$ rpki-client -vvf rpki.apnic.net/member_repository/A91B732A/089BC4E6B63111EFA2D7FB63C4F9AE02/3BEw2GFrq8bOCI9fIOaXGamcMrs.mft File: 3BEw2GFrq8bOCI9fIOaXGamcMrs.mft (raw, json) Hash identifier: Xjl6wNd6hmVPVj00+uz/8z80i0svigD5zOt2jTg8ETI= Subject key identifier: 9B:95:0D:EB:EF:D5:7E:B3:F0:0A:A3:96:6E:7F:BB:38:FF:30:2B:FC Authority key identifier: DC:11:30:D8:61:6B:AB:C6:CE:08:8F:5F:20:E6:97:19:A9:9C:32:BB Certificate issuer: /CN=A91B732A/serialNumber=DC1130D8616BABC6CE088F5F20E69719A99C32BB Certificate serial: A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3BEw2GFrq8bOCI9fIOaXGamcMrs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B732A/089BC4E6B63111EFA2D7FB63C4F9AE02/3BEw2GFrq8bOCI9fIOaXGamcMrs.mft Manifest number: A1 Signing time: Sun 19 Oct 2025 09:30:53 +0000 Manifest this update: Sun 19 Oct 2025 09:30:52 +0000 Manifest next update: Sun 26 Oct 2025 09:30:52 +0000 Files and hashes: 1: 3BEw2GFrq8bOCI9fIOaXGamcMrs.crl (hash: Pf7Kj4hOce3FitRsNCM7SdNiWSOkJcjPCdXRGkBnO0A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B732A/089BC4E6B63111EFA2D7FB63C4F9AE02/3BEw2GFrq8bOCI9fIOaXGamcMrs.crl rsync://rpki.apnic.net/member_repository/A91B732A/089BC4E6B63111EFA2D7FB63C4F9AE02/3BEw2GFrq8bOCI9fIOaXGamcMrs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3BEw2GFrq8bOCI9fIOaXGamcMrs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:30:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 161 (0xa1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B732A, serialNumber=DC1130D8616BABC6CE088F5F20E69719A99C32BB Validity Not Before: Oct 19 09:30:52 2025 GMT Not After : Oct 26 09:30:52 2025 GMT Subject: CN=68f4afcd-bb19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:f0:53:6d:7d:ad:3b:73:a7:87:43:54:bd:f1: ea:24:1d:9f:6c:34:de:5b:53:30:c3:ea:59:41:a4: f0:7e:62:55:a6:ee:bc:bf:0e:48:70:62:a0:e6:21: 40:ba:7c:c8:96:63:42:05:4e:0e:e7:83:55:69:c4: 31:7e:19:c0:cd:f6:69:38:91:dc:b1:21:29:46:b4: e5:73:d2:1e:0c:07:aa:99:1a:8d:f9:ed:c4:75:c2: 63:61:cb:7d:0e:e1:7d:da:1e:16:87:ac:99:de:fb: dc:04:b4:19:e3:f5:f1:55:c3:c1:b2:cd:29:63:4f: a1:ae:30:0a:85:44:09:86:7f:c2:f0:c7:f8:81:4c: f7:c3:82:3c:6e:f5:43:1d:1a:d9:3b:91:d2:cd:65: df:bf:d0:25:73:79:6c:73:6a:24:5b:b2:bd:81:8a: 08:1a:6d:a6:f5:09:40:1f:b7:a6:8d:26:cf:87:b4: 02:c3:5e:b9:22:8c:ac:56:ff:f1:62:b8:ae:a0:75: 77:69:5d:a2:39:bc:1a:94:ee:b7:d7:5f:a1:7f:f5: 41:28:d2:fa:52:83:52:80:f5:60:bf:1e:81:17:1c: ef:8f:2c:70:36:42:29:1b:2a:cc:93:8e:21:e1:37: 46:41:c8:2d:0c:49:30:16:63:b3:7f:17:5b:91:20: 12:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:95:0D:EB:EF:D5:7E:B3:F0:0A:A3:96:6E:7F:BB:38:FF:30:2B:FC X509v3 Authority Key Identifier: keyid:DC:11:30:D8:61:6B:AB:C6:CE:08:8F:5F:20:E6:97:19:A9:9C:32:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B732A/089BC4E6B63111EFA2D7FB63C4F9AE02/3BEw2GFrq8bOCI9fIOaXGamcMrs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3BEw2GFrq8bOCI9fIOaXGamcMrs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B732A/089BC4E6B63111EFA2D7FB63C4F9AE02/3BEw2GFrq8bOCI9fIOaXGamcMrs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:ce:f4:0b:1e:25:b3:7e:19:7d:e9:99:50:73:37:d8:dc:f3: 82:06:63:f7:17:fd:c2:1e:5c:52:e8:9e:fa:dc:9a:d2:76:7b: 28:0c:71:28:99:28:5c:44:7e:c0:d2:a6:b8:42:ef:41:74:34: 2c:47:59:51:e9:3e:b8:6e:7b:36:76:48:7a:7e:cd:25:18:ca: 85:02:4f:cd:bb:a6:49:42:dc:21:15:66:9e:4c:3f:c2:3e:b9: e3:9b:3d:76:16:58:7a:6a:11:84:5e:11:6f:ca:db:fe:15:a6: a7:d6:4d:49:70:39:67:28:53:e6:34:b8:24:45:d3:f9:96:3a: ee:cc:f9:28:38:ae:94:8d:5f:c4:ca:ec:39:72:da:ab:38:c1: 02:97:4d:14:94:2d:e0:c4:0a:7c:da:ea:51:a2:56:7a:d4:bf: 48:3a:4c:3c:f7:c9:89:3e:08:b6:ef:2c:fc:c3:19:47:be:d1: 78:7e:8d:ac:ea:7b:0d:c9:7c:92:14:88:90:84:ff:38:ae:1b: f3:83:94:29:24:23:78:98:7c:25:9a:d2:b0:34:e8:5a:23:2f: e4:25:c4:f6:1f:e4:66:be:f5:e3:3d:58:22:3f:f9:21:55:10: a4:1f:12:69:87:2a:8d:03:1e:15:5b:cc:45:ad:a8:f8:cf:f9: f2:a9:fd:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjczMkExMTAvBgNVBAUTKERDMTEzMEQ4NjE2QkFCQzZDRTA4OEY1RjIwRTY5NzE5 QTk5QzMyQkIwHhcNMjUxMDE5MDkzMDUyWhcNMjUxMDI2MDkzMDUyWjAYMRYwFAYD VQQDEw02OGY0YWZjZC1iYjE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoPBTbX2tO3Onh0NUvfHqJB2fbDTeW1Mww+pZQaTwfmJVpu68vw5IcGKg5iFA unzIlmNCBU4O54NVacQxfhnAzfZpOJHcsSEpRrTlc9IeDAeqmRqN+e3EdcJjYct9 DuF92h4Wh6yZ3vvcBLQZ4/XxVcPBss0pY0+hrjAKhUQJhn/C8Mf4gUz3w4I8bvVD HRrZO5HSzWXfv9Alc3lsc2okW7K9gYoIGm2m9QlAH7emjSbPh7QCw165IoysVv/x YriuoHV3aV2iObwalO6311+hf/VBKNL6UoNSgPVgvx6BFxzvjyxwNkIpGyrMk44h 4TdGQcgtDEkwFmOzfxdbkSASwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJuVDevv 1X6z8Aqjlm5/uzj/MCv8MB8GA1UdIwQYMBaAFNwRMNhha6vGzgiPXyDmlxmpnDK7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzMyQS8wODlCQzRFNkI2 MzExMUVGQTJEN0ZCNjNDNEY5QUUwMi8zQkV3MkdGcnE4Yk9DSTlmSU9hWEdhbWNN cnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNCRXcyR0ZycThiT0NJOWZJT2FYR2FtY01ycy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NzMyQS8wODlCQzRFNkI2MzExMUVGQTJEN0ZCNjNDNEY5QUUwMi8zQkV3MkdGcnE4 Yk9DSTlmSU9hWEdhbWNNcnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+zvQLHiWzfhl96ZlQczfY3POCBmP3F/3CHlxS6J763JrSdnsoDHEo mShcRH7A0qa4Qu9BdDQsR1lR6T64bns2dkh6fs0lGMqFAk/Nu6ZJQtwhFWaeTD/C Prnjmz12Flh6ahGEXhFvytv+Faan1k1JcDlnKFPmNLgkRdP5ljruzPkoOK6UjV/E yuw5ctqrOMECl00UlC3gxAp82upRolZ61L9IOkw898mJPgi27yz8wxlHvtF4fo2s 6nsNyXySFIiQhP84rhvzg5QpJCN4mHwlmtKwNOhaIy/kJcT2H+RmvvXjPVgiP/kh VRCkHxJphyqNAx4VW8xFraj4z/nyqf0J -----END CERTIFICATE-----Generated at Mon Oct 20 14:36:22 2025 by rpki-client