$ rpki-client -vvf rpki.apnic.net/member_repository/A91C799C/A2DFB336135711EB8D13B215C4F9AE02/3CH4ZzeyOX3SsmCej7QGhuPI92E.mft File: 3CH4ZzeyOX3SsmCej7QGhuPI92E.mft (raw, json) Hash identifier: tGbrVoL8WEvRQ7G13itVnmFYZLCtRpaGsveBfO3FLZE= Subject key identifier: 59:6E:63:21:D9:94:61:84:E4:F6:5F:34:A6:00:4E:9E:4A:39:20:63 Authority key identifier: DC:21:F8:67:37:B2:39:7D:D2:B2:60:9E:8F:B4:06:86:E3:C8:F7:61 Certificate issuer: /CN=A91C799C/serialNumber=DC21F86737B2397DD2B2609E8FB40686E3C8F761 Certificate serial: 07CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3CH4ZzeyOX3SsmCej7QGhuPI92E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C799C/A2DFB336135711EB8D13B215C4F9AE02/3CH4ZzeyOX3SsmCej7QGhuPI92E.mft Manifest number: 07C6 Signing time: Tue 28 Oct 2025 21:06:27 +0000 Manifest this update: Tue 28 Oct 2025 21:06:27 +0000 Manifest next update: Tue 04 Nov 2025 21:06:27 +0000 Files and hashes: 1: 3CH4ZzeyOX3SsmCej7QGhuPI92E.crl (hash: MtdZXOFUKjYCOVmMeEKh4+Ydtig4BbJSMKs0mQADeOw=) 2: 9F5F0EC6135911EBBC97C718C4F9AE02.roa (hash: SiUJ7SYlbA21+yPfD2uZbgHjH4MPfQViyjJFRbUxFiY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C799C/A2DFB336135711EB8D13B215C4F9AE02/3CH4ZzeyOX3SsmCej7QGhuPI92E.crl rsync://rpki.apnic.net/member_repository/A91C799C/A2DFB336135711EB8D13B215C4F9AE02/3CH4ZzeyOX3SsmCej7QGhuPI92E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3CH4ZzeyOX3SsmCej7QGhuPI92E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Nov 2025 21:06:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1995 (0x7cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C799C, serialNumber=DC21F86737B2397DD2B2609E8FB40686E3C8F761 Validity Not Before: Oct 28 21:06:27 2025 GMT Not After : Nov 4 21:06:27 2025 GMT Subject: CN=69013053-c5c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:ed:26:f6:cf:00:ed:7b:19:b9:e3:3a:ca:59: 5b:cf:ca:e3:49:ae:39:e1:f5:08:89:31:8b:42:80: fd:37:0e:77:08:c6:80:ac:cb:ec:c4:f2:d5:c9:44: 1f:ba:70:0d:5e:d7:7c:7a:69:cd:e7:25:ac:11:de: b7:78:12:f3:92:1c:9e:3c:77:46:31:8a:c3:8c:fa: b1:84:ac:36:c4:36:6c:79:65:26:ab:69:46:6a:13: c6:97:ef:92:14:01:9c:27:bc:41:92:35:ef:8b:a6: 6e:de:c7:bf:65:eb:48:3a:1b:94:8b:43:c2:cb:77: 7a:dc:f5:36:09:17:c4:e8:d9:a7:83:6a:af:9a:89: d7:f8:c2:37:9d:37:e1:86:98:a3:2a:58:31:6e:8f: c6:a7:b9:86:38:01:dd:b0:5f:a9:7d:cc:15:bc:a4: a1:39:ed:12:31:9b:25:03:46:2b:40:78:ab:99:a1: d4:64:44:94:9b:09:97:ca:61:e7:65:86:c5:b8:ee: d0:2d:4b:cf:9c:79:b7:59:2e:87:54:10:6b:9c:14: 09:a8:30:6f:d5:d1:aa:b4:11:ea:b6:f4:48:a5:bf: 69:ed:1b:28:99:d3:db:d7:bf:7a:4c:e4:a2:bc:28: d3:03:d4:9f:ca:62:b8:1b:67:f6:4c:a3:31:e0:b7: 95:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:6E:63:21:D9:94:61:84:E4:F6:5F:34:A6:00:4E:9E:4A:39:20:63 X509v3 Authority Key Identifier: keyid:DC:21:F8:67:37:B2:39:7D:D2:B2:60:9E:8F:B4:06:86:E3:C8:F7:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C799C/A2DFB336135711EB8D13B215C4F9AE02/3CH4ZzeyOX3SsmCej7QGhuPI92E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3CH4ZzeyOX3SsmCej7QGhuPI92E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C799C/A2DFB336135711EB8D13B215C4F9AE02/3CH4ZzeyOX3SsmCej7QGhuPI92E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:cf:9c:e9:c3:b7:d0:98:24:ed:d1:c5:ee:44:6e:0a:d8:bf: aa:62:f7:f2:d9:ab:4b:9e:81:55:1f:e4:3d:5d:24:bb:4f:c7: c2:36:ff:87:aa:5d:cd:2d:c5:6c:fb:8f:1e:f3:9e:48:a5:2e: 8e:e8:b4:93:b9:d7:85:34:a6:92:49:95:10:89:f6:a0:89:f3: dd:47:21:b9:ee:d3:c3:23:e7:ae:ee:e8:ee:21:74:b1:6d:58: a7:2e:9f:28:30:6c:d4:e3:3a:d8:ba:79:48:52:2b:40:79:aa: da:b9:26:95:88:35:c4:b7:3a:ba:fd:4c:a0:35:31:1d:53:d4: 79:c7:d3:1c:eb:04:0c:3f:32:33:93:1b:15:5d:9b:3c:ed:32: 0d:1d:fd:ac:42:e8:fd:7c:da:2e:d1:ea:c0:e7:87:e6:18:6c: e4:03:ff:2a:b7:76:a2:c6:8b:93:00:2b:ba:12:80:54:ea:f5: 83:dd:2d:cb:35:5d:55:b7:66:9c:93:ad:77:1a:ae:13:9a:2d: 69:44:f4:2d:6b:56:59:bf:11:30:81:9a:64:57:80:69:7f:87: 30:6e:e6:26:9c:41:cd:e9:5d:0b:ef:43:21:02:ca:1e:31:a7: 00:d0:3d:d8:6e:7f:1f:54:53:cc:cb:69:3a:aa:1e:e9:76:ab: b1:e8:66:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB8swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc5OUMxMTAvBgNVBAUTKERDMjFGODY3MzdCMjM5N0REMkIyNjA5RThGQjQwNjg2 RTNDOEY3NjEwHhcNMjUxMDI4MjEwNjI3WhcNMjUxMTA0MjEwNjI3WjAYMRYwFAYD VQQDEw02OTAxMzA1My1jNWMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9O0m9s8A7XsZueM6yllbz8rjSa454fUIiTGLQoD9Nw53CMaArMvsxPLVyUQf unANXtd8emnN5yWsEd63eBLzkhyePHdGMYrDjPqxhKw2xDZseWUmq2lGahPGl++S FAGcJ7xBkjXvi6Zu3se/ZetIOhuUi0PCy3d63PU2CRfE6Nmng2qvmonX+MI3nTfh hpijKlgxbo/Gp7mGOAHdsF+pfcwVvKShOe0SMZslA0YrQHirmaHUZESUmwmXymHn ZYbFuO7QLUvPnHm3WS6HVBBrnBQJqDBv1dGqtBHqtvRIpb9p7RsomdPb1796TOSi vCjTA9SfymK4G2f2TKMx4LeV+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFluYyHZ lGGE5PZfNKYATp5KOSBjMB8GA1UdIwQYMBaAFNwh+Gc3sjl90rJgno+0BobjyPdh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzk5Qy9BMkRGQjMzNjEz NTcxMUVCOEQxM0IyMTVDNEY5QUUwMi8zQ0g0WnpleU9YM1NzbUNlajdRR2h1UEk5 MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNDSDRaemV5T1gzU3NtQ2VqN1FHaHVQSTkyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Nzk5Qy9BMkRGQjMzNjEzNTcxMUVCOEQxM0IyMTVDNEY5QUUwMi8zQ0g0WnpleU9Y M1NzbUNlajdRR2h1UEk5MkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXz5zpw7fQmCTt0cXuRG4K2L+qYvfy2atLnoFVH+Q9XSS7T8fCNv+H ql3NLcVs+48e855IpS6O6LSTudeFNKaSSZUQifagifPdRyG57tPDI+eu7ujuIXSx bVinLp8oMGzU4zrYunlIUitAearauSaViDXEtzq6/UygNTEdU9R5x9Mc6wQMPzIz kxsVXZs87TINHf2sQuj9fNou0erA54fmGGzkA/8qt3aixouTACu6EoBU6vWD3S3L NV1Vt2ack613Gq4Tmi1pRPQta1ZZvxEwgZpkV4Bpf4cwbuYmnEHN6V0L70MhAsoe MacA0D3Ybn8fVFPMy2k6qh7pdqux6GZo -----END CERTIFICATE-----Generated at Thu Oct 30 15:08:08 2025 by rpki-client