$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft File: 38I-PZBdDoNoEhlZbQgimmlPrxM.mft (raw, json) Hash identifier: uG+q3LiGAlCWuSCGg6MvpmhRXRoj99EgYaZki5Cqq6Q= Subject key identifier: E0:52:DE:9D:0E:E2:F5:26:9F:AB:03:34:43:86:38:96:6E:5F:CB:5E Authority key identifier: DF:C2:3E:3D:90:5D:0E:83:68:12:19:59:6D:08:22:9A:69:4F:AF:13 Certificate issuer: /CN=A91E3D04/serialNumber=DFC23E3D905D0E83681219596D08229A694FAF13 Certificate serial: 0E77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38I-PZBdDoNoEhlZbQgimmlPrxM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft Manifest number: 0E5C Signing time: Tue 04 Nov 2025 17:51:21 +0000 Manifest this update: Tue 04 Nov 2025 17:51:20 +0000 Manifest next update: Tue 11 Nov 2025 17:51:20 +0000 Files and hashes: 1: 38I-PZBdDoNoEhlZbQgimmlPrxM.crl (hash: S3Plg3fgJ0jVTdeoxjobiCtSAJDUTGEGp0d7pgHPRNI=) 2: 10E6D9CAB55C11ECA9565039C4F9AE02.roa (hash: RzHUUv/miUNX3icVSP0eFdue2uGb59/3arKmFqnz2Fc=) 3: AB52C51AB96B11ECB44AC533C4F9AE02.roa (hash: fXxSo682fkgrV8puX+aCaQZxmTNLL+rJcYQD485NwzM=) 4: AC641C88B96B11ECB44AC533C4F9AE02.roa (hash: s3xebHa/jipF1DOC4szye5Ddv89P0OTkiIBe/5lBHnw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.crl rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38I-PZBdDoNoEhlZbQgimmlPrxM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:51:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3703 (0xe77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3D04, serialNumber=DFC23E3D905D0E83681219596D08229A694FAF13 Validity Not Before: Nov 4 17:51:20 2025 GMT Not After : Nov 11 17:51:20 2025 GMT Subject: CN=690a3d19-d716 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:cd:8b:dd:15:c9:32:71:60:3d:3f:40:10:15: ed:cd:58:99:8c:2d:c2:79:be:4b:f5:4c:a1:ef:94: 5d:11:70:fd:18:83:54:31:7a:c7:3c:9b:37:f8:30: 6e:2d:0a:95:2c:f4:69:22:bf:62:f5:73:f3:25:5c: 0b:14:70:62:b6:ad:fc:a8:ba:61:d8:8b:b7:b9:a3: 74:93:d9:89:8e:8a:44:0e:57:be:20:10:d3:86:3e: b0:ae:82:b8:e5:fe:bf:4d:85:77:7f:f0:d4:7c:62: c3:29:eb:58:8a:ff:10:61:9f:15:c6:cc:a8:ea:cc: 12:88:cc:71:14:48:03:6e:26:19:49:86:82:b8:61: 20:14:12:d3:5f:c6:56:5e:c2:81:8b:33:20:b5:90: 50:fa:0f:9e:7b:61:18:3b:fe:4a:5e:1a:e4:8b:b6: 99:11:6d:d1:74:38:4e:62:dc:e2:48:51:8e:dd:40: 95:f0:07:78:07:c0:c2:02:58:a4:15:7f:6a:ee:24: 63:c1:4c:17:bc:dd:78:bc:07:89:96:36:13:4e:18: 9c:cb:e8:ef:0f:83:19:ed:55:80:5b:52:7e:1c:16: ff:04:ff:27:ef:45:d1:8f:a0:67:18:66:f7:a1:be: 2a:5f:2b:8f:67:40:9a:0f:09:07:a2:4c:14:6e:2b: ba:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:52:DE:9D:0E:E2:F5:26:9F:AB:03:34:43:86:38:96:6E:5F:CB:5E X509v3 Authority Key Identifier: keyid:DF:C2:3E:3D:90:5D:0E:83:68:12:19:59:6D:08:22:9A:69:4F:AF:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38I-PZBdDoNoEhlZbQgimmlPrxM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:79:29:83:72:cb:b9:2d:d5:49:d4:99:f5:4a:e4:6f:0e:8a: 4c:c4:b1:98:8c:1a:6c:d4:4c:b2:b0:16:d2:43:57:67:8d:78: 3e:e7:f7:8a:26:61:cf:11:52:84:cd:8e:09:40:9a:a3:f6:c4: 91:5b:47:85:cf:98:76:d1:10:a3:ff:c0:7d:f0:6c:85:fc:81: ae:dd:a1:7c:b5:d4:67:84:00:51:eb:1a:cd:fc:61:1c:10:69: ae:d0:7f:52:20:bd:67:3a:b6:9c:07:e7:7b:8c:c8:db:ef:19: 1b:2c:52:8b:77:89:98:59:ef:50:b0:c5:f7:f6:00:41:fc:40: 27:15:2d:c9:ce:e1:9e:c5:90:e6:57:8f:65:9f:c3:33:02:2b: 57:4d:78:c0:13:65:fd:6d:25:41:e7:0a:24:aa:17:cf:43:03: b8:e6:ea:6c:16:51:36:ba:79:3f:05:36:8d:21:45:bd:53:b6: 3c:40:d3:e3:23:8d:2d:0d:14:95:13:32:6e:01:7c:f7:00:f4: 60:f3:ef:b6:2e:cb:32:71:79:f1:eb:58:9c:63:ba:04:00:03: 84:e9:1d:86:56:1c:1c:5c:a7:0b:90:d9:54:6c:8c:e5:7f:d9: 53:1d:12:6e:05:64:2a:8f:b2:d0:01:bf:d7:08:84:27:19:55: c8:74:c6:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDncwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNEMDQxMTAvBgNVBAUTKERGQzIzRTNEOTA1RDBFODM2ODEyMTk1OTZEMDgyMjlB Njk0RkFGMTMwHhcNMjUxMTA0MTc1MTIwWhcNMjUxMTExMTc1MTIwWjAYMRYwFAYD VQQDEw02OTBhM2QxOS1kNzE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4s2L3RXJMnFgPT9AEBXtzViZjC3Ceb5L9Uyh75RdEXD9GINUMXrHPJs3+DBu LQqVLPRpIr9i9XPzJVwLFHBitq38qLph2Iu3uaN0k9mJjopEDle+IBDThj6wroK4 5f6/TYV3f/DUfGLDKetYiv8QYZ8Vxsyo6swSiMxxFEgDbiYZSYaCuGEgFBLTX8ZW XsKBizMgtZBQ+g+ee2EYO/5KXhrki7aZEW3RdDhOYtziSFGO3UCV8Ad4B8DCAlik FX9q7iRjwUwXvN14vAeJljYTThicy+jvD4MZ7VWAW1J+HBb/BP8n70XRj6BnGGb3 ob4qXyuPZ0CaDwkHokwUbiu6BwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOBS3p0O 4vUmn6sDNEOGOJZuX8teMB8GA1UdIwQYMBaAFN/CPj2QXQ6DaBIZWW0IIpppT68T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0QwNC83QTE3RkU4RUFE RDkxMUU5Qjc0MDlBNzJDNEY5QUUwMi8zOEktUFpCZERvTm9FaGxaYlFnaW1tbFBy eE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM4SS1QWkJkRG9Ob0VobFpiUWdpbW1sUHJ4TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0QwNC83QTE3RkU4RUFERDkxMUU5Qjc0MDlBNzJDNEY5QUUwMi8zOEktUFpCZERv Tm9FaGxaYlFnaW1tbFByeE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxeSmDcsu5LdVJ1Jn1SuRvDopMxLGYjBps1EyysBbSQ1dnjXg+5/eK JmHPEVKEzY4JQJqj9sSRW0eFz5h20RCj/8B98GyF/IGu3aF8tdRnhABR6xrN/GEc EGmu0H9SIL1nOracB+d7jMjb7xkbLFKLd4mYWe9QsMX39gBB/EAnFS3JzuGexZDm V49ln8MzAitXTXjAE2X9bSVB5wokqhfPQwO45upsFlE2unk/BTaNIUW9U7Y8QNPj I40tDRSVEzJuAXz3APRg8++2LssycXnx61icY7oEAAOE6R2GVhwcXKcLkNlUbIzl f9lTHRJuBWQqj7LQAb/XCIQnGVXIdMaS -----END CERTIFICATE-----Generated at Wed Nov 5 21:18:24 2025 by rpki-client