$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.mft File: Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.mft (raw, json) Hash identifier: B6jsG6LDasfktJp6X1c8lbY7G6AwHYDUtmQt4WqIByk= Subject key identifier: 46:3E:19:C1:A3:6B:E2:C1:95:C2:15:6D:0A:D3:7C:36:2B:45:06:3D Authority key identifier: 3D:BD:D7:ED:41:24:80:E9:35:5C:27:F3:C1:13:B5:64:0D:31:86:B3 Certificate issuer: /CN=A91A3399/serialNumber=3DBDD7ED412480E9355C27F3C113B5640D3186B3 Certificate serial: 0194 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.mft Manifest number: 018B Signing time: Sun 19 Oct 2025 06:14:57 +0000 Manifest this update: Sun 19 Oct 2025 06:14:56 +0000 Manifest next update: Sun 26 Oct 2025 06:14:56 +0000 Files and hashes: 1: Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.crl (hash: +oHzlciBLqZWLlnm66Qeea8sBnL46eqmQv3uwyaEtKM=) 2: 553596D65DB511EE841C151FC4F9AE02.roa (hash: 5aNVVXrrk5+fzIwBo8UDYAZxVOdmHrz5HqTDIZHkN8o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.crl rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:14:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 404 (0x194) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3399, serialNumber=3DBDD7ED412480E9355C27F3C113B5640D3186B3 Validity Not Before: Oct 19 06:14:56 2025 GMT Not After : Oct 26 06:14:56 2025 GMT Subject: CN=68f481e0-262d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:e1:3d:3c:2c:19:c9:f0:50:fe:49:4b:3d:26: 7d:08:9c:c0:44:38:00:03:bf:42:47:8d:fc:f8:be: 79:b8:18:2c:8a:89:32:94:03:8a:21:0c:3a:6a:9d: 6a:a3:a4:77:7c:10:5b:5a:bb:b1:26:d8:4b:bb:b4: 12:fb:5f:73:e6:6f:3a:33:5d:16:65:d9:46:ce:b2: bf:1f:ed:36:aa:0f:95:e0:2f:a4:3c:b9:4d:bc:14: b5:7a:4e:6b:0d:5c:53:bf:22:cf:b2:2b:00:95:55: 37:15:66:f3:f5:42:23:fa:52:b4:55:c9:e3:e7:f7: 75:0f:2f:b8:9f:88:ec:a2:a6:a8:37:42:70:c6:f4: 41:fd:2b:66:d3:b0:90:36:9a:07:f2:55:5c:15:97: f6:10:17:b5:6c:45:8f:40:cd:85:85:0d:6e:32:7b: 71:6e:c7:c8:f5:ef:d0:cf:3e:c0:f2:f8:e2:8a:16: 11:ba:5a:d4:9b:ca:ae:7e:aa:87:a1:57:1a:4d:de: b9:94:68:f6:40:c2:5e:28:c8:72:57:bd:8e:07:97: 78:0c:d1:fb:bd:fb:01:92:f4:f7:60:72:48:90:bb: 45:3a:5b:04:0d:17:09:d2:e6:83:65:78:16:1a:b6: 75:83:70:5a:41:7f:29:1c:ad:ec:06:ed:17:b5:9b: e6:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:3E:19:C1:A3:6B:E2:C1:95:C2:15:6D:0A:D3:7C:36:2B:45:06:3D X509v3 Authority Key Identifier: keyid:3D:BD:D7:ED:41:24:80:E9:35:5C:27:F3:C1:13:B5:64:0D:31:86:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:8d:f0:66:99:22:a3:7d:d2:bc:85:d3:6a:6b:a7:14:70:23: d1:16:3d:43:86:3c:b0:6b:64:3f:ac:01:d1:f5:af:d2:c0:58: 15:74:f0:21:7a:d8:06:0e:d4:f8:99:2d:37:9a:f6:34:6a:6c: f0:bf:a5:53:a0:7c:47:ac:93:00:cc:88:19:cd:38:8f:c8:41: b3:c6:bb:18:df:54:55:78:99:e2:61:63:10:e0:f6:fb:61:90: 2f:85:ae:be:36:e5:cd:5d:1d:a3:82:11:fa:38:1d:6b:25:6c: 4e:a2:52:64:05:49:4e:09:b0:20:a3:95:6e:6e:98:84:b3:6b: d9:74:e6:49:7a:06:c8:68:93:f2:2f:7d:15:55:c0:d6:de:b5: a1:fe:84:4d:1a:77:19:ef:96:4b:f0:74:b8:95:4b:19:43:77: 90:ef:f9:db:4c:82:a1:a3:ed:51:b8:c3:2d:bf:c4:c9:1a:7f: b9:30:c3:5f:40:ba:cc:51:aa:a0:5a:99:71:4d:bd:70:69:65: b9:e6:3e:d1:a6:ae:c4:28:8e:6e:aa:c6:d8:dc:38:7f:4e:fe: 46:ea:4e:bc:c8:92:fe:3c:92:80:3b:9a:f7:20:a8:c1:39:37: c4:39:05:94:a3:85:57:d0:e0:f4:3e:50:b9:d3:4b:03:ac:a1: 31:fe:80:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTMzOTkxMTAvBgNVBAUTKDNEQkREN0VENDEyNDgwRTkzNTVDMjdGM0MxMTNCNTY0 MEQzMTg2QjMwHhcNMjUxMDE5MDYxNDU2WhcNMjUxMDI2MDYxNDU2WjAYMRYwFAYD VQQDEw02OGY0ODFlMC0yNjJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu+E9PCwZyfBQ/klLPSZ9CJzARDgAA79CR438+L55uBgsiokylAOKIQw6ap1q o6R3fBBbWruxJthLu7QS+19z5m86M10WZdlGzrK/H+02qg+V4C+kPLlNvBS1ek5r DVxTvyLPsisAlVU3FWbz9UIj+lK0Vcnj5/d1Dy+4n4jsoqaoN0JwxvRB/Stm07CQ NpoH8lVcFZf2EBe1bEWPQM2FhQ1uMntxbsfI9e/Qzz7A8vjiihYRulrUm8qufqqH oVcaTd65lGj2QMJeKMhyV72OB5d4DNH7vfsBkvT3YHJIkLtFOlsEDRcJ0uaDZXgW GrZ1g3BaQX8pHK3sBu0XtZvmEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEY+GcGj a+LBlcIVbQrTfDYrRQY9MB8GA1UdIwQYMBaAFD291+1BJIDpNVwn88ETtWQNMYaz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzM5OS9CQTY4QzMyODVD QjgxMUVFODUyM0JDN0FDNEY5QUUwMi9QYjNYN1VFa2dPazFYQ2Z6d1JPMVpBMHho ck0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BiM1g3VUVrZ09rMVhDZnp3Uk8xWkEweGhyTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzM5OS9CQTY4QzMyODVDQjgxMUVFODUyM0JDN0FDNEY5QUUwMi9QYjNYN1VFa2dP azFYQ2Z6d1JPMVpBMHhock0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEjfBmmSKjfdK8hdNqa6cUcCPRFj1Dhjywa2Q/rAHR9a/SwFgVdPAh etgGDtT4mS03mvY0amzwv6VToHxHrJMAzIgZzTiPyEGzxrsY31RVeJniYWMQ4Pb7 YZAvha6+NuXNXR2jghH6OB1rJWxOolJkBUlOCbAgo5VubpiEs2vZdOZJegbIaJPy L30VVcDW3rWh/oRNGncZ75ZL8HS4lUsZQ3eQ7/nbTIKho+1RuMMtv8TJGn+5MMNf QLrMUaqgWplxTb1waWW55j7Rpq7EKI5uqsbY3Dh/Tv5G6k68yJL+PJKAO5r3IKjB OTfEOQWUo4VX0OD0PlC500sDrKEx/oCr -----END CERTIFICATE-----Generated at Mon Oct 20 11:31:57 2025 by rpki-client