$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.mft File: 3xHpJo0GrlO6-3QTvTT_OHjk7tA.mft (raw, json) Hash identifier: GQGzWVJXAJpptnvQr/fqNTX8GpkTH618yNuGg3kiH1E= Subject key identifier: FE:09:BD:D3:43:6D:CE:27:04:F8:E1:6C:2D:F8:D2:C1:7E:6C:5F:91 Authority key identifier: DF:11:E9:26:8D:06:AE:53:BA:FB:74:13:BD:34:FF:38:78:E4:EE:D0 Certificate issuer: /CN=A91BC64D/serialNumber=DF11E9268D06AE53BAFB7413BD34FF3878E4EED0 Certificate serial: 068B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3xHpJo0GrlO6-3QTvTT_OHjk7tA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.mft Manifest number: 0680 Signing time: Tue 28 Oct 2025 22:17:23 +0000 Manifest this update: Tue 28 Oct 2025 22:17:23 +0000 Manifest next update: Tue 04 Nov 2025 22:17:23 +0000 Files and hashes: 1: 3xHpJo0GrlO6-3QTvTT_OHjk7tA.crl (hash: MUXXiLszry2Qmg2YyiWYTrvfTPYS08n2EMcpiPbeVec=) 2: FC583AC6CC8511EC8D238672C4F9AE02.roa (hash: 4nQWYZbXWSJ3PqE4ZBiXzBzUwOjlbjDx0Oq7v5W8vCQ=) 3: FD987A54CC8511EC8D238672C4F9AE02.roa (hash: MzEQJvzOJlRcf4tMcorSrwSuzHCC7BZBlDirsliZQdI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.crl rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3xHpJo0GrlO6-3QTvTT_OHjk7tA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Nov 2025 22:17:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1675 (0x68b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC64D, serialNumber=DF11E9268D06AE53BAFB7413BD34FF3878E4EED0 Validity Not Before: Oct 28 22:17:23 2025 GMT Not After : Nov 4 22:17:23 2025 GMT Subject: CN=690140f3-cca0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:f8:4c:70:a3:4b:b0:06:a4:19:1e:3a:2f:1b: 45:c4:5d:0a:b0:a9:3c:ce:70:b8:26:73:63:04:13: 60:ee:6e:75:84:30:47:db:ee:d1:74:1d:93:82:47: 58:d5:43:89:5a:18:0f:9f:ab:fa:a5:c6:ad:87:fb: c4:58:97:1b:1d:e0:d7:0b:07:ed:4f:37:4c:cd:e1: 52:d8:41:19:f1:df:a3:71:09:a3:5a:37:12:c9:60: 40:fb:fe:5a:c9:75:09:39:96:b0:1b:4b:e9:a3:3d: 06:8b:9f:80:04:68:7d:f3:c7:d7:62:25:f5:f0:ba: ef:95:47:d0:81:67:d9:bf:c2:f6:1e:2b:42:51:19: 96:f9:a4:7d:2b:1e:6e:e9:87:06:a4:79:71:17:07: 7b:a3:08:3a:ab:c2:26:44:72:58:85:b5:40:67:23: 9a:e9:36:44:96:b3:2e:0a:f3:7f:87:d8:14:2c:1c: 20:62:aa:e7:39:5e:2d:3f:8a:d0:80:70:37:d8:74: a2:97:13:6f:f5:64:60:6e:b6:75:04:7e:34:77:04: d8:19:c3:61:f4:98:0d:53:33:d2:bb:8c:ac:5e:2e: 31:2b:49:dc:79:f9:fc:3d:c6:bc:29:a8:a5:fe:d0: 23:02:25:01:d9:e4:70:d1:23:c9:fe:b6:7d:1c:f8: 10:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:09:BD:D3:43:6D:CE:27:04:F8:E1:6C:2D:F8:D2:C1:7E:6C:5F:91 X509v3 Authority Key Identifier: keyid:DF:11:E9:26:8D:06:AE:53:BA:FB:74:13:BD:34:FF:38:78:E4:EE:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3xHpJo0GrlO6-3QTvTT_OHjk7tA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:16:1f:e5:be:e5:01:f2:89:4a:e4:05:02:4f:a2:da:4e:c0: f1:f7:b0:31:67:22:ca:9b:36:61:b6:60:07:f6:ac:c0:9c:7a: 71:13:99:bb:ed:4d:bb:18:87:48:fd:70:6e:11:e5:ec:7b:5e: 49:1f:8e:3f:6c:fe:9a:fc:48:e4:0d:9a:cd:1e:5e:42:70:0e: 68:f6:e6:3b:b3:44:d3:27:c0:68:0a:c3:c3:a1:26:37:f7:5f: b6:3e:3a:8e:43:ec:2c:ca:19:cd:12:23:d2:f3:81:8a:19:12: 11:0a:53:ba:01:8d:2b:23:e5:7f:16:fc:00:36:ab:e1:71:31: 1d:18:b7:fc:0e:f8:e3:cd:e1:c0:2b:5a:3f:77:a0:e2:66:a6: 4d:a1:62:1c:76:5b:34:4c:4f:e8:08:c1:f9:e6:7a:33:a5:73: 79:4e:e0:78:b5:26:17:9c:da:1e:29:84:4a:8f:9c:b5:e1:8f: 03:7d:f7:14:a5:16:62:26:a7:68:60:84:be:94:27:98:26:a6: d5:a5:9c:1e:03:5f:ca:96:b6:71:c1:ef:aa:c4:cd:ef:d6:29: ba:7b:f1:16:49:c4:03:0e:fc:a0:87:bf:d0:de:a4:48:fa:44: c3:d1:06:b0:1a:17:d8:b1:78:e9:9b:fd:90:04:f9:cd:c7:53: 3e:47:14:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBoswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkM2NEQxMTAvBgNVBAUTKERGMTFFOTI2OEQwNkFFNTNCQUZCNzQxM0JEMzRGRjM4 NzhFNEVFRDAwHhcNMjUxMDI4MjIxNzIzWhcNMjUxMTA0MjIxNzIzWjAYMRYwFAYD VQQDEw02OTAxNDBmMy1jY2EwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuPhMcKNLsAakGR46LxtFxF0KsKk8znC4JnNjBBNg7m51hDBH2+7RdB2TgkdY 1UOJWhgPn6v6pcath/vEWJcbHeDXCwftTzdMzeFS2EEZ8d+jcQmjWjcSyWBA+/5a yXUJOZawG0vpoz0Gi5+ABGh988fXYiX18LrvlUfQgWfZv8L2HitCURmW+aR9Kx5u 6YcGpHlxFwd7owg6q8ImRHJYhbVAZyOa6TZElrMuCvN/h9gULBwgYqrnOV4tP4rQ gHA32HSilxNv9WRgbrZ1BH40dwTYGcNh9JgNUzPSu4ysXi4xK0ncefn8Pca8Kail /tAjAiUB2eRw0SPJ/rZ9HPgQtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP4JvdND bc4nBPjhbC340sF+bF+RMB8GA1UdIwQYMBaAFN8R6SaNBq5Tuvt0E700/zh45O7Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzY0RC9CMkVGM0UzNDk1 RDYxMUVCOTgyMTVDMThDNEY5QUUwMi8zeEhwSm8wR3JsTzYtM1FUdlRUX09Iams3 dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzN4SHBKbzBHcmxPNi0zUVR2VFRfT0hqazd0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QzY0RC9CMkVGM0UzNDk1RDYxMUVCOTgyMTVDMThDNEY5QUUwMi8zeEhwSm8wR3Js TzYtM1FUdlRUX09Iams3dEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaFh/lvuUB8olK5AUCT6LaTsDx97AxZyLKmzZhtmAH9qzAnHpxE5m7 7U27GIdI/XBuEeXse15JH44/bP6a/EjkDZrNHl5CcA5o9uY7s0TTJ8BoCsPDoSY3 91+2PjqOQ+wsyhnNEiPS84GKGRIRClO6AY0rI+V/FvwANqvhcTEdGLf8DvjjzeHA K1o/d6DiZqZNoWIcdls0TE/oCMH55nozpXN5TuB4tSYXnNoeKYRKj5y14Y8DffcU pRZiJqdoYIS+lCeYJqbVpZweA1/KlrZxwe+qxM3v1im6e/EWScQDDvygh7/Q3qRI +kTD0QawGhfYsXjpm/2QBPnNx1M+RxSm -----END CERTIFICATE-----Generated at Thu Oct 30 19:29:19 2025 by rpki-client