$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8282/061AAB52FBFE11EFB5520A12C4F9AE02/n3tC7xjTQv3Vap_cXz2AHi0sGrc.mft File: n3tC7xjTQv3Vap_cXz2AHi0sGrc.mft (raw, json) Hash identifier: mw1GSzC8IhIg4xOLi8LQFMyPSlzCn6GK4/fAV86fq/c= Subject key identifier: BD:AC:51:F0:5D:5C:ED:45:09:38:2A:85:BD:69:45:03:91:6C:AB:CB Authority key identifier: 9F:7B:42:EF:18:D3:42:FD:D5:6A:9F:DC:5F:3D:80:1E:2D:2C:1A:B7 Certificate issuer: /CN=A91F8282/serialNumber=9F7B42EF18D342FDD56A9FDC5F3D801E2D2C1AB7 Certificate serial: 7D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n3tC7xjTQv3Vap_cXz2AHi0sGrc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8282/061AAB52FBFE11EFB5520A12C4F9AE02/n3tC7xjTQv3Vap_cXz2AHi0sGrc.mft Manifest number: 7C Signing time: Mon 03 Nov 2025 06:46:36 +0000 Manifest this update: Mon 03 Nov 2025 06:46:35 +0000 Manifest next update: Mon 10 Nov 2025 06:46:35 +0000 Files and hashes: 1: n3tC7xjTQv3Vap_cXz2AHi0sGrc.crl (hash: e08Xs695Ox6iGMIwdUzNhR6L/Uvz8tQ4+9gRD/zbBnw=) 2: 05EBB6CEFEF811EFB0C52572C4F9AE02.roa (hash: hHpuvEEfCl4OhjB2zfY/eTXHBtooIatBX5e91JuXgS8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8282/061AAB52FBFE11EFB5520A12C4F9AE02/n3tC7xjTQv3Vap_cXz2AHi0sGrc.crl rsync://rpki.apnic.net/member_repository/A91F8282/061AAB52FBFE11EFB5520A12C4F9AE02/n3tC7xjTQv3Vap_cXz2AHi0sGrc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n3tC7xjTQv3Vap_cXz2AHi0sGrc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 125 (0x7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8282, serialNumber=9F7B42EF18D342FDD56A9FDC5F3D801E2D2C1AB7 Validity Not Before: Nov 3 06:46:35 2025 GMT Not After : Nov 10 06:46:35 2025 GMT Subject: CN=69084fcc-e063 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:15:cc:18:a3:eb:c8:02:01:f5:f5:1b:24:2b: 20:47:3c:10:07:29:13:d7:4d:5c:9c:d4:bd:87:50: 1b:52:a0:91:cc:36:1d:ec:62:c1:71:e3:d8:d8:b7: bc:a9:16:13:22:b2:b8:60:32:f7:4d:17:cf:de:6e: d2:da:b2:dc:fc:49:2d:d3:2b:71:a9:8a:82:f3:8e: 8b:be:50:3c:2c:b4:8d:59:58:94:ee:82:c3:db:1a: c9:0b:e7:c9:c6:a2:5f:dc:e2:65:49:8c:84:26:6b: 44:a5:53:78:15:fb:14:5a:23:e6:c3:75:00:c8:9a: 44:24:f3:19:d0:c5:d7:8c:67:7b:9f:d3:0a:49:94: e5:e7:50:83:12:0b:81:e5:15:53:9a:0c:bd:ed:60: d7:4e:a0:c8:0b:2e:be:6f:6c:b8:3f:61:4b:d3:e1: 8d:32:84:9d:0d:40:0e:ec:4d:51:d1:c9:52:f8:5a: fc:9c:0a:3d:2a:e7:83:fe:72:76:3d:ea:88:47:5c: d6:43:ee:54:4d:a6:b9:cf:a1:d5:21:71:42:ef:18: 0d:e4:ea:e2:42:fc:0c:ef:e4:79:81:ec:ae:f8:26: f5:b7:eb:7a:14:5e:1f:6d:60:99:e9:33:d5:95:a9: 83:01:09:ee:c1:54:e2:90:28:ef:72:cc:7a:7d:3a: 98:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:AC:51:F0:5D:5C:ED:45:09:38:2A:85:BD:69:45:03:91:6C:AB:CB X509v3 Authority Key Identifier: keyid:9F:7B:42:EF:18:D3:42:FD:D5:6A:9F:DC:5F:3D:80:1E:2D:2C:1A:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8282/061AAB52FBFE11EFB5520A12C4F9AE02/n3tC7xjTQv3Vap_cXz2AHi0sGrc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n3tC7xjTQv3Vap_cXz2AHi0sGrc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8282/061AAB52FBFE11EFB5520A12C4F9AE02/n3tC7xjTQv3Vap_cXz2AHi0sGrc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:1c:f2:97:61:39:9b:47:b4:b2:4f:ed:b9:79:23:f0:14:2b: 56:07:c0:7f:96:53:da:ec:39:82:85:b2:e2:61:7e:5d:1b:fe: 62:6b:7b:c8:9a:fe:88:81:f0:c2:68:ad:4a:01:11:17:c1:e9: 16:30:a7:24:a3:30:13:3b:8b:6e:78:c2:8d:4a:ac:c1:36:b5: 4c:30:11:db:1a:32:94:ec:d5:ed:91:70:3d:3c:25:5a:23:92: c7:1f:a9:b7:b1:bc:db:3f:cc:3f:06:38:91:5e:7d:aa:11:a3: c2:b5:9c:88:e5:fb:47:39:98:c5:aa:ca:c7:c7:0e:8d:be:32: b6:b5:b5:3e:e6:e1:c0:dc:32:55:7a:fd:ac:ba:a4:46:4b:d5: 73:89:bc:be:6c:0d:a7:05:49:c3:53:61:bb:b3:47:d6:ff:45: a7:13:4d:f2:70:c5:48:34:ec:a4:23:88:b6:36:4c:97:54:c7: f0:68:12:76:aa:76:94:f6:97:dc:43:b7:8b:47:6c:a6:a4:07: b2:4e:ce:f6:e7:f6:f9:17:e9:ec:79:c6:45:69:c0:6f:da:fd: f7:db:6a:68:cb:fd:8e:0e:7b:21:02:18:a2:12:3d:40:58:40: e7:76:7d:c3:db:5a:a4:34:d2:6c:7b:45:bc:a6:60:0f:d2:d4: 15:a8:05:d0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG ODI4MjExMC8GA1UEBRMoOUY3QjQyRUYxOEQzNDJGREQ1NkE5RkRDNUYzRDgwMUUy RDJDMUFCNzAeFw0yNTExMDMwNjQ2MzVaFw0yNTExMTAwNjQ2MzVaMBgxFjAUBgNV BAMTDTY5MDg0ZmNjLWUwNjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCsFcwYo+vIAgH19RskKyBHPBAHKRPXTVyc1L2HUBtSoJHMNh3sYsFx49jYt7yp FhMisrhgMvdNF8/ebtLastz8SS3TK3GpioLzjou+UDwstI1ZWJTugsPbGskL58nG ol/c4mVJjIQma0SlU3gV+xRaI+bDdQDImkQk8xnQxdeMZ3uf0wpJlOXnUIMSC4Hl FVOaDL3tYNdOoMgLLr5vbLg/YUvT4Y0yhJ0NQA7sTVHRyVL4WvycCj0q54P+cnY9 6ohHXNZD7lRNprnPodUhcULvGA3k6uJC/Azv5HmB7K74JvW363oUXh9tYJnpM9WV qYMBCe7BVOKQKO9yzHp9OpjjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUvaxR8F1c 7UUJOCqFvWlFA5Fsq8swHwYDVR0jBBgwFoAUn3tC7xjTQv3Vap/cXz2AHi0sGrcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4MjgyLzA2MUFBQjUyRkJG RTExRUZCNTUyMEExMkM0RjlBRTAyL24zdEM3eGpUUXYzVmFwX2NYejJBSGkwc0dy Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbjN0Qzd4alRRdjNWYXBfY1h6MkFIaTBzR3JjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4 MjgyLzA2MUFBQjUyRkJGRTExRUZCNTUyMEExMkM0RjlBRTAyL24zdEM3eGpUUXYz VmFwX2NYejJBSGkwc0dyYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACQc8pdhOZtHtLJP7bl5I/AUK1YHwH+WU9rsOYKFsuJhfl0b/mJre8ia /oiB8MJorUoBERfB6RYwpySjMBM7i254wo1KrME2tUwwEdsaMpTs1e2RcD08JVoj kscfqbexvNs/zD8GOJFefaoRo8K1nIjl+0c5mMWqysfHDo2+Mra1tT7m4cDcMlV6 /ay6pEZL1XOJvL5sDacFScNTYbuzR9b/RacTTfJwxUg07KQjiLY2TJdUx/BoEnaq dpT2l9xDt4tHbKakB7JOzvbn9vkX6ex5xkVpwG/a/ffbamjL/Y4OeyECGKISPUBY QOd2fcPbWqQ00mx7RbymYA/S1BWoBdA= -----END CERTIFICATE-----Generated at Tue Nov 4 08:10:44 2025 by rpki-client