$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft File: U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft (raw, json) Hash identifier: nRUfr+gv9I9PuaD2IlgRhtul8eWwTZKVlpsAOGcGTmI= Subject key identifier: C4:05:D6:87:39:56:44:0D:B9:C3:2D:C1:EB:53:06:1C:CA:62:A9:80 Authority key identifier: 53:7B:1B:A1:C0:1B:48:63:47:38:AA:11:59:AE:2B:95:59:0D:DD:91 Certificate issuer: /CN=A91CA735/serialNumber=537B1BA1C01B48634738AA1159AE2B95590DDD91 Certificate serial: E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3sbocAbSGNHOKoRWa4rlVkN3ZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft Manifest number: E3 Signing time: Mon 03 Nov 2025 05:29:37 +0000 Manifest this update: Mon 03 Nov 2025 05:29:37 +0000 Manifest next update: Mon 10 Nov 2025 05:29:37 +0000 Files and hashes: 1: U3sbocAbSGNHOKoRWa4rlVkN3ZE.crl (hash: YFwtYF9RXEOkBatvfdQ59XcwNHK3yJ6xOVVKnEkU70Y=) 2: 38D25300639D11EFB668775FC4F9AE02.roa (hash: GCMBGFfjL07x7SqicgzDicIqCejugsZ+LueaE228tBc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.crl rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3sbocAbSGNHOKoRWa4rlVkN3ZE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:29:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 230 (0xe6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA735, serialNumber=537B1BA1C01B48634738AA1159AE2B95590DDD91 Validity Not Before: Nov 3 05:29:37 2025 GMT Not After : Nov 10 05:29:37 2025 GMT Subject: CN=69083dc1-7133 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:55:77:c0:c6:c8:94:ae:08:25:c3:60:38:6a: 8b:62:0e:3a:a5:52:fb:ca:84:e7:d1:b2:5b:dd:3f: b4:f6:30:ac:91:f2:e8:cf:05:02:ae:e4:e1:90:6b: f5:88:c3:27:39:3c:7c:91:32:7a:62:18:f9:be:e7: 92:f2:90:7b:88:27:27:9e:3b:a2:d5:10:56:f8:96: 42:e5:ab:ad:55:9e:3f:a5:73:47:88:b7:3b:ac:26: d4:43:c9:a1:5b:7e:09:de:53:18:17:0d:ef:2f:c0: b1:a6:d4:4b:95:f2:b2:52:0d:72:85:ee:8b:8e:6c: 64:b7:3b:23:f3:48:ac:ae:b6:fb:a2:69:ec:7b:bf: 94:fa:d7:10:e0:5d:3a:27:8b:6d:c6:88:18:c9:1d: 70:b3:b3:28:18:d6:f7:33:5b:2c:1b:e4:41:a1:8b: 93:88:f8:f0:6e:6d:80:c0:72:4f:59:c3:9b:32:d0: 53:d3:13:93:ce:2a:e5:a8:f8:7d:98:83:4d:bf:9e: 6c:6a:af:64:d0:ad:12:1c:1f:ec:5f:fe:4e:39:34: dc:a2:b1:9b:cd:a0:37:90:d1:18:05:9c:2e:8f:c4: 80:c3:ce:0e:89:ed:59:bc:79:b6:66:50:89:86:10: cd:b5:32:1b:3a:dc:25:5e:d8:6a:12:3d:86:d1:e9: d8:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:05:D6:87:39:56:44:0D:B9:C3:2D:C1:EB:53:06:1C:CA:62:A9:80 X509v3 Authority Key Identifier: keyid:53:7B:1B:A1:C0:1B:48:63:47:38:AA:11:59:AE:2B:95:59:0D:DD:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3sbocAbSGNHOKoRWa4rlVkN3ZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:97:38:5f:36:2c:ac:0c:b7:d1:73:c7:20:af:64:03:fd:74: ac:4d:e7:86:b0:38:3f:dd:fd:5e:52:a3:f6:8f:18:e9:f4:3c: ea:44:9e:72:04:14:00:cc:92:9d:26:0d:e7:b5:64:9a:78:dc: 62:1b:a9:1e:ff:f5:f3:f1:99:65:91:e2:8a:9f:30:7b:19:d4: 74:b2:18:6c:04:ee:aa:12:c4:ed:c2:6f:b5:85:aa:1a:a7:04: 55:32:94:62:7d:5d:57:ac:f2:9d:3b:ca:3f:73:80:a9:94:8e: 07:f1:ce:a9:24:3f:4e:00:c0:82:b5:37:a1:15:f6:e3:98:35: 53:2e:e6:13:51:37:f7:87:93:3e:f2:93:53:21:8a:c2:47:1e: be:3f:8b:6a:4b:68:16:a5:0b:62:0b:47:b7:6c:b0:9b:c7:28: ab:53:14:55:db:3a:74:78:99:83:b9:97:14:d4:f9:7a:bc:92: 5b:26:4a:1a:93:60:2c:92:ab:c7:89:c2:5b:9e:40:24:ca:98: 93:5b:37:77:71:3f:f2:10:b7:fe:61:1a:e1:79:8a:99:14:01: fa:08:a3:fb:6b:be:26:5b:74:09:bc:26:21:62:07:6a:72:d8: d8:8b:7c:ed:11:42:4a:4c:a9:10:c4:ee:40:79:df:91:ca:33: ca:dc:6c:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0E3MzUxMTAvBgNVBAUTKDUzN0IxQkExQzAxQjQ4NjM0NzM4QUExMTU5QUUyQjk1 NTkwREREOTEwHhcNMjUxMTAzMDUyOTM3WhcNMjUxMTEwMDUyOTM3WjAYMRYwFAYD VQQDEw02OTA4M2RjMS03MTMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA11V3wMbIlK4IJcNgOGqLYg46pVL7yoTn0bJb3T+09jCskfLozwUCruThkGv1 iMMnOTx8kTJ6Yhj5vueS8pB7iCcnnjui1RBW+JZC5autVZ4/pXNHiLc7rCbUQ8mh W34J3lMYFw3vL8CxptRLlfKyUg1yhe6Ljmxktzsj80isrrb7omnse7+U+tcQ4F06 J4ttxogYyR1ws7MoGNb3M1ssG+RBoYuTiPjwbm2AwHJPWcObMtBT0xOTzirlqPh9 mINNv55saq9k0K0SHB/sX/5OOTTcorGbzaA3kNEYBZwuj8SAw84Oie1ZvHm2ZlCJ hhDNtTIbOtwlXthqEj2G0enYHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMQF1oc5 VkQNucMtwetTBhzKYqmAMB8GA1UdIwQYMBaAFFN7G6HAG0hjRziqEVmuK5VZDd2R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQTczNS9EMEU5QjFFRTYz OUIxMUVGOUI0RDJBNURDNEY5QUUwMi9VM3Nib2NBYlNHTkhPS29SV2E0cmxWa04z WkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Uzc2JvY0FiU0dOSE9Lb1JXYTRybFZrTjNaRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QTczNS9EMEU5QjFFRTYzOUIxMUVGOUI0RDJBNURDNEY5QUUwMi9VM3Nib2NBYlNH TkhPS29SV2E0cmxWa04zWkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+lzhfNiysDLfRc8cgr2QD/XSsTeeGsDg/3f1eUqP2jxjp9DzqRJ5y BBQAzJKdJg3ntWSaeNxiG6ke//Xz8ZllkeKKnzB7GdR0shhsBO6qEsTtwm+1haoa pwRVMpRifV1XrPKdO8o/c4CplI4H8c6pJD9OAMCCtTehFfbjmDVTLuYTUTf3h5M+ 8pNTIYrCRx6+P4tqS2gWpQtiC0e3bLCbxyirUxRV2zp0eJmDuZcU1Pl6vJJbJkoa k2AskqvHicJbnkAkypiTWzd3cT/yELf+YRrheYqZFAH6CKP7a74mW3QJvCYhYgdq ctjYi3ztEUJKTKkQxO5Aed+RyjPK3GxK -----END CERTIFICATE-----Generated at Tue Nov 4 12:21:19 2025 by rpki-client