$ rpki-client -vvf rpki.apnic.net/member_repository/A915FDD9/BE7CAC12D6DE11EFB0474E1BC4F9AE02/A3iO4rrk2AXrzcpmGOLsGhilxOI.mft File: A3iO4rrk2AXrzcpmGOLsGhilxOI.mft (raw, json) Hash identifier: xUacb5FXLZG0um/INfu6opm1C4JzGcBwUxvS+xA+M2M= Subject key identifier: 9C:B9:79:3E:31:DE:87:6E:0D:98:A2:A8:C9:78:0B:F6:37:94:6D:04 Authority key identifier: 03:78:8E:E2:BA:E4:D8:05:EB:CD:CA:66:18:E2:EC:1A:18:A5:C4:E2 Certificate issuer: /CN=A915FDD9/serialNumber=03788EE2BAE4D805EBCDCA6618E2EC1A18A5C4E2 Certificate serial: 94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3iO4rrk2AXrzcpmGOLsGhilxOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FDD9/BE7CAC12D6DE11EFB0474E1BC4F9AE02/A3iO4rrk2AXrzcpmGOLsGhilxOI.mft Manifest number: 91 Signing time: Sun 19 Oct 2025 09:48:41 +0000 Manifest this update: Sun 19 Oct 2025 09:48:40 +0000 Manifest next update: Sun 26 Oct 2025 09:48:40 +0000 Files and hashes: 1: A3iO4rrk2AXrzcpmGOLsGhilxOI.crl (hash: kLoYR0hiRFHTVCyQ2hnu/IwAi33yUPw1p7H/uYjqSXA=) 2: 279A9510AB7811F09488DF65C4F9AE02.roa (hash: 7+ZOvaTWijF19fvrYhrbkrijLyfPn8jaNNPKHW6m280=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FDD9/BE7CAC12D6DE11EFB0474E1BC4F9AE02/A3iO4rrk2AXrzcpmGOLsGhilxOI.crl rsync://rpki.apnic.net/member_repository/A915FDD9/BE7CAC12D6DE11EFB0474E1BC4F9AE02/A3iO4rrk2AXrzcpmGOLsGhilxOI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3iO4rrk2AXrzcpmGOLsGhilxOI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:48:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 148 (0x94) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FDD9, serialNumber=03788EE2BAE4D805EBCDCA6618E2EC1A18A5C4E2 Validity Not Before: Oct 19 09:48:40 2025 GMT Not After : Oct 26 09:48:40 2025 GMT Subject: CN=68f4b3f9-1475 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:02:2c:55:94:2c:d2:4d:e4:48:a0:50:9b:61: 5a:aa:ec:41:b3:e1:ad:ce:0f:4f:7b:12:5c:11:10: 9a:88:c3:c9:36:a1:7b:ed:d1:fc:c0:3f:e5:ee:fd: ca:5e:2d:b6:cc:36:2f:49:da:9b:79:6a:5f:96:ce: 34:7b:68:80:f9:2d:2b:8f:60:29:03:eb:3c:f9:2e: 58:05:29:d1:84:15:d6:1d:92:7b:8b:9f:6d:6d:53: 4a:a8:dc:aa:f7:06:38:3e:2d:e8:23:fa:8b:8f:af: 93:4a:e2:8e:22:ed:80:ba:1a:df:81:72:00:a8:7b: 5b:9d:4d:40:7a:01:4e:bb:8a:f5:18:e3:43:e8:2d: 73:c0:36:ac:c0:b6:0c:fc:25:25:1a:df:43:93:72: 1f:91:a0:25:74:f6:25:b4:f7:f6:b1:08:5a:bd:74: 64:87:b1:dd:97:74:5b:d0:63:26:3d:9d:c1:33:67: f6:47:8e:4c:5b:59:95:0b:77:d7:88:80:26:e8:fa: c2:e2:11:a4:7e:9b:df:d8:79:bc:b0:6f:36:f0:75: b6:dd:36:5a:dd:26:0b:23:35:e6:be:31:6b:78:b0: 11:59:66:d2:79:ce:5e:d4:47:bd:0f:81:1b:d5:ce: 1d:20:6f:76:09:ec:9e:e3:92:ad:4a:25:3e:ea:65: 20:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:B9:79:3E:31:DE:87:6E:0D:98:A2:A8:C9:78:0B:F6:37:94:6D:04 X509v3 Authority Key Identifier: keyid:03:78:8E:E2:BA:E4:D8:05:EB:CD:CA:66:18:E2:EC:1A:18:A5:C4:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FDD9/BE7CAC12D6DE11EFB0474E1BC4F9AE02/A3iO4rrk2AXrzcpmGOLsGhilxOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3iO4rrk2AXrzcpmGOLsGhilxOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FDD9/BE7CAC12D6DE11EFB0474E1BC4F9AE02/A3iO4rrk2AXrzcpmGOLsGhilxOI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:c5:6e:34:c5:03:1a:f2:30:fb:f8:8f:58:4a:8e:04:1f:12: 39:7f:9d:7c:c0:d2:64:8b:ac:67:6b:ed:4e:36:cf:5c:db:f5: 89:da:19:a3:5d:b8:3b:6b:c3:12:b8:7a:e8:27:24:5b:d1:9b: 68:81:31:26:ca:23:a9:11:e2:83:00:b7:eb:7b:b8:a8:ec:3b: 02:3e:c6:ae:63:ee:41:f1:38:81:4c:ea:5c:6a:48:3a:38:77: 75:b6:f3:cc:42:2c:14:f1:8d:d1:2b:7e:aa:9b:86:62:83:98: d3:a4:53:3b:38:fa:9c:73:95:76:5e:db:8e:9c:3e:ec:9e:4c: 96:48:f1:d4:69:2c:6e:62:c8:d7:74:7f:fd:ff:3c:06:d1:98: 60:6a:98:ee:f6:98:20:a1:20:c0:5d:65:6a:fa:7c:8b:3b:23: 4b:b7:34:f6:13:06:86:18:8c:b3:da:96:dc:20:6e:3f:a6:56: 9e:fa:21:b3:62:17:32:31:6e:2b:d9:1b:10:05:6c:9d:c0:c5: 6d:cd:4e:d3:d2:ab:e4:ed:b6:e4:49:e4:af:62:ec:d3:b2:57: e4:ab:a5:04:af:33:6a:f0:b6:ed:80:27:2e:ff:e7:03:19:ca: 6e:71:92:31:96:d9:a0:e4:d6:69:3e:fc:08:a1:e2:8a:a8:04: 4c:eb:30:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZERDkxMTAvBgNVBAUTKDAzNzg4RUUyQkFFNEQ4MDVFQkNEQ0E2NjE4RTJFQzFB MThBNUM0RTIwHhcNMjUxMDE5MDk0ODQwWhcNMjUxMDI2MDk0ODQwWjAYMRYwFAYD VQQDEw02OGY0YjNmOS0xNDc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAugIsVZQs0k3kSKBQm2FaquxBs+Gtzg9PexJcERCaiMPJNqF77dH8wD/l7v3K Xi22zDYvSdqbeWpfls40e2iA+S0rj2ApA+s8+S5YBSnRhBXWHZJ7i59tbVNKqNyq 9wY4Pi3oI/qLj6+TSuKOIu2AuhrfgXIAqHtbnU1AegFOu4r1GOND6C1zwDaswLYM /CUlGt9Dk3IfkaAldPYltPf2sQhavXRkh7Hdl3Rb0GMmPZ3BM2f2R45MW1mVC3fX iIAm6PrC4hGkfpvf2Hm8sG828HW23TZa3SYLIzXmvjFreLARWWbSec5e1Ee9D4Eb 1c4dIG92Ceye45KtSiU+6mUgRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJy5eT4x 3oduDZiiqMl4C/Y3lG0EMB8GA1UdIwQYMBaAFAN4juK65NgF683KZhji7BoYpcTi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkREOS9CRTdDQUMxMkQ2 REUxMUVGQjA0NzRFMUJDNEY5QUUwMi9BM2lPNHJyazJBWHJ6Y3BtR09Mc0doaWx4 T0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EzaU80cnJrMkFYcnpjcG1HT0xzR2hpbHhPSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RkREOS9CRTdDQUMxMkQ2REUxMUVGQjA0NzRFMUJDNEY5QUUwMi9BM2lPNHJyazJB WHJ6Y3BtR09Mc0doaWx4T0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQxW40xQMa8jD7+I9YSo4EHxI5f518wNJki6xna+1ONs9c2/WJ2hmj Xbg7a8MSuHroJyRb0ZtogTEmyiOpEeKDALfre7io7DsCPsauY+5B8TiBTOpcakg6 OHd1tvPMQiwU8Y3RK36qm4Zig5jTpFM7OPqcc5V2XtuOnD7snkyWSPHUaSxuYsjX dH/9/zwG0Zhgapju9pggoSDAXWVq+nyLOyNLtzT2EwaGGIyz2pbcIG4/plae+iGz YhcyMW4r2RsQBWydwMVtzU7T0qvk7bbkSeSvYuzTslfkq6UErzNq8LbtgCcu/+cD GcpucZIxltmg5NZpPvwIoeKKqARM6zA8 -----END CERTIFICATE-----Generated at Sun Oct 19 23:32:33 2025 by rpki-client