$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/9R3GadtZYYTQv5SqHkHl3hWejaU.mft File: 9R3GadtZYYTQv5SqHkHl3hWejaU.mft (raw, json) Hash identifier: DsxqjScx2UXBiWt/oYs9cbJQy1xkIO7EZFjOT2EbKhw= Subject key identifier: 2C:F4:12:00:90:42:6A:2D:9D:3B:B5:50:F6:07:13:2B:B7:1F:47:9D Authority key identifier: F5:1D:C6:69:DB:59:61:84:D0:BF:94:AA:1E:41:E5:DE:15:9E:8D:A5 Certificate issuer: /CN=A91D3D50/serialNumber=F51DC669DB596184D0BF94AA1E41E5DE159E8DA5 Certificate serial: 0CA0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9R3GadtZYYTQv5SqHkHl3hWejaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/9R3GadtZYYTQv5SqHkHl3hWejaU.mft Manifest number: 0C96 Signing time: Fri 24 Oct 2025 18:54:04 +0000 Manifest this update: Fri 24 Oct 2025 18:54:04 +0000 Manifest next update: Fri 31 Oct 2025 18:54:04 +0000 Files and hashes: 1: 9R3GadtZYYTQv5SqHkHl3hWejaU.crl (hash: zrv83Mfir7ODaOBctHsE/dpHyOteucjHTUU+zRzxiVU=) 2: 2DE1069C050311EA93648E33C4F9AE02.roa (hash: lPRimtAIP991qjg2zYQ9MB+u2MSznOVIg7X2f5y/SnM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/9R3GadtZYYTQv5SqHkHl3hWejaU.crl rsync://rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/9R3GadtZYYTQv5SqHkHl3hWejaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9R3GadtZYYTQv5SqHkHl3hWejaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 Oct 2025 18:54:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3232 (0xca0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3D50, serialNumber=F51DC669DB596184D0BF94AA1E41E5DE159E8DA5 Validity Not Before: Oct 24 18:54:04 2025 GMT Not After : Oct 31 18:54:04 2025 GMT Subject: CN=68fbcb4c-4eff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:97:5e:34:c1:79:da:4b:d9:4f:22:65:06:f0: 80:90:f1:52:d3:b9:51:53:4f:c3:52:8e:f4:eb:d4: d5:b6:04:aa:a1:4b:48:cc:de:c4:31:ce:70:15:0a: 11:60:98:79:19:8f:6f:4c:0c:a0:0b:a1:e8:6d:40: 81:d5:8f:09:9e:54:94:8c:28:a3:00:db:2d:36:a2: 09:3f:6b:cc:0c:05:f3:ba:06:bc:d3:da:b7:8e:f7: 53:9c:f3:94:2a:f2:0a:fa:93:d9:18:ff:56:d1:91: 22:82:be:ae:de:6f:b9:43:09:3e:a8:1a:48:f6:ea: e5:52:f7:cc:6e:f3:6d:c6:91:a1:0a:46:2e:d1:b5: f6:41:2c:57:7a:02:61:68:4a:c0:58:d8:b3:2e:24: 36:63:49:93:b5:38:e4:7b:61:1c:41:94:74:eb:16: 66:a2:51:3c:a8:47:5f:f6:ca:10:5d:18:ae:85:0a: 57:bc:2a:4f:7d:02:13:46:99:dc:bd:2e:fa:d3:0b: 3e:bb:3c:66:ac:4d:3d:05:fd:a7:53:d6:6a:d4:fc: 68:11:af:cb:bb:ee:40:e9:33:ce:3d:af:ed:0c:d7: 30:85:bb:f8:41:ef:b8:90:ed:19:d7:bf:50:34:e6: 8a:f6:b9:c2:ed:d9:ea:76:a3:5e:63:f9:91:60:8b: 49:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:F4:12:00:90:42:6A:2D:9D:3B:B5:50:F6:07:13:2B:B7:1F:47:9D X509v3 Authority Key Identifier: keyid:F5:1D:C6:69:DB:59:61:84:D0:BF:94:AA:1E:41:E5:DE:15:9E:8D:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/9R3GadtZYYTQv5SqHkHl3hWejaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9R3GadtZYYTQv5SqHkHl3hWejaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/9R3GadtZYYTQv5SqHkHl3hWejaU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:19:6e:e0:85:e0:b3:d2:ec:52:b6:50:93:9e:93:d4:bc:81: 46:ff:9f:ff:fa:75:31:f2:fe:8d:ef:49:2f:18:6a:9b:9d:5a: 0d:fd:c3:65:28:b4:d4:dd:3a:1e:ec:b6:79:18:5f:a8:6a:d3: c3:d9:e9:e9:ba:75:34:c5:19:1b:ab:6f:76:a3:93:2f:8c:5b: a7:a6:f1:98:6e:45:be:2e:65:33:0f:a7:50:8f:f3:c8:2f:9e: 74:85:a6:f0:a0:83:7d:12:a2:18:00:57:54:56:b2:7a:bd:5b: eb:36:02:e9:a7:ef:5f:b4:55:d1:e3:40:74:69:31:04:4e:08: 70:2c:22:f2:37:1a:30:80:ea:f0:89:43:15:9a:73:5a:97:fa: 51:68:8e:90:4b:0c:a8:64:c7:a7:ac:be:d4:d8:a4:9d:e2:19: bc:66:95:04:05:28:40:c7:05:bc:48:ef:16:cb:b1:03:73:91: 73:68:0c:90:3a:d2:4a:a9:96:5f:af:8e:5e:f3:94:9d:1e:65: 9d:14:2a:e4:3b:94:6c:ff:b3:db:01:e3:b6:83:8c:df:f2:1d: 1e:2d:a5:43:53:95:d4:13:69:b4:2d:8f:07:7b:19:a0:9f:d9: e2:65:6a:3a:d6:92:58:80:d6:68:9d:36:e1:b4:a8:02:f7:1e: e9:e6:8a:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDNENTAxMTAvBgNVBAUTKEY1MURDNjY5REI1OTYxODREMEJGOTRBQTFFNDFFNURF MTU5RThEQTUwHhcNMjUxMDI0MTg1NDA0WhcNMjUxMDMxMTg1NDA0WjAYMRYwFAYD VQQDEw02OGZiY2I0Yy00ZWZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv5deNMF52kvZTyJlBvCAkPFS07lRU0/DUo7069TVtgSqoUtIzN7EMc5wFQoR YJh5GY9vTAygC6HobUCB1Y8JnlSUjCijANstNqIJP2vMDAXzuga809q3jvdTnPOU KvIK+pPZGP9W0ZEigr6u3m+5Qwk+qBpI9urlUvfMbvNtxpGhCkYu0bX2QSxXegJh aErAWNizLiQ2Y0mTtTjke2EcQZR06xZmolE8qEdf9soQXRiuhQpXvCpPfQITRpnc vS760ws+uzxmrE09Bf2nU9Zq1PxoEa/Lu+5A6TPOPa/tDNcwhbv4Qe+4kO0Z179Q NOaK9rnC7dnqdqNeY/mRYItJ8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCz0EgCQ QmotnTu1UPYHEyu3H0edMB8GA1UdIwQYMBaAFPUdxmnbWWGE0L+Uqh5B5d4Vno2l MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEM0Q1MC8xNTQ2NEZENjA1 MDExMUVBQUQ5NzI1MkNDNEY5QUUwMi85UjNHYWR0WllZVFF2NVNxSGtIbDNoV2Vq YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlSM0dhZHRaWVlUUXY1U3FIa0hsM2hXZWphVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE M0Q1MC8xNTQ2NEZENjA1MDExMUVBQUQ5NzI1MkNDNEY5QUUwMi85UjNHYWR0WllZ VFF2NVNxSGtIbDNoV2VqYVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXGW7gheCz0uxStlCTnpPUvIFG/5//+nUx8v6N70kvGGqbnVoN/cNl KLTU3Toe7LZ5GF+oatPD2enpunU0xRkbq292o5MvjFunpvGYbkW+LmUzD6dQj/PI L550habwoIN9EqIYAFdUVrJ6vVvrNgLpp+9ftFXR40B0aTEETghwLCLyNxowgOrw iUMVmnNal/pRaI6QSwyoZMenrL7U2KSd4hm8ZpUEBShAxwW8SO8Wy7EDc5FzaAyQ OtJKqZZfr45e85SdHmWdFCrkO5Rs/7PbAeO2g4zf8h0eLaVDU5XUE2m0LY8Hexmg n9niZWo61pJYgNZonTbhtKgC9x7p5opT -----END CERTIFICATE-----Generated at Sun Oct 26 02:54:08 2025 by rpki-client