$ rpki-client -vvf rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.mft File: 3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.mft (raw, json) Hash identifier: cUrNADMXy3ksHfE0Ywdp9C7wP3sss0m0F7MjrbCq6jo= Subject key identifier: 4E:1E:AE:80:21:D4:E5:9C:3D:CC:27:E4:4C:BE:B0:30:AF:BC:C3:7B Authority key identifier: DC:B8:39:31:9F:D5:2E:AD:9F:CB:97:78:29:84:FD:1F:D4:49:2C:17 Certificate issuer: /CN=A91B569E/serialNumber=DCB839319FD52EAD9FCB97782984FD1FD4492C17 Certificate serial: 024E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.mft Manifest number: 0246 Signing time: Wed 05 Nov 2025 01:55:35 +0000 Manifest this update: Wed 05 Nov 2025 01:55:35 +0000 Manifest next update: Wed 12 Nov 2025 01:55:35 +0000 Files and hashes: 1: 3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.crl (hash: xUV6JUzVlGc5qaL5ncXh/6oC7SbPiYrUM8ordzpXORs=) 2: 0CDAA8EEE86611EFA5152A24C4F9AE02.roa (hash: lUMcuws+kkSP+r54F6XS/v0f47726g1ZKxyTfmh7RHY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.crl rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:55:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 590 (0x24e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B569E, serialNumber=DCB839319FD52EAD9FCB97782984FD1FD4492C17 Validity Not Before: Nov 5 01:55:35 2025 GMT Not After : Nov 12 01:55:35 2025 GMT Subject: CN=690aae97-d0b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:6c:18:7a:a6:80:46:e7:56:4f:5b:e3:71:41: 1b:44:24:c2:74:c4:3c:99:b8:56:09:d1:2d:e5:74: 20:92:69:07:1c:29:c5:f5:65:ae:7c:46:17:7f:df: 20:6e:65:52:89:e8:36:45:2e:1c:5e:f3:40:c0:f4: 76:1a:20:3d:24:ad:70:fc:a1:df:91:80:54:84:25: ec:da:6e:66:28:37:64:0f:8f:65:c8:ea:e2:b8:97: 57:45:39:85:3f:9c:38:d3:3b:0c:1c:b2:e0:9b:2a: 0e:e4:75:3b:45:21:a2:6c:0a:d0:d8:8f:a0:61:93: d3:0e:e0:a4:5f:f6:35:ef:13:18:46:b3:69:6d:81: de:7e:6e:da:cf:9a:a2:40:6e:eb:80:3c:b4:2a:ba: c9:e8:ad:37:2d:88:6e:de:f3:8b:5c:27:38:d6:8a: c0:f3:90:d6:b5:b0:cc:67:ee:0c:5b:8a:25:97:a3: 35:4b:1a:fe:22:10:2c:1b:36:ff:9a:4a:28:fe:ce: e9:5d:15:ef:c1:23:f1:e7:ae:cb:e2:3b:5b:df:5d: c2:97:3d:c8:07:ae:16:1c:8f:b7:da:52:4d:1f:fc: f9:fc:32:57:d9:77:c8:1c:9a:bf:5d:50:f1:6e:40: b4:1a:b2:d2:86:ad:41:86:a9:c8:16:0d:d1:d9:62: 05:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:1E:AE:80:21:D4:E5:9C:3D:CC:27:E4:4C:BE:B0:30:AF:BC:C3:7B X509v3 Authority Key Identifier: keyid:DC:B8:39:31:9F:D5:2E:AD:9F:CB:97:78:29:84:FD:1F:D4:49:2C:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:f6:94:b5:79:83:62:e1:50:e9:96:f9:b1:89:14:95:3e:86: 36:21:1d:43:58:c6:3e:f4:f9:05:a0:f8:50:17:63:a0:29:99: bb:28:dc:33:6f:e5:ad:c9:bc:83:98:48:71:17:99:65:b5:ac: 92:d9:60:99:81:05:dc:a2:57:1a:7b:2e:19:bc:56:31:59:63: a5:9b:a0:59:be:6f:da:18:5d:96:13:60:f6:5d:cd:64:3c:f9: d7:6c:13:59:f5:b1:9c:52:72:6f:1f:ac:d1:01:13:40:5e:b9: b3:8f:79:2e:b9:f2:21:43:b4:28:60:42:c8:e4:23:bc:d3:fa: 85:ce:5d:ef:46:6c:8f:b8:bc:0d:a2:01:2b:01:ca:3c:15:4e: 83:e1:de:37:a0:bb:56:ca:39:42:7c:5e:c5:57:c9:4d:d6:e0: f3:3b:8f:a5:c3:b4:5d:5f:12:69:ad:95:41:10:3b:8c:45:21: 26:9a:73:71:8a:01:48:88:53:c9:dd:ec:25:48:83:fe:74:49: 99:74:2a:b8:ac:b5:50:c2:e1:85:ff:92:23:e1:e8:5f:79:67: 2b:aa:ac:87:3a:b0:49:14:3b:ed:c7:57:44:18:e0:5c:77:38: 9c:66:29:c7:87:ce:87:18:11:c2:9b:0d:c1:77:f9:dc:7a:9c: b6:fb:49:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAk4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU2OUUxMTAvBgNVBAUTKERDQjgzOTMxOUZENTJFQUQ5RkNCOTc3ODI5ODRGRDFG RDQ0OTJDMTcwHhcNMjUxMTA1MDE1NTM1WhcNMjUxMTEyMDE1NTM1WjAYMRYwFAYD VQQDEw02OTBhYWU5Ny1kMGI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAymwYeqaARudWT1vjcUEbRCTCdMQ8mbhWCdEt5XQgkmkHHCnF9WWufEYXf98g bmVSieg2RS4cXvNAwPR2GiA9JK1w/KHfkYBUhCXs2m5mKDdkD49lyOriuJdXRTmF P5w40zsMHLLgmyoO5HU7RSGibArQ2I+gYZPTDuCkX/Y17xMYRrNpbYHefm7az5qi QG7rgDy0KrrJ6K03LYhu3vOLXCc41orA85DWtbDMZ+4MW4oll6M1Sxr+IhAsGzb/ mkoo/s7pXRXvwSPx567L4jtb313Clz3IB64WHI+32lJNH/z5/DJX2XfIHJq/XVDx bkC0GrLShq1BhqnIFg3R2WIFMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE4eroAh 1OWcPcwn5Ey+sDCvvMN7MB8GA1UdIwQYMBaAFNy4OTGf1S6tn8uXeCmE/R/USSwX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTY5RS8yNTI1QzdDODRE MjUxMUVEQTZEREQyMkVDNEY5QUUwMi8zTGc1TVpfVkxxMmZ5NWQ0S1lUOUg5UkpM QmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNMZzVNWl9WTHEyZnk1ZDRLWVQ5SDlSSkxCYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTY5RS8yNTI1QzdDODREMjUxMUVEQTZEREQyMkVDNEY5QUUwMi8zTGc1TVpfVkxx MmZ5NWQ0S1lUOUg5UkpMQmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCk9pS1eYNi4VDplvmxiRSVPoY2IR1DWMY+9PkFoPhQF2OgKZm7KNwz b+WtybyDmEhxF5lltayS2WCZgQXcolcaey4ZvFYxWWOlm6BZvm/aGF2WE2D2Xc1k PPnXbBNZ9bGcUnJvH6zRARNAXrmzj3kuufIhQ7QoYELI5CO80/qFzl3vRmyPuLwN ogErAco8FU6D4d43oLtWyjlCfF7FV8lN1uDzO4+lw7RdXxJprZVBEDuMRSEmmnNx igFIiFPJ3ewlSIP+dEmZdCq4rLVQwuGF/5Ij4ehfeWcrqqyHOrBJFDvtx1dEGOBc dzicZinHh86HGBHCmw3Bd/ncepy2+0n1 -----END CERTIFICATE-----Generated at Wed Nov 5 21:10:28 2025 by rpki-client