$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA447/5F4C6CF2426211EA94C5C466C4F9AE02/3Ji1RLFsSamN0Fhc-WckJkFVLqQ.mft File: 3Ji1RLFsSamN0Fhc-WckJkFVLqQ.mft (raw, json) Hash identifier: ATKP2R3HOaFeksrTmkvq8C2xyeK2pcrxmBYeoXErehI= Subject key identifier: B5:53:99:D0:07:C6:8A:0A:9D:B8:D1:80:C6:4F:A7:6F:6E:26:37:78 Authority key identifier: DC:98:B5:44:B1:6C:49:A9:8D:D0:58:5C:F9:67:24:26:41:55:2E:A4 Certificate issuer: /CN=A91BA447/serialNumber=DC98B544B16C49A98DD0585CF967242641552EA4 Certificate serial: 0B59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Ji1RLFsSamN0Fhc-WckJkFVLqQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA447/5F4C6CF2426211EA94C5C466C4F9AE02/3Ji1RLFsSamN0Fhc-WckJkFVLqQ.mft Manifest number: 0B52 Signing time: Sat 18 Oct 2025 20:03:40 +0000 Manifest this update: Sat 18 Oct 2025 20:03:39 +0000 Manifest next update: Sat 25 Oct 2025 20:03:39 +0000 Files and hashes: 1: 3Ji1RLFsSamN0Fhc-WckJkFVLqQ.crl (hash: C3Loavl1MUWBpz58RSskXzMpmbkRJ2o+Y97U/TBxo1I=) 2: 07F14B9C426411EABA91B569C4F9AE02.roa (hash: F4BgB3+37H1vj4fhyDwAENhQ6lWTOrd3il938AR6caY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA447/5F4C6CF2426211EA94C5C466C4F9AE02/3Ji1RLFsSamN0Fhc-WckJkFVLqQ.crl rsync://rpki.apnic.net/member_repository/A91BA447/5F4C6CF2426211EA94C5C466C4F9AE02/3Ji1RLFsSamN0Fhc-WckJkFVLqQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Ji1RLFsSamN0Fhc-WckJkFVLqQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:03:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2905 (0xb59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA447, serialNumber=DC98B544B16C49A98DD0585CF967242641552EA4 Validity Not Before: Oct 18 20:03:39 2025 GMT Not After : Oct 25 20:03:39 2025 GMT Subject: CN=68f3f29b-6a14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:60:9f:3e:75:f7:6f:23:92:26:02:b9:09:f0: 18:de:4e:79:90:12:60:40:d2:09:1c:4e:c6:03:73: 3d:b5:45:80:15:87:f6:e2:5e:fa:c5:16:14:76:a9: 10:36:6f:5d:a6:62:cf:91:4a:d4:6b:36:e4:8d:a8: ad:21:51:f8:e5:df:75:5c:6d:01:c4:c9:38:e1:13: 94:ca:7b:32:df:f4:c9:78:8b:f5:6f:e9:6a:e5:71: e1:a3:9d:13:7e:10:93:41:f8:e0:3d:2f:20:ec:6e: 44:84:f2:44:c0:9f:a1:8c:3e:2a:73:3e:1c:d6:c0: ed:98:2b:82:e4:9e:03:bd:d9:f8:e5:51:7c:65:fe: d6:84:f4:5f:4b:a8:7f:fd:16:df:9f:63:d8:b3:5b: 02:4a:44:e8:3b:42:82:d6:8f:c7:5e:df:e9:66:62: d6:d1:36:6c:97:04:26:fc:bd:42:31:ce:bd:10:f8: 8f:25:13:4c:7b:a2:ce:2a:d2:32:8f:3e:50:3f:cc: ac:30:74:80:b6:31:cd:87:90:ba:a3:d0:45:4a:65: 05:ac:96:94:c9:1c:f7:bd:4e:f1:19:e0:d0:5b:19: 17:d6:bb:34:f4:81:83:fa:1d:55:af:02:82:d3:7f: e5:df:62:45:c5:9b:d1:51:af:d4:05:c8:3d:e4:ef: fd:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:53:99:D0:07:C6:8A:0A:9D:B8:D1:80:C6:4F:A7:6F:6E:26:37:78 X509v3 Authority Key Identifier: keyid:DC:98:B5:44:B1:6C:49:A9:8D:D0:58:5C:F9:67:24:26:41:55:2E:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA447/5F4C6CF2426211EA94C5C466C4F9AE02/3Ji1RLFsSamN0Fhc-WckJkFVLqQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Ji1RLFsSamN0Fhc-WckJkFVLqQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA447/5F4C6CF2426211EA94C5C466C4F9AE02/3Ji1RLFsSamN0Fhc-WckJkFVLqQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:44:f6:4d:92:f4:5f:55:c0:e8:fa:a3:cd:2a:3b:95:b7:97: 98:4b:7c:15:2b:4a:5c:7c:13:00:58:96:d7:8e:44:d6:73:14: f8:2d:a1:f5:e3:50:6f:a5:30:2a:c7:e9:6d:32:08:4d:02:57: 36:61:0f:90:d9:05:70:7f:ac:31:de:68:bd:2c:05:a7:ee:6b: 19:2a:cd:ed:40:4f:4c:9a:75:a6:4f:b7:c0:ee:11:9c:f7:b9: 22:fe:e1:e3:9e:ee:c3:dc:1a:ad:87:e4:ae:30:14:fd:a6:de: 14:46:45:66:15:71:b2:50:b5:ac:6f:3c:ca:44:cd:25:7a:76: a5:8c:27:de:64:3c:9e:fe:66:d9:05:84:5a:68:24:ed:33:f2: c6:58:3a:f7:96:95:54:da:a1:2f:9d:51:ff:a6:69:4a:92:44: fb:cd:a3:51:b5:1f:dd:38:89:e1:2a:8c:10:a8:38:ff:e9:b3: a8:bf:71:73:2d:eb:d8:d9:5d:ac:91:8d:8d:51:40:1f:f1:ae: 5a:10:81:45:1c:3d:cf:f4:d3:22:bb:f7:1a:d7:91:8f:f9:5e: f6:83:19:85:ae:ec:9c:c2:7c:4b:1b:ca:a4:96:2a:bd:30:47: bf:c4:60:ea:9e:ae:9f:59:62:c4:9e:85:a7:79:e7:6b:56:4a: 01:98:c3:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC1kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkE0NDcxMTAvBgNVBAUTKERDOThCNTQ0QjE2QzQ5QTk4REQwNTg1Q0Y5NjcyNDI2 NDE1NTJFQTQwHhcNMjUxMDE4MjAwMzM5WhcNMjUxMDI1MjAwMzM5WjAYMRYwFAYD VQQDEw02OGYzZjI5Yi02YTE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw2CfPnX3byOSJgK5CfAY3k55kBJgQNIJHE7GA3M9tUWAFYf24l76xRYUdqkQ Nm9dpmLPkUrUazbkjaitIVH45d91XG0BxMk44ROUynsy3/TJeIv1b+lq5XHho50T fhCTQfjgPS8g7G5EhPJEwJ+hjD4qcz4c1sDtmCuC5J4Dvdn45VF8Zf7WhPRfS6h/ /Rbfn2PYs1sCSkToO0KC1o/HXt/pZmLW0TZslwQm/L1CMc69EPiPJRNMe6LOKtIy jz5QP8ysMHSAtjHNh5C6o9BFSmUFrJaUyRz3vU7xGeDQWxkX1rs09IGD+h1VrwKC 03/l32JFxZvRUa/UBcg95O/9jwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLVTmdAH xooKnbjRgMZPp29uJjd4MB8GA1UdIwQYMBaAFNyYtUSxbEmpjdBYXPlnJCZBVS6k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTQ0Ny81RjRDNkNGMjQy NjIxMUVBOTRDNUM0NjZDNEY5QUUwMi8zSmkxUkxGc1NhbU4wRmhjLVdja0prRlZM cVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNKaTFSTEZzU2FtTjBGaGMtV2NrSmtGVkxxUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTQ0Ny81RjRDNkNGMjQyNjIxMUVBOTRDNUM0NjZDNEY5QUUwMi8zSmkxUkxGc1Nh bU4wRmhjLVdja0prRlZMcVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsRPZNkvRfVcDo+qPNKjuVt5eYS3wVK0pcfBMAWJbXjkTWcxT4LaH1 41BvpTAqx+ltMghNAlc2YQ+Q2QVwf6wx3mi9LAWn7msZKs3tQE9MmnWmT7fA7hGc 97ki/uHjnu7D3Bqth+SuMBT9pt4URkVmFXGyULWsbzzKRM0lenaljCfeZDye/mbZ BYRaaCTtM/LGWDr3lpVU2qEvnVH/pmlKkkT7zaNRtR/dOInhKowQqDj/6bOov3Fz LevY2V2skY2NUUAf8a5aEIFFHD3P9NMiu/ca15GP+V72gxmFruycwnxLG8qkliq9 MEe/xGDqnq6fWWLEnoWneedrVkoBmMM3 -----END CERTIFICATE-----Generated at Mon Oct 20 08:22:39 2025 by rpki-client