$ rpki-client -vvf rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft File: A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft (raw, json) Hash identifier: 2XtMjbCJcE/dKDZbYwYIZNBOXRVHMUVSY351G48XlXk= Subject key identifier: D5:31:52:D6:C0:EA:D1:B0:66:14:51:13:C2:2F:5B:EC:51:49:41:84 Authority key identifier: 03:77:B9:3C:91:FD:AF:46:9A:59:1B:4C:52:D2:4C:B1:55:5D:2B:D4 Certificate issuer: /CN=A91822BF/serialNumber=0377B93C91FDAF469A591B4C52D24CB1555D2BD4 Certificate serial: 0C20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft Manifest number: 0C18 Signing time: Sat 18 Oct 2025 19:31:34 +0000 Manifest this update: Sat 18 Oct 2025 19:31:33 +0000 Manifest next update: Sat 25 Oct 2025 19:31:33 +0000 Files and hashes: 1: A3e5PJH9r0aaWRtMUtJMsVVdK9Q.crl (hash: ZAkK1XXV8kY8tbrVIoYWD8ljL8Mvvbf8XxC5ozbkj2A=) 2: 37EA3E261ADC11EA8EB46F37C4F9AE02.roa (hash: ELFkrkGvrGXpvAeGB34G/wdhCkAvgz4ejLB+gQtN8Ps=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.crl rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:31:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3104 (0xc20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91822BF, serialNumber=0377B93C91FDAF469A591B4C52D24CB1555D2BD4 Validity Not Before: Oct 18 19:31:33 2025 GMT Not After : Oct 25 19:31:33 2025 GMT Subject: CN=68f3eb16-9b60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ed:c3:a6:5b:65:b9:69:e3:23:4c:67:ce:93: 0a:d9:b9:e9:c9:20:08:d8:b7:c4:0a:55:1a:58:e8: 4c:4a:2f:1c:3c:15:20:e2:a5:fb:db:69:31:81:64: 96:54:e7:73:b3:50:0c:05:5b:86:5c:48:65:b6:bf: a2:fa:46:d7:7d:6d:a4:f9:a4:fe:65:b8:c0:d5:8d: 4f:68:03:82:ee:0a:0f:02:08:fb:42:d4:2e:bf:78: 45:ad:60:b5:6e:84:8a:9d:07:36:7a:fe:61:de:e8: b3:f4:5a:81:2b:c3:d2:ae:0a:5b:12:1a:d4:9c:e1: 48:af:12:8c:35:81:0c:74:96:9c:6b:aa:9a:d5:0f: 24:f4:98:7f:ae:6c:5b:54:56:29:32:63:07:e0:ef: bf:c0:7b:91:21:90:ff:46:6c:d3:ef:c8:e3:76:ca: 6f:04:9b:c4:e7:7e:5d:c3:04:b9:8d:30:8c:01:72: d4:f0:b2:26:bc:cf:a7:03:b9:2f:20:92:5d:8d:2a: d4:4b:21:de:48:a4:ca:18:45:09:7c:53:f5:33:a1: cf:77:fa:7d:02:2f:3f:ad:29:d5:ba:e5:c4:33:c2: 4e:19:8f:2f:f3:d2:d8:4e:6e:19:95:7d:0d:bd:3f: b1:2b:bf:bd:58:e7:a5:40:39:f6:2a:31:26:12:dc: 77:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:31:52:D6:C0:EA:D1:B0:66:14:51:13:C2:2F:5B:EC:51:49:41:84 X509v3 Authority Key Identifier: keyid:03:77:B9:3C:91:FD:AF:46:9A:59:1B:4C:52:D2:4C:B1:55:5D:2B:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:e5:6a:fe:da:e9:ac:b6:d2:41:54:04:2c:6b:5d:1f:c3:c5: 78:fd:90:ce:db:e8:8b:d4:e0:a5:97:cd:78:84:4e:32:2b:8e: 48:1d:7e:c6:f8:ca:ba:9f:b3:a1:bf:ee:61:58:e8:77:14:4e: ca:bd:60:d5:ba:cb:35:72:4a:47:90:bb:40:04:80:0b:00:c3: ce:33:97:57:ce:25:38:78:61:59:44:51:8f:06:a5:12:33:76: 1f:f2:25:ef:5e:f8:68:33:ed:fe:f1:51:0b:0e:92:db:bd:7e: ec:fe:20:b4:e3:90:4f:27:aa:b9:fa:13:65:9d:b0:52:5b:b7: a3:be:2f:f7:d7:8d:64:ef:3d:4c:1e:c3:8e:7a:3e:6e:f4:6b: 97:f3:f1:a5:00:a2:f5:bf:a1:20:06:b9:e9:c4:d5:bb:ae:84: 86:84:f4:d0:2c:4d:cf:0e:f3:b9:0a:50:f6:44:29:a8:14:20: a4:a2:b3:60:ed:b9:1e:40:78:c1:4d:1c:7c:5c:71:90:fd:fd: 94:58:73:24:59:98:28:ea:70:b1:21:f9:cd:f4:2f:ae:b3:dc: 6c:5b:e7:ec:64:ff:cf:c4:ec:85:3e:d3:b1:ec:6c:36:a2:7a: 58:f8:26:ae:b6:e2:5a:3c:84:13:01:e8:eb:fe:cc:a3:b6:cf: ca:c3:db:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODIyQkYxMTAvBgNVBAUTKDAzNzdCOTNDOTFGREFGNDY5QTU5MUI0QzUyRDI0Q0Ix NTU1RDJCRDQwHhcNMjUxMDE4MTkzMTMzWhcNMjUxMDI1MTkzMTMzWjAYMRYwFAYD VQQDEw02OGYzZWIxNi05YjYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr+3DpltluWnjI0xnzpMK2bnpySAI2LfEClUaWOhMSi8cPBUg4qX722kxgWSW VOdzs1AMBVuGXEhltr+i+kbXfW2k+aT+ZbjA1Y1PaAOC7goPAgj7QtQuv3hFrWC1 boSKnQc2ev5h3uiz9FqBK8PSrgpbEhrUnOFIrxKMNYEMdJaca6qa1Q8k9Jh/rmxb VFYpMmMH4O+/wHuRIZD/RmzT78jjdspvBJvE535dwwS5jTCMAXLU8LImvM+nA7kv IJJdjSrUSyHeSKTKGEUJfFP1M6HPd/p9Ai8/rSnVuuXEM8JOGY8v89LYTm4ZlX0N vT+xK7+9WOelQDn2KjEmEtx36wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNUxUtbA 6tGwZhRRE8IvW+xRSUGEMB8GA1UdIwQYMBaAFAN3uTyR/a9GmlkbTFLSTLFVXSvU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjJCRi8xMDM5QkM0MDFB REIxMUVBQUEzQTgyMzVDNEY5QUUwMi9BM2U1UEpIOXIwYWFXUnRNVXRKTXNWVmRL OVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EzZTVQSkg5cjBhYVdSdE1VdEpNc1ZWZEs5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjJCRi8xMDM5QkM0MDFBREIxMUVBQUEzQTgyMzVDNEY5QUUwMi9BM2U1UEpIOXIw YWFXUnRNVXRKTXNWVmRLOVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBF5Wr+2umsttJBVAQsa10fw8V4/ZDO2+iL1OCll814hE4yK45IHX7G +Mq6n7Ohv+5hWOh3FE7KvWDVuss1ckpHkLtABIALAMPOM5dXziU4eGFZRFGPBqUS M3Yf8iXvXvhoM+3+8VELDpLbvX7s/iC045BPJ6q5+hNlnbBSW7ejvi/3141k7z1M HsOOej5u9GuX8/GlAKL1v6EgBrnpxNW7roSGhPTQLE3PDvO5ClD2RCmoFCCkorNg 7bkeQHjBTRx8XHGQ/f2UWHMkWZgo6nCxIfnN9C+us9xsW+fsZP/PxOyFPtOx7Gw2 onpY+CautuJaPIQTAejr/syjts/Kw9uy -----END CERTIFICATE-----Generated at Mon Oct 20 07:47:25 2025 by rpki-client