$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.mft File: 3lWjaa7ZGGmMLWPDLvYb28WYBZY.mft (raw, json) Hash identifier: pFuxwwuE/HY5bGEZRvh5jMSAV0I/WrjpWIA7/hgWJIM= Subject key identifier: FF:F1:21:8D:A5:3B:8F:83:91:BA:75:45:3F:86:D9:20:C8:E2:2E:76 Authority key identifier: DE:55:A3:69:AE:D9:18:69:8C:2D:63:C3:2E:F6:1B:DB:C5:98:05:96 Certificate issuer: /CN=A91A5CC3/serialNumber=DE55A369AED918698C2D63C32EF61BDBC5980596 Certificate serial: 01B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3lWjaa7ZGGmMLWPDLvYb28WYBZY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.mft Manifest number: 01B1 Signing time: Sun 19 Oct 2025 05:38:09 +0000 Manifest this update: Sun 19 Oct 2025 05:38:09 +0000 Manifest next update: Sun 26 Oct 2025 05:38:09 +0000 Files and hashes: 1: 3lWjaa7ZGGmMLWPDLvYb28WYBZY.crl (hash: GRuFt4QSmHxaA6ep6+SX0egEgPnhxWpDD094/86QP7M=) 2: F287261014C311EE89C2C021C4F9AE02.roa (hash: OFdCpcqmoBow8dq1SGBZY5AJXKW9hjQG9lmYnQqhjrc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.crl rsync://rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3lWjaa7ZGGmMLWPDLvYb28WYBZY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:38:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 436 (0x1b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5CC3, serialNumber=DE55A369AED918698C2D63C32EF61BDBC5980596 Validity Not Before: Oct 19 05:38:09 2025 GMT Not After : Oct 26 05:38:09 2025 GMT Subject: CN=68f47941-4260 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:cc:18:70:d7:c6:e0:d4:af:4b:2d:b3:ae:1c: 6c:5e:25:a9:c3:a6:0c:9c:8c:ad:10:d4:3d:32:c8: cf:67:ca:94:f7:61:c2:62:62:11:35:fc:67:2a:4c: 65:04:89:eb:34:96:c5:66:4b:df:7c:53:1a:77:96: 27:6e:a5:aa:13:36:e4:47:ea:2d:e0:4e:76:9e:99: 93:e8:b1:15:0e:dc:8b:82:43:cf:09:a5:d1:07:66: f8:88:c3:e2:10:28:3b:65:b6:f7:c7:9c:19:d7:1a: 2b:db:03:56:d9:e2:88:db:02:72:bf:b2:94:52:f3: 72:ad:7e:31:21:ee:55:8a:d9:f0:4f:79:af:ab:e6: 88:43:a5:9c:76:ea:21:b8:54:38:4f:b0:49:9a:56: 4e:cf:cd:6f:7e:16:e7:dc:07:a0:41:c3:46:f0:a1: e6:23:7f:83:f0:2b:40:37:46:4d:49:39:61:58:e7: 8b:08:39:36:f5:aa:56:a8:19:4d:61:8a:c4:68:70: 28:fd:e9:38:62:55:25:f6:1c:34:39:c4:c5:50:02: 16:82:03:c4:3b:5c:ae:09:f2:5f:fe:f6:ac:86:79: 6f:f8:68:c8:ac:62:04:b5:fe:da:63:d0:f6:f7:bf: 86:91:79:82:42:1e:3d:dd:99:a5:f3:db:2f:d4:c8: fc:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:F1:21:8D:A5:3B:8F:83:91:BA:75:45:3F:86:D9:20:C8:E2:2E:76 X509v3 Authority Key Identifier: keyid:DE:55:A3:69:AE:D9:18:69:8C:2D:63:C3:2E:F6:1B:DB:C5:98:05:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3lWjaa7ZGGmMLWPDLvYb28WYBZY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:eb:0d:e0:51:f6:e1:0e:1c:60:a0:9f:1f:e6:47:3e:4c:9f: 9d:6a:95:37:a6:00:a7:fc:d3:26:47:77:b2:42:40:e0:a3:3d: 07:38:c9:65:0c:68:5e:01:83:d8:c3:c7:cb:58:b6:c4:fd:a5: 2c:61:7a:86:29:d9:7a:00:f1:dc:99:97:ab:c2:ba:98:45:46: 61:e0:a3:2c:3d:35:53:f0:30:67:99:64:90:4b:6c:25:a2:20: b2:16:83:d5:31:e6:98:41:7a:2c:c6:e3:ed:4f:75:2b:fe:ce: b4:41:76:17:81:67:89:77:86:5b:ce:db:c0:5f:66:78:e7:3c: 7c:ca:ce:cc:40:2c:9e:83:f2:ca:23:a9:e4:ee:f2:9f:3a:a6: d4:91:0c:80:e9:41:03:cf:62:06:fd:c2:ee:2e:cd:5b:a2:61: b2:86:36:30:ee:22:f5:dc:5b:fd:d0:a4:a4:aa:21:fc:fe:67: 18:2c:7f:a4:4e:77:0c:1d:a6:50:da:bf:bc:4f:f3:50:c4:db: ef:f2:03:77:89:6c:43:c4:85:2a:ec:7a:49:49:5f:43:3a:72: fe:45:22:d2:c7:2c:8d:09:04:ea:93:52:85:0e:9b:26:c3:44: 0b:98:d7:54:bb:1e:c2:5c:9a:e0:3e:6b:cf:55:cd:c8:ea:8b: 3b:f3:47:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVDQzMxMTAvBgNVBAUTKERFNTVBMzY5QUVEOTE4Njk4QzJENjNDMzJFRjYxQkRC QzU5ODA1OTYwHhcNMjUxMDE5MDUzODA5WhcNMjUxMDI2MDUzODA5WjAYMRYwFAYD VQQDEw02OGY0Nzk0MS00MjYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1cwYcNfG4NSvSy2zrhxsXiWpw6YMnIytENQ9MsjPZ8qU92HCYmIRNfxnKkxl BInrNJbFZkvffFMad5YnbqWqEzbkR+ot4E52npmT6LEVDtyLgkPPCaXRB2b4iMPi ECg7Zbb3x5wZ1xor2wNW2eKI2wJyv7KUUvNyrX4xIe5VitnwT3mvq+aIQ6Wcduoh uFQ4T7BJmlZOz81vfhbn3AegQcNG8KHmI3+D8CtAN0ZNSTlhWOeLCDk29apWqBlN YYrEaHAo/ek4YlUl9hw0OcTFUAIWggPEO1yuCfJf/vashnlv+GjIrGIEtf7aY9D2 97+GkXmCQh493Zml89sv1Mj8UwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP/xIY2l O4+Dkbp1RT+G2SDI4i52MB8GA1UdIwQYMBaAFN5Vo2mu2RhpjC1jwy72G9vFmAWW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUNDMy82NDE2RDgzODE0 QzAxMUVFOTZFQTU0MjFDNEY5QUUwMi8zbFdqYWE3WkdHbU1MV1BETHZZYjI4V1lC WlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNsV2phYTdaR0dtTUxXUERMdlliMjhXWUJaWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUNDMy82NDE2RDgzODE0QzAxMUVFOTZFQTU0MjFDNEY5QUUwMi8zbFdqYWE3WkdH bU1MV1BETHZZYjI4V1lCWlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCY6w3gUfbhDhxgoJ8f5kc+TJ+dapU3pgCn/NMmR3eyQkDgoz0HOMll DGheAYPYw8fLWLbE/aUsYXqGKdl6APHcmZerwrqYRUZh4KMsPTVT8DBnmWSQS2wl oiCyFoPVMeaYQXosxuPtT3Ur/s60QXYXgWeJd4ZbztvAX2Z45zx8ys7MQCyeg/LK I6nk7vKfOqbUkQyA6UEDz2IG/cLuLs1bomGyhjYw7iL13Fv90KSkqiH8/mcYLH+k TncMHaZQ2r+8T/NQxNvv8gN3iWxDxIUq7HpJSV9DOnL+RSLSxyyNCQTqk1KFDpsm w0QLmNdUux7CXJrgPmvPVc3I6os780dn -----END CERTIFICATE-----Generated at Tue Oct 21 01:02:47 2025 by rpki-client