$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft File: gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft (raw, json) Hash identifier: QG+m8HmSHBCK2mKXl/ionv4taLZB9JcSUxy/swA2wAg= Subject key identifier: 0A:21:C0:08:D6:66:F1:1B:76:76:01:1F:6D:FD:ED:79:A1:9C:29:32 Authority key identifier: 81:1D:E1:1E:7E:DC:1C:10:76:05:59:EE:B3:9B:FD:66:D6:9A:EA:46 Certificate issuer: /CN=A91E6BEF/serialNumber=811DE11E7EDC1C10760559EEB39BFD66D69AEA46 Certificate serial: 0DEA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gR3hHn7cHBB2BVnus5v9Ztaa6kY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft Manifest number: 0DE0 Signing time: Tue 04 Nov 2025 17:56:52 +0000 Manifest this update: Tue 04 Nov 2025 17:56:51 +0000 Manifest next update: Tue 11 Nov 2025 17:56:51 +0000 Files and hashes: 1: gR3hHn7cHBB2BVnus5v9Ztaa6kY.crl (hash: oseOtwNKLeOtibq285l0JQkKH1bbjZxoCMtiDbkrU2g=) 2: FEBD6C62C4B511E9B7D53A7FC4F9AE02.roa (hash: Pt5AOEwwZxq7lVNTYxsL3f5FIIGV0LQiKBFU4Ct/fFM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.crl rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gR3hHn7cHBB2BVnus5v9Ztaa6kY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:56:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3562 (0xdea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6BEF, serialNumber=811DE11E7EDC1C10760559EEB39BFD66D69AEA46 Validity Not Before: Nov 4 17:56:51 2025 GMT Not After : Nov 11 17:56:51 2025 GMT Subject: CN=690a3e64-b6a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:6b:95:ba:4e:dd:ed:1a:a6:7b:f4:7d:f5:89: e0:23:3a:b6:13:c9:29:ac:07:86:2d:96:2d:b6:d1: c1:5f:62:06:08:dd:87:eb:f8:eb:ce:94:12:12:3b: 02:58:e3:d6:76:bf:bf:bc:90:f9:3f:07:d5:0c:cb: d1:96:1a:87:19:a6:e1:df:7a:65:8e:f7:42:e8:1e: c0:ad:7a:9e:03:0f:2f:87:3f:93:57:5b:95:b7:0d: ed:63:40:fc:56:6c:26:1f:5a:ef:33:3d:95:57:a3: b6:bb:c7:62:1a:73:32:94:43:22:bb:c1:6a:1c:e0: f8:bb:07:64:90:d5:6c:92:41:91:2c:67:2e:59:13: 40:9c:ae:5e:0a:db:09:85:83:2c:1e:4a:0c:e5:98: d8:e0:f5:1f:4f:e1:a9:f6:c7:43:27:d0:a6:5d:57: 13:5d:32:76:07:9b:6f:ec:48:09:5d:ff:b8:c7:dd: 3b:1e:b1:84:7c:a9:2b:8b:57:b2:aa:4a:6a:8c:23: 07:84:d9:c6:ef:53:fd:01:17:c2:1d:6b:50:71:0c: 60:e6:c9:6e:4d:2d:5b:2f:d2:25:7c:6b:0d:5a:9f: 22:f9:d4:0d:e4:84:b9:1b:af:75:36:6b:93:ee:ec: 17:2c:af:be:0d:ca:0b:d7:18:bb:f5:84:c7:ea:5b: 09:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:21:C0:08:D6:66:F1:1B:76:76:01:1F:6D:FD:ED:79:A1:9C:29:32 X509v3 Authority Key Identifier: keyid:81:1D:E1:1E:7E:DC:1C:10:76:05:59:EE:B3:9B:FD:66:D6:9A:EA:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gR3hHn7cHBB2BVnus5v9Ztaa6kY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:6d:d9:bb:0e:cc:f9:b7:a3:60:6f:1d:40:84:6f:af:00:3c: b0:94:97:a2:f5:4d:c2:2c:e0:0b:b2:4c:39:1c:41:a4:4f:b7: 72:99:db:17:5f:ad:54:9a:43:53:2f:0c:02:21:60:2d:75:ef: 10:58:9b:ae:6b:f5:a7:96:c7:c9:38:59:16:8e:2f:a6:73:16: ae:3e:f3:94:01:c6:7c:e7:19:24:d8:b9:b1:64:a0:1f:ff:8a: 63:1a:43:72:9e:ca:87:a8:a7:52:fa:f0:69:d1:d4:cd:4d:e8: 3a:f4:cd:c5:89:c6:c1:9d:96:9c:17:ee:11:75:34:8e:45:69: 53:4f:12:9a:c2:a6:78:00:1b:57:c7:12:18:d7:41:1f:71:14: 5e:25:88:7b:2f:c8:9e:07:dd:b0:bc:cf:00:95:e2:20:e6:7f: b3:90:49:13:6a:4f:2b:a4:42:ce:76:bf:05:bb:b1:78:49:87: ff:5a:7f:8f:4e:54:4c:1a:20:1f:32:b8:af:1b:fa:47:a8:aa: d2:b2:47:6a:8f:72:72:7a:c1:6c:ae:a9:f5:ec:ba:15:26:27: a7:6a:1e:56:1c:6b:5e:9a:62:35:9e:b6:21:18:59:82:e8:91: 46:39:36:87:e2:56:d1:8e:ff:0e:15:40:b6:13:51:65:06:a8: 2c:b2:4b:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDeowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZCRUYxMTAvBgNVBAUTKDgxMURFMTFFN0VEQzFDMTA3NjA1NTlFRUIzOUJGRDY2 RDY5QUVBNDYwHhcNMjUxMTA0MTc1NjUxWhcNMjUxMTExMTc1NjUxWjAYMRYwFAYD VQQDEw02OTBhM2U2NC1iNmE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0muVuk7d7Rqme/R99YngIzq2E8kprAeGLZYtttHBX2IGCN2H6/jrzpQSEjsC WOPWdr+/vJD5PwfVDMvRlhqHGabh33pljvdC6B7ArXqeAw8vhz+TV1uVtw3tY0D8 VmwmH1rvMz2VV6O2u8diGnMylEMiu8FqHOD4uwdkkNVskkGRLGcuWRNAnK5eCtsJ hYMsHkoM5ZjY4PUfT+Gp9sdDJ9CmXVcTXTJ2B5tv7EgJXf+4x907HrGEfKkri1ey qkpqjCMHhNnG71P9ARfCHWtQcQxg5sluTS1bL9IlfGsNWp8i+dQN5IS5G691NmuT 7uwXLK++DcoL1xi79YTH6lsJzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAohwAjW ZvEbdnYBH2397XmhnCkyMB8GA1UdIwQYMBaAFIEd4R5+3BwQdgVZ7rOb/WbWmupG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkJFRi80RUE4NjZDNEM0 NDIxMUU5OTQ3N0UyMUZDNEY5QUUwMi9nUjNoSG43Y0hCQjJCVm51czV2OVp0YWE2 a1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dSM2hIbjdjSEJCMkJWbnVzNXY5WnRhYTZrWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkJFRi80RUE4NjZDNEM0NDIxMUU5OTQ3N0UyMUZDNEY5QUUwMi9nUjNoSG43Y0hC QjJCVm51czV2OVp0YWE2a1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkbdm7Dsz5t6Ngbx1AhG+vADywlJei9U3CLOALskw5HEGkT7dymdsX X61UmkNTLwwCIWAtde8QWJuua/WnlsfJOFkWji+mcxauPvOUAcZ85xkk2LmxZKAf /4pjGkNynsqHqKdS+vBp0dTNTeg69M3FicbBnZacF+4RdTSORWlTTxKawqZ4ABtX xxIY10EfcRReJYh7L8ieB92wvM8AleIg5n+zkEkTak8rpELOdr8Fu7F4SYf/Wn+P TlRMGiAfMrivG/pHqKrSskdqj3JyesFsrqn17LoVJienah5WHGtemmI1nrYhGFmC 6JFGOTaH4lbRjv8OFUC2E1FlBqgssks5 -----END CERTIFICATE-----Generated at Wed Nov 5 23:08:18 2025 by rpki-client