$ rpki-client -vvf rpki.apnic.net/member_repository/A91D76BE/44C29E0E6B7711EA86594476C4F9AE02/3RGLuzSfLJtA3Zu3GlthxkvbPhE.mft File: 3RGLuzSfLJtA3Zu3GlthxkvbPhE.mft (raw, json) Hash identifier: q7DjiituwGvdkrhrPw+AmiIAvlkPOw1otBdi7l1khyE= Subject key identifier: 21:E2:E9:D9:71:81:E1:64:D5:95:1A:5A:23:D1:27:9F:EF:EC:49:D8 Authority key identifier: DD:11:8B:BB:34:9F:2C:9B:40:DD:9B:B7:1A:5B:61:C6:4B:DB:3E:11 Certificate issuer: /CN=A91D76BE/serialNumber=DD118BBB349F2C9B40DD9BB71A5B61C64BDB3E11 Certificate serial: 0A8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3RGLuzSfLJtA3Zu3GlthxkvbPhE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D76BE/44C29E0E6B7711EA86594476C4F9AE02/3RGLuzSfLJtA3Zu3GlthxkvbPhE.mft Manifest number: 0A86 Signing time: Tue 04 Nov 2025 19:40:58 +0000 Manifest this update: Tue 04 Nov 2025 19:40:57 +0000 Manifest next update: Tue 11 Nov 2025 19:40:57 +0000 Files and hashes: 1: 3RGLuzSfLJtA3Zu3GlthxkvbPhE.crl (hash: oKwC7MsfN7c00kusByaziMyNA2c9fCpqoX7X3PAnsbY=) 2: 47772F946C2011EAA5965B3CC4F9AE02.roa (hash: VtwEbio1gRB7Ch5LlsoNkh9yhOMrAAqsTjIWAhPZFj0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D76BE/44C29E0E6B7711EA86594476C4F9AE02/3RGLuzSfLJtA3Zu3GlthxkvbPhE.crl rsync://rpki.apnic.net/member_repository/A91D76BE/44C29E0E6B7711EA86594476C4F9AE02/3RGLuzSfLJtA3Zu3GlthxkvbPhE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3RGLuzSfLJtA3Zu3GlthxkvbPhE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:17:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2701 (0xa8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D76BE, serialNumber=DD118BBB349F2C9B40DD9BB71A5B61C64BDB3E11 Validity Not Before: Nov 4 19:40:57 2025 GMT Not After : Nov 11 19:40:57 2025 GMT Subject: CN=690a56c9-dcdb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:1c:d2:7f:ae:ca:55:ea:54:72:51:87:22:97: 46:41:21:03:30:ef:d9:1f:90:db:7e:f7:14:5c:9e: 19:34:8a:42:ee:25:c1:18:cc:b4:6e:14:35:ea:95: b2:fb:fc:2f:db:db:01:7a:3d:78:02:bf:67:ea:de: 99:61:3d:b7:68:94:0b:2e:87:75:42:a3:8d:ea:1e: c1:9c:f3:7d:ec:fd:6a:fa:a2:d9:22:e9:86:cd:53: 77:07:0b:b6:6d:8f:e7:46:2a:54:c2:03:c8:1b:d9: 11:3c:c5:31:af:34:aa:7a:5d:c1:3b:98:41:d3:d8: 83:bc:b2:10:e2:3e:18:9a:4b:15:ec:74:3c:43:cc: e9:7a:85:1f:ca:bf:12:a1:5f:a8:89:84:9b:a9:bf: d0:43:bc:2f:e3:19:f1:d9:d3:fa:8f:68:75:63:56: 9d:66:de:4e:07:e6:c1:f3:51:7e:6c:e6:87:06:a6: 1e:15:53:a3:41:1e:11:73:92:b1:e2:01:0d:c0:de: 9a:cd:6b:ff:cb:67:3b:ec:c1:71:b2:25:45:ae:a8: ed:6a:3a:8a:f4:6b:f7:5a:c9:46:91:51:82:2c:08: 77:65:fe:ca:96:26:67:bf:bb:51:80:8d:d7:bd:04: 94:b4:ff:a1:d7:8f:d7:b2:4f:41:5d:68:42:59:5f: f6:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:E2:E9:D9:71:81:E1:64:D5:95:1A:5A:23:D1:27:9F:EF:EC:49:D8 X509v3 Authority Key Identifier: keyid:DD:11:8B:BB:34:9F:2C:9B:40:DD:9B:B7:1A:5B:61:C6:4B:DB:3E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D76BE/44C29E0E6B7711EA86594476C4F9AE02/3RGLuzSfLJtA3Zu3GlthxkvbPhE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3RGLuzSfLJtA3Zu3GlthxkvbPhE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D76BE/44C29E0E6B7711EA86594476C4F9AE02/3RGLuzSfLJtA3Zu3GlthxkvbPhE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:70:7d:c0:50:57:68:7b:95:59:53:38:53:3d:55:80:68:97: 64:2a:94:d2:d7:29:bc:89:ad:82:34:e9:89:ba:da:9f:34:63: 41:6d:8c:e5:96:8a:2a:27:82:74:d9:67:54:4b:70:44:6d:98: 83:f4:b2:03:c8:25:bc:0f:9f:ba:95:0a:2f:cc:b2:ce:ac:62: a8:94:22:ca:4c:b1:19:e2:99:57:cc:49:88:f1:1f:88:72:53: db:55:37:7d:8d:9c:bf:50:22:9b:bc:fc:31:d3:30:72:96:8e: 0e:8c:d0:76:c3:70:43:51:1e:d3:44:75:18:16:26:13:23:df: 8d:06:6c:7e:07:a9:4d:23:fd:af:d2:d6:5d:02:3f:8c:bf:e2: 3c:06:ae:df:71:36:50:02:31:9f:2f:0d:0b:70:5c:77:38:86: fe:69:05:d8:a8:46:38:41:e1:c5:8a:31:a8:50:68:50:87:f0: 60:80:7b:35:2b:d1:74:1a:57:39:7b:ae:d3:e1:57:ff:8a:d2: 61:63:a0:d5:df:1e:61:04:4f:28:59:e2:63:80:5d:81:e8:b8: d2:41:a0:5b:0a:66:49:eb:a2:aa:a3:71:66:bb:02:b3:0d:1b: b4:37:75:0e:eb:89:ab:87:ab:45:91:85:75:26:b0:14:2a:48: 2a:c3:3e:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCo0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDc2QkUxMTAvBgNVBAUTKEREMTE4QkJCMzQ5RjJDOUI0MEREOUJCNzFBNUI2MUM2 NEJEQjNFMTEwHhcNMjUxMTA0MTk0MDU3WhcNMjUxMTExMTk0MDU3WjAYMRYwFAYD VQQDEw02OTBhNTZjOS1kY2RiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuBzSf67KVepUclGHIpdGQSEDMO/ZH5DbfvcUXJ4ZNIpC7iXBGMy0bhQ16pWy +/wv29sBej14Ar9n6t6ZYT23aJQLLod1QqON6h7BnPN97P1q+qLZIumGzVN3Bwu2 bY/nRipUwgPIG9kRPMUxrzSqel3BO5hB09iDvLIQ4j4YmksV7HQ8Q8zpeoUfyr8S oV+oiYSbqb/QQ7wv4xnx2dP6j2h1Y1adZt5OB+bB81F+bOaHBqYeFVOjQR4Rc5Kx 4gENwN6azWv/y2c77MFxsiVFrqjtajqK9Gv3WslGkVGCLAh3Zf7KliZnv7tRgI3X vQSUtP+h14/Xsk9BXWhCWV/2AwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCHi6dlx geFk1ZUaWiPRJ5/v7EnYMB8GA1UdIwQYMBaAFN0Ri7s0nyybQN2btxpbYcZL2z4R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzZCRS80NEMyOUUwRTZC NzcxMUVBODY1OTQ0NzZDNEY5QUUwMi8zUkdMdXpTZkxKdEEzWnUzR2x0aHhrdmJQ aEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNSR0x1elNmTEp0QTNadTNHbHRoeGt2YlBoRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NzZCRS80NEMyOUUwRTZCNzcxMUVBODY1OTQ0NzZDNEY5QUUwMi8zUkdMdXpTZkxK dEEzWnUzR2x0aHhrdmJQaEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkcH3AUFdoe5VZUzhTPVWAaJdkKpTS1ym8ia2CNOmJutqfNGNBbYzl looqJ4J02WdUS3BEbZiD9LIDyCW8D5+6lQovzLLOrGKolCLKTLEZ4plXzEmI8R+I clPbVTd9jZy/UCKbvPwx0zBylo4OjNB2w3BDUR7TRHUYFiYTI9+NBmx+B6lNI/2v 0tZdAj+Mv+I8Bq7fcTZQAjGfLw0LcFx3OIb+aQXYqEY4QeHFijGoUGhQh/BggHs1 K9F0Glc5e67T4Vf/itJhY6DV3x5hBE8oWeJjgF2B6LjSQaBbCmZJ66Kqo3FmuwKz DRu0N3UO64mrh6tFkYV1JrAUKkgqwz4/ -----END CERTIFICATE-----Generated at Tue Nov 4 21:37:11 2025 by rpki-client