$ rpki-client -vvf rpki.apnic.net/member_repository/A915FDD9/BE7CAC12D6DE11EFB0474E1BC4F9AE02/A3iO4rrk2AXrzcpmGOLsGhilxOI.mft File: A3iO4rrk2AXrzcpmGOLsGhilxOI.mft (raw, json) Hash identifier: r3GnUGaDbIz4cuaO9GxW3QhMPWZEW+g2oybbU+TsF+E= Subject key identifier: EA:9C:18:1D:0A:CB:78:91:9D:8F:47:A0:C4:09:30:FF:C4:D2:CB:25 Authority key identifier: 03:78:8E:E2:BA:E4:D8:05:EB:CD:CA:66:18:E2:EC:1A:18:A5:C4:E2 Certificate issuer: /CN=A915FDD9/serialNumber=03788EE2BAE4D805EBCDCA6618E2EC1A18A5C4E2 Certificate serial: 9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3iO4rrk2AXrzcpmGOLsGhilxOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FDD9/BE7CAC12D6DE11EFB0474E1BC4F9AE02/A3iO4rrk2AXrzcpmGOLsGhilxOI.mft Manifest number: 99 Signing time: Wed 05 Nov 2025 06:39:21 +0000 Manifest this update: Wed 05 Nov 2025 06:39:21 +0000 Manifest next update: Wed 12 Nov 2025 06:39:21 +0000 Files and hashes: 1: A3iO4rrk2AXrzcpmGOLsGhilxOI.crl (hash: J0e5Vfz61BwrvhT8Ax4Sjirt3JHQXGJ2WER3ushjOe4=) 2: 279A9510AB7811F09488DF65C4F9AE02.roa (hash: 7+ZOvaTWijF19fvrYhrbkrijLyfPn8jaNNPKHW6m280=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FDD9/BE7CAC12D6DE11EFB0474E1BC4F9AE02/A3iO4rrk2AXrzcpmGOLsGhilxOI.crl rsync://rpki.apnic.net/member_repository/A915FDD9/BE7CAC12D6DE11EFB0474E1BC4F9AE02/A3iO4rrk2AXrzcpmGOLsGhilxOI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3iO4rrk2AXrzcpmGOLsGhilxOI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:39:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 156 (0x9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FDD9, serialNumber=03788EE2BAE4D805EBCDCA6618E2EC1A18A5C4E2 Validity Not Before: Nov 5 06:39:21 2025 GMT Not After : Nov 12 06:39:21 2025 GMT Subject: CN=690af119-e348 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:7d:b4:92:86:4c:4f:79:09:f0:72:93:57:04: 99:df:cd:e1:ed:ed:0d:c2:0a:b6:15:82:9c:50:98: b8:b9:ee:f6:d7:4e:59:10:16:e2:0a:89:04:ca:ec: 46:ff:da:37:4f:50:b2:64:17:94:7c:c5:03:39:a0: e8:f6:a5:09:3d:7f:06:03:db:76:b8:bb:2f:36:cc: 07:27:07:08:7c:7f:13:44:a1:b1:20:c1:4a:74:44: c7:76:cb:c7:07:1d:15:f1:2c:21:70:7d:e3:d2:73: ff:d3:a7:de:6e:9e:2e:e0:48:24:cb:b7:60:4e:e5: df:3d:d5:60:14:59:26:51:fc:95:1e:c4:07:27:d1: 87:43:e6:41:3b:e7:ad:2f:ff:99:d9:f9:9b:a7:f3: 9e:aa:ab:b0:54:0d:a9:8a:d6:1e:2c:bf:bb:db:32: c3:ac:f2:d8:eb:e2:98:8c:ab:f7:5e:eb:6c:d3:a0: 42:d1:2b:ce:c6:ce:52:f3:0f:0c:40:ad:4f:80:27: 30:15:ef:f6:f1:51:5b:30:a5:e4:e4:8d:66:f0:65: 48:eb:d9:40:66:cb:98:91:f1:bf:36:6f:41:f1:7f: eb:92:b2:c1:75:83:2b:81:6e:77:fd:21:a6:0e:e7: ce:67:3e:05:9f:9d:9c:1d:45:2b:fa:87:dd:e6:bf: 4c:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:9C:18:1D:0A:CB:78:91:9D:8F:47:A0:C4:09:30:FF:C4:D2:CB:25 X509v3 Authority Key Identifier: keyid:03:78:8E:E2:BA:E4:D8:05:EB:CD:CA:66:18:E2:EC:1A:18:A5:C4:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FDD9/BE7CAC12D6DE11EFB0474E1BC4F9AE02/A3iO4rrk2AXrzcpmGOLsGhilxOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3iO4rrk2AXrzcpmGOLsGhilxOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FDD9/BE7CAC12D6DE11EFB0474E1BC4F9AE02/A3iO4rrk2AXrzcpmGOLsGhilxOI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:42:1d:01:43:bf:b8:cd:a6:aa:5f:e6:f8:2f:28:f1:88:e1: 78:3f:09:6e:44:84:44:87:5e:e2:54:4b:31:61:9d:d0:3c:52: d1:df:b1:c8:df:62:7c:71:01:17:6c:0a:5a:14:62:2c:48:3c: 98:a4:a7:48:c9:87:cc:0f:c1:a2:50:c0:8f:b6:73:1f:80:b4: a1:7f:82:9c:b8:77:45:67:6e:6e:7b:1b:e5:2d:b2:b7:ae:f7: 3c:ef:f1:ba:53:eb:43:40:f0:03:75:03:5f:3c:0c:d3:0f:20: 63:e5:76:2d:48:30:77:47:5e:f2:3b:ba:93:31:c0:e7:b4:a5: d0:33:88:98:18:22:99:ff:a9:5e:9e:fb:d8:d7:8b:61:46:81: 2c:97:7f:3a:59:4e:af:29:30:8e:1f:ca:54:73:02:0e:05:f0: 43:b2:06:c8:35:ae:77:9d:c8:18:db:71:00:d7:99:c4:70:e0: 98:37:3c:24:d0:4d:ff:52:7c:39:53:ae:0a:63:55:ed:ae:60: ab:55:41:07:9e:d1:38:6e:57:56:e2:b6:98:ac:72:b5:47:49: 0c:1b:3e:70:35:9a:5c:dc:e9:c4:ad:71:ea:b9:be:54:54:45: 19:b4:b2:c8:49:93:a8:a6:e8:17:27:d3:46:d5:9a:e3:05:1a: 04:e4:04:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZERDkxMTAvBgNVBAUTKDAzNzg4RUUyQkFFNEQ4MDVFQkNEQ0E2NjE4RTJFQzFB MThBNUM0RTIwHhcNMjUxMTA1MDYzOTIxWhcNMjUxMTEyMDYzOTIxWjAYMRYwFAYD VQQDEw02OTBhZjExOS1lMzQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1X20koZMT3kJ8HKTVwSZ383h7e0Nwgq2FYKcUJi4ue72105ZEBbiCokEyuxG /9o3T1CyZBeUfMUDOaDo9qUJPX8GA9t2uLsvNswHJwcIfH8TRKGxIMFKdETHdsvH Bx0V8SwhcH3j0nP/06febp4u4Egky7dgTuXfPdVgFFkmUfyVHsQHJ9GHQ+ZBO+et L/+Z2fmbp/OeqquwVA2pitYeLL+72zLDrPLY6+KYjKv3Xuts06BC0SvOxs5S8w8M QK1PgCcwFe/28VFbMKXk5I1m8GVI69lAZsuYkfG/Nm9B8X/rkrLBdYMrgW53/SGm DufOZz4Fn52cHUUr+ofd5r9M3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOqcGB0K y3iRnY9HoMQJMP/E0sslMB8GA1UdIwQYMBaAFAN4juK65NgF683KZhji7BoYpcTi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkREOS9CRTdDQUMxMkQ2 REUxMUVGQjA0NzRFMUJDNEY5QUUwMi9BM2lPNHJyazJBWHJ6Y3BtR09Mc0doaWx4 T0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EzaU80cnJrMkFYcnpjcG1HT0xzR2hpbHhPSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RkREOS9CRTdDQUMxMkQ2REUxMUVGQjA0NzRFMUJDNEY5QUUwMi9BM2lPNHJyazJB WHJ6Y3BtR09Mc0doaWx4T0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmQh0BQ7+4zaaqX+b4LyjxiOF4PwluRIREh17iVEsxYZ3QPFLR37HI 32J8cQEXbApaFGIsSDyYpKdIyYfMD8GiUMCPtnMfgLShf4KcuHdFZ25uexvlLbK3 rvc87/G6U+tDQPADdQNfPAzTDyBj5XYtSDB3R17yO7qTMcDntKXQM4iYGCKZ/6le nvvY14thRoEsl386WU6vKTCOH8pUcwIOBfBDsgbINa53ncgY23EA15nEcOCYNzwk 0E3/Unw5U64KY1XtrmCrVUEHntE4bldW4raYrHK1R0kMGz5wNZpc3OnErXHqub5U VEUZtLLISZOopugXJ9NG1ZrjBRoE5ARl -----END CERTIFICATE-----Generated at Wed Nov 5 15:03:54 2025 by rpki-client