$ rpki-client -vvf rpki.apnic.net/member_repository/A91CDFFB/27E506E6D4EF11EA9A61724AC4F9AE02/3rVjn1hHxw3g_ES-eEJBGPiiBsY.mft File: 3rVjn1hHxw3g_ES-eEJBGPiiBsY.mft (raw, json) Hash identifier: iWuZN3VsKA5+rya3pVgTTAGjOY0tofHxJdVzjQnVCw0= Subject key identifier: 07:DD:9F:F2:DB:0B:7D:47:A4:3B:71:19:27:E6:47:06:7E:19:D0:EA Authority key identifier: DE:B5:63:9F:58:47:C7:0D:E0:FC:44:BE:78:42:41:18:F8:A2:06:C6 Certificate issuer: /CN=A91CDFFB/serialNumber=DEB5639F5847C70DE0FC44BE78424118F8A206C6 Certificate serial: 087B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3rVjn1hHxw3g_ES-eEJBGPiiBsY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CDFFB/27E506E6D4EF11EA9A61724AC4F9AE02/3rVjn1hHxw3g_ES-eEJBGPiiBsY.mft Manifest number: 0871 Signing time: Tue 04 Nov 2025 20:41:33 +0000 Manifest this update: Tue 04 Nov 2025 20:41:32 +0000 Manifest next update: Tue 11 Nov 2025 20:41:32 +0000 Files and hashes: 1: 3rVjn1hHxw3g_ES-eEJBGPiiBsY.crl (hash: 4w5jSh4Q5Rs3U4e+WRBKceqBsNC1tNF2TmfeFw3NiEc=) 2: CA42E5689FA411EBBC1FFB40C4F9AE02.roa (hash: OCh4LN68aJpc0ulStGzgAqznGnm3sYyEz+fd1t6nYl4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CDFFB/27E506E6D4EF11EA9A61724AC4F9AE02/3rVjn1hHxw3g_ES-eEJBGPiiBsY.crl rsync://rpki.apnic.net/member_repository/A91CDFFB/27E506E6D4EF11EA9A61724AC4F9AE02/3rVjn1hHxw3g_ES-eEJBGPiiBsY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3rVjn1hHxw3g_ES-eEJBGPiiBsY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:41:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2171 (0x87b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CDFFB, serialNumber=DEB5639F5847C70DE0FC44BE78424118F8A206C6 Validity Not Before: Nov 4 20:41:32 2025 GMT Not After : Nov 11 20:41:32 2025 GMT Subject: CN=690a64fd-199d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:39:36:d3:62:d3:ae:49:54:66:1a:f2:d2:5c: af:bb:85:32:aa:a3:19:e5:fb:08:25:1e:af:78:6f: 7f:ce:f4:ae:63:9e:45:ab:f6:f8:3a:d5:ab:6e:49: 34:e6:79:e9:49:39:c3:df:33:97:14:5e:2c:87:a7: 37:cc:b5:7e:60:34:51:bc:c1:a7:46:4e:a2:db:80: 71:c8:71:ef:cc:41:47:ce:f4:b2:75:61:7d:68:2c: a0:c8:47:ec:a5:49:92:9b:7f:0a:96:43:07:10:10: cc:c7:54:54:7c:f8:53:f0:16:b6:62:60:01:d6:b2: 62:6c:c0:50:6a:40:4a:23:d6:3b:8f:5f:f2:9a:71: 9c:da:99:ac:a0:b8:81:8b:34:b2:49:bb:1d:a8:da: ab:18:95:ed:c0:62:3a:94:da:e3:70:17:3c:79:5a: bf:51:6d:99:7c:5e:83:7d:d3:e1:58:b9:5f:2f:de: 46:78:5f:38:a8:94:55:2b:7b:36:cf:9e:72:66:f4: 04:fc:92:17:09:f8:18:09:ff:b3:5a:52:cb:7c:84: 69:4d:1b:c8:00:ac:d3:50:03:37:d3:66:29:f5:c8: 66:04:4e:76:0b:4c:9c:8c:17:10:7f:6c:c2:36:d1: 8b:2b:6f:03:fe:7b:46:33:58:c8:d1:40:9a:73:f7: b9:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:DD:9F:F2:DB:0B:7D:47:A4:3B:71:19:27:E6:47:06:7E:19:D0:EA X509v3 Authority Key Identifier: keyid:DE:B5:63:9F:58:47:C7:0D:E0:FC:44:BE:78:42:41:18:F8:A2:06:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CDFFB/27E506E6D4EF11EA9A61724AC4F9AE02/3rVjn1hHxw3g_ES-eEJBGPiiBsY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3rVjn1hHxw3g_ES-eEJBGPiiBsY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CDFFB/27E506E6D4EF11EA9A61724AC4F9AE02/3rVjn1hHxw3g_ES-eEJBGPiiBsY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:d3:a9:c7:7d:c0:09:54:27:a9:1c:ee:fa:5b:24:b6:93:12: f4:47:d0:00:59:3a:cd:95:b7:ad:a6:1a:2b:7c:8f:9f:48:9f: 73:51:e7:81:fd:65:47:69:ea:13:7c:d1:56:69:f8:e5:b3:f6: b8:63:98:dc:b2:22:23:9a:dc:3d:67:af:6e:9e:37:a8:9a:a3: 6b:60:cb:cd:3e:18:5a:fc:f2:dd:0d:9e:6f:0d:9c:5c:a4:ce: 92:9b:76:91:bd:39:03:d7:ba:63:c5:32:7c:7d:b6:bf:95:07: 6a:42:00:7c:05:c5:e2:46:70:67:51:b3:8e:03:6f:71:4e:2b: 0e:c7:0f:45:2c:89:84:26:90:11:9d:3f:a2:20:ef:5c:f3:2d: ac:d4:7d:6a:cf:df:c8:63:a4:62:b8:f0:7e:1d:e5:ef:c4:04: af:55:ad:ce:33:4b:3f:86:d0:34:41:dd:f7:4f:71:b3:c9:78: 71:62:62:aa:e8:9e:2b:1c:79:91:75:f7:ef:a1:6f:38:5d:61: b3:0c:f0:47:29:53:9f:aa:2e:0c:f5:61:02:e0:62:68:7a:50: a7:97:59:a0:01:82:78:9f:2e:cb:6a:4b:b5:13:f0:1c:36:3c: f7:e9:99:67:51:c9:33:e3:ae:3e:38:b2:a9:f3:dd:fc:81:e8: ee:00:ad:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCHswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0RGRkIxMTAvBgNVBAUTKERFQjU2MzlGNTg0N0M3MERFMEZDNDRCRTc4NDI0MTE4 RjhBMjA2QzYwHhcNMjUxMTA0MjA0MTMyWhcNMjUxMTExMjA0MTMyWjAYMRYwFAYD VQQDEw02OTBhNjRmZC0xOTlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzTk202LTrklUZhry0lyvu4UyqqMZ5fsIJR6veG9/zvSuY55Fq/b4OtWrbkk0 5nnpSTnD3zOXFF4sh6c3zLV+YDRRvMGnRk6i24BxyHHvzEFHzvSydWF9aCygyEfs pUmSm38KlkMHEBDMx1RUfPhT8Ba2YmAB1rJibMBQakBKI9Y7j1/ymnGc2pmsoLiB izSySbsdqNqrGJXtwGI6lNrjcBc8eVq/UW2ZfF6DfdPhWLlfL95GeF84qJRVK3s2 z55yZvQE/JIXCfgYCf+zWlLLfIRpTRvIAKzTUAM302Yp9chmBE52C0ycjBcQf2zC NtGLK28D/ntGM1jI0UCac/e53QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAfdn/Lb C31HpDtxGSfmRwZ+GdDqMB8GA1UdIwQYMBaAFN61Y59YR8cN4PxEvnhCQRj4ogbG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDREZGQi8yN0U1MDZFNkQ0 RUYxMUVBOUE2MTcyNEFDNEY5QUUwMi8zclZqbjFoSHh3M2dfRVMtZUVKQkdQaWlC c1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNyVmpuMWhIeHczZ19FUy1lRUpCR1BpaUJzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD REZGQi8yN0U1MDZFNkQ0RUYxMUVBOUE2MTcyNEFDNEY5QUUwMi8zclZqbjFoSHh3 M2dfRVMtZUVKQkdQaWlCc1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCC06nHfcAJVCepHO76WyS2kxL0R9AAWTrNlbetphorfI+fSJ9zUeeB /WVHaeoTfNFWafjls/a4Y5jcsiIjmtw9Z69unjeomqNrYMvNPhha/PLdDZ5vDZxc pM6Sm3aRvTkD17pjxTJ8fba/lQdqQgB8BcXiRnBnUbOOA29xTisOxw9FLImEJpAR nT+iIO9c8y2s1H1qz9/IY6RiuPB+HeXvxASvVa3OM0s/htA0Qd33T3GzyXhxYmKq 6J4rHHmRdffvoW84XWGzDPBHKVOfqi4M9WEC4GJoelCnl1mgAYJ4ny7Laku1E/Ac Njz36ZlnUckz464+OLKp8938gejuAK2/ -----END CERTIFICATE-----Generated at Wed Nov 5 13:46:59 2025 by rpki-client