$ rpki-client -vvf rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.mft File: 3K6HG3xct5vH7PZ5s7LTyVan2eM.mft (raw, json) Hash identifier: /ZhIfzM7Ed2VUrW3PgwXa7TblypnJhXTE32Pl6IUHpM= Subject key identifier: D3:99:53:71:99:1B:BF:32:5E:8D:BA:FD:5D:30:3D:7F:8C:70:97:48 Authority key identifier: DC:AE:87:1B:7C:5C:B7:9B:C7:EC:F6:79:B3:B2:D3:C9:56:A7:D9:E3 Certificate issuer: /CN=A91604AC/serialNumber=DCAE871B7C5CB79BC7ECF679B3B2D3C956A7D9E3 Certificate serial: 06CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3K6HG3xct5vH7PZ5s7LTyVan2eM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.mft Manifest number: 06C3 Signing time: Tue 04 Nov 2025 22:18:27 +0000 Manifest this update: Tue 04 Nov 2025 22:18:26 +0000 Manifest next update: Tue 11 Nov 2025 22:18:26 +0000 Files and hashes: 1: 3K6HG3xct5vH7PZ5s7LTyVan2eM.crl (hash: xQLUVRnMERtEN18OrHmyMKu8EwlHpk3TE5Ji94MOyC4=) 2: 0081F3D6F22111EE8EEC070EC4F9AE02.roa (hash: FOS9hpfhSMJ/5W+e+NFkrecUhC86TAOPH0uxsIPYP4A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.crl rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3K6HG3xct5vH7PZ5s7LTyVan2eM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:18:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1743 (0x6cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91604AC, serialNumber=DCAE871B7C5CB79BC7ECF679B3B2D3C956A7D9E3 Validity Not Before: Nov 4 22:18:26 2025 GMT Not After : Nov 11 22:18:26 2025 GMT Subject: CN=690a7bb2-a5de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:76:f8:cd:11:c6:56:0d:ca:82:25:f9:53:42: 41:f8:e6:08:94:51:17:94:47:84:7b:f3:49:f0:1d: 0e:5e:f7:42:6c:ce:65:2d:bb:70:44:df:c9:d6:d6: ba:14:61:77:d8:fc:f9:25:6d:ab:cd:c1:a2:0d:30: 07:ea:bf:18:0c:17:d4:b6:6e:09:b0:27:05:09:00: ee:89:1c:3e:2e:62:82:8c:1c:40:d5:4f:d4:67:d3: 52:2c:08:b2:fb:83:21:7a:3f:81:12:74:8c:e9:2e: b1:e2:4a:cb:1f:09:4e:0a:9d:aa:18:6b:e9:bc:45: d7:d2:62:c7:cb:5c:2b:8a:38:24:b3:a3:6e:84:24: b4:2d:19:c2:a8:9f:cc:c8:28:d8:1c:92:9b:82:2e: 4e:ac:a7:03:d4:bf:bf:f0:e3:32:91:de:c6:44:38: 57:3a:54:a5:71:48:55:ab:2a:ec:53:c9:5c:e8:56: b1:4b:42:59:ef:bb:f8:8d:61:c3:62:4f:b5:65:c9: e2:ce:a7:44:69:14:9d:34:2d:91:1a:f3:1c:c4:c7: ee:75:cd:cf:cf:96:79:46:5f:95:e4:d3:17:43:3f: c1:60:96:ae:ac:a1:4c:8b:4e:fb:57:5b:c3:17:ef: 74:c2:2a:3f:c2:ab:70:af:d9:7d:aa:94:fb:4f:17: f6:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:99:53:71:99:1B:BF:32:5E:8D:BA:FD:5D:30:3D:7F:8C:70:97:48 X509v3 Authority Key Identifier: keyid:DC:AE:87:1B:7C:5C:B7:9B:C7:EC:F6:79:B3:B2:D3:C9:56:A7:D9:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3K6HG3xct5vH7PZ5s7LTyVan2eM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:45:3f:fd:bd:08:8c:b5:03:2c:20:a6:19:14:47:82:22:02: c4:8f:a8:59:18:69:4c:b3:b1:b6:cf:80:f7:12:c0:fc:18:c7: a8:40:0d:1f:03:a0:a6:4e:9e:96:c1:68:03:09:84:98:b2:9e: e1:ec:63:d0:f3:8a:09:e5:7c:33:8d:67:7e:7b:b6:65:db:29: 03:e1:ef:b0:fb:c0:4f:e8:26:cf:62:64:2d:9b:5a:2b:87:ef: 47:96:7e:ef:25:9a:a4:7e:67:ef:48:41:ed:da:e5:25:6b:9c: b5:41:0d:f2:80:c0:7f:4e:26:cb:af:14:a5:1a:90:d0:3a:83: 5f:64:a0:a6:3f:c6:5c:0e:ef:c4:b2:50:08:2e:ef:8d:cf:07: f6:ef:f4:08:04:97:33:41:48:5e:6c:c8:52:26:2a:93:33:c6: c4:d0:2c:50:0c:47:d6:77:f0:f4:dc:33:bf:8f:87:67:8c:1a: 47:a1:24:c6:e7:b8:f1:8d:d6:b1:df:dd:e7:30:25:b0:ba:76: df:75:9c:48:72:dd:ad:48:93:77:2a:92:70:d2:d3:96:d2:cb: 95:2a:c9:4c:9d:ba:d8:e6:d0:05:7d:54:1b:7c:21:2e:d6:a3: c6:94:2b:51:e6:ef:0d:dc:3b:09:b6:87:9b:c1:2e:82:7f:ca: 2f:f4:f4:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBs8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA0QUMxMTAvBgNVBAUTKERDQUU4NzFCN0M1Q0I3OUJDN0VDRjY3OUIzQjJEM0M5 NTZBN0Q5RTMwHhcNMjUxMTA0MjIxODI2WhcNMjUxMTExMjIxODI2WjAYMRYwFAYD VQQDEw02OTBhN2JiMi1hNWRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxXb4zRHGVg3KgiX5U0JB+OYIlFEXlEeEe/NJ8B0OXvdCbM5lLbtwRN/J1ta6 FGF32Pz5JW2rzcGiDTAH6r8YDBfUtm4JsCcFCQDuiRw+LmKCjBxA1U/UZ9NSLAiy +4Mhej+BEnSM6S6x4krLHwlOCp2qGGvpvEXX0mLHy1wrijgks6NuhCS0LRnCqJ/M yCjYHJKbgi5OrKcD1L+/8OMykd7GRDhXOlSlcUhVqyrsU8lc6FaxS0JZ77v4jWHD Yk+1ZcnizqdEaRSdNC2RGvMcxMfudc3Pz5Z5Rl+V5NMXQz/BYJaurKFMi077V1vD F+90wio/wqtwr9l9qpT7Txf2ZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNOZU3GZ G78yXo26/V0wPX+McJdIMB8GA1UdIwQYMBaAFNyuhxt8XLebx+z2ebOy08lWp9nj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDRBQy80OTcyMDk5Njgx NDUxMUVCQjJERDVENEJDNEY5QUUwMi8zSzZIRzN4Y3Q1dkg3UFo1czdMVHlWYW4y ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNLNkhHM3hjdDV2SDdQWjVzN0xUeVZhbjJlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDRBQy80OTcyMDk5NjgxNDUxMUVCQjJERDVENEJDNEY5QUUwMi8zSzZIRzN4Y3Q1 dkg3UFo1czdMVHlWYW4yZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6RT/9vQiMtQMsIKYZFEeCIgLEj6hZGGlMs7G2z4D3EsD8GMeoQA0f A6CmTp6WwWgDCYSYsp7h7GPQ84oJ5XwzjWd+e7Zl2ykD4e+w+8BP6CbPYmQtm1or h+9Hln7vJZqkfmfvSEHt2uUla5y1QQ3ygMB/TibLrxSlGpDQOoNfZKCmP8ZcDu/E slAILu+Nzwf27/QIBJczQUhebMhSJiqTM8bE0CxQDEfWd/D03DO/j4dnjBpHoSTG 57jxjdax393nMCWwunbfdZxIct2tSJN3KpJw0tOW0suVKslMnbrY5tAFfVQbfCEu 1qPGlCtR5u8N3DsJtoebwS6Cf8ov9PR1 -----END CERTIFICATE-----Generated at Wed Nov 5 13:38:10 2025 by rpki-client