$ rpki-client -vvf rpki.apnic.net/member_repository/A91E22E5/F5E34E64338D11ED97E3E25FC4F9AE02/I-3rdP0jQOR_AbyL94Q7dpHcBhU.mft File: I-3rdP0jQOR_AbyL94Q7dpHcBhU.mft (raw, json) Hash identifier: X5Onz/bwqOo3/ziG2WozEqdtmaXV05Y7ucATnBMFA0M= Subject key identifier: 74:62:97:06:14:86:C6:84:57:90:69:A5:69:BC:FD:13:EA:1F:1C:EE Authority key identifier: 23:ED:EB:74:FD:23:40:E4:7F:01:BC:8B:F7:84:3B:76:91:DC:06:15 Certificate issuer: /CN=A91E22E5/serialNumber=23EDEB74FD2340E47F01BC8BF7843B7691DC0615 Certificate serial: 026B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-3rdP0jQOR_AbyL94Q7dpHcBhU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E22E5/F5E34E64338D11ED97E3E25FC4F9AE02/I-3rdP0jQOR_AbyL94Q7dpHcBhU.mft Manifest number: 0267 Signing time: Wed 05 Nov 2025 01:46:56 +0000 Manifest this update: Wed 05 Nov 2025 01:46:55 +0000 Manifest next update: Wed 12 Nov 2025 01:46:55 +0000 Files and hashes: 1: I-3rdP0jQOR_AbyL94Q7dpHcBhU.crl (hash: aKoEXuWrgtOgo5vyEOTTCpcKsdjfF/EBMdK1SFkgwbI=) 2: 623705DA339111ED9249064BC4F9AE02.roa (hash: 3xXR0x6j8N4PVf2/cUiVsVNe4o0Qs5z+0StILd/4bVs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E22E5/F5E34E64338D11ED97E3E25FC4F9AE02/I-3rdP0jQOR_AbyL94Q7dpHcBhU.crl rsync://rpki.apnic.net/member_repository/A91E22E5/F5E34E64338D11ED97E3E25FC4F9AE02/I-3rdP0jQOR_AbyL94Q7dpHcBhU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-3rdP0jQOR_AbyL94Q7dpHcBhU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:46:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 619 (0x26b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E22E5, serialNumber=23EDEB74FD2340E47F01BC8BF7843B7691DC0615 Validity Not Before: Nov 5 01:46:55 2025 GMT Not After : Nov 12 01:46:55 2025 GMT Subject: CN=690aac8f-c86a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:14:3a:b9:71:e0:fa:52:f8:fb:4e:84:a8:73: bc:73:75:be:13:cb:61:82:b0:34:9e:e3:80:6f:04: e6:e1:42:f0:6a:6e:ab:08:f7:83:ed:e3:85:c0:89: 8f:8e:b0:03:c2:65:16:b3:71:c8:5c:d6:61:8c:10: a6:2f:70:e8:cf:61:f9:f5:9d:d5:36:d2:eb:38:e4: 1f:4c:05:cc:a5:c3:59:ae:1c:a9:4e:8d:40:7e:62: 8e:3c:45:62:e3:dd:5d:75:ec:1b:13:03:ea:96:bb: 4a:4a:28:f3:79:06:ee:40:06:47:bd:9b:0e:9c:5d: ec:6e:f1:2d:11:13:70:fa:89:62:e4:1f:89:f9:da: b6:b5:d4:c6:41:66:fa:a0:3e:86:b7:31:f2:a1:d2: 8e:d9:49:07:4d:c1:8c:09:6c:2e:9f:c7:d0:65:54: be:61:17:f8:cc:3e:8c:49:cf:22:78:a4:ab:a8:d7: 4f:42:95:bb:ca:75:80:86:fd:1e:49:9b:1b:c0:0f: 0c:1a:8f:8c:18:ba:7c:39:59:7d:4c:27:84:21:e2: a7:08:69:33:8c:41:38:3f:c5:6a:71:c3:10:70:27: c4:58:d6:d4:a3:4b:b6:9d:93:9a:0e:06:62:b9:45: ed:1c:78:8e:01:72:01:5b:f9:f5:a8:e3:e4:54:8c: 49:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:62:97:06:14:86:C6:84:57:90:69:A5:69:BC:FD:13:EA:1F:1C:EE X509v3 Authority Key Identifier: keyid:23:ED:EB:74:FD:23:40:E4:7F:01:BC:8B:F7:84:3B:76:91:DC:06:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E22E5/F5E34E64338D11ED97E3E25FC4F9AE02/I-3rdP0jQOR_AbyL94Q7dpHcBhU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-3rdP0jQOR_AbyL94Q7dpHcBhU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E22E5/F5E34E64338D11ED97E3E25FC4F9AE02/I-3rdP0jQOR_AbyL94Q7dpHcBhU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:ed:87:d0:0c:33:04:a5:d8:b2:33:06:2d:88:ed:2d:a2:24: 26:fb:73:af:6f:8d:a1:d2:be:99:15:ba:0c:7b:57:70:b8:d5: 9f:95:50:be:f6:4a:c1:e5:86:d3:ed:4d:99:a0:bb:f2:8e:30: 4b:7d:3f:45:c5:6d:e6:b0:aa:dd:68:33:e7:e7:16:60:bc:2d: 04:cf:39:bc:0d:2a:94:c1:93:af:0f:94:6f:6a:e8:7c:dd:4b: 1e:13:e2:60:83:9d:e6:d7:0c:b9:11:2d:e0:24:33:9a:e9:fa: 95:a9:c5:7b:55:18:a9:f3:3e:84:94:6e:22:e5:8e:76:77:97: 61:ff:e3:81:bb:ba:7a:e5:43:59:0e:3e:23:00:87:5d:1b:e7: 7c:d4:fe:cf:d3:ce:ac:37:8a:b5:c8:63:22:95:d4:a4:fb:e5: 89:df:79:8a:b2:bb:18:99:e3:e2:10:49:3b:e7:71:f5:55:ba: 54:6b:b8:e1:2e:1c:43:aa:25:63:68:f9:bc:06:5a:2a:84:03: ec:33:0d:d2:50:be:b8:74:50:b6:df:b4:fb:9b:10:c7:1e:02: 60:c5:8a:a2:0f:1f:1b:ae:8f:85:5d:90:c8:6d:42:ab:8e:46: c5:5a:5c:f9:8c:48:cd:6c:10:6b:58:1e:f6:34:9c:7e:54:cd: e5:8d:b4:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTIyRTUxMTAvBgNVBAUTKDIzRURFQjc0RkQyMzQwRTQ3RjAxQkM4QkY3ODQzQjc2 OTFEQzA2MTUwHhcNMjUxMTA1MDE0NjU1WhcNMjUxMTEyMDE0NjU1WjAYMRYwFAYD VQQDEw02OTBhYWM4Zi1jODZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuxQ6uXHg+lL4+06EqHO8c3W+E8thgrA0nuOAbwTm4ULwam6rCPeD7eOFwImP jrADwmUWs3HIXNZhjBCmL3Doz2H59Z3VNtLrOOQfTAXMpcNZrhypTo1AfmKOPEVi 491ddewbEwPqlrtKSijzeQbuQAZHvZsOnF3sbvEtERNw+oli5B+J+dq2tdTGQWb6 oD6GtzHyodKO2UkHTcGMCWwun8fQZVS+YRf4zD6MSc8ieKSrqNdPQpW7ynWAhv0e SZsbwA8MGo+MGLp8OVl9TCeEIeKnCGkzjEE4P8VqccMQcCfEWNbUo0u2nZOaDgZi uUXtHHiOAXIBW/n1qOPkVIxJpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHRilwYU hsaEV5BppWm8/RPqHxzuMB8GA1UdIwQYMBaAFCPt63T9I0DkfwG8i/eEO3aR3AYV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjJFNS9GNUUzNEU2NDMz OEQxMUVEOTdFM0UyNUZDNEY5QUUwMi9JLTNyZFAwalFPUl9BYnlMOTRRN2RwSGNC aFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ktM3JkUDBqUU9SX0FieUw5NFE3ZHBIY0JoVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjJFNS9GNUUzNEU2NDMzOEQxMUVEOTdFM0UyNUZDNEY5QUUwMi9JLTNyZFAwalFP Ul9BYnlMOTRRN2RwSGNCaFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCf7YfQDDMEpdiyMwYtiO0toiQm+3Ovb42h0r6ZFboMe1dwuNWflVC+ 9krB5YbT7U2ZoLvyjjBLfT9FxW3msKrdaDPn5xZgvC0Ezzm8DSqUwZOvD5Rvauh8 3UseE+Jgg53m1wy5ES3gJDOa6fqVqcV7VRip8z6ElG4i5Y52d5dh/+OBu7p65UNZ Dj4jAIddG+d81P7P086sN4q1yGMildSk++WJ33mKsrsYmePiEEk753H1VbpUa7jh LhxDqiVjaPm8BloqhAPsMw3SUL64dFC237T7mxDHHgJgxYqiDx8bro+FXZDIbUKr jkbFWlz5jEjNbBBrWB72NJx+VM3ljbTg -----END CERTIFICATE-----Generated at Wed Nov 5 21:11:09 2025 by rpki-client