$ rpki-client -vvf rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/t3KDxTMROjkeMdlFJxhqz4OZol8.mft File: t3KDxTMROjkeMdlFJxhqz4OZol8.mft (raw, json) Hash identifier: F5bHY/5sqS1KRgJDJ5PrS4nafr/M7eBcSKA08iwFcuU= Subject key identifier: A6:94:6F:B1:C2:E6:1E:19:27:A0:23:64:96:41:B7:4D:04:62:CB:FE Authority key identifier: B7:72:83:C5:33:11:3A:39:1E:31:D9:45:27:18:6A:CF:83:99:A2:5F Certificate issuer: /CN=A91AEE4B/serialNumber=B77283C533113A391E31D94527186ACF8399A25F Certificate serial: 0B4C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t3KDxTMROjkeMdlFJxhqz4OZol8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/t3KDxTMROjkeMdlFJxhqz4OZol8.mft Manifest number: 0B42 Signing time: Sat 18 Oct 2025 20:07:33 +0000 Manifest this update: Sat 18 Oct 2025 20:07:32 +0000 Manifest next update: Sat 25 Oct 2025 20:07:32 +0000 Files and hashes: 1: t3KDxTMROjkeMdlFJxhqz4OZol8.crl (hash: smZTP0rjQdYmFQHgfFi22gJ1qwvEwdRDc9Oa25YDuQA=) 2: 02F1850E45A611EA81CD145AC4F9AE02.roa (hash: 58+0TyNKJb4Dhk7ED+Dg5ahFyoV+/K06n+R45NAzh68=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/t3KDxTMROjkeMdlFJxhqz4OZol8.crl rsync://rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/t3KDxTMROjkeMdlFJxhqz4OZol8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t3KDxTMROjkeMdlFJxhqz4OZol8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:07:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2892 (0xb4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AEE4B, serialNumber=B77283C533113A391E31D94527186ACF8399A25F Validity Not Before: Oct 18 20:07:32 2025 GMT Not After : Oct 25 20:07:32 2025 GMT Subject: CN=68f3f384-d908 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:5b:80:e8:6e:1e:b7:84:ef:bc:cf:d9:f9:be: 15:75:89:e4:54:fe:fa:9f:51:77:f2:f2:6d:85:62: 03:7c:b7:eb:64:53:6b:db:c5:e3:00:f0:64:01:fb: 24:c5:16:f9:e3:52:83:63:3a:ec:f6:04:21:fe:82: 24:30:db:75:25:07:ff:bd:0d:55:84:98:a4:e6:1f: 62:d9:9c:be:d8:60:fa:b0:25:8d:df:c3:fb:40:8c: 08:b3:c7:0d:67:43:53:9a:1d:80:28:7b:75:4f:da: 9d:d4:c9:47:5f:d0:07:5f:57:2d:97:01:25:da:ce: 2a:25:70:88:cf:f0:a6:b5:b3:ed:6a:74:84:04:5f: db:25:b7:91:0f:d6:1b:e0:ac:f6:3d:b4:a7:d1:26: d2:28:fd:ad:58:41:0a:f1:4d:95:3f:7f:0a:a2:45: 28:17:87:f8:31:2f:59:04:92:3a:7e:69:76:35:3a: 94:50:38:e4:a6:d2:75:ab:cf:52:6c:0f:13:21:7d: 76:70:80:04:b5:68:31:e8:96:b2:28:eb:3c:62:7c: 3f:fb:60:a0:54:46:35:12:d6:01:45:03:17:52:16: 44:ac:69:74:5a:65:2f:f4:1e:e5:a9:a4:b7:f1:d8: 35:a9:1b:d0:58:16:cf:b9:d1:87:d5:b7:d4:38:36: ef:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:94:6F:B1:C2:E6:1E:19:27:A0:23:64:96:41:B7:4D:04:62:CB:FE X509v3 Authority Key Identifier: keyid:B7:72:83:C5:33:11:3A:39:1E:31:D9:45:27:18:6A:CF:83:99:A2:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/t3KDxTMROjkeMdlFJxhqz4OZol8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t3KDxTMROjkeMdlFJxhqz4OZol8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/t3KDxTMROjkeMdlFJxhqz4OZol8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:3f:8e:2a:82:e1:a9:8f:3f:f4:5d:85:64:27:27:09:c3:aa: c2:09:13:47:da:00:a8:2d:38:6f:2e:45:e9:50:3e:f6:9b:d2: 97:c8:70:cf:84:43:53:69:4b:5b:80:b6:4e:d9:81:a1:4d:e9: 44:b6:24:df:b3:d6:3b:7b:b9:ed:80:0f:9d:04:25:46:31:f8: a6:77:f7:7e:f2:14:ce:d0:3b:3b:e5:3e:ed:40:c9:33:64:b0: c5:a9:b9:fd:44:af:4a:b4:da:c4:ea:80:7c:72:09:6d:86:5c: bb:fe:c1:01:6e:e0:90:24:2f:10:2d:48:78:f7:4c:dd:5c:ef: 9a:84:9b:69:21:25:f5:ed:a0:6d:25:65:b8:dc:30:57:8f:80: a6:21:a0:0a:65:14:ba:23:d5:d5:c6:b5:9f:9b:6c:fb:1e:6e: 1c:7d:ab:eb:f7:0d:8b:08:27:d1:c4:20:eb:5b:36:38:02:96: 95:c9:e5:b2:2b:63:f8:98:43:68:18:9c:3a:3b:ed:37:55:5f: b3:4b:b8:18:4f:d9:ea:a8:62:13:33:e0:fc:69:0d:4e:35:4b: d9:18:5c:bb:0b:cb:0e:ef:93:97:66:04:a6:1b:98:91:8f:e4: d9:59:f2:74:3f:b4:80:75:7b:30:a2:f1:34:f8:f2:3d:80:da: 92:cd:23:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC0wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUVFNEIxMTAvBgNVBAUTKEI3NzI4M0M1MzMxMTNBMzkxRTMxRDk0NTI3MTg2QUNG ODM5OUEyNUYwHhcNMjUxMDE4MjAwNzMyWhcNMjUxMDI1MjAwNzMyWjAYMRYwFAYD VQQDEw02OGYzZjM4NC1kOTA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArluA6G4et4TvvM/Z+b4VdYnkVP76n1F38vJthWIDfLfrZFNr28XjAPBkAfsk xRb541KDYzrs9gQh/oIkMNt1JQf/vQ1VhJik5h9i2Zy+2GD6sCWN38P7QIwIs8cN Z0NTmh2AKHt1T9qd1MlHX9AHX1ctlwEl2s4qJXCIz/CmtbPtanSEBF/bJbeRD9Yb 4Kz2PbSn0SbSKP2tWEEK8U2VP38KokUoF4f4MS9ZBJI6fml2NTqUUDjkptJ1q89S bA8TIX12cIAEtWgx6JayKOs8Ynw/+2CgVEY1EtYBRQMXUhZErGl0WmUv9B7lqaS3 8dg1qRvQWBbPudGH1bfUODbvewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKaUb7HC 5h4ZJ6AjZJZBt00EYsv+MB8GA1UdIwQYMBaAFLdyg8UzETo5HjHZRScYas+DmaJf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRUU0Qi82M0RGRjgwMjQ1 QTQxMUVBOTQyRTA5NTdDNEY5QUUwMi90M0tEeFRNUk9qa2VNZGxGSnhocXo0T1pv bDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3QzS0R4VE1ST2prZU1kbEZKeGhxejRPWm9sOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RUU0Qi82M0RGRjgwMjQ1QTQxMUVBOTQyRTA5NTdDNEY5QUUwMi90M0tEeFRNUk9q a2VNZGxGSnhocXo0T1pvbDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPP44qguGpjz/0XYVkJycJw6rCCRNH2gCoLThvLkXpUD72m9KXyHDP hENTaUtbgLZO2YGhTelEtiTfs9Y7e7ntgA+dBCVGMfimd/d+8hTO0Ds75T7tQMkz ZLDFqbn9RK9KtNrE6oB8cglthly7/sEBbuCQJC8QLUh490zdXO+ahJtpISX17aBt JWW43DBXj4CmIaAKZRS6I9XVxrWfm2z7Hm4cfavr9w2LCCfRxCDrWzY4ApaVyeWy K2P4mENoGJw6O+03VV+zS7gYT9nqqGITM+D8aQ1ONUvZGFy7C8sO75OXZgSmG5iR j+TZWfJ0P7SAdXswovE0+PI9gNqSzSP6 -----END CERTIFICATE-----Generated at Mon Oct 20 17:08:26 2025 by rpki-client