Bi3i7YSa/+s UkwCvRBe8L/pm+9Qdonx2Anf8G7z0fYZ9HRpucIeJlvFEqnNcTlMIx9FvxNUIzq0 0uco9Prj7H2yu9GO0vLjkBNjinSFhQCcEmkz1g+xaEctLu6LSKKVp4wtw7b//bJL S3hng9A35h2812ae6C59m5DY+yokWcoka+beT+JChaDE58u2MqIYgfAGN1bpSNpA SJrqrspurrMrCbFWXtYAIqfdyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF4ZcxW3 oVpFmI/iZ4ILRDKO4pIOMB8GA1UdIwQYMBaAFN2kn0H2GKVfnKfPxVuup7YW2Vdi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzI3My9GQzUwNTAwRUU3 NzExMUVGOURGQkRENTBDNEY5QUUwMi8zYVNmUWZZWXBWLWNwOF9GVzY2bnRoYlpW MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNhU2ZRZllZcFYtY3A4X0ZXNjZudGhiWlYySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzI3My9GQzUwNTAwRUU3NzExMUVGOURGQkRENTBDNEY5QUUwMi8zYVNmUWZZWXBW LWNwOF9GVzY2bnRoYlpWMkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAitxziEJDFGcZFQ1koLgLn46jQMOoR8UGTT+LpRo1dIr/bhvwd09NL 6K5Iyc+8zfdXXvvR6x9yZTeQztC50reIglXv1DmdoIswel4Q+72b3rPjhUEa8UBC OtZ0+NujE+1DuXA2OlGDhHg3+cuFqHyKYgNxasQfWzjoldUZtVi21CXvUKhOnH+4 sKZva5VvSPJBGq0KQ+uXuafGR/dBLKlihsNq0sc6lMYYIFUhwdiykZOJN3uJ4XN/ CztitDEobttLdzXnQinGcd6B0zdKWB11Av4Tns4XSOtB2bsVCcvffS/pIld3Wwt6 DPepMotJszW1qr7UEfifLzeUBsx47PP7 -----END CERTIFICATE-----Generated at Tue Nov 4 01:03:44 2025 by rpki-client