$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft File: gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft (raw, json) Hash identifier: vOM4UCaX1XSltTLKziwNPZyHtAQwoxBa7yf1ebDRAhc= Subject key identifier: 7B:70:D5:F2:BD:1E:23:60:BE:DB:C6:E9:C1:D3:E1:A1:7F:A7:82:91 Authority key identifier: 81:1D:E1:1E:7E:DC:1C:10:76:05:59:EE:B3:9B:FD:66:D6:9A:EA:46 Certificate issuer: /CN=A91E6BEF/serialNumber=811DE11E7EDC1C10760559EEB39BFD66D69AEA46 Certificate serial: 0DE9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gR3hHn7cHBB2BVnus5v9Ztaa6kY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft Manifest number: 0DDF Signing time: Sun 02 Nov 2025 17:52:33 +0000 Manifest this update: Sun 02 Nov 2025 17:52:33 +0000 Manifest next update: Sun 09 Nov 2025 17:52:33 +0000 Files and hashes: 1: gR3hHn7cHBB2BVnus5v9Ztaa6kY.crl (hash: z4xUCDg6OLrY31TppcTO2BTYinox6EK09xapvwJxRGU=) 2: FEBD6C62C4B511E9B7D53A7FC4F9AE02.roa (hash: Pt5AOEwwZxq7lVNTYxsL3f5FIIGV0LQiKBFU4Ct/fFM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.crl rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gR3hHn7cHBB2BVnus5v9Ztaa6kY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 17:52:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3561 (0xde9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6BEF, serialNumber=811DE11E7EDC1C10760559EEB39BFD66D69AEA46 Validity Not Before: Nov 2 17:52:33 2025 GMT Not After : Nov 9 17:52:33 2025 GMT Subject: CN=69079a61-3487 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:00:b4:3f:a5:d7:ed:65:5e:ab:0f:ef:14:9e: 4a:a9:73:64:db:f5:64:b7:58:dd:56:4c:26:54:6d: 47:19:48:61:c5:87:76:58:47:12:8e:5b:ea:67:6f: db:5f:ac:94:f7:54:a4:ec:9e:b3:b2:02:a5:c8:35: 55:9b:a7:7d:08:fc:09:52:e5:1c:10:47:a5:6d:26: 51:94:39:b9:81:94:f2:18:2f:ed:d3:c5:e4:de:83: 11:19:f1:6f:15:98:8a:7e:48:e6:62:0b:50:0a:3b: d5:91:22:57:28:5b:cd:a7:1c:78:ca:2d:d2:0d:d4: ea:25:85:32:ee:c6:19:85:2e:ae:a4:61:d9:ff:69: d6:7a:47:a7:8f:8e:af:d5:a6:59:72:47:8a:85:b4: 0f:e0:e6:da:ba:a3:d4:30:de:e9:31:4c:fd:00:d1: 9a:ff:76:e5:c4:1a:87:e7:66:3b:e2:4c:66:e8:37: 3d:d3:bb:0e:07:89:e2:67:68:35:f7:94:eb:d2:67: f7:7c:e9:3f:c5:2b:48:4e:95:df:c9:d4:01:b3:23: a1:9a:29:4f:84:70:b4:37:c6:a2:ba:9a:78:8b:b7: 89:be:41:9d:8d:73:ce:fd:cc:72:94:41:9f:84:65: ca:f8:37:5d:9b:2c:37:ab:b1:b4:d0:59:47:bc:a6: f6:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:70:D5:F2:BD:1E:23:60:BE:DB:C6:E9:C1:D3:E1:A1:7F:A7:82:91 X509v3 Authority Key Identifier: keyid:81:1D:E1:1E:7E:DC:1C:10:76:05:59:EE:B3:9B:FD:66:D6:9A:EA:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gR3hHn7cHBB2BVnus5v9Ztaa6kY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:37:01:2f:70:8a:f1:bb:6c:12:be:6e:e3:42:23:17:c2:96: 00:91:f9:92:88:d4:fa:56:a7:ca:02:a3:3e:c2:6e:36:41:b4: 66:96:f9:90:96:57:91:68:ba:69:fa:a2:9c:4b:16:ed:0a:5f: f7:8a:d1:59:78:db:66:24:a3:b3:60:f1:97:11:75:a7:1b:ff: 4f:08:5d:d5:e7:93:7a:79:25:78:73:ec:5d:3f:21:80:23:d0: 6c:bf:08:a6:df:49:76:fb:29:79:9a:98:ac:e8:67:5d:81:55: 4a:f6:be:64:c2:e7:85:bb:e4:61:e7:25:94:b8:8e:df:0a:90: b0:ca:a2:0e:69:4e:51:71:90:cb:45:34:83:e0:c9:ec:e0:c9: b1:2f:e4:3b:5f:72:88:23:dc:a0:c2:4d:41:ef:e0:40:1e:1d: ef:ff:ea:ae:5b:93:8f:c1:c3:8d:c4:d5:df:1d:be:45:7c:c6: 1c:3f:95:cc:fc:f4:a3:c7:89:fd:16:38:76:47:78:24:3e:bd: d6:01:e6:de:a5:db:43:0e:9d:de:0b:ae:b9:ba:43:5d:9b:8c: ab:67:b1:fc:45:a4:23:03:c4:5d:ef:0f:50:f2:ff:63:cc:89: 0b:ce:18:de:21:3e:dc:c7:ab:54:2d:f8:09:e1:5b:a2:e2:99: 26:7e:a1:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDekwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZCRUYxMTAvBgNVBAUTKDgxMURFMTFFN0VEQzFDMTA3NjA1NTlFRUIzOUJGRDY2 RDY5QUVBNDYwHhcNMjUxMTAyMTc1MjMzWhcNMjUxMTA5MTc1MjMzWjAYMRYwFAYD VQQDEw02OTA3OWE2MS0zNDg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2AC0P6XX7WVeqw/vFJ5KqXNk2/Vkt1jdVkwmVG1HGUhhxYd2WEcSjlvqZ2/b X6yU91Sk7J6zsgKlyDVVm6d9CPwJUuUcEEelbSZRlDm5gZTyGC/t08Xk3oMRGfFv FZiKfkjmYgtQCjvVkSJXKFvNpxx4yi3SDdTqJYUy7sYZhS6upGHZ/2nWekenj46v 1aZZckeKhbQP4ObauqPUMN7pMUz9ANGa/3blxBqH52Y74kxm6Dc907sOB4niZ2g1 95Tr0mf3fOk/xStITpXfydQBsyOhmilPhHC0N8aiupp4i7eJvkGdjXPO/cxylEGf hGXK+Dddmyw3q7G00FlHvKb2owIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHtw1fK9 HiNgvtvG6cHT4aF/p4KRMB8GA1UdIwQYMBaAFIEd4R5+3BwQdgVZ7rOb/WbWmupG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkJFRi80RUE4NjZDNEM0 NDIxMUU5OTQ3N0UyMUZDNEY5QUUwMi9nUjNoSG43Y0hCQjJCVm51czV2OVp0YWE2 a1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dSM2hIbjdjSEJCMkJWbnVzNXY5WnRhYTZrWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkJFRi80RUE4NjZDNEM0NDIxMUU5OTQ3N0UyMUZDNEY5QUUwMi9nUjNoSG43Y0hC QjJCVm51czV2OVp0YWE2a1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVNwEvcIrxu2wSvm7jQiMXwpYAkfmSiNT6VqfKAqM+wm42QbRmlvmQ lleRaLpp+qKcSxbtCl/3itFZeNtmJKOzYPGXEXWnG/9PCF3V55N6eSV4c+xdPyGA I9Bsvwim30l2+yl5mpis6GddgVVK9r5kwueFu+Rh5yWUuI7fCpCwyqIOaU5RcZDL RTSD4Mns4MmxL+Q7X3KII9ygwk1B7+BAHh3v/+quW5OPwcONxNXfHb5FfMYcP5XM /PSjx4n9Fjh2R3gkPr3WAebepdtDDp3eC665ukNdm4yrZ7H8RaQjA8Rd7w9Q8v9j zIkLzhjeIT7cx6tULfgJ4Vui4pkmfqF8 -----END CERTIFICATE-----Generated at Mon Nov 3 00:14:26 2025 by rpki-client