$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA4F2/2AEDEF9A979311EAB2AD2956C4F9AE02/US3AbkHAiZokofyIXrNG5FMH80c.mft File: US3AbkHAiZokofyIXrNG5FMH80c.mft (raw, json) Hash identifier: 825lf/kF04R2waEoz46SUSsgKcEIYI101NqcA1ssn8U= Subject key identifier: 58:F5:B8:EF:08:E6:D6:27:22:5B:36:46:48:F7:55:ED:A1:05:4F:F1 Authority key identifier: 51:2D:C0:6E:41:C0:89:9A:24:A1:FC:88:5E:B3:46:E4:53:07:F3:47 Certificate issuer: /CN=A91BA4F2/serialNumber=512DC06E41C0899A24A1FC885EB346E45307F347 Certificate serial: 09AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US3AbkHAiZokofyIXrNG5FMH80c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA4F2/2AEDEF9A979311EAB2AD2956C4F9AE02/US3AbkHAiZokofyIXrNG5FMH80c.mft Manifest number: 09A4 Signing time: Sun 02 Nov 2025 19:59:25 +0000 Manifest this update: Sun 02 Nov 2025 19:59:25 +0000 Manifest next update: Sun 09 Nov 2025 19:59:25 +0000 Files and hashes: 1: US3AbkHAiZokofyIXrNG5FMH80c.crl (hash: 6gQR56zyU4Ud85MozCg2zhNtbVTnC+w7D/2VVUcaVyc=) 2: 9EEA3006979411EA8C6FC25AC4F9AE02.roa (hash: Y4bw++TnnqHhnQXoIqONS+4c30WzzpJSk4du/GajLxg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA4F2/2AEDEF9A979311EAB2AD2956C4F9AE02/US3AbkHAiZokofyIXrNG5FMH80c.crl rsync://rpki.apnic.net/member_repository/A91BA4F2/2AEDEF9A979311EAB2AD2956C4F9AE02/US3AbkHAiZokofyIXrNG5FMH80c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US3AbkHAiZokofyIXrNG5FMH80c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 19:59:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2475 (0x9ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA4F2, serialNumber=512DC06E41C0899A24A1FC885EB346E45307F347 Validity Not Before: Nov 2 19:59:25 2025 GMT Not After : Nov 9 19:59:25 2025 GMT Subject: CN=6907b81d-ae20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:53:e8:81:fe:05:0e:1f:48:39:f4:65:9e:97: f1:d9:71:a0:e7:82:80:24:e8:19:fa:dd:26:0a:52: d7:7b:42:cf:75:b3:6e:1d:6f:77:aa:58:91:12:7a: d4:c7:8e:8b:26:58:6f:15:2f:b0:32:f5:35:a2:ff: 2c:3a:1e:e5:cd:3c:b2:da:12:f1:8e:39:89:c5:59: f5:9d:55:39:61:1e:20:ea:b1:7c:ca:6e:9b:6d:28: d9:6b:35:7f:ce:1c:9b:9b:eb:f7:80:60:9a:68:30: 13:d3:e0:d0:20:ed:13:29:c1:78:b4:2d:1a:58:af: 92:c0:01:93:56:4e:23:dd:9a:c1:f2:29:ff:20:10: 56:c5:df:a6:1f:8a:76:d7:9c:05:79:80:a2:71:b1: 34:32:81:ae:6d:77:35:3f:5b:62:77:b8:b4:5c:a0: 35:4b:90:12:d9:d3:a4:62:e6:a9:a8:29:74:2a:0d: 75:9f:7c:53:40:3b:43:dc:31:09:d0:a0:c8:40:0c: 0f:39:83:b4:2b:e3:d4:23:d4:ea:b9:df:65:e3:64: eb:7d:2e:ca:88:da:a4:a5:62:5b:e3:a9:3c:05:e6: ba:fa:b4:92:f7:26:a7:c9:1a:e1:ec:71:8e:90:31: 33:28:af:40:90:12:d0:59:d2:05:1c:5c:e3:7b:85: 28:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:F5:B8:EF:08:E6:D6:27:22:5B:36:46:48:F7:55:ED:A1:05:4F:F1 X509v3 Authority Key Identifier: keyid:51:2D:C0:6E:41:C0:89:9A:24:A1:FC:88:5E:B3:46:E4:53:07:F3:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA4F2/2AEDEF9A979311EAB2AD2956C4F9AE02/US3AbkHAiZokofyIXrNG5FMH80c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US3AbkHAiZokofyIXrNG5FMH80c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA4F2/2AEDEF9A979311EAB2AD2956C4F9AE02/US3AbkHAiZokofyIXrNG5FMH80c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:f3:dc:83:30:35:ff:6f:1c:50:bd:2d:76:65:7c:bf:22:00: 3d:50:5a:0c:46:52:82:35:05:6b:43:4f:22:a9:b9:a3:a5:f1: c3:8d:6b:1e:d1:8d:f5:1f:a2:de:94:6e:c7:84:dd:88:82:43: 53:f9:fa:5f:8a:f4:54:17:b4:9c:62:91:5d:65:e7:30:29:bd: db:07:5f:aa:70:ec:75:f0:79:89:a7:b4:4e:0d:c5:20:7b:15: 93:91:03:b4:43:cd:5d:1c:5a:38:bb:05:59:95:d2:66:28:99: 76:4c:0e:ce:66:62:0e:a6:57:9f:27:43:44:a8:b2:93:ce:72: c0:af:a1:ce:5c:9f:0f:93:de:3e:d8:9d:80:b3:81:d8:b8:c5: f0:f5:c2:01:b6:fc:33:ff:06:d0:5c:d6:98:71:65:e2:47:aa: fc:de:a1:7e:01:21:f7:d1:b2:7f:b1:0c:07:b3:68:c1:82:d8: 84:32:2f:ba:40:e0:34:03:dd:b8:de:af:d2:0f:c0:23:1b:3a: c5:60:b6:d9:26:6e:dd:78:fc:4e:59:b9:38:2f:7d:68:f6:86: a5:d5:ee:1b:9a:5a:63:4d:79:f3:12:e1:f4:50:ab:59:e7:ce: fd:35:f6:fe:3d:8f:75:17:8a:7b:1f:1c:70:cf:0a:28:be:85: 78:3c:2c:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCaswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkE0RjIxMTAvBgNVBAUTKDUxMkRDMDZFNDFDMDg5OUEyNEExRkM4ODVFQjM0NkU0 NTMwN0YzNDcwHhcNMjUxMTAyMTk1OTI1WhcNMjUxMTA5MTk1OTI1WjAYMRYwFAYD VQQDEw02OTA3YjgxZC1hZTIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwlPogf4FDh9IOfRlnpfx2XGg54KAJOgZ+t0mClLXe0LPdbNuHW93qliREnrU x46LJlhvFS+wMvU1ov8sOh7lzTyy2hLxjjmJxVn1nVU5YR4g6rF8ym6bbSjZazV/ zhybm+v3gGCaaDAT0+DQIO0TKcF4tC0aWK+SwAGTVk4j3ZrB8in/IBBWxd+mH4p2 15wFeYCicbE0MoGubXc1P1tid7i0XKA1S5AS2dOkYuapqCl0Kg11n3xTQDtD3DEJ 0KDIQAwPOYO0K+PUI9Tqud9l42TrfS7KiNqkpWJb46k8Bea6+rSS9yanyRrh7HGO kDEzKK9AkBLQWdIFHFzje4Uo6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFj1uO8I 5tYnIls2Rkj3Ve2hBU/xMB8GA1UdIwQYMBaAFFEtwG5BwImaJKH8iF6zRuRTB/NH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTRGMi8yQUVERUY5QTk3 OTMxMUVBQjJBRDI5NTZDNEY5QUUwMi9VUzNBYmtIQWlab2tvZnlJWHJORzVGTUg4 MGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VTM0Fia0hBaVpva29meUlYck5HNUZNSDgwYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTRGMi8yQUVERUY5QTk3OTMxMUVBQjJBRDI5NTZDNEY5QUUwMi9VUzNBYmtIQWla b2tvZnlJWHJORzVGTUg4MGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBa89yDMDX/bxxQvS12ZXy/IgA9UFoMRlKCNQVrQ08iqbmjpfHDjWse 0Y31H6LelG7HhN2IgkNT+fpfivRUF7ScYpFdZecwKb3bB1+qcOx18HmJp7RODcUg exWTkQO0Q81dHFo4uwVZldJmKJl2TA7OZmIOplefJ0NEqLKTznLAr6HOXJ8Pk94+ 2J2As4HYuMXw9cIBtvwz/wbQXNaYcWXiR6r83qF+ASH30bJ/sQwHs2jBgtiEMi+6 QOA0A9243q/SD8AjGzrFYLbZJm7dePxOWbk4L31o9oal1e4bmlpjTXnzEuH0UKtZ 5879Nfb+PY91F4p7HxxwzwoovoV4PCze -----END CERTIFICATE-----Generated at Tue Nov 4 01:03:53 2025 by rpki-client