$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF85B/C713C2FE61D511EEBAA04A5EC4F9AE02/3DHPX8nyg0g327s2g8uK9kKrSnw.mft File: 3DHPX8nyg0g327s2g8uK9kKrSnw.mft (raw, json) Hash identifier: +tq2AE1+4eQpTHRLw6E4DNa9xnEL1R8wL2ots35iwJg= Subject key identifier: 2B:36:D9:B1:52:D7:96:74:D9:D7:66:37:A5:CB:C0:62:3F:AB:F3:2A Authority key identifier: DC:31:CF:5F:C9:F2:83:48:37:DB:BB:36:83:CB:8A:F6:42:AB:4A:7C Certificate issuer: /CN=A91DF85B/serialNumber=DC31CF5FC9F2834837DBBB3683CB8AF642AB4A7C Certificate serial: 018A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3DHPX8nyg0g327s2g8uK9kKrSnw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF85B/C713C2FE61D511EEBAA04A5EC4F9AE02/3DHPX8nyg0g327s2g8uK9kKrSnw.mft Manifest number: 0187 Signing time: Mon 03 Nov 2025 03:34:38 +0000 Manifest this update: Mon 03 Nov 2025 03:34:37 +0000 Manifest next update: Mon 10 Nov 2025 03:34:37 +0000 Files and hashes: 1: 3DHPX8nyg0g327s2g8uK9kKrSnw.crl (hash: oPuY3zVKhNlREuG2PVVlAdLTouXVFdT6T+Y10Acy3TI=) 2: EE28B64661D611EE9C66300EC4F9AE02.roa (hash: aEwpt3FN/b3agcSqsy028NBcRbgaV2C2DNdzwhDgaUQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF85B/C713C2FE61D511EEBAA04A5EC4F9AE02/3DHPX8nyg0g327s2g8uK9kKrSnw.crl rsync://rpki.apnic.net/member_repository/A91DF85B/C713C2FE61D511EEBAA04A5EC4F9AE02/3DHPX8nyg0g327s2g8uK9kKrSnw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3DHPX8nyg0g327s2g8uK9kKrSnw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:34:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 394 (0x18a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF85B, serialNumber=DC31CF5FC9F2834837DBBB3683CB8AF642AB4A7C Validity Not Before: Nov 3 03:34:37 2025 GMT Not After : Nov 10 03:34:37 2025 GMT Subject: CN=690822ce-ff90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:4c:3d:f1:94:61:52:f3:99:c7:b9:72:dc:ce: f6:8e:1a:5e:b8:fe:bb:6e:ce:b1:40:c3:76:8f:78: 60:54:02:5b:41:cc:4c:a6:07:04:19:89:c1:21:59: 02:38:dd:f6:a6:08:70:8e:19:2e:4f:e2:1d:56:7d: 88:5b:f1:55:fa:ea:b0:17:52:a5:a9:1b:7f:b6:54: 4e:7f:49:10:2f:b6:e8:4c:a6:af:24:15:14:dd:2d: 88:c9:07:fd:17:f7:64:09:af:02:6e:af:19:2c:48: 39:73:af:1e:bd:67:17:c1:3f:58:11:f1:1c:fc:39: 50:d9:e1:eb:80:04:e7:e6:fd:a5:3c:f5:8e:e0:fd: 5f:18:55:78:fb:df:37:74:16:78:cb:49:04:8a:61: 4e:47:df:36:52:a7:8a:f2:4c:05:ef:d9:39:e6:12: 21:42:ee:4e:50:52:38:f2:f4:cd:dd:b1:85:33:6d: cc:ab:bf:67:47:bc:bc:62:28:a6:5f:0c:d0:ae:c6: 55:a7:74:e0:70:1b:bb:fb:7c:bf:65:e4:fa:d9:f5: d2:b1:1d:17:c3:d0:b7:a9:de:82:52:e5:b4:76:00: 7a:66:c4:6b:cd:91:ea:92:93:25:77:22:de:04:1e: e4:df:92:3e:6a:a4:5a:0a:42:91:22:28:3c:d9:7e: 16:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:36:D9:B1:52:D7:96:74:D9:D7:66:37:A5:CB:C0:62:3F:AB:F3:2A X509v3 Authority Key Identifier: keyid:DC:31:CF:5F:C9:F2:83:48:37:DB:BB:36:83:CB:8A:F6:42:AB:4A:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF85B/C713C2FE61D511EEBAA04A5EC4F9AE02/3DHPX8nyg0g327s2g8uK9kKrSnw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3DHPX8nyg0g327s2g8uK9kKrSnw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF85B/C713C2FE61D511EEBAA04A5EC4F9AE02/3DHPX8nyg0g327s2g8uK9kKrSnw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:f2:3a:7f:38:44:ff:fd:32:0d:53:d8:ed:3c:ca:df:37:d9: 08:68:0f:9b:fb:a3:6b:6a:00:cd:8a:c1:20:4a:da:df:31:88: 11:74:46:56:86:57:63:be:6a:2a:3d:29:c5:e4:3f:b0:87:27: c9:e4:99:7c:3c:ac:b4:63:32:45:37:79:f8:7e:09:28:df:8c: 8f:63:87:0e:53:24:da:6c:d9:9e:5a:d6:05:28:b1:9e:c3:f0: bd:1c:a4:3d:13:3a:0e:0a:5c:e6:01:fc:2c:c1:29:da:b4:90: 28:a7:4d:b4:d8:62:30:9a:ec:bc:68:5b:3b:b5:ef:71:62:69: d8:3e:62:d3:ea:65:8b:d0:77:21:18:65:b7:2e:4d:b0:f5:3a: 66:31:ce:d7:40:92:d1:64:8c:7c:db:0f:3c:74:9a:9c:07:a2: 97:a3:06:7c:bf:22:28:54:ba:4a:f9:54:5a:46:74:a5:88:00: 01:53:01:1c:e5:2d:c7:ea:0a:09:42:e2:7b:16:6b:83:09:85: e5:c8:f1:db:02:ca:60:ea:74:22:b5:0f:17:f0:0f:af:7d:35: e2:5e:86:a6:87:12:fc:b0:c3:a8:9f:d0:e5:bc:de:32:9f:d0: ac:59:5e:02:bf:ca:13:67:78:b0:90:9b:71:68:f7:27:58:34: ee:de:7f:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY4NUIxMTAvBgNVBAUTKERDMzFDRjVGQzlGMjgzNDgzN0RCQkIzNjgzQ0I4QUY2 NDJBQjRBN0MwHhcNMjUxMTAzMDMzNDM3WhcNMjUxMTEwMDMzNDM3WjAYMRYwFAYD VQQDEw02OTA4MjJjZS1mZjkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsUw98ZRhUvOZx7ly3M72jhpeuP67bs6xQMN2j3hgVAJbQcxMpgcEGYnBIVkC ON32pghwjhkuT+IdVn2IW/FV+uqwF1KlqRt/tlROf0kQL7boTKavJBUU3S2IyQf9 F/dkCa8Cbq8ZLEg5c68evWcXwT9YEfEc/DlQ2eHrgATn5v2lPPWO4P1fGFV4+983 dBZ4y0kEimFOR982UqeK8kwF79k55hIhQu5OUFI48vTN3bGFM23Mq79nR7y8Yiim XwzQrsZVp3TgcBu7+3y/ZeT62fXSsR0Xw9C3qd6CUuW0dgB6ZsRrzZHqkpMldyLe BB7k35I+aqRaCkKRIig82X4WkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCs22bFS 15Z02ddmN6XLwGI/q/MqMB8GA1UdIwQYMBaAFNwxz1/J8oNIN9u7NoPLivZCq0p8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjg1Qi9DNzEzQzJGRTYx RDUxMUVFQkFBMDRBNUVDNEY5QUUwMi8zREhQWDhueWcwZzMyN3MyZzh1SzlrS3JT bncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNESFBYOG55ZzBnMzI3czJnOHVLOWtLclNudy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Rjg1Qi9DNzEzQzJGRTYxRDUxMUVFQkFBMDRBNUVDNEY5QUUwMi8zREhQWDhueWcw ZzMyN3MyZzh1SzlrS3JTbncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+8jp/OET//TINU9jtPMrfN9kIaA+b+6NragDNisEgStrfMYgRdEZW hldjvmoqPSnF5D+whyfJ5Jl8PKy0YzJFN3n4fgko34yPY4cOUyTabNmeWtYFKLGe w/C9HKQ9EzoOClzmAfwswSnatJAop0202GIwmuy8aFs7te9xYmnYPmLT6mWL0Hch GGW3Lk2w9TpmMc7XQJLRZIx82w88dJqcB6KXowZ8vyIoVLpK+VRaRnSliAABUwEc 5S3H6goJQuJ7FmuDCYXlyPHbAspg6nQitQ8X8A+vfTXiXoamhxL8sMOon9DlvN4y n9CsWV4Cv8oTZ3iwkJtxaPcnWDTu3n8B -----END CERTIFICATE-----Generated at Tue Nov 4 12:48:09 2025 by rpki-client