$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft File: 3rTAuQf6yhxdN3a9SUb0uqjKazA.mft (raw, json) Hash identifier: CaT3s/3IaAA4VCUqnzNTEZHlWKKuRDinX4qso30gQ+k= Subject key identifier: CF:54:08:41:7E:14:12:8F:BB:6D:BD:F0:53:96:4F:FA:02:AF:22:9F Authority key identifier: DE:B4:C0:B9:07:FA:CA:1C:5D:37:76:BD:49:46:F4:BA:A8:CA:6B:30 Certificate issuer: /CN=A91F3B5F/serialNumber=DEB4C0B907FACA1C5D3776BD4946F4BAA8CA6B30 Certificate serial: 70 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3rTAuQf6yhxdN3a9SUb0uqjKazA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft Manifest number: 6F Signing time: Mon 03 Nov 2025 06:56:59 +0000 Manifest this update: Mon 03 Nov 2025 06:56:59 +0000 Manifest next update: Mon 10 Nov 2025 06:56:59 +0000 Files and hashes: 1: 3rTAuQf6yhxdN3a9SUb0uqjKazA.crl (hash: 1XHIvhbJP8K0k+UQ2Q/7T9aCwNo9LscMS807lU50/6A=) 2: 0B65C980136D11F09F542C81C4F9AE02.roa (hash: VBqh2E7rkd2+euZfBVuvn8Wuy6ZridPl7cQmEbFqT/k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.crl rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3rTAuQf6yhxdN3a9SUb0uqjKazA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:56:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 112 (0x70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3B5F, serialNumber=DEB4C0B907FACA1C5D3776BD4946F4BAA8CA6B30 Validity Not Before: Nov 3 06:56:59 2025 GMT Not After : Nov 10 06:56:59 2025 GMT Subject: CN=6908523b-c84f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:0e:90:b0:56:22:d3:09:72:8f:93:50:5c:86: 66:5a:27:69:44:4a:06:e8:da:72:95:17:87:1d:2f: de:3e:40:a9:12:80:8d:f2:05:e6:fd:7c:56:c9:db: fc:a1:7c:2c:a8:f5:ef:ce:f3:38:50:60:a6:5c:bf: 9a:bd:f7:05:26:48:82:34:27:bc:83:59:97:72:f9: 7a:fe:64:1f:e7:db:62:8b:d6:ed:94:dc:37:2c:27: f9:63:40:94:af:a0:b3:b4:5a:27:df:b2:db:e5:25: 40:83:7e:fb:e2:5a:40:c5:15:29:ce:ae:28:fb:75: 77:b1:5a:be:da:10:5a:a8:5a:cc:bf:65:a8:32:38: d8:f7:c2:d0:4f:e7:19:ac:f4:d2:fd:63:26:75:80: 62:bd:48:c9:08:ee:9a:85:e8:54:ed:40:a0:f7:b0: 8c:3c:fc:b6:47:24:50:d6:ac:c7:9a:43:7d:e8:72: e0:af:2f:65:48:13:ca:af:6f:99:9f:4b:d7:33:6b: 7a:2c:54:75:7c:5e:b7:fa:3d:a9:c1:b2:43:cd:f4: 8f:e4:06:a4:a9:f0:e7:cd:2f:34:ca:73:62:89:81: 67:5b:a4:fc:dc:e9:73:7c:99:59:b0:2d:10:09:f2: fb:ea:c0:15:3f:cd:e3:38:4b:2c:b4:42:60:bd:54: 67:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:54:08:41:7E:14:12:8F:BB:6D:BD:F0:53:96:4F:FA:02:AF:22:9F X509v3 Authority Key Identifier: keyid:DE:B4:C0:B9:07:FA:CA:1C:5D:37:76:BD:49:46:F4:BA:A8:CA:6B:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3rTAuQf6yhxdN3a9SUb0uqjKazA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:75:8e:e8:35:b3:71:48:cb:3e:e9:3d:41:47:2c:e0:59:cf: 99:6e:32:0c:ff:5f:0a:89:e4:73:68:14:74:8c:14:59:f4:d0: 08:e6:bd:ed:ce:22:98:5a:5b:16:0e:76:d6:92:e1:4c:b7:29: 95:fd:ce:65:74:7e:95:33:bf:fa:72:16:ec:75:f5:6e:f3:6d: 62:35:09:7a:af:e4:75:dd:fe:6b:f7:53:16:4d:e7:b1:d7:66: 50:09:2b:c3:d1:b1:d7:e9:05:0b:70:d3:ac:6c:db:24:ba:3f: 96:c2:2d:6e:26:54:0a:d6:f1:33:fc:d5:44:cd:44:41:cb:21: 91:d0:f6:79:9b:4f:ab:b0:3d:f9:a8:38:fc:dd:c0:43:63:10: c6:3f:56:61:48:03:c5:c5:72:d4:db:a7:51:9f:a2:b4:6d:08: fc:23:fd:12:6f:ba:d7:d9:fa:82:1d:36:dd:eb:c4:ea:c8:c3: 75:86:26:31:bf:b5:72:8b:92:b1:93:7d:e2:4e:50:35:36:ee: 9c:7e:0f:a4:34:3f:b4:05:81:6b:9a:83:94:7c:75:b2:a4:73: 5f:87:d0:12:89:d4:31:b1:dd:54:96:26:6a:96:7f:d3:53:cd: 86:98:f1:4b:b3:35:d0:02:f7:de:26:da:b0:0f:35:df:87:35: 3d:7f:95:37 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG M0I1RjExMC8GA1UEBRMoREVCNEMwQjkwN0ZBQ0ExQzVEMzc3NkJENDk0NkY0QkFB OENBNkIzMDAeFw0yNTExMDMwNjU2NTlaFw0yNTExMTAwNjU2NTlaMBgxFjAUBgNV BAMTDTY5MDg1MjNiLWM4NGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGDpCwViLTCXKPk1BchmZaJ2lESgbo2nKVF4cdL94+QKkSgI3yBeb9fFbJ2/yh fCyo9e/O8zhQYKZcv5q99wUmSII0J7yDWZdy+Xr+ZB/n22KL1u2U3DcsJ/ljQJSv oLO0WiffstvlJUCDfvviWkDFFSnOrij7dXexWr7aEFqoWsy/ZagyONj3wtBP5xms 9NL9YyZ1gGK9SMkI7pqF6FTtQKD3sIw8/LZHJFDWrMeaQ33ocuCvL2VIE8qvb5mf S9cza3osVHV8Xrf6PanBskPN9I/kBqSp8OfNLzTKc2KJgWdbpPzc6XN8mVmwLRAJ 8vvqwBU/zeM4Syy0QmC9VGdfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUz1QIQX4U Eo+7bb3wU5ZP+gKvIp8wHwYDVR0jBBgwFoAU3rTAuQf6yhxdN3a9SUb0uqjKazAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYzQjVGL0IxNzBDOTEyMTM2 NjExRjA4MkUzQzUwREM0RjlBRTAyLzNyVEF1UWY2eWh4ZE4zYTlTVWIwdXFqS2F6 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvM3JUQXVRZjZ5aHhkTjNhOVNVYjB1cWpLYXpBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYz QjVGL0IxNzBDOTEyMTM2NjExRjA4MkUzQzUwREM0RjlBRTAyLzNyVEF1UWY2eWh4 ZE4zYTlTVWIwdXFqS2F6QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIF1jug1s3FIyz7pPUFHLOBZz5luMgz/XwqJ5HNoFHSMFFn00Ajmve3O IphaWxYOdtaS4Uy3KZX9zmV0fpUzv/pyFux19W7zbWI1CXqv5HXd/mv3UxZN57HX ZlAJK8PRsdfpBQtw06xs2yS6P5bCLW4mVArW8TP81UTNREHLIZHQ9nmbT6uwPfmo OPzdwENjEMY/VmFIA8XFctTbp1GforRtCPwj/RJvutfZ+oIdNt3rxOrIw3WGJjG/ tXKLkrGTfeJOUDU27px+D6Q0P7QFgWuag5R8dbKkc1+H0BKJ1DGx3VSWJmqWf9NT zYaY8UuzNdAC994m2rAPNd+HNT1/lTc= -----END CERTIFICATE-----Generated at Wed Nov 5 05:10:32 2025 by rpki-client