$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1691/50C692929D2411E7861A226BC4F9AE02/3ASvGYyX8lgvFa3e7nxoJhHK2lE.mft File: 3ASvGYyX8lgvFa3e7nxoJhHK2lE.mft (raw, json) Hash identifier: 7Ye+F/QUCxHL2j7LH0TAd21gNKDsLsULAMlaiz7uFU4= Subject key identifier: 47:2A:04:2C:7E:B6:EF:5E:E8:FB:EE:FE:00:B3:7D:20:30:E6:9B:42 Authority key identifier: DC:04:AF:19:8C:97:F2:58:2F:15:AD:DE:EE:7C:68:26:11:CA:DA:51 Certificate issuer: /CN=A91D1691/serialNumber=DC04AF198C97F2582F15ADDEEE7C682611CADA51 Certificate serial: 18E6 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/3ASvGYyX8lgvFa3e7nxoJhHK2lE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1691/50C692929D2411E7861A226BC4F9AE02/3ASvGYyX8lgvFa3e7nxoJhHK2lE.mft Manifest number: 18DF Signing time: Tue 04 Nov 2025 15:52:37 +0000 Manifest this update: Tue 04 Nov 2025 15:52:37 +0000 Manifest next update: Tue 11 Nov 2025 15:52:37 +0000 Files and hashes: 1: 3ASvGYyX8lgvFa3e7nxoJhHK2lE.crl (hash: BcwaSZua/Be9eqLL29ijY9T3VYfdVl/RB0TptFaXDOk=) 2: AEA7C9C0818911EA81577016C4F9AE02.roa (hash: iFM56WrKeXwdoA2Uh6qPu0ZtIRkJDq6/ES1KC7jnXoA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1691/50C692929D2411E7861A226BC4F9AE02/3ASvGYyX8lgvFa3e7nxoJhHK2lE.crl rsync://rpki.apnic.net/member_repository/A91D1691/50C692929D2411E7861A226BC4F9AE02/3ASvGYyX8lgvFa3e7nxoJhHK2lE.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/3ASvGYyX8lgvFa3e7nxoJhHK2lE.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:52:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6374 (0x18e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1691, serialNumber=DC04AF198C97F2582F15ADDEEE7C682611CADA51 Validity Not Before: Nov 4 15:52:37 2025 GMT Not After : Nov 11 15:52:37 2025 GMT Subject: CN=690a2145-9b4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:b9:73:c6:04:5a:8e:f4:30:f1:05:d8:83:7a: d2:34:0d:2b:b6:55:e7:0b:62:85:ff:16:8f:9f:36: 05:3b:d6:a9:ef:52:d1:96:29:b7:60:db:a9:0b:51: cd:91:a2:ba:2b:59:4c:59:35:3e:e1:b1:7d:57:93: c0:35:31:dc:eb:c7:d1:c7:38:4e:06:f0:15:4b:64: b3:05:d2:38:b8:cc:2f:a2:db:3e:a2:e1:58:90:cd: 47:74:ca:5a:b7:bd:bb:07:83:e3:b6:2a:3f:f6:f4: b7:5c:3f:e2:ef:3a:32:f6:fc:72:77:78:4f:14:96: df:6d:b6:49:1c:3f:64:0c:7a:a7:af:63:1d:26:87: 4f:39:93:2b:61:d5:52:25:11:59:62:d7:46:63:16: 6c:db:6a:0e:05:27:bd:21:04:03:3a:9b:a0:95:07: 65:94:45:e9:15:a0:37:8c:34:4d:9e:df:21:2e:3b: 0d:28:02:e3:01:89:2e:35:23:fb:45:68:c0:fd:5d: 37:e5:1d:8b:95:54:ab:17:f3:be:35:9e:25:84:f1: c1:82:83:ca:a4:7c:15:4e:08:63:31:7c:87:51:52: 77:81:86:60:f2:3c:2e:56:86:3c:b1:eb:4b:05:2e: 15:03:e1:a6:81:5c:27:bf:d3:c7:ee:42:cf:17:1b: 3b:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:2A:04:2C:7E:B6:EF:5E:E8:FB:EE:FE:00:B3:7D:20:30:E6:9B:42 X509v3 Authority Key Identifier: keyid:DC:04:AF:19:8C:97:F2:58:2F:15:AD:DE:EE:7C:68:26:11:CA:DA:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1691/50C692929D2411E7861A226BC4F9AE02/3ASvGYyX8lgvFa3e7nxoJhHK2lE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/3ASvGYyX8lgvFa3e7nxoJhHK2lE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1691/50C692929D2411E7861A226BC4F9AE02/3ASvGYyX8lgvFa3e7nxoJhHK2lE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:3f:27:3c:3d:5d:4a:46:c1:34:a1:e8:f4:a7:86:93:e1:41: e4:c6:31:0b:29:6f:e6:69:fa:48:b5:77:88:99:12:c8:83:41: cb:21:54:38:b8:c5:9f:7c:fb:fa:ea:6a:c3:ad:5a:c1:39:47: b2:b0:93:82:f7:95:37:66:fc:00:35:0e:9e:85:95:19:93:d7: 3b:9c:c1:5a:bc:cb:05:a7:14:93:13:f0:36:11:d5:b2:6c:e2: 11:d0:68:c0:43:7e:cc:c4:d1:15:8b:84:89:0e:e6:55:50:89: ed:59:8e:29:02:a8:68:ad:cc:71:35:6d:d9:89:2a:fd:0f:92: 3f:3e:c1:76:3b:bc:1e:63:a6:47:b7:8b:25:5b:c6:78:b5:df: 03:17:79:31:3c:6e:ed:0d:71:e1:2e:3e:1d:33:f2:9c:83:f5: e3:e0:67:fb:17:4a:27:ae:da:c3:60:58:e9:18:3f:7d:bb:7b: af:2d:d8:6e:e2:d3:45:26:d8:d8:7c:53:ed:42:de:23:37:5c: b8:56:fd:41:f6:23:6d:a6:5b:d5:5e:15:d4:6c:84:43:1a:96: ce:02:59:13:40:c2:87:9c:df:93:5a:86:d8:65:d0:06:a6:3d: 1c:13:5b:d0:8f:ce:0a:d4:5c:c9:dc:39:9c:0d:52:3f:b1:91: 7b:c4:f4:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGOYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE2OTExMTAvBgNVBAUTKERDMDRBRjE5OEM5N0YyNTgyRjE1QURERUVFN0M2ODI2 MTFDQURBNTEwHhcNMjUxMTA0MTU1MjM3WhcNMjUxMTExMTU1MjM3WjAYMRYwFAYD VQQDEw02OTBhMjE0NS05YjRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyblzxgRajvQw8QXYg3rSNA0rtlXnC2KF/xaPnzYFO9ap71LRlim3YNupC1HN kaK6K1lMWTU+4bF9V5PANTHc68fRxzhOBvAVS2SzBdI4uMwvots+ouFYkM1HdMpa t727B4Pjtio/9vS3XD/i7zoy9vxyd3hPFJbfbbZJHD9kDHqnr2MdJodPOZMrYdVS JRFZYtdGYxZs22oOBSe9IQQDOpuglQdllEXpFaA3jDRNnt8hLjsNKALjAYkuNSP7 RWjA/V035R2LlVSrF/O+NZ4lhPHBgoPKpHwVTghjMXyHUVJ3gYZg8jwuVoY8setL BS4VA+GmgVwnv9PH7kLPFxs7fwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEcqBCx+ tu9e6Pvu/gCzfSAw5ptCMB8GA1UdIwQYMBaAFNwErxmMl/JYLxWt3u58aCYRytpR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTY5MS81MEM2OTI5MjlE MjQxMUU3ODYxQTIyNkJDNEY5QUUwMi8zQVN2R1l5WDhsZ3ZGYTNlN254b0poSEsy bEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzNBU3ZHWXlYOGxndkZhM2U3bnhvSmhISzJsRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTY5MS81MEM2OTI5MjlEMjQxMUU3ODYxQTIyNkJDNEY5QUUwMi8zQVN2R1l5WDhs Z3ZGYTNlN254b0poSEsybEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXPyc8PV1KRsE0oej0p4aT4UHkxjELKW/mafpItXeImRLIg0HLIVQ4 uMWffPv66mrDrVrBOUeysJOC95U3ZvwANQ6ehZUZk9c7nMFavMsFpxSTE/A2EdWy bOIR0GjAQ37MxNEVi4SJDuZVUIntWY4pAqhorcxxNW3ZiSr9D5I/PsF2O7weY6ZH t4slW8Z4td8DF3kxPG7tDXHhLj4dM/Kcg/Xj4Gf7F0onrtrDYFjpGD99u3uvLdhu 4tNFJtjYfFPtQt4jN1y4Vv1B9iNtplvVXhXUbIRDGpbOAlkTQMKHnN+TWobYZdAG pj0cE1vQj84K1FzJ3DmcDVI/sZF7xPRa -----END CERTIFICATE-----Generated at Wed Nov 5 22:02:57 2025 by rpki-client