$ rpki-client -vvf rpki.apnic.net/member_repository/A91B31CB/F44CCF7E89F011EFAD26B97AC4F9AE02/3-Ss3KCmIkNlS9IJNoIFeOktJSQ.mft File: 3-Ss3KCmIkNlS9IJNoIFeOktJSQ.mft (raw, json) Hash identifier: 6BWtxpl1XrQqm9uXM6ez/OE2h0uyx3Gdhho6PC4HdyM= Subject key identifier: B2:07:13:1A:98:0B:96:83:D4:D3:7B:54:80:D1:B0:EF:F6:F9:B4:BE Authority key identifier: DF:E4:AC:DC:A0:A6:22:43:65:4B:D2:09:36:82:05:78:E9:2D:25:24 Certificate issuer: /CN=A91B31CB/serialNumber=DFE4ACDCA0A62243654BD20936820578E92D2524 Certificate serial: C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3-Ss3KCmIkNlS9IJNoIFeOktJSQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B31CB/F44CCF7E89F011EFAD26B97AC4F9AE02/3-Ss3KCmIkNlS9IJNoIFeOktJSQ.mft Manifest number: C7 Signing time: Mon 03 Nov 2025 05:48:18 +0000 Manifest this update: Mon 03 Nov 2025 05:48:17 +0000 Manifest next update: Mon 10 Nov 2025 05:48:17 +0000 Files and hashes: 1: 3-Ss3KCmIkNlS9IJNoIFeOktJSQ.crl (hash: sduCo0AAt489u/wBo3Dv3VL8vnRgadDrSsIIORZaH/E=) 2: 67030B7889F111EFB3186A7BC4F9AE02.roa (hash: jpoA3nOwURms9S72GBWIhr5w5HiTb8jNg/HLvSF6ab8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B31CB/F44CCF7E89F011EFAD26B97AC4F9AE02/3-Ss3KCmIkNlS9IJNoIFeOktJSQ.crl rsync://rpki.apnic.net/member_repository/A91B31CB/F44CCF7E89F011EFAD26B97AC4F9AE02/3-Ss3KCmIkNlS9IJNoIFeOktJSQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3-Ss3KCmIkNlS9IJNoIFeOktJSQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:48:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 201 (0xc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B31CB, serialNumber=DFE4ACDCA0A62243654BD20936820578E92D2524 Validity Not Before: Nov 3 05:48:17 2025 GMT Not After : Nov 10 05:48:17 2025 GMT Subject: CN=69084222-56c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:cf:7e:89:17:2f:02:d6:48:e7:f5:56:68:30: bb:65:3e:23:2d:43:f0:59:4c:f6:cd:a6:e1:e8:f2: d3:df:48:6b:e2:67:3f:08:c9:7d:1a:11:4d:75:c3: a7:6e:af:69:f6:1c:19:cb:32:0a:9c:69:5b:91:e3: 5b:48:7e:f0:81:86:78:14:f4:2f:d7:1d:fa:f7:00: 5d:b4:ea:68:4b:8d:4f:bc:44:1f:17:d8:aa:13:3a: 1e:28:1c:1e:37:b8:62:d2:da:dd:d4:42:fc:b5:34: 08:4a:c3:65:5d:15:20:29:6b:bc:f2:50:c1:47:cf: 64:25:09:81:43:f6:19:95:f5:40:fc:4e:31:fe:b5: 22:40:de:f4:f8:6f:ee:14:64:d8:94:93:2d:d1:70: a5:04:f7:98:82:97:da:97:b3:82:57:a2:58:a4:e8: a7:fd:89:27:e5:2e:3b:83:b3:72:38:53:0a:89:4f: 2b:1d:2a:51:c2:26:97:1b:de:67:a4:7f:79:4f:1d: 4c:2e:1a:4b:26:f5:ef:5f:e9:ea:59:52:ac:55:3b: 7a:1d:8a:de:6f:95:67:a0:97:38:c0:3d:00:20:03: 98:fc:c9:24:4a:d5:41:f6:d1:2d:43:1a:58:2c:28: b2:1d:51:ff:96:37:45:3f:5e:d2:02:c7:a5:bf:78: 16:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:07:13:1A:98:0B:96:83:D4:D3:7B:54:80:D1:B0:EF:F6:F9:B4:BE X509v3 Authority Key Identifier: keyid:DF:E4:AC:DC:A0:A6:22:43:65:4B:D2:09:36:82:05:78:E9:2D:25:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B31CB/F44CCF7E89F011EFAD26B97AC4F9AE02/3-Ss3KCmIkNlS9IJNoIFeOktJSQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3-Ss3KCmIkNlS9IJNoIFeOktJSQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B31CB/F44CCF7E89F011EFAD26B97AC4F9AE02/3-Ss3KCmIkNlS9IJNoIFeOktJSQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ca:08:51:81:ff:e5:e9:e0:df:f8:76:88:40:cc:6e:72:68:ae: 8c:20:54:45:02:7a:24:32:d8:fc:53:c6:ce:b7:3c:3a:e0:74: 9e:c4:86:bb:af:69:c0:58:4c:68:c6:2a:41:5f:e5:45:64:46: 50:de:66:7c:7f:f8:44:7e:25:11:2a:75:3c:c5:e6:df:09:a1: 3e:d7:60:83:44:0b:8a:7c:3d:43:84:8f:a5:ac:aa:1d:de:71: 5e:91:44:2d:ee:6b:ce:4f:17:00:1a:0e:c3:4c:12:25:d3:f9: 25:8e:44:49:05:bc:56:cf:c6:d0:b5:a8:c0:83:b3:cd:d3:19: bf:f7:09:66:26:e9:b2:0e:03:a8:3f:ed:9d:95:f4:78:2b:75: 2a:45:81:f4:5b:b5:38:f2:0d:aa:83:af:27:90:db:62:ae:64: c5:26:f2:c0:80:04:57:f5:60:28:f4:81:78:a0:5d:79:bc:76: 4a:0e:6e:85:cd:b3:0b:5b:af:41:f5:8b:9e:04:7a:ac:c0:8b: 86:d7:c3:0b:8c:4d:bb:83:a7:72:26:d5:3a:89:4e:42:6c:43: 2d:60:2a:80:2b:1b:fe:99:a1:05:b6:35:9e:3c:54:19:96:9f: 81:5c:7e:ab:7f:72:a2:f3:e9:fd:54:d4:22:75:7d:bb:60:83: c6:04:35:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjMxQ0IxMTAvBgNVBAUTKERGRTRBQ0RDQTBBNjIyNDM2NTRCRDIwOTM2ODIwNTc4 RTkyRDI1MjQwHhcNMjUxMTAzMDU0ODE3WhcNMjUxMTEwMDU0ODE3WjAYMRYwFAYD VQQDEw02OTA4NDIyMi01NmM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw89+iRcvAtZI5/VWaDC7ZT4jLUPwWUz2zabh6PLT30hr4mc/CMl9GhFNdcOn bq9p9hwZyzIKnGlbkeNbSH7wgYZ4FPQv1x369wBdtOpoS41PvEQfF9iqEzoeKBwe N7hi0trd1EL8tTQISsNlXRUgKWu88lDBR89kJQmBQ/YZlfVA/E4x/rUiQN70+G/u FGTYlJMt0XClBPeYgpfal7OCV6JYpOin/Ykn5S47g7NyOFMKiU8rHSpRwiaXG95n pH95Tx1MLhpLJvXvX+nqWVKsVTt6HYreb5VnoJc4wD0AIAOY/MkkStVB9tEtQxpY LCiyHVH/ljdFP17SAselv3gWswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLIHExqY C5aD1NN7VIDRsO/2+bS+MB8GA1UdIwQYMBaAFN/krNygpiJDZUvSCTaCBXjpLSUk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzFDQi9GNDRDQ0Y3RTg5 RjAxMUVGQUQyNkI5N0FDNEY5QUUwMi8zLVNzM0tDbUlrTmxTOUlKTm9JRmVPa3RK U1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMtU3MzS0NtSWtObFM5SUpOb0lGZU9rdEpTUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzFDQi9GNDRDQ0Y3RTg5RjAxMUVGQUQyNkI5N0FDNEY5QUUwMi8zLVNzM0tDbUlr TmxTOUlKTm9JRmVPa3RKU1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDKCFGB/+Xp4N/4dohAzG5yaK6MIFRFAnokMtj8U8bOtzw64HSexIa7 r2nAWExoxipBX+VFZEZQ3mZ8f/hEfiURKnU8xebfCaE+12CDRAuKfD1DhI+lrKod 3nFekUQt7mvOTxcAGg7DTBIl0/kljkRJBbxWz8bQtajAg7PN0xm/9wlmJumyDgOo P+2dlfR4K3UqRYH0W7U48g2qg68nkNtirmTFJvLAgARX9WAo9IF4oF15vHZKDm6F zbMLW69B9YueBHqswIuG18MLjE27g6dyJtU6iU5CbEMtYCqAKxv+maEFtjWePFQZ lp+BXH6rf3Ki8+n9VNQidX27YIPGBDW+ -----END CERTIFICATE-----Generated at Tue Nov 4 08:18:14 2025 by rpki-client