$ rpki-client -vvf rpki.apnic.net/member_repository/A91A840E/DA10FF6662EE11E3AAD99F835911EA32/f3UA8ZRiBwd03Is7S5avThubtUU.mft File: f3UA8ZRiBwd03Is7S5avThubtUU.mft (raw, json) Hash identifier: K63P7sgVFSd9TCcQoJcA/uTTChudn/cv0Xz19hzWx3o= Subject key identifier: 1D:4C:06:09:1A:B4:36:8F:C9:19:92:D2:B9:40:B6:D7:FA:E5:40:75 Authority key identifier: 7F:75:00:F1:94:62:07:07:74:DC:8B:3B:4B:96:AF:4E:1B:9B:B5:45 Certificate issuer: /CN=A91A840E/serialNumber=7F7500F19462070774DC8B3B4B96AF4E1B9BB545 Certificate serial: 2E5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f3UA8ZRiBwd03Is7S5avThubtUU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A840E/DA10FF6662EE11E3AAD99F835911EA32/f3UA8ZRiBwd03Is7S5avThubtUU.mft Manifest number: 2E5D Signing time: Tue 04 Nov 2025 15:30:40 +0000 Manifest this update: Tue 04 Nov 2025 15:30:40 +0000 Manifest next update: Tue 11 Nov 2025 15:30:40 +0000 Files and hashes: 1: f3UA8ZRiBwd03Is7S5avThubtUU.crl (hash: 3pZghdVwxL9j07AAUhLsFuMFdHghATkD08WrhkyE+68=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A840E/DA10FF6662EE11E3AAD99F835911EA32/f3UA8ZRiBwd03Is7S5avThubtUU.crl rsync://rpki.apnic.net/member_repository/A91A840E/DA10FF6662EE11E3AAD99F835911EA32/f3UA8ZRiBwd03Is7S5avThubtUU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f3UA8ZRiBwd03Is7S5avThubtUU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:30:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11869 (0x2e5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A840E, serialNumber=7F7500F19462070774DC8B3B4B96AF4E1B9BB545 Validity Not Before: Nov 4 15:30:40 2025 GMT Not After : Nov 11 15:30:40 2025 GMT Subject: CN=690a1c20-5b34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:b3:52:42:8a:d5:65:95:0a:ba:b8:b0:0b:2d: 51:ff:f9:2d:82:88:d5:77:97:6e:f8:22:ac:21:b5: c4:47:52:92:d3:23:44:f0:04:cc:ab:45:3b:ad:91: 1c:31:8e:77:2f:7b:50:20:95:ce:bb:c8:37:e2:2f: 8d:5e:52:5e:90:08:8e:de:fe:05:3b:a3:46:2e:ed: 4a:b0:42:d2:7b:e3:5f:06:32:f4:c7:57:0e:c1:1b: 14:f3:e8:1b:45:4e:b6:73:f5:15:99:76:8e:46:b8: 15:0a:02:3a:0c:d6:2f:cc:13:26:87:7a:32:60:bf: a2:5b:54:4d:70:a0:42:7b:2d:d8:b8:33:2a:6d:38: 51:3e:22:b8:7f:6b:43:5c:a8:fc:6e:eb:45:b6:30: 1e:6f:f8:c3:07:5d:fe:24:c9:e9:b9:2c:7f:08:af: 63:a7:ce:e7:25:e4:03:42:6e:42:97:fc:f2:13:1a: af:bd:89:a4:3e:ff:85:d1:c5:87:9c:68:67:a3:b2: f2:61:06:99:9a:02:e6:f9:a7:c9:79:0d:09:83:a4: fd:2a:ca:7f:0a:97:d0:5f:b5:6e:b3:cd:c0:30:1e: 2c:1f:d9:ad:90:92:ac:f2:3d:50:b8:11:37:6f:45: a1:54:3b:5c:0a:32:f4:81:83:ed:b5:36:8f:5e:0f: 98:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:4C:06:09:1A:B4:36:8F:C9:19:92:D2:B9:40:B6:D7:FA:E5:40:75 X509v3 Authority Key Identifier: keyid:7F:75:00:F1:94:62:07:07:74:DC:8B:3B:4B:96:AF:4E:1B:9B:B5:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A840E/DA10FF6662EE11E3AAD99F835911EA32/f3UA8ZRiBwd03Is7S5avThubtUU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f3UA8ZRiBwd03Is7S5avThubtUU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A840E/DA10FF6662EE11E3AAD99F835911EA32/f3UA8ZRiBwd03Is7S5avThubtUU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:ed:57:ed:fb:30:7a:37:63:0c:7e:a2:51:b6:62:01:b9:22: ed:91:02:5b:db:07:24:0e:7d:a8:60:a6:d6:1b:f6:fe:99:11: f1:24:cb:10:69:62:ec:ac:e5:0c:e1:b4:92:86:a8:67:7c:e7: 1e:c4:62:90:3d:3a:96:08:a5:cb:75:43:2c:18:54:bd:ff:54: b8:26:41:a1:9b:7b:d7:d5:84:15:96:25:f4:9c:05:cf:82:3c: ce:b6:fc:e6:5d:a3:83:18:8d:db:6a:c7:d9:da:cd:8d:d5:e2: c2:3d:ad:7a:d0:83:53:de:cf:46:76:6c:cd:82:49:6e:e3:34: d1:f6:5d:49:fc:60:9d:72:d9:6a:b9:14:3f:c9:8f:14:fd:8a: 41:c0:b0:5c:dd:99:bc:f0:5c:46:a7:cf:b9:b3:21:6a:19:87: e9:44:67:eb:7c:e8:d1:83:58:36:36:2f:f0:41:b8:ec:91:da: 5d:74:66:e6:fb:82:5f:e8:2e:6b:ae:63:1d:4c:a7:f1:df:52: 62:79:fc:de:4f:9a:e1:7b:40:cd:be:ef:1e:3e:66:06:07:33: a1:de:3a:41:3b:84:56:35:5f:9e:1d:fa:71:f0:0c:95:ee:03: a5:f3:0d:2c:da:8a:a2:1c:c4:53:5a:d9:c4:ef:fd:86:b8:08: b8:60:41:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLl0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTg0MEUxMTAvBgNVBAUTKDdGNzUwMEYxOTQ2MjA3MDc3NERDOEIzQjRCOTZBRjRF MUI5QkI1NDUwHhcNMjUxMTA0MTUzMDQwWhcNMjUxMTExMTUzMDQwWjAYMRYwFAYD VQQDEw02OTBhMWMyMC01YjM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3LNSQorVZZUKuriwCy1R//ktgojVd5du+CKsIbXER1KS0yNE8ATMq0U7rZEc MY53L3tQIJXOu8g34i+NXlJekAiO3v4FO6NGLu1KsELSe+NfBjL0x1cOwRsU8+gb RU62c/UVmXaORrgVCgI6DNYvzBMmh3oyYL+iW1RNcKBCey3YuDMqbThRPiK4f2tD XKj8butFtjAeb/jDB13+JMnpuSx/CK9jp87nJeQDQm5Cl/zyExqvvYmkPv+F0cWH nGhno7LyYQaZmgLm+afJeQ0Jg6T9Ksp/CpfQX7Vus83AMB4sH9mtkJKs8j1QuBE3 b0WhVDtcCjL0gYPttTaPXg+YuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB1MBgka tDaPyRmS0rlAttf65UB1MB8GA1UdIwQYMBaAFH91APGUYgcHdNyLO0uWr04bm7VF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODQwRS9EQTEwRkY2NjYy RUUxMUUzQUFEOTlGODM1OTExRUEzMi9mM1VBOFpSaUJ3ZDAzSXM3UzVhdlRodWJ0 VVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2YzVUE4WlJpQndkMDNJczdTNWF2VGh1YnRVVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODQwRS9EQTEwRkY2NjYyRUUxMUUzQUFEOTlGODM1OTExRUEzMi9mM1VBOFpSaUJ3 ZDAzSXM3UzVhdlRodWJ0VVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBI7Vft+zB6N2MMfqJRtmIBuSLtkQJb2wckDn2oYKbWG/b+mRHxJMsQ aWLsrOUM4bSShqhnfOcexGKQPTqWCKXLdUMsGFS9/1S4JkGhm3vX1YQVliX0nAXP gjzOtvzmXaODGI3basfZ2s2N1eLCPa160INT3s9GdmzNgklu4zTR9l1J/GCdctlq uRQ/yY8U/YpBwLBc3Zm88FxGp8+5syFqGYfpRGfrfOjRg1g2Ni/wQbjskdpddGbm +4Jf6C5rrmMdTKfx31JiefzeT5rhe0DNvu8ePmYGBzOh3jpBO4RWNV+eHfpx8AyV 7gOl8w0s2oqiHMRTWtnE7/2GuAi4YEHF -----END CERTIFICATE-----Generated at Wed Nov 5 19:32:32 2025 by rpki-client