$ rpki-client -vvf rpki.apnic.net/member_repository/A91324D4/1A6E751CA71F11EB848AF030C4F9AE02/v3Tn5hTUsi5Lf-QLa-zv0XBaz8E.mft File: v3Tn5hTUsi5Lf-QLa-zv0XBaz8E.mft (raw, json) Hash identifier: U557EiTjfpbSlvjbhbFncVKS74Ti+cu6HFlzFvzKt+M= Subject key identifier: D2:4F:DF:41:1F:88:8E:ED:58:87:D6:54:01:1A:80:56:F2:DC:1F:DB Authority key identifier: BF:74:E7:E6:14:D4:B2:2E:4B:7F:E4:0B:6B:EC:EF:D1:70:5A:CF:C1 Certificate issuer: /CN=A91324D4/serialNumber=BF74E7E614D4B22E4B7FE40B6BECEFD1705ACFC1 Certificate serial: 0686 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v3Tn5hTUsi5Lf-QLa-zv0XBaz8E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91324D4/1A6E751CA71F11EB848AF030C4F9AE02/v3Tn5hTUsi5Lf-QLa-zv0XBaz8E.mft Manifest number: 066A Signing time: Tue 04 Nov 2025 22:43:00 +0000 Manifest this update: Tue 04 Nov 2025 22:42:59 +0000 Manifest next update: Tue 11 Nov 2025 22:42:59 +0000 Files and hashes: 1: v3Tn5hTUsi5Lf-QLa-zv0XBaz8E.crl (hash: nHX1oPIaQZqpvismOCgvwIMEc2DlzMpWrU0X0Ajlcx4=) 2: DD643EBCE00C11ED8C71C709C4F9AE02.roa (hash: tNDEmIxy5H25Y3zlO9rXFUC8hfA45BbpRsPK4rM8u7s=) 3: 8A88CCDC667911EE9D7DA167C4F9AE02.roa (hash: 9S57tdyd45wHLsInsTnI/GZly1K4hEDfcQJTNYuSOFQ=) 4: 236C6906A73F11EBA1751E33C4F9AE02.roa (hash: JyPetDHabfuANEcar/HU38MZvBtPYhC6A1gULHuakq8=) 5: 78345D00E01211ED8766DC5CC4F9AE02.roa (hash: CGANdjpj39CJWyCZVGb4EKEpCCBaXu9btf2XqDDOLY4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91324D4/1A6E751CA71F11EB848AF030C4F9AE02/v3Tn5hTUsi5Lf-QLa-zv0XBaz8E.crl rsync://rpki.apnic.net/member_repository/A91324D4/1A6E751CA71F11EB848AF030C4F9AE02/v3Tn5hTUsi5Lf-QLa-zv0XBaz8E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v3Tn5hTUsi5Lf-QLa-zv0XBaz8E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:42:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1670 (0x686) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91324D4, serialNumber=BF74E7E614D4B22E4B7FE40B6BECEFD1705ACFC1 Validity Not Before: Nov 4 22:42:59 2025 GMT Not After : Nov 11 22:42:59 2025 GMT Subject: CN=690a8173-d6e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:85:48:4d:b4:5f:8a:86:f2:6b:c7:2f:e4:b8: 20:e0:cf:10:08:28:b4:19:ed:d2:98:2a:bc:e3:a2: b5:ac:70:43:2a:28:d8:66:0d:a2:ef:09:dd:4a:be: 89:00:0e:7a:c0:7b:53:d1:44:4d:6d:d6:ef:90:12: 31:52:87:fe:31:6b:67:f9:02:a9:1a:35:cb:67:31: 98:66:07:36:85:68:2e:5f:d2:fb:44:01:c9:30:10: d9:6d:df:33:3c:eb:00:58:8b:1e:ee:c3:58:14:27: c7:ec:d0:78:ae:4e:65:e3:2e:c1:22:79:73:28:60: 4f:73:fd:5a:2f:a2:03:cd:f7:18:63:b1:5e:1f:1a: cb:25:b0:2f:24:2e:87:5d:cf:fa:65:a2:82:d3:c2: 88:fa:e5:ed:c5:f4:77:f5:9a:25:3a:e8:6c:d5:fe: 44:ad:8a:2d:58:5c:3c:f0:96:11:31:4e:b2:5f:65: bf:a5:dc:21:35:d2:78:f3:ba:50:e9:b5:2a:f3:4a: c8:16:3e:d3:c9:15:d4:f5:2f:96:c0:8c:7d:71:b7: 42:d7:ec:96:40:a5:3a:e0:85:9f:0c:1d:6c:a1:ac: b7:1b:f0:b3:67:96:8d:34:2e:ea:5e:02:52:0d:49: 34:06:04:73:cc:0d:88:6d:08:46:91:e5:92:d0:ab: e9:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:4F:DF:41:1F:88:8E:ED:58:87:D6:54:01:1A:80:56:F2:DC:1F:DB X509v3 Authority Key Identifier: keyid:BF:74:E7:E6:14:D4:B2:2E:4B:7F:E4:0B:6B:EC:EF:D1:70:5A:CF:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91324D4/1A6E751CA71F11EB848AF030C4F9AE02/v3Tn5hTUsi5Lf-QLa-zv0XBaz8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v3Tn5hTUsi5Lf-QLa-zv0XBaz8E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91324D4/1A6E751CA71F11EB848AF030C4F9AE02/v3Tn5hTUsi5Lf-QLa-zv0XBaz8E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c2:73:c8:75:f6:8e:cc:00:fe:e4:2b:35:11:4f:13:b9:2b:37: 21:f0:60:ef:91:49:29:aa:c3:5c:17:f5:55:e2:ea:71:18:51: 99:84:00:ff:19:d6:f0:61:b1:41:c4:11:01:44:3a:42:19:12: ed:47:95:57:4b:bb:8f:81:7c:eb:6a:3c:3a:9b:bf:3a:7b:d4: 79:70:d0:d8:e6:b8:57:41:bc:8b:38:15:52:3b:24:8a:e2:7f: fb:c4:72:9c:c4:68:3c:7b:83:a9:98:2c:9b:1d:f5:6c:4b:ca: 4b:e0:05:06:b1:19:0c:99:71:a9:89:60:e4:ec:4a:a6:32:0d: 07:be:21:f8:0c:c9:f4:34:cd:69:11:bf:d2:82:27:8c:0b:dc: 50:59:73:93:97:3d:c0:96:8a:8b:9c:6f:a5:43:2a:c6:41:f7: 6b:2c:55:e7:30:9c:c5:7d:aa:4b:30:61:02:66:70:5c:b4:88: c5:1e:da:07:61:b5:1b:61:19:74:55:84:57:0a:47:f1:55:bd: 59:3c:3b:66:cb:e8:a5:c8:d4:31:34:60:d7:43:c6:5d:a9:24: fd:a5:55:4a:fe:65:67:1c:eb:66:e6:a2:d8:d2:9a:65:93:87: 9d:d5:12:7b:8b:9c:ec:d4:73:27:43:4b:e3:a3:a3:a1:78:6e: 34:9d:ef:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBoYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzI0RDQxMTAvBgNVBAUTKEJGNzRFN0U2MTRENEIyMkU0QjdGRTQwQjZCRUNFRkQx NzA1QUNGQzEwHhcNMjUxMTA0MjI0MjU5WhcNMjUxMTExMjI0MjU5WjAYMRYwFAYD VQQDEw02OTBhODE3My1kNmUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxoVITbRfiobya8cv5Lgg4M8QCCi0Ge3SmCq846K1rHBDKijYZg2i7wndSr6J AA56wHtT0URNbdbvkBIxUof+MWtn+QKpGjXLZzGYZgc2hWguX9L7RAHJMBDZbd8z POsAWIse7sNYFCfH7NB4rk5l4y7BInlzKGBPc/1aL6IDzfcYY7FeHxrLJbAvJC6H Xc/6ZaKC08KI+uXtxfR39ZolOuhs1f5ErYotWFw88JYRMU6yX2W/pdwhNdJ487pQ 6bUq80rIFj7TyRXU9S+WwIx9cbdC1+yWQKU64IWfDB1soay3G/CzZ5aNNC7qXgJS DUk0BgRzzA2IbQhGkeWS0KvpgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNJP30Ef iI7tWIfWVAEagFby3B/bMB8GA1UdIwQYMBaAFL905+YU1LIuS3/kC2vs79FwWs/B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMjRENC8xQTZFNzUxQ0E3 MUYxMUVCODQ4QUYwMzBDNEY5QUUwMi92M1RuNWhUVXNpNUxmLVFMYS16djBYQmF6 OEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3YzVG41aFRVc2k1TGYtUUxhLXp2MFhCYXo4RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MjRENC8xQTZFNzUxQ0E3MUYxMUVCODQ4QUYwMzBDNEY5QUUwMi92M1RuNWhUVXNp NUxmLVFMYS16djBYQmF6OEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDCc8h19o7MAP7kKzURTxO5Kzch8GDvkUkpqsNcF/VV4upxGFGZhAD/ GdbwYbFBxBEBRDpCGRLtR5VXS7uPgXzrajw6m786e9R5cNDY5rhXQbyLOBVSOySK 4n/7xHKcxGg8e4OpmCybHfVsS8pL4AUGsRkMmXGpiWDk7EqmMg0HviH4DMn0NM1p Eb/SgieMC9xQWXOTlz3AloqLnG+lQyrGQfdrLFXnMJzFfapLMGECZnBctIjFHtoH YbUbYRl0VYRXCkfxVb1ZPDtmy+ilyNQxNGDXQ8ZdqST9pVVK/mVnHOtm5qLY0ppl k4ed1RJ7i5zs1HMnQ0vjo6OheG40ne/e -----END CERTIFICATE-----Generated at Wed Nov 5 11:44:40 2025 by rpki-client