$ rpki-client -vvf rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.mft File: 36hgRQpvzrHG57jU_1SxVBobabM.mft (raw, json) Hash identifier: epeIc+Z8xP4E8lTTjNqlPUOGZPpHeK66LsWDyQ+3osY= Subject key identifier: 5B:31:4E:3F:C7:0F:6A:FA:9B:99:86:61:49:7D:7F:2D:7B:E8:D7:63 Authority key identifier: DF:A8:60:45:0A:6F:CE:B1:C6:E7:B8:D4:FF:54:B1:54:1A:1B:69:B3 Certificate issuer: /CN=A91534B8/serialNumber=DFA860450A6FCEB1C6E7B8D4FF54B1541A1B69B3 Certificate serial: 02EB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/36hgRQpvzrHG57jU_1SxVBobabM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.mft Manifest number: 02E1 Signing time: Mon 03 Nov 2025 01:18:46 +0000 Manifest this update: Mon 03 Nov 2025 01:18:46 +0000 Manifest next update: Mon 10 Nov 2025 01:18:46 +0000 Files and hashes: 1: 36hgRQpvzrHG57jU_1SxVBobabM.crl (hash: uctm3gUNltu89FzvKJTHQ3BAssIsg2vHSiIysVNAzBY=) 2: 56C4B5083DF511ED98215F18C4F9AE02.roa (hash: +v8nyn/Oe9RWJ3ghxJ4j4ajNn0CAMG8XWMdrSVotxhY=) 3: B0FA33FE6F9611ED8A672F69C4F9AE02.roa (hash: r+OS0Knt0u9zlSwMXXIIOrgidq7fkxM7aM/OittLXrQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.crl rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/36hgRQpvzrHG57jU_1SxVBobabM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 01:18:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 747 (0x2eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91534B8, serialNumber=DFA860450A6FCEB1C6E7B8D4FF54B1541A1B69B3 Validity Not Before: Nov 3 01:18:46 2025 GMT Not After : Nov 10 01:18:46 2025 GMT Subject: CN=690802f6-cf5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:45:8d:a5:8d:ff:79:fd:80:93:6e:c0:11:27: f5:fb:03:93:75:9b:91:30:c8:43:09:32:63:f4:78: f3:5b:28:e1:d5:9d:75:92:f3:79:20:d0:4b:5d:be: ee:ae:a6:ab:81:5d:28:74:79:5b:a5:13:b1:01:44: 2e:32:2b:d3:49:f1:6b:a8:bf:94:60:60:2a:51:39: 44:02:d5:d8:17:5e:fa:88:92:40:24:d8:e0:14:79: 41:46:56:30:a8:03:8e:01:5e:ea:78:b7:f8:9d:21: b2:20:49:60:3e:ff:98:9f:ae:49:36:df:67:75:96: 9f:27:4d:23:43:88:aa:a6:db:df:34:03:ae:cc:90: 05:c5:8a:8b:06:67:f3:ad:96:c4:dc:0e:fa:5f:95: d9:76:f7:a5:86:c7:9f:68:4c:b3:2f:3f:1d:db:89: 81:87:a1:d5:9e:ce:0d:3d:56:92:ff:d5:12:8e:04: 52:40:d1:8d:75:4c:d6:4e:4d:e6:06:6e:d1:40:20: 21:29:38:7b:ae:cf:6f:f2:1c:87:f2:a7:b6:14:40: 0b:b9:2d:be:a7:3a:b8:1b:cb:bc:32:bf:c2:6b:61: 6d:05:31:d3:84:93:4b:7c:15:90:e8:cf:ab:cb:73: ad:f2:49:7d:c4:07:ed:6d:5f:4a:29:00:ee:34:ed: 47:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:31:4E:3F:C7:0F:6A:FA:9B:99:86:61:49:7D:7F:2D:7B:E8:D7:63 X509v3 Authority Key Identifier: keyid:DF:A8:60:45:0A:6F:CE:B1:C6:E7:B8:D4:FF:54:B1:54:1A:1B:69:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/36hgRQpvzrHG57jU_1SxVBobabM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:09:e2:59:e8:b7:26:13:ee:d8:6e:56:af:81:dd:87:d0:6d: a7:ad:bd:fe:e4:33:23:60:b5:03:0e:d4:cd:90:73:b9:ab:55: bb:49:8c:cb:86:f1:2a:7c:f1:28:fe:d8:c4:da:da:9f:4f:46: 57:83:e7:98:f0:3c:0f:ac:89:37:32:40:7d:c6:de:10:c5:3d: 99:cd:7c:7a:4d:30:f3:50:22:3e:4e:07:9e:f0:6f:01:46:84: f0:c7:d7:56:86:04:9e:d1:cb:4d:e1:16:c3:77:bf:27:78:a8: 8a:6d:52:6a:6f:ae:d2:5d:55:c5:5c:26:0a:9f:2c:3c:b4:36: 06:23:4f:8b:c6:10:bf:20:30:e5:69:95:22:90:3d:28:ac:2a: 0f:f0:8f:06:4a:fe:19:55:44:bd:43:08:49:fd:d8:af:e6:da: 7c:d6:46:59:45:db:fc:03:17:a6:cd:4e:79:34:55:18:b2:f7: 67:f3:a3:cb:d3:26:50:b9:48:5a:d5:93:2a:52:2a:19:29:0e: 54:17:31:97:28:c2:3f:57:fa:44:cd:24:cc:e8:de:e6:c8:d8: 08:78:32:de:cf:66:06:76:05:4f:31:eb:b7:0e:75:f0:c5:fb: 6c:72:5d:18:91:23:8d:7c:5e:0f:2b:48:33:2b:ae:c0:52:7f: 57:58:0a:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAuswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM0QjgxMTAvBgNVBAUTKERGQTg2MDQ1MEE2RkNFQjFDNkU3QjhENEZGNTRCMTU0 MUExQjY5QjMwHhcNMjUxMTAzMDExODQ2WhcNMjUxMTEwMDExODQ2WjAYMRYwFAYD VQQDEw02OTA4MDJmNi1jZjVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0EWNpY3/ef2Ak27AESf1+wOTdZuRMMhDCTJj9HjzWyjh1Z11kvN5INBLXb7u rqargV0odHlbpROxAUQuMivTSfFrqL+UYGAqUTlEAtXYF176iJJAJNjgFHlBRlYw qAOOAV7qeLf4nSGyIElgPv+Yn65JNt9ndZafJ00jQ4iqptvfNAOuzJAFxYqLBmfz rZbE3A76X5XZdvelhsefaEyzLz8d24mBh6HVns4NPVaS/9USjgRSQNGNdUzWTk3m Bm7RQCAhKTh7rs9v8hyH8qe2FEALuS2+pzq4G8u8Mr/Ca2FtBTHThJNLfBWQ6M+r y3Ot8kl9xAftbV9KKQDuNO1H8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFsxTj/H D2r6m5mGYUl9fy176NdjMB8GA1UdIwQYMBaAFN+oYEUKb86xxue41P9UsVQaG2mz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzRCOC85RjAzQkI2MDA5 NDQxMUVEOEREMTA5NzFDNEY5QUUwMi8zNmhnUlFwdnpySEc1N2pVXzFTeFZCb2Jh Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzM2aGdSUXB2enJIRzU3alVfMVN4VkJvYmFiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzRCOC85RjAzQkI2MDA5NDQxMUVEOEREMTA5NzFDNEY5QUUwMi8zNmhnUlFwdnpy SEc1N2pVXzFTeFZCb2JhYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJCeJZ6LcmE+7Yblavgd2H0G2nrb3+5DMjYLUDDtTNkHO5q1W7SYzL hvEqfPEo/tjE2tqfT0ZXg+eY8DwPrIk3MkB9xt4QxT2ZzXx6TTDzUCI+Tgee8G8B RoTwx9dWhgSe0ctN4RbDd78neKiKbVJqb67SXVXFXCYKnyw8tDYGI0+LxhC/IDDl aZUikD0orCoP8I8GSv4ZVUS9QwhJ/div5tp81kZZRdv8AxemzU55NFUYsvdn86PL 0yZQuUha1ZMqUioZKQ5UFzGXKMI/V/pEzSTM6N7myNgIeDLez2YGdgVPMeu3DnXw xftscl0YkSONfF4PK0gzK67AUn9XWAoN -----END CERTIFICATE-----Generated at Tue Nov 4 21:31:54 2025 by rpki-client