$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5201/45AAA1E81B5511F0A395B813C4F9AE02/3uW4vIUKW2vLRtfjtMl-i4Mop6A.mft File: 3uW4vIUKW2vLRtfjtMl-i4Mop6A.mft (raw, json) Hash identifier: 23OZgWsCHXNQ1XXtoikbCpa+vtaYMWJucKjSiMej+K0= Subject key identifier: B1:CE:84:9E:A1:3E:4E:12:D3:79:DF:46:6E:5A:5A:14:F5:CB:25:C2 Authority key identifier: DE:E5:B8:BC:85:0A:5B:6B:CB:46:D7:E3:B4:C9:7E:8B:83:28:A7:A0 Certificate issuer: /CN=A91A5201/serialNumber=DEE5B8BC850A5B6BCB46D7E3B4C97E8B8328A7A0 Certificate serial: 68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3uW4vIUKW2vLRtfjtMl-i4Mop6A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5201/45AAA1E81B5511F0A395B813C4F9AE02/3uW4vIUKW2vLRtfjtMl-i4Mop6A.mft Manifest number: 67 Signing time: Wed 05 Nov 2025 07:11:00 +0000 Manifest this update: Wed 05 Nov 2025 07:11:00 +0000 Manifest next update: Wed 12 Nov 2025 07:11:00 +0000 Files and hashes: 1: 3uW4vIUKW2vLRtfjtMl-i4Mop6A.crl (hash: g7B7t+RgfGDsKoqBrHlCViA4vDVZCWbDHPGkpsiS3+o=) 2: D0CA23541BC611F09FDAC047C4F9AE02.roa (hash: KE/ITB6hhJ+i5ZAAKHW4Wk+MiRqF5kXhTWgdF88Y+V8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5201/45AAA1E81B5511F0A395B813C4F9AE02/3uW4vIUKW2vLRtfjtMl-i4Mop6A.crl rsync://rpki.apnic.net/member_repository/A91A5201/45AAA1E81B5511F0A395B813C4F9AE02/3uW4vIUKW2vLRtfjtMl-i4Mop6A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3uW4vIUKW2vLRtfjtMl-i4Mop6A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:10:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 104 (0x68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5201, serialNumber=DEE5B8BC850A5B6BCB46D7E3B4C97E8B8328A7A0 Validity Not Before: Nov 5 07:11:00 2025 GMT Not After : Nov 12 07:11:00 2025 GMT Subject: CN=690af884-af24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:ad:05:c2:47:68:9d:6c:ba:77:60:fc:5d:02: 6c:15:ff:69:49:df:91:27:a2:4b:c8:7d:19:90:b0: 09:bb:e3:b7:ab:79:b4:6d:c5:ac:07:ba:3e:8c:74: 67:f3:c8:c8:9a:d6:c2:6f:8a:99:c1:24:8a:c3:6b: c8:fb:00:ff:c5:ae:fe:72:b5:c7:54:0c:49:a4:cf: c8:8b:33:86:e3:3a:af:90:c0:4c:f7:3d:e8:76:8a: 4b:53:f0:64:1e:cc:65:53:48:b1:aa:df:06:2c:c4: 9d:52:5d:a9:f7:7c:e5:93:b3:18:b6:38:a4:20:3b: 81:33:99:b8:8f:ff:0b:9e:96:fc:be:48:2a:1e:fc: a0:6e:47:85:e9:16:98:99:6b:b4:e9:7c:43:95:4f: 67:ac:ce:a6:be:24:8e:fc:9d:dc:87:ec:c9:82:9e: 34:13:10:6d:c8:b9:7a:81:66:d2:1a:b0:89:ff:9a: d1:01:fb:e6:ba:51:b3:8e:39:5f:19:68:3e:97:29: c4:84:e3:0a:60:cf:b4:37:98:55:09:98:db:0c:a7: 38:b9:1d:38:fc:56:3a:2d:5e:dc:56:76:f7:10:d1: 04:0b:b1:50:ba:27:96:48:e0:d1:2d:e5:42:68:a0: 9d:f4:2f:b8:01:7c:91:1f:8c:b6:06:74:22:1e:a8: b4:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:CE:84:9E:A1:3E:4E:12:D3:79:DF:46:6E:5A:5A:14:F5:CB:25:C2 X509v3 Authority Key Identifier: keyid:DE:E5:B8:BC:85:0A:5B:6B:CB:46:D7:E3:B4:C9:7E:8B:83:28:A7:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5201/45AAA1E81B5511F0A395B813C4F9AE02/3uW4vIUKW2vLRtfjtMl-i4Mop6A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3uW4vIUKW2vLRtfjtMl-i4Mop6A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5201/45AAA1E81B5511F0A395B813C4F9AE02/3uW4vIUKW2vLRtfjtMl-i4Mop6A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:89:59:42:05:55:32:19:2c:1f:a8:e5:fc:b2:43:4e:c2:b9: c5:4c:79:b2:d7:d3:65:39:1f:ab:c7:47:a6:44:16:66:91:78: c7:a4:e8:86:1e:84:a6:d4:87:d7:3e:61:dd:e5:27:ac:fe:62: eb:82:19:3e:9d:5a:2d:80:83:a0:a2:aa:7b:6a:50:33:33:d7: 8a:40:cf:b7:1b:3b:a7:fb:56:ab:82:dd:05:c4:0b:fd:bb:24: c0:00:93:ee:d5:d1:54:1e:19:9b:d1:f6:23:a2:58:aa:d5:e9: cb:af:27:82:2a:20:54:14:61:87:d8:83:2b:75:09:9c:d2:62: af:2f:b5:f3:c5:6f:5b:2d:85:75:31:82:6b:eb:fa:95:b8:3d: e4:70:4d:84:30:41:f6:ae:04:16:59:13:91:f7:8f:8f:fe:b6: 81:8a:58:f0:96:6d:1c:90:e1:0f:c3:86:3d:24:1a:85:26:1a: ca:15:0f:fc:7d:f1:ce:09:6c:cc:68:6d:4b:2c:99:27:dc:25: f4:74:19:a2:5f:eb:d3:6f:55:c3:f4:f4:97:85:cd:d8:91:01: d4:9e:01:9b:b1:ad:3a:7f:17:c3:bc:13:04:c4:01:e6:d6:45: 7f:62:b6:dc:66:4f:f1:ca:d5:34:b2:9e:17:cf:77:4d:65:ff: 82:d7:ef:7e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBaDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NTIwMTExMC8GA1UEBRMoREVFNUI4QkM4NTBBNUI2QkNCNDZEN0UzQjRDOTdFOEI4 MzI4QTdBMDAeFw0yNTExMDUwNzExMDBaFw0yNTExMTIwNzExMDBaMBgxFjAUBgNV BAMTDTY5MGFmODg0LWFmMjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDWrQXCR2idbLp3YPxdAmwV/2lJ35EnokvIfRmQsAm747erebRtxawHuj6MdGfz yMia1sJvipnBJIrDa8j7AP/Frv5ytcdUDEmkz8iLM4bjOq+QwEz3Peh2iktT8GQe zGVTSLGq3wYsxJ1SXan3fOWTsxi2OKQgO4EzmbiP/wuelvy+SCoe/KBuR4XpFpiZ a7TpfEOVT2eszqa+JI78ndyH7MmCnjQTEG3IuXqBZtIasIn/mtEB++a6UbOOOV8Z aD6XKcSE4wpgz7Q3mFUJmNsMpzi5HTj8VjotXtxWdvcQ0QQLsVC6J5ZI4NEt5UJo oJ30L7gBfJEfjLYGdCIeqLQFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUsc6EnqE+ ThLTed9GblpaFPXLJcIwHwYDVR0jBBgwFoAU3uW4vIUKW2vLRtfjtMl+i4Mop6Aw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1MjAxLzQ1QUFBMUU4MUI1 NTExRjBBMzk1QjgxM0M0RjlBRTAyLzN1VzR2SVVLVzJ2TFJ0Zmp0TWwtaTRNb3A2 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM3VXNHZJVUtXMnZMUnRmanRNbC1pNE1vcDZBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1 MjAxLzQ1QUFBMUU4MUI1NTExRjBBMzk1QjgxM0M0RjlBRTAyLzN1VzR2SVVLVzJ2 TFJ0Zmp0TWwtaTRNb3A2QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAWJWUIFVTIZLB+o5fyyQ07CucVMebLX02U5H6vHR6ZEFmaReMek6IYe hKbUh9c+Yd3lJ6z+YuuCGT6dWi2Ag6CiqntqUDMz14pAz7cbO6f7VquC3QXEC/27 JMAAk+7V0VQeGZvR9iOiWKrV6cuvJ4IqIFQUYYfYgyt1CZzSYq8vtfPFb1sthXUx gmvr+pW4PeRwTYQwQfauBBZZE5H3j4/+toGKWPCWbRyQ4Q/Dhj0kGoUmGsoVD/x9 8c4JbMxobUssmSfcJfR0GaJf69NvVcP09JeFzdiRAdSeAZuxrTp/F8O8EwTEAebW RX9ittxmT/HK1TSynhfPd01l/4LX734= -----END CERTIFICATE-----Generated at Wed Nov 5 12:26:39 2025 by rpki-client