$ rpki-client -vvf rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.mft File: fT3bIK_-cUyPNUllHB7oD1VgEbg.mft (raw, json) Hash identifier: HBhkNMC2aKCgoWDyy3BLuwahKaMGgL9RS7LqDhSjeP0= Subject key identifier: F2:22:E7:E0:09:C8:F6:11:3C:AC:C1:DF:D6:CB:66:F2:DB:DA:D9:B6 Authority key identifier: 7D:3D:DB:20:AF:FE:71:4C:8F:35:49:65:1C:1E:E8:0F:55:60:11:B8 Certificate issuer: /CN=A91319EA/serialNumber=7D3DDB20AFFE714C8F3549651C1EE80F556011B8 Certificate serial: 0300 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fT3bIK_-cUyPNUllHB7oD1VgEbg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.mft Manifest number: 02FC Signing time: Wed 05 Nov 2025 01:16:56 +0000 Manifest this update: Wed 05 Nov 2025 01:16:55 +0000 Manifest next update: Wed 12 Nov 2025 01:16:55 +0000 Files and hashes: 1: fT3bIK_-cUyPNUllHB7oD1VgEbg.crl (hash: 63Ca9PnYxZiYIDvMEOpIGOCrKkBzCTNBQuBIheuLn5A=) 2: BFD5E8EAF8EB11EC9C39C677C4F9AE02.roa (hash: 42NoXRc68AJI33l+b1k0SiSR1RteYpJ6pHpYeUhh2BI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.crl rsync://rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fT3bIK_-cUyPNUllHB7oD1VgEbg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:16:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 768 (0x300) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91319EA, serialNumber=7D3DDB20AFFE714C8F3549651C1EE80F556011B8 Validity Not Before: Nov 5 01:16:55 2025 GMT Not After : Nov 12 01:16:55 2025 GMT Subject: CN=690aa588-0f55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:4c:c3:48:f0:71:40:1a:40:5b:c8:31:06:a3: 88:96:e8:1d:26:e6:1f:95:fd:e0:f5:b5:7f:d9:ed: ea:86:90:31:54:11:b8:13:60:a9:6c:9c:41:1b:ad: 78:0f:07:ad:95:b2:62:32:dc:5e:b0:78:7c:5f:2d: 93:2a:15:e4:63:43:01:03:70:64:c8:76:99:11:8c: 6f:89:59:cd:16:83:ec:5c:42:7c:cc:b3:73:10:df: 27:12:86:31:45:9f:fe:3f:d6:5c:ba:9b:66:b4:b6: f0:5f:9a:3f:d5:1c:86:a7:63:9e:d1:46:cd:9e:60: c7:b4:80:04:dc:08:72:3a:96:56:4e:5f:08:dc:7a: e1:27:2e:08:28:6a:8a:a4:b8:a9:32:5d:d3:86:86: fc:99:f4:f0:f6:df:c9:a9:ee:ce:c0:34:f1:6f:16: 09:fe:a8:42:91:bc:cd:47:bb:13:15:0d:cb:b9:0e: a6:e5:12:cf:c2:9c:0b:fc:ed:d1:18:e0:6a:9e:ac: 18:17:f1:ef:9c:2b:7a:81:cb:ed:f7:a1:e0:4c:bc: d3:a0:f3:34:89:9f:8e:07:7d:88:80:d6:1f:95:2c: 88:69:a9:6a:ce:15:83:1e:5c:ee:6c:ec:06:36:96: ac:d6:47:86:db:c9:85:d5:c6:28:05:05:e9:55:48: d6:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:22:E7:E0:09:C8:F6:11:3C:AC:C1:DF:D6:CB:66:F2:DB:DA:D9:B6 X509v3 Authority Key Identifier: keyid:7D:3D:DB:20:AF:FE:71:4C:8F:35:49:65:1C:1E:E8:0F:55:60:11:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fT3bIK_-cUyPNUllHB7oD1VgEbg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:5c:6a:71:48:07:4c:26:79:62:ce:88:da:f2:d9:70:97:59: b8:5e:25:c8:81:ee:85:54:25:10:2e:b1:a9:81:74:3d:95:cf: 52:49:93:8e:9d:66:93:fd:7e:33:a6:a5:cd:7b:88:26:dc:6a: e2:2b:14:29:99:8b:a8:87:91:8b:e9:66:58:52:22:52:46:b0: 32:88:05:a8:b9:58:bd:f0:75:58:d1:9d:ce:8c:4c:44:93:4c: 5f:04:b9:ed:6d:2c:8c:c8:8f:1a:8a:83:78:3d:ce:7c:dc:f6: 9c:3d:f8:54:61:4b:50:9e:db:e0:66:9e:10:42:82:0a:c8:cb: 5a:6e:80:f9:64:7b:2e:e2:d2:4e:8c:e6:e6:41:4d:fb:71:e4: 2e:ef:8d:35:84:e0:60:f6:e1:5a:ad:f0:d1:df:de:93:fa:e3: 59:42:be:dd:da:6e:c3:27:cd:77:ae:e1:6c:84:6f:57:a0:c9: d0:75:d0:e5:41:3f:60:d9:5d:a5:83:0f:17:e9:dd:60:2b:67: eb:4d:96:61:3c:99:ea:3a:aa:9d:1e:b2:0b:a4:60:1b:6f:6e: a6:d5:d4:49:b4:18:f4:d8:c3:b9:1c:82:0a:8f:30:65:80:63: ca:9d:9a:83:69:87:7f:4c:5c:98:c6:39:96:87:75:16:31:f2: a2:24:a9:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAwAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE5RUExMTAvBgNVBAUTKDdEM0REQjIwQUZGRTcxNEM4RjM1NDk2NTFDMUVFODBG NTU2MDExQjgwHhcNMjUxMTA1MDExNjU1WhcNMjUxMTEyMDExNjU1WjAYMRYwFAYD VQQDEw02OTBhYTU4OC0wZjU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxEzDSPBxQBpAW8gxBqOIlugdJuYflf3g9bV/2e3qhpAxVBG4E2CpbJxBG614 DwetlbJiMtxesHh8Xy2TKhXkY0MBA3BkyHaZEYxviVnNFoPsXEJ8zLNzEN8nEoYx RZ/+P9ZcuptmtLbwX5o/1RyGp2Oe0UbNnmDHtIAE3AhyOpZWTl8I3HrhJy4IKGqK pLipMl3Thob8mfTw9t/Jqe7OwDTxbxYJ/qhCkbzNR7sTFQ3LuQ6m5RLPwpwL/O3R GOBqnqwYF/HvnCt6gcvt96HgTLzToPM0iZ+OB32IgNYflSyIaalqzhWDHlzubOwG Npas1keG28mF1cYoBQXpVUjWEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPIi5+AJ yPYRPKzB39bLZvLb2tm2MB8GA1UdIwQYMBaAFH092yCv/nFMjzVJZRwe6A9VYBG4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTlFQS9EMjZDNDEyOEY4 RTgxMUVDOEI1NzcyNzFDNEY5QUUwMi9mVDNiSUtfLWNVeVBOVWxsSEI3b0QxVmdF YmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZUM2JJS18tY1V5UE5VbGxIQjdvRDFWZ0ViZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTlFQS9EMjZDNDEyOEY4RTgxMUVDOEI1NzcyNzFDNEY5QUUwMi9mVDNiSUtfLWNV eVBOVWxsSEI3b0QxVmdFYmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLXGpxSAdMJnlizoja8tlwl1m4XiXIge6FVCUQLrGpgXQ9lc9SSZOO nWaT/X4zpqXNe4gm3GriKxQpmYuoh5GL6WZYUiJSRrAyiAWouVi98HVY0Z3OjExE k0xfBLntbSyMyI8aioN4Pc583PacPfhUYUtQntvgZp4QQoIKyMtaboD5ZHsu4tJO jObmQU37ceQu7401hOBg9uFarfDR396T+uNZQr7d2m7DJ813ruFshG9XoMnQddDl QT9g2V2lgw8X6d1gK2frTZZhPJnqOqqdHrILpGAbb26m1dRJtBj02MO5HIIKjzBl gGPKnZqDaYd/TFyYxjmWh3UWMfKiJKk/ -----END CERTIFICATE-----Generated at Wed Nov 5 12:08:06 2025 by rpki-client