$ rpki-client -vvf rpki.apnic.net/member_repository/A91401C4/2B2B3C9E1D6911E2AAA055A608B02CD2/v3vK8ZCcELz-oNjn1F2CVPJpxr8.mft File: v3vK8ZCcELz-oNjn1F2CVPJpxr8.mft (raw, json) Hash identifier: PKARjc29vxSmaY9JF90oQX3Gpq5gD0cLlIGe8KW8IJc= Subject key identifier: A3:88:1B:6F:F6:ED:69:48:BB:1C:63:55:F3:98:03:6E:ED:CF:37:12 Authority key identifier: BF:7B:CA:F1:90:9C:10:BC:FE:A0:D8:E7:D4:5D:82:54:F2:69:C6:BF Certificate issuer: /CN=A91401C4/serialNumber=BF7BCAF1909C10BCFEA0D8E7D45D8254F269C6BF Certificate serial: 3540 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v3vK8ZCcELz-oNjn1F2CVPJpxr8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91401C4/2B2B3C9E1D6911E2AAA055A608B02CD2/v3vK8ZCcELz-oNjn1F2CVPJpxr8.mft Manifest number: 350D Signing time: Tue 04 Nov 2025 14:15:52 +0000 Manifest this update: Tue 04 Nov 2025 14:15:52 +0000 Manifest next update: Tue 11 Nov 2025 14:15:52 +0000 Files and hashes: 1: v3vK8ZCcELz-oNjn1F2CVPJpxr8.crl (hash: FLLocU1ATK4vAm0pMJpAe/W3BQ9z2C4vlBeeR2XLCDo=) 2: 13773D180C8111EB9BD25070C4F9AE02.roa (hash: EcHgJTBJZVSZcmyoGTsJf6lDzdXZarLLw4Yz9Tt75wA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91401C4/2B2B3C9E1D6911E2AAA055A608B02CD2/v3vK8ZCcELz-oNjn1F2CVPJpxr8.crl rsync://rpki.apnic.net/member_repository/A91401C4/2B2B3C9E1D6911E2AAA055A608B02CD2/v3vK8ZCcELz-oNjn1F2CVPJpxr8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v3vK8ZCcELz-oNjn1F2CVPJpxr8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:15:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13632 (0x3540) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91401C4, serialNumber=BF7BCAF1909C10BCFEA0D8E7D45D8254F269C6BF Validity Not Before: Nov 4 14:15:52 2025 GMT Not After : Nov 11 14:15:52 2025 GMT Subject: CN=690a0a98-8838 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:36:45:62:90:1c:9b:71:ec:c8:cf:cd:a2:11: f6:d1:2e:91:67:e0:04:43:30:17:63:65:f7:f7:be: 21:44:b9:ee:0d:0f:6c:79:34:b7:3c:d3:4d:b1:e0: 1a:90:42:31:1e:91:95:a9:ff:6e:0d:b7:81:e5:54: 04:92:84:de:d3:86:e9:fc:4a:7d:e2:2b:cf:e4:6e: e3:65:1f:5d:2c:4b:3e:90:27:c1:23:04:5d:0a:f1: e2:42:a7:2b:7a:76:05:35:3c:18:af:a9:1c:39:77: c8:cc:a5:b9:4c:f6:e5:71:a3:de:70:34:d3:2b:6c: b6:42:4d:b2:65:13:3e:36:35:7a:dd:d4:99:b1:e2: 51:af:d6:82:b0:6e:fa:06:d3:29:06:75:86:af:52: 09:3b:35:25:4c:36:d5:ac:3c:96:ef:5d:9a:c7:b9: cf:ec:26:f1:d5:e4:61:ec:9d:66:93:4e:88:43:06: 3b:fd:de:a3:fc:73:6c:90:e1:bb:a4:30:08:80:e7: 87:ef:7e:dc:65:de:5e:0d:63:f3:c9:98:cd:f8:03: 8b:60:93:1a:a4:75:71:21:7f:0c:77:c2:29:14:e7: 5e:3b:f6:e4:44:79:9d:41:d5:96:5d:a0:02:00:c8: ed:5b:54:38:85:03:f4:51:97:4f:b5:a8:19:1b:66: 5c:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:88:1B:6F:F6:ED:69:48:BB:1C:63:55:F3:98:03:6E:ED:CF:37:12 X509v3 Authority Key Identifier: keyid:BF:7B:CA:F1:90:9C:10:BC:FE:A0:D8:E7:D4:5D:82:54:F2:69:C6:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91401C4/2B2B3C9E1D6911E2AAA055A608B02CD2/v3vK8ZCcELz-oNjn1F2CVPJpxr8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v3vK8ZCcELz-oNjn1F2CVPJpxr8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91401C4/2B2B3C9E1D6911E2AAA055A608B02CD2/v3vK8ZCcELz-oNjn1F2CVPJpxr8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:24:ba:ff:23:01:88:7e:82:a7:0e:e5:b6:70:91:af:7f:67: 1e:5c:6d:14:d0:df:94:3a:53:b8:c3:b2:c5:fa:13:d6:2f:c8: 44:16:7b:d7:e9:61:08:5b:77:c4:ce:56:9c:8a:3f:0c:55:16: 9d:e2:35:99:53:b8:bd:16:81:10:25:32:71:e2:da:aa:dd:d6: 49:c8:89:7e:ea:87:49:fb:ef:83:f4:6b:16:4b:87:ec:b9:7e: da:05:31:0a:60:8f:a1:ff:df:93:6c:d8:d0:42:cd:71:62:2e: 96:e0:92:ce:15:e8:81:d7:2f:39:73:30:87:ef:1b:03:e3:40: 9a:bd:d2:87:a1:7f:4a:dc:e6:0f:5e:46:b7:e6:2f:9f:d4:75: aa:bd:a2:f6:41:24:44:be:c5:57:f5:3a:71:2f:39:e7:b6:45: a6:78:83:31:b4:56:80:99:bf:76:f5:a3:ba:77:f5:05:c3:04: c4:3c:ec:50:d1:b9:ee:89:2e:72:8a:89:35:ed:11:7a:3a:a4: 83:1f:3e:ee:b4:db:fe:af:96:54:17:ff:e2:f7:7a:4f:02:20: cc:19:af:f2:42:fe:52:ad:53:ae:c2:2b:59:77:58:67:f5:a6: 19:a5:b0:1c:3d:68:c0:88:44:5f:41:2b:80:88:b6:4d:0c:d8: b5:a2:26:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNUAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDAxQzQxMTAvBgNVBAUTKEJGN0JDQUYxOTA5QzEwQkNGRUEwRDhFN0Q0NUQ4MjU0 RjI2OUM2QkYwHhcNMjUxMTA0MTQxNTUyWhcNMjUxMTExMTQxNTUyWjAYMRYwFAYD VQQDEw02OTBhMGE5OC04ODM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvDZFYpAcm3HsyM/NohH20S6RZ+AEQzAXY2X3974hRLnuDQ9seTS3PNNNseAa kEIxHpGVqf9uDbeB5VQEkoTe04bp/Ep94ivP5G7jZR9dLEs+kCfBIwRdCvHiQqcr enYFNTwYr6kcOXfIzKW5TPblcaPecDTTK2y2Qk2yZRM+NjV63dSZseJRr9aCsG76 BtMpBnWGr1IJOzUlTDbVrDyW712ax7nP7Cbx1eRh7J1mk06IQwY7/d6j/HNskOG7 pDAIgOeH737cZd5eDWPzyZjN+AOLYJMapHVxIX8Md8IpFOdeO/bkRHmdQdWWXaAC AMjtW1Q4hQP0UZdPtagZG2ZcvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKOIG2/2 7WlIuxxjVfOYA27tzzcSMB8GA1UdIwQYMBaAFL97yvGQnBC8/qDY59RdglTyaca/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDFDNC8yQjJCM0M5RTFE NjkxMUUyQUFBMDU1QTYwOEIwMkNEMi92M3ZLOFpDY0VMei1vTmpuMUYyQ1ZQSnB4 cjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Yzdks4WkNjRUx6LW9Oam4xRjJDVlBKcHhyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MDFDNC8yQjJCM0M5RTFENjkxMUUyQUFBMDU1QTYwOEIwMkNEMi92M3ZLOFpDY0VM ei1vTmpuMUYyQ1ZQSnB4cjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgJLr/IwGIfoKnDuW2cJGvf2ceXG0U0N+UOlO4w7LF+hPWL8hEFnvX 6WEIW3fEzlacij8MVRad4jWZU7i9FoEQJTJx4tqq3dZJyIl+6odJ+++D9GsWS4fs uX7aBTEKYI+h/9+TbNjQQs1xYi6W4JLOFeiB1y85czCH7xsD40CavdKHoX9K3OYP Xka35i+f1HWqvaL2QSREvsVX9TpxLznntkWmeIMxtFaAmb929aO6d/UFwwTEPOxQ 0bnuiS5yiok17RF6OqSDHz7utNv+r5ZUF//i93pPAiDMGa/yQv5SrVOuwitZd1hn 9aYZpbAcPWjAiERfQSuAiLZNDNi1oiZb -----END CERTIFICATE-----Generated at Wed Nov 5 10:00:53 2025 by rpki-client