$ rpki-client -vvf rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.mft File: 3kzpYKOTCrTCJ_zo-FfAhBl_CNA.mft (raw, json) Hash identifier: vniJHBFj6cImv1867bPn/c1U6OEptO/PXoAR7FQRBR0= Subject key identifier: 92:BF:CF:46:B0:D5:2E:34:83:36:7A:E4:41:61:1E:FB:F2:83:E5:0E Authority key identifier: DE:4C:E9:60:A3:93:0A:B4:C2:27:FC:E8:F8:57:C0:84:19:7F:08:D0 Certificate issuer: /CN=A918F1C9/serialNumber=DE4CE960A3930AB4C227FCE8F857C084197F08D0 Certificate serial: 90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.mft Manifest number: 0ACB Signing time: Tue 04 Nov 2025 19:52:07 +0000 Manifest this update: Tue 04 Nov 2025 19:52:06 +0000 Manifest next update: Tue 11 Nov 2025 19:52:06 +0000 Files and hashes: 1: 3kzpYKOTCrTCJ_zo-FfAhBl_CNA.crl (hash: RFIEFzTN3Tlcd7/lfpxRUoq0IPfIhSO8hiEEOCJigTg=) 2: 93E4B52CE43E11EF91571D16C4F9AE02.roa (hash: bxEMXPw0Uf6AR6ksTo+EYnAV7IQpuoAnSjrI4XOmEWM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.crl rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:52:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 144 (0x90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F1C9, serialNumber=DE4CE960A3930AB4C227FCE8F857C084197F08D0 Validity Not Before: Nov 4 19:52:06 2025 GMT Not After : Nov 11 19:52:06 2025 GMT Subject: CN=690a5966-1536 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:a3:d4:e7:08:df:33:b9:c8:a9:7f:01:9d:90: 67:ae:c7:c2:05:07:5f:17:55:a7:74:f3:a8:f6:52: ac:4f:87:c3:c1:08:47:0b:2f:b7:47:09:5b:03:40: d6:60:a8:b5:d7:c3:9a:44:be:86:51:3f:9d:63:6a: b7:76:a3:3b:dd:57:08:5b:20:c0:91:bc:28:b8:31: 53:90:2b:3b:7c:51:b5:db:c8:1e:98:a9:80:10:63: 10:9b:9a:36:ed:3e:a0:df:60:3a:22:aa:7f:67:25: 21:e2:40:61:93:d8:c6:e4:de:d1:99:30:21:7a:b5: 79:76:fe:20:32:13:93:e7:66:63:d8:8b:f4:64:12: 82:5e:af:7e:82:f4:b3:9f:75:88:0f:ea:97:b5:5e: b2:81:e7:46:c4:da:5b:1c:36:b2:06:1d:0d:33:7b: 97:b6:de:62:96:7a:b8:97:14:ea:b9:05:20:68:18: 23:96:2a:f5:35:73:c7:2d:57:2d:6d:4b:be:06:06: 36:c5:89:d3:4f:70:76:ab:69:9c:65:e0:c1:f7:7e: f9:0d:1a:31:f1:d1:93:4f:de:c7:06:77:98:5f:6f: de:0b:d2:e7:84:4c:46:4f:9f:e9:d4:d8:61:6c:4c: 7f:76:f9:63:6a:56:3f:dd:6f:e8:73:f8:d0:02:10: 33:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:BF:CF:46:B0:D5:2E:34:83:36:7A:E4:41:61:1E:FB:F2:83:E5:0E X509v3 Authority Key Identifier: keyid:DE:4C:E9:60:A3:93:0A:B4:C2:27:FC:E8:F8:57:C0:84:19:7F:08:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d5:71:a7:de:e6:36:a0:92:95:5a:55:b9:89:96:b3:c3:96:65: d2:1e:41:2c:38:62:3a:2e:0c:50:f2:70:ce:8d:df:b7:03:2c: aa:7f:30:bb:22:e1:18:88:20:8f:73:d7:e5:68:ad:a0:3a:d7: 24:9b:a4:75:4a:a9:e7:dc:43:2f:ed:37:5f:f8:4e:a4:78:48: bd:31:7c:b1:b3:62:2f:ba:8c:bb:6f:66:ce:1f:32:84:13:58: 90:93:ef:7e:7f:ec:10:04:f5:78:cc:9a:39:26:28:12:8d:01: f5:5e:57:66:0a:f2:80:37:66:86:31:6b:9d:5c:3a:60:c0:93: 4d:46:c8:59:d1:2d:29:fe:a4:95:86:3c:1c:29:d8:ec:c1:3a: b6:13:cb:2e:5e:86:bf:99:10:e4:df:49:7c:b0:f5:68:08:b5: b8:ca:17:d1:c9:2c:8c:c2:f9:15:b6:17:23:c3:e0:2a:76:e4: 7b:97:fd:ad:86:78:11:8c:00:17:60:0f:44:d0:55:35:e3:da: 03:5a:0f:2b:f6:4e:a5:1c:3b:20:95:90:0a:4a:34:46:f9:c5: bf:cb:08:e3:63:50:c5:fa:ea:7a:86:ab:ae:64:68:26:b4:d7: 7b:15:03:59:72:e4:c2:d2:09:81:2d:a5:e0:d4:16:3a:b3:d4: 9c:89:0b:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEYxQzkxMTAvBgNVBAUTKERFNENFOTYwQTM5MzBBQjRDMjI3RkNFOEY4NTdDMDg0 MTk3RjA4RDAwHhcNMjUxMTA0MTk1MjA2WhcNMjUxMTExMTk1MjA2WjAYMRYwFAYD VQQDEw02OTBhNTk2Ni0xNTM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7KPU5wjfM7nIqX8BnZBnrsfCBQdfF1WndPOo9lKsT4fDwQhHCy+3RwlbA0DW YKi118OaRL6GUT+dY2q3dqM73VcIWyDAkbwouDFTkCs7fFG128gemKmAEGMQm5o2 7T6g32A6Iqp/ZyUh4kBhk9jG5N7RmTAherV5dv4gMhOT52Zj2Iv0ZBKCXq9+gvSz n3WID+qXtV6ygedGxNpbHDayBh0NM3uXtt5ilnq4lxTquQUgaBgjlir1NXPHLVct bUu+BgY2xYnTT3B2q2mcZeDB9375DRox8dGTT97HBneYX2/eC9LnhExGT5/p1Nhh bEx/dvljalY/3W/oc/jQAhAzfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJK/z0aw 1S40gzZ65EFhHvvyg+UOMB8GA1UdIwQYMBaAFN5M6WCjkwq0wif86PhXwIQZfwjQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjFDOS82QTU3QUI4QzdG OTUxMUVBQjBFRDg1MzdDNEY5QUUwMi8za3pwWUtPVENyVENKX3pvLUZmQWhCbF9D TkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNrenBZS09UQ3JUQ0pfem8tRmZBaEJsX0NOQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RjFDOS82QTU3QUI4QzdGOTUxMUVBQjBFRDg1MzdDNEY5QUUwMi8za3pwWUtPVENy VENKX3pvLUZmQWhCbF9DTkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDVcafe5jagkpVaVbmJlrPDlmXSHkEsOGI6LgxQ8nDOjd+3AyyqfzC7 IuEYiCCPc9flaK2gOtckm6R1Sqnn3EMv7Tdf+E6keEi9MXyxs2Ivuoy7b2bOHzKE E1iQk+9+f+wQBPV4zJo5JigSjQH1XldmCvKAN2aGMWudXDpgwJNNRshZ0S0p/qSV hjwcKdjswTq2E8suXoa/mRDk30l8sPVoCLW4yhfRySyMwvkVthcjw+AqduR7l/2t hngRjAAXYA9E0FU149oDWg8r9k6lHDsglZAKSjRG+cW/ywjjY1DF+up6hquuZGgm tNd7FQNZcuTC0gmBLaXg1BY6s9SciQtB -----END CERTIFICATE-----Generated at Wed Nov 5 13:36:49 2025 by rpki-client