$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft File: 3rTAuQf6yhxdN3a9SUb0uqjKazA.mft (raw, json) Hash identifier: hJuDdzcs0j4fyY/ZIM4nqEKcedJh+r5jYES2KUDW3bg= Subject key identifier: D3:BF:4F:A7:DF:16:17:41:FC:86:4C:00:E6:C0:70:7E:33:5B:4F:D9 Authority key identifier: DE:B4:C0:B9:07:FA:CA:1C:5D:37:76:BD:49:46:F4:BA:A8:CA:6B:30 Certificate issuer: /CN=A91F3B5F/serialNumber=DEB4C0B907FACA1C5D3776BD4946F4BAA8CA6B30 Certificate serial: 71 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3rTAuQf6yhxdN3a9SUb0uqjKazA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft Manifest number: 70 Signing time: Wed 05 Nov 2025 07:08:15 +0000 Manifest this update: Wed 05 Nov 2025 07:08:14 +0000 Manifest next update: Wed 12 Nov 2025 07:08:14 +0000 Files and hashes: 1: 3rTAuQf6yhxdN3a9SUb0uqjKazA.crl (hash: SQ3fhti2Q+u/6D+g0hUQu3/AlYRfzF+KNx/u9/ylfhQ=) 2: 0B65C980136D11F09F542C81C4F9AE02.roa (hash: VBqh2E7rkd2+euZfBVuvn8Wuy6ZridPl7cQmEbFqT/k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.crl rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3rTAuQf6yhxdN3a9SUb0uqjKazA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:08:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 113 (0x71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3B5F, serialNumber=DEB4C0B907FACA1C5D3776BD4946F4BAA8CA6B30 Validity Not Before: Nov 5 07:08:14 2025 GMT Not After : Nov 12 07:08:14 2025 GMT Subject: CN=690af7de-7d25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:4c:00:71:02:8b:3e:4f:81:90:6d:fa:66:93: 69:de:de:94:a6:0d:fa:3b:bd:35:bb:2f:31:f0:76: 3a:77:41:4a:4e:82:89:97:fd:a8:48:d8:d9:5a:c8: a0:ec:3c:76:6b:50:83:4a:52:1c:0c:8b:24:57:9a: ad:62:cf:19:55:91:5c:8c:93:96:d3:3c:5a:77:d5: df:be:f4:cb:7d:10:8d:d9:74:6b:bf:98:19:84:c8: 49:23:5b:73:ff:99:40:5e:7f:ec:1e:c5:d4:f3:db: 62:98:c8:fb:9f:69:8d:29:67:fb:a3:0c:38:27:c9: cc:c4:2a:87:c9:8f:4f:6c:68:0e:bb:2f:8a:01:58: 85:75:00:0c:07:ea:dd:0f:86:e9:7a:29:35:02:fe: 08:a5:ea:65:27:db:5a:04:da:2e:ba:a4:09:8f:67: 3e:5a:df:cf:ab:35:34:69:c5:1e:9a:53:a4:1f:ed: cd:89:67:c6:85:b3:94:d5:5a:1e:11:f6:0a:1c:a5: 93:a0:58:77:f9:af:92:20:5b:34:d0:24:12:54:aa: 67:85:b1:76:fc:18:6a:46:0d:d7:8e:5b:54:a2:aa: bf:be:38:91:5e:2c:65:a6:4a:2d:97:8e:60:a8:bc: 27:07:bf:48:11:80:05:ba:e2:a2:f6:46:f7:d3:66: b5:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:BF:4F:A7:DF:16:17:41:FC:86:4C:00:E6:C0:70:7E:33:5B:4F:D9 X509v3 Authority Key Identifier: keyid:DE:B4:C0:B9:07:FA:CA:1C:5D:37:76:BD:49:46:F4:BA:A8:CA:6B:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3rTAuQf6yhxdN3a9SUb0uqjKazA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:09:94:09:bb:49:0b:65:20:a0:b5:4a:e7:25:ad:53:f9:89: da:2d:2d:20:ff:ba:57:11:ce:49:60:cd:01:93:34:bd:72:99: 00:8e:79:2d:d5:93:31:18:4b:e0:64:f8:39:a5:95:13:f8:f0: 33:92:47:20:2e:a6:80:4f:9c:b1:7b:76:4a:10:cb:e9:c6:d1: 62:4c:47:ad:b1:be:7d:6e:7d:80:9a:9e:81:2c:e4:ce:c0:de: 88:6e:7f:53:56:e4:5c:00:8f:ee:83:18:b3:82:47:9e:31:a4: c7:bb:a1:5f:ab:8a:9a:ab:cf:03:dd:e7:8b:20:48:a9:be:a6: 09:ee:e3:66:19:ac:90:94:88:82:a3:63:55:34:32:ed:68:50: ae:62:1f:28:d2:4e:9d:6c:51:4b:04:0e:b8:ab:9b:f5:cb:88: d8:09:b2:d2:6c:ef:f5:63:49:60:3b:35:56:2e:13:fc:60:a1: 5f:5e:5f:90:f9:47:f4:2a:e4:34:24:30:e3:3a:10:35:72:93: 65:02:12:ef:dd:1f:e6:bd:94:2c:9f:c4:d1:8e:1d:4c:85:a8: 81:58:1a:cf:89:cf:a7:52:e8:ae:48:78:9d:f3:b7:72:09:ad: be:a5:ae:8c:0b:a2:00:d7:9c:2b:ee:73:91:1b:2e:fd:f4:36: cd:5c:db:e0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG M0I1RjExMC8GA1UEBRMoREVCNEMwQjkwN0ZBQ0ExQzVEMzc3NkJENDk0NkY0QkFB OENBNkIzMDAeFw0yNTExMDUwNzA4MTRaFw0yNTExMTIwNzA4MTRaMBgxFjAUBgNV BAMTDTY5MGFmN2RlLTdkMjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDBTABxAos+T4GQbfpmk2ne3pSmDfo7vTW7LzHwdjp3QUpOgomX/ahI2NlayKDs PHZrUINKUhwMiyRXmq1izxlVkVyMk5bTPFp31d++9Mt9EI3ZdGu/mBmEyEkjW3P/ mUBef+wexdTz22KYyPufaY0pZ/ujDDgnyczEKofJj09saA67L4oBWIV1AAwH6t0P hul6KTUC/gil6mUn21oE2i66pAmPZz5a38+rNTRpxR6aU6Qf7c2JZ8aFs5TVWh4R 9gocpZOgWHf5r5IgWzTQJBJUqmeFsXb8GGpGDdeOW1Siqr++OJFeLGWmSi2XjmCo vCcHv0gRgAW64qL2RvfTZrVZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU079Pp98W F0H8hkwA5sBwfjNbT9kwHwYDVR0jBBgwFoAU3rTAuQf6yhxdN3a9SUb0uqjKazAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYzQjVGL0IxNzBDOTEyMTM2 NjExRjA4MkUzQzUwREM0RjlBRTAyLzNyVEF1UWY2eWh4ZE4zYTlTVWIwdXFqS2F6 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvM3JUQXVRZjZ5aHhkTjNhOVNVYjB1cWpLYXpBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYz QjVGL0IxNzBDOTEyMTM2NjExRjA4MkUzQzUwREM0RjlBRTAyLzNyVEF1UWY2eWh4 ZE4zYTlTVWIwdXFqS2F6QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACQJlAm7SQtlIKC1SuclrVP5idotLSD/ulcRzklgzQGTNL1ymQCOeS3V kzEYS+Bk+DmllRP48DOSRyAupoBPnLF7dkoQy+nG0WJMR62xvn1ufYCanoEs5M7A 3ohuf1NW5FwAj+6DGLOCR54xpMe7oV+ripqrzwPd54sgSKm+pgnu42YZrJCUiIKj Y1U0Mu1oUK5iHyjSTp1sUUsEDrirm/XLiNgJstJs7/VjSWA7NVYuE/xgoV9eX5D5 R/Qq5DQkMOM6EDVyk2UCEu/dH+a9lCyfxNGOHUyFqIFYGs+Jz6dS6K5IeJ3zt3IJ rb6lrowLogDXnCvuc5EbLv30Ns1c2+A= -----END CERTIFICATE-----Generated at Wed Nov 5 23:47:26 2025 by rpki-client