$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft File: U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft (raw, json) Hash identifier: DqE33eH2ZInsO+TT0kn6PutVa1ROzJbBmxNAu5+K+VI= Subject key identifier: 12:3D:A8:56:3B:8E:17:C9:02:8B:AB:8F:27:D2:CD:35:56:CF:C1:6F Authority key identifier: 53:7B:1B:A1:C0:1B:48:63:47:38:AA:11:59:AE:2B:95:59:0D:DD:91 Certificate issuer: /CN=A91CA735/serialNumber=537B1BA1C01B48634738AA1159AE2B95590DDD91 Certificate serial: E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3sbocAbSGNHOKoRWa4rlVkN3ZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft Manifest number: E4 Signing time: Wed 05 Nov 2025 05:39:48 +0000 Manifest this update: Wed 05 Nov 2025 05:39:48 +0000 Manifest next update: Wed 12 Nov 2025 05:39:48 +0000 Files and hashes: 1: U3sbocAbSGNHOKoRWa4rlVkN3ZE.crl (hash: XE28F02S3Af9mT7WvZvmX7WhOsP7wIPDViumT+izq4I=) 2: 38D25300639D11EFB668775FC4F9AE02.roa (hash: GCMBGFfjL07x7SqicgzDicIqCejugsZ+LueaE228tBc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.crl rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3sbocAbSGNHOKoRWa4rlVkN3ZE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:39:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 231 (0xe7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA735, serialNumber=537B1BA1C01B48634738AA1159AE2B95590DDD91 Validity Not Before: Nov 5 05:39:48 2025 GMT Not After : Nov 12 05:39:48 2025 GMT Subject: CN=690ae324-99d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:7d:cc:07:16:e6:d5:fe:88:fe:fb:50:5f:50: 11:65:71:07:4e:12:8e:b5:75:8a:88:f8:4a:06:04: 7b:91:a4:a7:8f:02:be:70:f5:5e:e7:0a:f6:65:b6: 25:81:e5:bb:09:f7:f4:59:e2:99:44:e1:96:bf:22: 3a:3b:a4:be:af:8d:12:51:40:45:45:a8:77:de:67: 07:c5:bd:22:20:71:7a:ba:49:cf:b2:e1:bd:f0:93: 2f:3c:e3:d6:33:4c:f6:40:ff:a2:87:61:23:88:fc: 5f:ff:16:30:46:4e:34:1d:89:f7:1a:85:13:5c:9f: f6:a0:b4:cf:98:f9:41:48:5f:98:02:8c:41:24:02: 1b:07:1d:15:e6:81:ea:34:27:a3:02:e1:bc:35:b6: f7:da:84:90:e0:cb:82:c4:a8:f2:34:8a:b0:9a:0d: fe:0b:dd:5c:c8:6e:04:a1:d2:7f:b5:06:4c:e6:10: d1:91:6b:e5:e5:3e:51:69:31:1b:01:db:52:67:4d: de:10:fb:5b:62:2d:31:c9:91:07:4a:33:f5:8a:dd: ab:ab:28:39:fd:84:24:22:8f:d3:de:55:86:a8:4c: f7:66:7b:9b:fe:20:ad:09:29:a6:ea:32:c1:13:0b: 84:86:65:55:a0:89:19:98:9d:3e:83:d6:4c:9b:3a: 8d:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:3D:A8:56:3B:8E:17:C9:02:8B:AB:8F:27:D2:CD:35:56:CF:C1:6F X509v3 Authority Key Identifier: keyid:53:7B:1B:A1:C0:1B:48:63:47:38:AA:11:59:AE:2B:95:59:0D:DD:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3sbocAbSGNHOKoRWa4rlVkN3ZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:fa:3f:49:b2:9a:6f:7c:3d:d5:e2:ac:ac:ac:d4:5d:c3:ed: 52:f2:22:b0:39:2e:49:d5:e8:b3:8f:68:ac:cf:67:4b:5d:4c: 8c:4f:37:46:61:13:d4:cb:47:42:00:e4:f7:a1:b4:e1:f9:9b: aa:2f:19:78:c6:a8:c2:e7:c1:4d:8b:c5:1d:a4:d6:31:2e:b6: c0:11:48:bd:86:fe:56:2f:65:70:51:7e:ac:3a:5c:b6:ce:01: 14:13:be:c4:cc:0c:50:62:9f:36:3b:f6:52:e6:8a:fb:a5:63: d0:cd:80:c7:eb:5a:8d:75:7a:72:ed:e3:b9:89:e4:87:e1:95: 66:0b:17:2e:dc:98:0c:5f:9a:5e:81:2c:20:7e:2f:95:1b:df: 44:86:6f:23:f8:7e:0c:bf:94:45:44:31:bd:b6:f7:8c:fb:fd: d0:30:86:23:88:e9:16:01:e9:a9:c8:6c:db:1c:1e:e5:00:17: ab:ae:7c:47:81:83:6e:c0:a4:d5:1b:b3:5b:41:21:a9:fb:98: 7d:1a:d3:29:af:b2:7e:34:3b:de:36:3a:ba:9f:5f:68:51:fb: 10:ed:32:55:91:92:99:f3:f2:6e:e6:2a:5f:b7:61:63:5d:05: c9:27:7b:5b:e3:b9:bb:f1:b3:d4:a2:5c:bb:93:5c:47:df:59: 69:d9:fb:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0E3MzUxMTAvBgNVBAUTKDUzN0IxQkExQzAxQjQ4NjM0NzM4QUExMTU5QUUyQjk1 NTkwREREOTEwHhcNMjUxMTA1MDUzOTQ4WhcNMjUxMTEyMDUzOTQ4WjAYMRYwFAYD VQQDEw02OTBhZTMyNC05OWQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA033MBxbm1f6I/vtQX1ARZXEHThKOtXWKiPhKBgR7kaSnjwK+cPVe5wr2ZbYl geW7Cff0WeKZROGWvyI6O6S+r40SUUBFRah33mcHxb0iIHF6uknPsuG98JMvPOPW M0z2QP+ih2EjiPxf/xYwRk40HYn3GoUTXJ/2oLTPmPlBSF+YAoxBJAIbBx0V5oHq NCejAuG8Nbb32oSQ4MuCxKjyNIqwmg3+C91cyG4EodJ/tQZM5hDRkWvl5T5RaTEb AdtSZ03eEPtbYi0xyZEHSjP1it2rqyg5/YQkIo/T3lWGqEz3Znub/iCtCSmm6jLB EwuEhmVVoIkZmJ0+g9ZMmzqNkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBI9qFY7 jhfJAourjyfSzTVWz8FvMB8GA1UdIwQYMBaAFFN7G6HAG0hjRziqEVmuK5VZDd2R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQTczNS9EMEU5QjFFRTYz OUIxMUVGOUI0RDJBNURDNEY5QUUwMi9VM3Nib2NBYlNHTkhPS29SV2E0cmxWa04z WkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Uzc2JvY0FiU0dOSE9Lb1JXYTRybFZrTjNaRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QTczNS9EMEU5QjFFRTYzOUIxMUVGOUI0RDJBNURDNEY5QUUwMi9VM3Nib2NBYlNH TkhPS29SV2E0cmxWa04zWkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBn+j9JsppvfD3V4qysrNRdw+1S8iKwOS5J1eizj2isz2dLXUyMTzdG YRPUy0dCAOT3obTh+ZuqLxl4xqjC58FNi8UdpNYxLrbAEUi9hv5WL2VwUX6sOly2 zgEUE77EzAxQYp82O/ZS5or7pWPQzYDH61qNdXpy7eO5ieSH4ZVmCxcu3JgMX5pe gSwgfi+VG99Ehm8j+H4Mv5RFRDG9tveM+/3QMIYjiOkWAempyGzbHB7lABerrnxH gYNuwKTVG7NbQSGp+5h9GtMpr7J+NDveNjq6n19oUfsQ7TJVkZKZ8/Ju5ipft2Fj XQXJJ3tb47m78bPUoly7k1xH31lp2fvP -----END CERTIFICATE-----Generated at Wed Nov 5 20:08:43 2025 by rpki-client