$ rpki-client -vvf rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft File: A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft (raw, json) Hash identifier: InFJTtmYKHCpHY4xzPvAy7FJvksDWx2HM75e+7d9rnY= Subject key identifier: A6:86:E8:91:C4:21:A3:34:4B:76:69:EA:84:44:C1:18:1B:65:4F:EC Authority key identifier: 03:77:B9:3C:91:FD:AF:46:9A:59:1B:4C:52:D2:4C:B1:55:5D:2B:D4 Certificate issuer: /CN=A91822BF/serialNumber=0377B93C91FDAF469A591B4C52D24CB1555D2BD4 Certificate serial: 0C29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft Manifest number: 0C21 Signing time: Tue 04 Nov 2025 18:48:50 +0000 Manifest this update: Tue 04 Nov 2025 18:48:50 +0000 Manifest next update: Tue 11 Nov 2025 18:48:50 +0000 Files and hashes: 1: A3e5PJH9r0aaWRtMUtJMsVVdK9Q.crl (hash: CYBorZYwJLMTgBGDrVPCnyIoUcl+3qSTTFciE8+1Qck=) 2: 37EA3E261ADC11EA8EB46F37C4F9AE02.roa (hash: ELFkrkGvrGXpvAeGB34G/wdhCkAvgz4ejLB+gQtN8Ps=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.crl rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:48:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3113 (0xc29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91822BF, serialNumber=0377B93C91FDAF469A591B4C52D24CB1555D2BD4 Validity Not Before: Nov 4 18:48:50 2025 GMT Not After : Nov 11 18:48:50 2025 GMT Subject: CN=690a4a92-e7cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:90:65:d7:5d:72:ff:cd:90:cc:b4:e3:78:8d: 8f:81:38:06:cc:20:1d:30:85:d5:6a:0c:42:0c:20: 6c:26:6d:d5:72:29:13:b4:06:34:8c:66:32:8a:9a: a0:48:3c:03:e4:4c:6e:ee:c4:90:c3:30:36:66:96: 3a:60:ba:bd:cb:b1:eb:f3:fc:40:45:74:05:c8:fd: c8:e8:09:80:9f:d1:81:93:48:03:bd:7c:6c:15:5a: f6:c4:b7:e5:9f:97:ec:bc:c1:1f:1f:b7:b3:a9:b7: 59:d6:56:64:8f:cd:e7:79:e9:f2:f6:40:26:e9:fa: aa:48:84:bb:98:fb:7b:bd:35:f5:5c:a9:29:4b:db: b7:d2:30:3b:b0:bb:38:89:66:0a:e1:1a:72:4a:ad: ea:d6:7b:cb:b0:6f:df:d9:48:c5:fa:cd:20:3e:84: 98:78:6f:69:34:c4:22:23:13:b4:a4:ad:b1:41:61: 53:bf:98:4c:78:34:1b:9a:2b:9d:4d:b3:4e:f6:87: 9a:28:91:07:60:1d:b2:41:8f:98:07:6d:15:07:5c: b4:d1:64:eb:94:a8:ba:79:7a:0e:bc:92:17:28:ca: a2:a3:b1:e8:f7:ca:fb:60:44:aa:1c:be:27:f4:0a: 74:9c:fc:69:2c:6a:fc:11:6f:bb:c9:96:d9:80:81: ce:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:86:E8:91:C4:21:A3:34:4B:76:69:EA:84:44:C1:18:1B:65:4F:EC X509v3 Authority Key Identifier: keyid:03:77:B9:3C:91:FD:AF:46:9A:59:1B:4C:52:D2:4C:B1:55:5D:2B:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:4a:19:6f:df:eb:9f:21:58:e4:a5:a7:15:9f:e9:8b:b0:86: 75:af:71:25:0b:bc:95:d0:73:c7:b0:9f:ea:21:cc:10:06:b8: fd:b9:d5:7a:a8:c3:8d:2e:7e:5e:9f:a4:5f:76:d3:85:67:ac: d0:4c:0a:86:fe:e0:8a:ac:d6:e5:1b:83:8d:a9:4b:05:54:f2: 7e:fc:a2:4a:2e:c1:00:4e:eb:50:c2:c4:0f:ff:8d:3c:f7:63: 3a:12:48:9f:d0:c6:3b:be:6f:7a:c5:c0:f8:0d:9b:ba:24:ca: d5:ed:f1:9d:c4:fb:48:91:28:ee:bb:a0:7f:16:d3:b8:27:10: 91:24:45:4e:1b:68:e7:54:39:3f:15:4c:5c:17:cf:9e:7b:84: a8:d0:d1:c9:c4:ed:21:a3:af:35:22:36:b1:f0:59:7d:5a:df: aa:73:36:60:91:43:1a:42:d4:bf:ea:f9:14:27:a0:af:4f:51: d0:5b:4c:38:3d:17:6e:71:47:36:85:8e:3d:bb:75:b4:79:40: 19:b7:b6:0d:66:d7:be:2d:22:36:4a:f1:7a:54:ec:0a:2e:38: 2a:5e:e0:98:ab:8f:79:7f:4b:ea:3e:ff:50:df:10:30:39:1b: b5:d1:86:dc:a2:9a:11:86:8d:a9:7d:95:04:31:8c:da:77:e1: 78:43:99:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODIyQkYxMTAvBgNVBAUTKDAzNzdCOTNDOTFGREFGNDY5QTU5MUI0QzUyRDI0Q0Ix NTU1RDJCRDQwHhcNMjUxMTA0MTg0ODUwWhcNMjUxMTExMTg0ODUwWjAYMRYwFAYD VQQDEw02OTBhNGE5Mi1lN2NiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy5Bl111y/82QzLTjeI2PgTgGzCAdMIXVagxCDCBsJm3VcikTtAY0jGYyipqg SDwD5Exu7sSQwzA2ZpY6YLq9y7Hr8/xARXQFyP3I6AmAn9GBk0gDvXxsFVr2xLfl n5fsvMEfH7ezqbdZ1lZkj83neeny9kAm6fqqSIS7mPt7vTX1XKkpS9u30jA7sLs4 iWYK4RpySq3q1nvLsG/f2UjF+s0gPoSYeG9pNMQiIxO0pK2xQWFTv5hMeDQbmiud TbNO9oeaKJEHYB2yQY+YB20VB1y00WTrlKi6eXoOvJIXKMqio7Ho98r7YESqHL4n 9Ap0nPxpLGr8EW+7yZbZgIHOzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKaG6JHE IaM0S3Zp6oREwRgbZU/sMB8GA1UdIwQYMBaAFAN3uTyR/a9GmlkbTFLSTLFVXSvU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjJCRi8xMDM5QkM0MDFB REIxMUVBQUEzQTgyMzVDNEY5QUUwMi9BM2U1UEpIOXIwYWFXUnRNVXRKTXNWVmRL OVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EzZTVQSkg5cjBhYVdSdE1VdEpNc1ZWZEs5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjJCRi8xMDM5QkM0MDFBREIxMUVBQUEzQTgyMzVDNEY5QUUwMi9BM2U1UEpIOXIw YWFXUnRNVXRKTXNWVmRLOVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQShlv3+ufIVjkpacVn+mLsIZ1r3ElC7yV0HPHsJ/qIcwQBrj9udV6 qMONLn5en6RfdtOFZ6zQTAqG/uCKrNblG4ONqUsFVPJ+/KJKLsEATutQwsQP/408 92M6Ekif0MY7vm96xcD4DZu6JMrV7fGdxPtIkSjuu6B/FtO4JxCRJEVOG2jnVDk/ FUxcF8+ee4So0NHJxO0ho681Ijax8Fl9Wt+qczZgkUMaQtS/6vkUJ6CvT1HQW0w4 PRducUc2hY49u3W0eUAZt7YNZte+LSI2SvF6VOwKLjgqXuCYq495f0vqPv9Q3xAw ORu10YbcopoRho2pfZUEMYzad+F4Q5n6 -----END CERTIFICATE-----Generated at Wed Nov 5 13:28:05 2025 by rpki-client