$ rpki-client -vvf rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/t3KDxTMROjkeMdlFJxhqz4OZol8.mft File: t3KDxTMROjkeMdlFJxhqz4OZol8.mft (raw, json) Hash identifier: c4SAXOVIvj5SwHFvF7jOc0WiX9ZD/De0yw6NS4zhlcE= Subject key identifier: 29:32:9D:95:A8:CE:0F:61:40:6A:73:46:86:BB:AB:E6:7A:78:09:79 Authority key identifier: B7:72:83:C5:33:11:3A:39:1E:31:D9:45:27:18:6A:CF:83:99:A2:5F Certificate issuer: /CN=A91AEE4B/serialNumber=B77283C533113A391E31D94527186ACF8399A25F Certificate serial: 0B55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t3KDxTMROjkeMdlFJxhqz4OZol8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/t3KDxTMROjkeMdlFJxhqz4OZol8.mft Manifest number: 0B4B Signing time: Tue 04 Nov 2025 19:18:32 +0000 Manifest this update: Tue 04 Nov 2025 19:18:32 +0000 Manifest next update: Tue 11 Nov 2025 19:18:32 +0000 Files and hashes: 1: t3KDxTMROjkeMdlFJxhqz4OZol8.crl (hash: B7eBNYrAUVzW7ZVEJK1j//qhDT8wNjWkM+Okx25F3po=) 2: 02F1850E45A611EA81CD145AC4F9AE02.roa (hash: 58+0TyNKJb4Dhk7ED+Dg5ahFyoV+/K06n+R45NAzh68=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/t3KDxTMROjkeMdlFJxhqz4OZol8.crl rsync://rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/t3KDxTMROjkeMdlFJxhqz4OZol8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t3KDxTMROjkeMdlFJxhqz4OZol8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:18:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2901 (0xb55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AEE4B, serialNumber=B77283C533113A391E31D94527186ACF8399A25F Validity Not Before: Nov 4 19:18:32 2025 GMT Not After : Nov 11 19:18:32 2025 GMT Subject: CN=690a5188-54aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:df:db:47:e3:74:a5:de:92:c3:19:a1:77:04: b2:7c:8c:24:2c:e9:ae:a0:87:d9:14:2a:49:05:fb: 04:5c:31:50:4a:eb:b7:b7:fb:7a:4b:e6:28:5e:8a: 5e:63:97:1e:3f:94:5c:97:3d:a9:fb:12:6b:16:4d: e2:f9:d0:2c:ef:87:bf:c3:80:46:64:bf:2e:77:d0: d5:e1:c3:84:2b:d2:cf:a4:05:b3:12:60:35:b3:c2: d1:b4:1b:a3:fc:38:5c:b7:4b:bd:1b:9b:b1:7b:25: 66:9e:2c:5a:04:e6:32:54:01:1c:b9:6c:dd:05:f0: ce:f3:a8:d5:0d:5f:98:6d:28:1c:0b:6b:92:1a:5f: d3:d7:ac:d1:68:3c:b6:2c:9a:7c:fa:71:c7:96:f9: 94:d4:4f:58:85:04:fe:b3:87:a9:b2:de:e7:9d:28: 65:1d:32:e5:c8:9f:8a:22:a5:d5:25:ac:e8:55:92: 23:47:09:7c:85:97:f7:2f:7a:47:21:9b:07:ec:2d: 07:53:5f:42:e8:ca:eb:07:bc:78:61:ef:47:31:81: dc:44:84:f0:da:0f:fd:72:e6:f0:fa:d8:e1:57:39: 66:21:5b:5f:ae:27:43:a1:38:a8:b1:e2:6f:16:a6: 8a:5a:e4:07:b3:d1:78:69:3e:81:19:75:35:70:40: 32:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:32:9D:95:A8:CE:0F:61:40:6A:73:46:86:BB:AB:E6:7A:78:09:79 X509v3 Authority Key Identifier: keyid:B7:72:83:C5:33:11:3A:39:1E:31:D9:45:27:18:6A:CF:83:99:A2:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/t3KDxTMROjkeMdlFJxhqz4OZol8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t3KDxTMROjkeMdlFJxhqz4OZol8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/t3KDxTMROjkeMdlFJxhqz4OZol8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:2e:62:09:07:e1:90:91:5f:2c:a6:07:59:d3:cf:f9:1e:0c: 62:62:c6:46:28:e9:49:80:6e:df:09:ec:e1:ee:fa:5c:7c:2c: c0:35:45:3c:09:41:f2:02:e0:19:2b:e7:0e:71:2b:ec:b4:b9: 47:3b:1c:7f:4b:d6:91:4f:3f:e3:70:4c:de:30:33:ee:99:b2: d2:6d:25:98:0f:d6:11:ed:a9:39:05:25:ce:31:e4:86:82:64: eb:c9:6a:2e:78:c9:e0:91:22:f4:1e:75:6a:f6:c7:b9:4e:90: 70:b4:0f:9f:41:a3:2e:c8:a0:d2:8c:6b:3b:e6:88:80:7e:5f: 14:d3:30:f3:04:3b:1e:50:86:97:d0:25:c6:f2:de:44:94:60: 6f:3b:72:e6:91:f7:1f:60:fa:03:e7:a0:52:7a:0c:b2:ac:32: 14:aa:d9:fd:36:9b:52:a3:a6:43:eb:94:5f:70:a1:fb:ae:09: 6a:0c:5e:38:29:ba:69:3c:82:87:68:95:71:a6:61:83:08:ca: f4:95:3f:b9:6f:1d:a9:17:2a:05:01:65:77:da:c1:6c:f0:cd: 2e:93:d5:02:c2:ee:cd:fe:f3:4f:fc:47:bd:ea:64:76:ed:98: 3c:3d:91:34:88:8e:31:72:b2:58:3d:f9:c3:67:ac:7d:75:45: 92:8d:4c:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC1UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUVFNEIxMTAvBgNVBAUTKEI3NzI4M0M1MzMxMTNBMzkxRTMxRDk0NTI3MTg2QUNG ODM5OUEyNUYwHhcNMjUxMTA0MTkxODMyWhcNMjUxMTExMTkxODMyWjAYMRYwFAYD VQQDEw02OTBhNTE4OC01NGFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3d/bR+N0pd6SwxmhdwSyfIwkLOmuoIfZFCpJBfsEXDFQSuu3t/t6S+YoXope Y5ceP5Rclz2p+xJrFk3i+dAs74e/w4BGZL8ud9DV4cOEK9LPpAWzEmA1s8LRtBuj /Dhct0u9G5uxeyVmnixaBOYyVAEcuWzdBfDO86jVDV+YbSgcC2uSGl/T16zRaDy2 LJp8+nHHlvmU1E9YhQT+s4epst7nnShlHTLlyJ+KIqXVJazoVZIjRwl8hZf3L3pH IZsH7C0HU19C6MrrB7x4Ye9HMYHcRITw2g/9cubw+tjhVzlmIVtfridDoTioseJv FqaKWuQHs9F4aT6BGXU1cEAyCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCkynZWo zg9hQGpzRoa7q+Z6eAl5MB8GA1UdIwQYMBaAFLdyg8UzETo5HjHZRScYas+DmaJf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRUU0Qi82M0RGRjgwMjQ1 QTQxMUVBOTQyRTA5NTdDNEY5QUUwMi90M0tEeFRNUk9qa2VNZGxGSnhocXo0T1pv bDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3QzS0R4VE1ST2prZU1kbEZKeGhxejRPWm9sOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RUU0Qi82M0RGRjgwMjQ1QTQxMUVBOTQyRTA5NTdDNEY5QUUwMi90M0tEeFRNUk9q a2VNZGxGSnhocXo0T1pvbDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNLmIJB+GQkV8spgdZ08/5HgxiYsZGKOlJgG7fCezh7vpcfCzANUU8 CUHyAuAZK+cOcSvstLlHOxx/S9aRTz/jcEzeMDPumbLSbSWYD9YR7ak5BSXOMeSG gmTryWoueMngkSL0HnVq9se5TpBwtA+fQaMuyKDSjGs75oiAfl8U0zDzBDseUIaX 0CXG8t5ElGBvO3LmkfcfYPoD56BSegyyrDIUqtn9NptSo6ZD65RfcKH7rglqDF44 KbppPIKHaJVxpmGDCMr0lT+5bx2pFyoFAWV32sFs8M0uk9UCwu7N/vNP/Ee96mR2 7Zg8PZE0iI4xcrJYPfnDZ6x9dUWSjUyJ -----END CERTIFICATE-----Generated at Wed Nov 5 16:42:41 2025 by rpki-client