$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.mft File: 3W8BT4rUXahdDhbys3aHZ5REhbM.mft (raw, json) Hash identifier: V+H5X1nPkzQvBoWFLOpZDie9NJVDuWoEigWAGVRYiV4= Subject key identifier: 49:C3:0D:79:C5:EF:7B:FF:9A:AB:76:E2:37:3B:83:ED:D5:95:0B:A1 Authority key identifier: DD:6F:01:4F:8A:D4:5D:A8:5D:0E:16:F2:B3:76:87:67:94:44:85:B3 Certificate issuer: /CN=A91E8458/serialNumber=DD6F014F8AD45DA85D0E16F2B3768767944485B3 Certificate serial: 081F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3W8BT4rUXahdDhbys3aHZ5REhbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.mft Manifest number: 0818 Signing time: Sun 02 Nov 2025 20:51:33 +0000 Manifest this update: Sun 02 Nov 2025 20:51:33 +0000 Manifest next update: Sun 09 Nov 2025 20:51:33 +0000 Files and hashes: 1: 3W8BT4rUXahdDhbys3aHZ5REhbM.crl (hash: e0SUzPX+8JD5xU9DAdMuycJH/rUNFhVL1FEp2WQAAs8=) 2: FAE7339CF7B911EA91318653C4F9AE02.roa (hash: 6xP14nks32sgSCrxZSRCROaUVIGpujX9KfbjfXlu4Sw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.crl rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3W8BT4rUXahdDhbys3aHZ5REhbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 20:51:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2079 (0x81f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8458, serialNumber=DD6F014F8AD45DA85D0E16F2B3768767944485B3 Validity Not Before: Nov 2 20:51:33 2025 GMT Not After : Nov 9 20:51:33 2025 GMT Subject: CN=6907c455-637c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:c6:30:6b:6e:39:91:20:9a:35:86:52:b8:a4: 9f:da:04:6b:25:ef:66:eb:35:36:43:b1:1f:f5:4f: d5:29:97:46:b9:81:d6:36:fb:d9:b0:67:cc:28:a6: 55:33:e4:06:65:eb:7f:b6:c2:27:64:97:2a:34:18: 89:1d:5c:10:90:47:e1:20:6d:65:13:87:ab:7e:24: 95:bc:b2:51:a4:2d:db:cd:98:e1:74:55:16:64:1d: 5c:43:79:1f:cd:3b:d9:ef:9e:d2:9b:01:10:ee:74: fc:35:02:c9:3b:22:8c:eb:24:3e:47:f0:fc:74:b2: ea:39:e4:90:6f:de:4b:18:7d:11:2b:9e:bd:bb:4c: c2:03:32:a9:2b:09:5f:20:ef:7b:e0:a7:c1:68:b3: b1:c2:2c:5c:5c:93:b3:3b:48:94:71:fc:21:50:95: 64:9c:74:89:6b:65:2a:72:51:6b:21:78:c2:cf:de: 7f:d4:68:ac:0d:e3:5c:ac:2e:0c:af:df:88:8b:e3: e3:80:34:7f:a1:2e:ad:b8:a3:5b:cf:7c:07:33:f8: 2c:9f:fe:3c:02:71:10:25:b4:b1:2b:50:2f:b7:51: 4d:11:49:61:d9:c6:32:72:4e:57:8c:e3:53:67:17: 2e:33:d0:e6:08:0a:39:1b:4d:b6:0c:86:e5:23:c3: a4:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:C3:0D:79:C5:EF:7B:FF:9A:AB:76:E2:37:3B:83:ED:D5:95:0B:A1 X509v3 Authority Key Identifier: keyid:DD:6F:01:4F:8A:D4:5D:A8:5D:0E:16:F2:B3:76:87:67:94:44:85:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3W8BT4rUXahdDhbys3aHZ5REhbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:54:c2:ef:03:a3:42:54:d3:8c:1b:12:15:ce:50:1d:30:df: 1f:42:0f:96:98:31:e4:c8:db:3e:ac:aa:1d:9b:ef:10:6c:23: 28:0b:ec:09:54:44:12:e9:f5:b5:7e:21:9b:7c:75:5f:59:af: f5:91:84:88:c1:d8:84:93:4b:cb:dd:04:ee:02:12:b9:71:7c: 58:c4:82:84:a4:80:5e:85:55:98:09:1c:11:a3:97:d1:dd:9e: 8a:2a:52:9d:0d:7f:13:f0:90:b7:64:ad:2c:77:35:77:40:ec: 79:79:cc:0d:3a:15:f8:ba:56:91:9f:e2:f5:84:e8:1e:9b:dd: f4:37:60:42:a8:48:6e:a8:23:9a:33:b5:f7:5c:86:66:e6:f0: a9:0e:b1:df:f5:d3:3a:9e:6a:87:74:39:a9:b7:51:4f:5a:25: 55:c4:93:ac:12:8d:fd:8c:16:dd:d4:44:57:9f:d0:0c:79:dc: 3d:d0:a6:64:5f:e2:7d:9c:63:cc:b3:90:bc:05:76:63:53:45: 48:a4:b8:4b:85:14:8d:d8:b0:e4:6d:41:e5:cf:78:11:85:ea: d8:b6:aa:d2:1c:78:38:04:3c:4e:1d:b0:d3:be:44:8f:f3:96: 9c:3c:25:a9:23:7b:18:be:b1:e5:71:19:3e:45:f4:cc:a6:30: 81:62:3d:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCB8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg0NTgxMTAvBgNVBAUTKERENkYwMTRGOEFENDVEQTg1RDBFMTZGMkIzNzY4NzY3 OTQ0NDg1QjMwHhcNMjUxMTAyMjA1MTMzWhcNMjUxMTA5MjA1MTMzWjAYMRYwFAYD VQQDEw02OTA3YzQ1NS02MzdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA48Ywa245kSCaNYZSuKSf2gRrJe9m6zU2Q7Ef9U/VKZdGuYHWNvvZsGfMKKZV M+QGZet/tsInZJcqNBiJHVwQkEfhIG1lE4erfiSVvLJRpC3bzZjhdFUWZB1cQ3kf zTvZ757SmwEQ7nT8NQLJOyKM6yQ+R/D8dLLqOeSQb95LGH0RK569u0zCAzKpKwlf IO974KfBaLOxwixcXJOzO0iUcfwhUJVknHSJa2UqclFrIXjCz95/1GisDeNcrC4M r9+Ii+PjgDR/oS6tuKNbz3wHM/gsn/48AnEQJbSxK1Avt1FNEUlh2cYyck5XjONT ZxcuM9DmCAo5G022DIblI8OkIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEnDDXnF 73v/mqt24jc7g+3VlQuhMB8GA1UdIwQYMBaAFN1vAU+K1F2oXQ4W8rN2h2eURIWz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODQ1OC9GOEFGMTIwMkY2 MTUxMUVBODM3NzAwNkNDNEY5QUUwMi8zVzhCVDRyVVhhaGREaGJ5czNhSFo1UkVo Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNXOEJUNHJVWGFoZERoYnlzM2FIWjVSRWhiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODQ1OC9GOEFGMTIwMkY2MTUxMUVBODM3NzAwNkNDNEY5QUUwMi8zVzhCVDRyVVhh aGREaGJ5czNhSFo1UkVoYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeVMLvA6NCVNOMGxIVzlAdMN8fQg+WmDHkyNs+rKodm+8QbCMoC+wJ VEQS6fW1fiGbfHVfWa/1kYSIwdiEk0vL3QTuAhK5cXxYxIKEpIBehVWYCRwRo5fR 3Z6KKlKdDX8T8JC3ZK0sdzV3QOx5ecwNOhX4ulaRn+L1hOgem930N2BCqEhuqCOa M7X3XIZm5vCpDrHf9dM6nmqHdDmpt1FPWiVVxJOsEo39jBbd1ERXn9AMedw90KZk X+J9nGPMs5C8BXZjU0VIpLhLhRSN2LDkbUHlz3gRherYtqrSHHg4BDxOHbDTvkSP 85acPCWpI3sYvrHlcRk+RfTMpjCBYj0Y -----END CERTIFICATE-----Generated at Tue Nov 4 07:21:18 2025 by rpki-client