$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4D54/D2877DB6E9EB11EFA4542B18C4F9AE02/r3YSV94snaXzPnHGQZ4meoYt-2I.mft File: r3YSV94snaXzPnHGQZ4meoYt-2I.mft (raw, json) Hash identifier: aFbpkTZDZNjYZkTaS/LqBbXUEZrFjbEQn9BTx7Us6jI= Subject key identifier: F0:89:B6:E5:FC:BF:F0:BC:6D:A9:C9:EB:78:82:B4:E6:35:D8:8F:30 Authority key identifier: AF:76:12:57:DE:2C:9D:A5:F3:3E:71:C6:41:9E:26:7A:86:2D:FB:62 Certificate issuer: /CN=A91F4D54/serialNumber=AF761257DE2C9DA5F33E71C6419E267A862DFB62 Certificate serial: 8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3YSV94snaXzPnHGQZ4meoYt-2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4D54/D2877DB6E9EB11EFA4542B18C4F9AE02/r3YSV94snaXzPnHGQZ4meoYt-2I.mft Manifest number: 89 Signing time: Wed 05 Nov 2025 06:47:59 +0000 Manifest this update: Wed 05 Nov 2025 06:47:58 +0000 Manifest next update: Wed 12 Nov 2025 06:47:58 +0000 Files and hashes: 1: r3YSV94snaXzPnHGQZ4meoYt-2I.crl (hash: 8T9UhncwLWQp2mxLopfVEdE0C/BJqP1vbzDc185mdeM=) 2: 61AAFCCAE9EC11EFB6D6D21BC4F9AE02.roa (hash: EzMoudDWuTdlnNruCHKgAEy3hjxWEtpDs8wnwjR1b6o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4D54/D2877DB6E9EB11EFA4542B18C4F9AE02/r3YSV94snaXzPnHGQZ4meoYt-2I.crl rsync://rpki.apnic.net/member_repository/A91F4D54/D2877DB6E9EB11EFA4542B18C4F9AE02/r3YSV94snaXzPnHGQZ4meoYt-2I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3YSV94snaXzPnHGQZ4meoYt-2I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:47:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 139 (0x8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4D54, serialNumber=AF761257DE2C9DA5F33E71C6419E267A862DFB62 Validity Not Before: Nov 5 06:47:58 2025 GMT Not After : Nov 12 06:47:58 2025 GMT Subject: CN=690af31e-3030 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:e8:15:de:16:61:1a:3d:45:58:5a:d4:84:20: 56:fc:af:da:2e:71:19:81:23:42:42:b2:c6:22:85: b6:be:14:ba:8c:8d:73:0c:7d:64:f0:c0:ce:7e:71: 07:f7:f7:aa:b7:55:02:87:da:71:6f:ac:69:6a:64: 5b:28:f6:97:59:06:a5:87:3f:bd:b0:af:65:cb:3c: f4:70:59:fc:5c:b7:ef:da:4c:fa:45:30:3d:ab:1b: ae:58:b8:56:5c:ed:e5:2a:26:b9:c3:14:9f:cf:b8: 1b:e9:fb:c4:c4:bb:1d:a2:84:fe:b8:ed:5c:27:ab: d6:cc:e6:e1:f9:4a:87:13:49:9a:64:f1:e8:08:84: 8f:46:27:6d:33:37:e2:2f:fa:6c:aa:aa:d6:a3:a4: 13:da:0e:2b:7f:14:e9:00:2a:d5:c0:85:29:de:cd: 50:25:05:db:6b:ac:03:13:5f:b5:ff:32:dc:fa:60: 33:db:5d:5b:34:62:25:53:bc:e2:48:8e:9b:2d:ec: 49:ac:27:aa:40:62:0c:23:f2:f4:b2:78:69:7d:7e: 0f:f6:a0:3e:d7:18:55:aa:3d:c3:ab:18:1a:f8:b1: 4b:b1:2c:7a:ea:63:d4:f5:4b:a7:1c:dd:ca:fe:82: 91:95:94:10:54:fa:b1:c2:fe:31:6e:17:74:62:76: 6c:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:89:B6:E5:FC:BF:F0:BC:6D:A9:C9:EB:78:82:B4:E6:35:D8:8F:30 X509v3 Authority Key Identifier: keyid:AF:76:12:57:DE:2C:9D:A5:F3:3E:71:C6:41:9E:26:7A:86:2D:FB:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4D54/D2877DB6E9EB11EFA4542B18C4F9AE02/r3YSV94snaXzPnHGQZ4meoYt-2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3YSV94snaXzPnHGQZ4meoYt-2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4D54/D2877DB6E9EB11EFA4542B18C4F9AE02/r3YSV94snaXzPnHGQZ4meoYt-2I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:3c:d3:d8:db:6d:01:7c:89:56:cd:b3:00:2b:ea:db:ea:ef: 44:c6:8b:f7:be:e4:6e:1d:f8:fa:90:79:87:c5:2c:b8:bc:80: d2:49:cd:c8:9a:2b:a9:ee:3a:bb:e3:01:97:cb:e7:39:cd:d7: f0:cc:b2:43:83:ea:31:b4:22:a0:83:76:a0:43:8e:13:76:27: 6f:19:7f:bf:ed:11:dc:42:a6:7e:14:ac:54:9b:32:ba:90:2a: 35:d6:f6:32:1a:c5:f5:5d:ac:59:dc:0d:92:18:35:05:c9:1e: c3:13:1a:ff:4d:e0:44:24:d2:d9:6c:11:53:fe:9f:90:fc:1c: 6e:27:01:ce:eb:b8:0f:04:59:26:4f:1e:1c:c9:c6:1d:5c:ac: 5d:0b:6b:77:2f:67:28:55:4d:e9:91:eb:90:ef:0f:a3:43:ff: 69:46:0b:ff:1b:e4:44:43:ac:2a:33:01:04:b8:14:d6:74:0d: c2:c8:38:22:c9:c8:2d:1c:16:ca:b0:dc:d5:16:0d:73:b6:8a: c2:cc:7e:8f:e8:c0:2b:67:65:e5:3a:1e:3e:48:b0:69:aa:a9: 02:24:20:10:90:93:53:4a:ff:82:80:4e:e0:2f:37:ed:b3:7f: d4:7f:d4:77:12:87:ea:79:ed:70:8f:f8:a6:49:b3:4a:b8:28: 9f:bf:24:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRENTQxMTAvBgNVBAUTKEFGNzYxMjU3REUyQzlEQTVGMzNFNzFDNjQxOUUyNjdB ODYyREZCNjIwHhcNMjUxMTA1MDY0NzU4WhcNMjUxMTEyMDY0NzU4WjAYMRYwFAYD VQQDEw02OTBhZjMxZS0zMDMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt+gV3hZhGj1FWFrUhCBW/K/aLnEZgSNCQrLGIoW2vhS6jI1zDH1k8MDOfnEH 9/eqt1UCh9pxb6xpamRbKPaXWQalhz+9sK9lyzz0cFn8XLfv2kz6RTA9qxuuWLhW XO3lKia5wxSfz7gb6fvExLsdooT+uO1cJ6vWzObh+UqHE0maZPHoCISPRidtMzfi L/psqqrWo6QT2g4rfxTpACrVwIUp3s1QJQXba6wDE1+1/zLc+mAz211bNGIlU7zi SI6bLexJrCeqQGIMI/L0snhpfX4P9qA+1xhVqj3Dqxga+LFLsSx66mPU9UunHN3K /oKRlZQQVPqxwv4xbhd0YnZsBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPCJtuX8 v/C8banJ63iCtOY12I8wMB8GA1UdIwQYMBaAFK92ElfeLJ2l8z5xxkGeJnqGLfti MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEQ1NC9EMjg3N0RCNkU5 RUIxMUVGQTQ1NDJCMThDNEY5QUUwMi9yM1lTVjk0c25hWHpQbkhHUVo0bWVvWXQt MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3IzWVNWOTRzbmFYelBuSEdRWjRtZW9ZdC0ySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEQ1NC9EMjg3N0RCNkU5RUIxMUVGQTQ1NDJCMThDNEY5QUUwMi9yM1lTVjk0c25h WHpQbkhHUVo0bWVvWXQtMkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpPNPY220BfIlWzbMAK+rb6u9Exov3vuRuHfj6kHmHxSy4vIDSSc3I miup7jq74wGXy+c5zdfwzLJDg+oxtCKgg3agQ44TdidvGX+/7RHcQqZ+FKxUmzK6 kCo11vYyGsX1XaxZ3A2SGDUFyR7DExr/TeBEJNLZbBFT/p+Q/BxuJwHO67gPBFkm Tx4cycYdXKxdC2t3L2coVU3pkeuQ7w+jQ/9pRgv/G+REQ6wqMwEEuBTWdA3CyDgi ycgtHBbKsNzVFg1ztorCzH6P6MArZ2XlOh4+SLBpqqkCJCAQkJNTSv+CgE7gLzft s3/Uf9R3Eofqee1wj/imSbNKuCifvyRN -----END CERTIFICATE-----Generated at Wed Nov 5 10:26:07 2025 by rpki-client