$ rpki-client -vvf rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.mft File: 3Y89lj-o0fItV_Tfspq9cNJVjjc.mft (raw, json) Hash identifier: 9licv3YEtafII9GX+UakHDOj8083XD17I9pem9Xd+Bs= Subject key identifier: E4:F3:DB:90:BC:1A:31:4C:9B:F3:B3:90:D7:8C:A7:BC:51:6F:21:DC Authority key identifier: DD:8F:3D:96:3F:A8:D1:F2:2D:57:F4:DF:B2:9A:BD:70:D2:55:8E:37 Certificate issuer: /CN=A91D506C/serialNumber=DD8F3D963FA8D1F22D57F4DFB29ABD70D2558E37 Certificate serial: 0305 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Y89lj-o0fItV_Tfspq9cNJVjjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.mft Manifest number: 0301 Signing time: Sun 19 Oct 2025 03:17:17 +0000 Manifest this update: Sun 19 Oct 2025 03:17:16 +0000 Manifest next update: Sun 26 Oct 2025 03:17:16 +0000 Files and hashes: 1: 3Y89lj-o0fItV_Tfspq9cNJVjjc.crl (hash: B+QlKNaicSoNnVGY1GJe5Yw80siSxpn/GdtRL1wy3NM=) 2: 76C5241CF47311EC8721C33DC4F9AE02.roa (hash: k+SbCpllhZI/PId+36V/JG+wlkp2Gdvk2xv/XzOQ3v8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.crl rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Y89lj-o0fItV_Tfspq9cNJVjjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:17:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 773 (0x305) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D506C, serialNumber=DD8F3D963FA8D1F22D57F4DFB29ABD70D2558E37 Validity Not Before: Oct 19 03:17:16 2025 GMT Not After : Oct 26 03:17:16 2025 GMT Subject: CN=68f4583c-a3e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:60:d2:a6:3f:22:f4:9b:05:28:52:96:27:b7: 94:87:2d:c1:dc:22:00:06:ca:02:71:a3:79:be:ed: a3:ac:f2:10:c0:c5:f6:7b:8e:bc:c7:54:8f:b1:4b: cd:e5:d9:e8:2a:4f:58:fd:af:f2:27:ef:54:70:2f: 40:27:5f:30:31:0e:a1:82:9b:0e:c1:3a:26:dc:d6: 4d:e9:b7:39:37:4f:40:c1:42:25:ff:7c:34:23:fc: 40:b2:65:4e:ba:5f:29:7c:d5:a1:4c:c0:ea:c3:96: 2d:43:c8:21:0b:ec:0e:bf:54:ab:27:45:9c:ad:de: 29:28:58:b1:91:36:58:2c:ff:84:88:3c:21:12:22: 2c:8e:87:6e:94:0e:90:54:f0:83:7a:36:4b:2b:4a: 56:23:33:04:43:ba:62:c1:d4:a5:fc:52:15:f0:39: a0:c5:25:c2:7d:d4:ad:7e:8c:75:12:50:31:4b:31: 1e:09:38:f1:90:3c:f1:2d:1a:e5:14:95:3c:b6:35: b1:01:20:fc:39:99:90:a9:49:58:ec:15:55:cb:cc: 77:d4:3c:75:17:78:55:4c:cd:c7:67:c4:8b:c5:e1: c5:92:65:47:1e:f3:04:1b:f7:74:6f:91:1f:bb:55: be:3e:26:53:8f:c9:98:af:cb:5b:3e:75:f8:7f:2d: 05:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:F3:DB:90:BC:1A:31:4C:9B:F3:B3:90:D7:8C:A7:BC:51:6F:21:DC X509v3 Authority Key Identifier: keyid:DD:8F:3D:96:3F:A8:D1:F2:2D:57:F4:DF:B2:9A:BD:70:D2:55:8E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Y89lj-o0fItV_Tfspq9cNJVjjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:3d:8e:98:8b:9b:34:97:db:42:c9:bd:a8:70:5d:88:6b:14: 48:2f:87:d7:24:94:43:59:55:04:2f:8b:f8:52:44:31:6a:ed: 55:fe:64:34:5d:b2:d7:0e:4c:fe:22:d5:98:97:c7:6e:32:46: fd:4a:2e:01:de:38:9b:72:b5:a2:15:73:10:df:ca:3f:00:a7: 59:a2:80:b9:b9:eb:53:2f:1d:03:12:0a:4b:d0:7d:a5:8e:71: ef:fa:65:9f:21:84:6a:2c:88:a0:73:c1:11:06:ac:d6:da:b4: e6:08:38:96:f8:f9:01:0d:a9:f5:e6:76:6a:11:5d:f5:e4:e5: a8:77:b8:2b:4f:69:50:85:be:79:44:44:2a:38:42:16:17:bf: 81:54:6c:36:68:a2:b8:02:7f:17:39:e7:9a:58:fe:9d:45:44: e2:92:91:ce:1e:17:db:d1:d9:70:f4:d3:d5:55:c0:45:18:e4: 73:90:0f:45:75:4f:00:dc:42:ce:09:49:55:62:67:4c:bf:54: 52:b3:23:17:f2:30:f8:82:1c:fd:0f:43:d1:44:8a:c0:63:c2: 56:9b:2a:21:fe:60:be:8c:e6:79:b6:07:0d:04:54:03:34:42: ef:9a:7f:3a:be:b8:60:c7:23:ef:c1:1d:01:63:91:b5:17:83: 76:c9:52:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAwUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUwNkMxMTAvBgNVBAUTKEREOEYzRDk2M0ZBOEQxRjIyRDU3RjRERkIyOUFCRDcw RDI1NThFMzcwHhcNMjUxMDE5MDMxNzE2WhcNMjUxMDI2MDMxNzE2WjAYMRYwFAYD VQQDEw02OGY0NTgzYy1hM2U5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAomDSpj8i9JsFKFKWJ7eUhy3B3CIABsoCcaN5vu2jrPIQwMX2e468x1SPsUvN 5dnoKk9Y/a/yJ+9UcC9AJ18wMQ6hgpsOwTom3NZN6bc5N09AwUIl/3w0I/xAsmVO ul8pfNWhTMDqw5YtQ8ghC+wOv1SrJ0Wcrd4pKFixkTZYLP+EiDwhEiIsjodulA6Q VPCDejZLK0pWIzMEQ7piwdSl/FIV8DmgxSXCfdStfox1ElAxSzEeCTjxkDzxLRrl FJU8tjWxASD8OZmQqUlY7BVVy8x31Dx1F3hVTM3HZ8SLxeHFkmVHHvMEG/d0b5Ef u1W+PiZTj8mYr8tbPnX4fy0FEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOTz25C8 GjFMm/OzkNeMp7xRbyHcMB8GA1UdIwQYMBaAFN2PPZY/qNHyLVf037KavXDSVY43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTA2Qy80NjYxOEIxQ0Y0 NkUxMUVDOEM2MDcwMEZDNEY5QUUwMi8zWTg5bGotbzBmSXRWX1Rmc3BxOWNOSlZq amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNZODlsai1vMGZJdFZfVGZzcHE5Y05KVmpqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTA2Qy80NjYxOEIxQ0Y0NkUxMUVDOEM2MDcwMEZDNEY5QUUwMi8zWTg5bGotbzBm SXRWX1Rmc3BxOWNOSlZqamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/PY6Yi5s0l9tCyb2ocF2IaxRIL4fXJJRDWVUEL4v4UkQxau1V/mQ0 XbLXDkz+ItWYl8duMkb9Si4B3jibcrWiFXMQ38o/AKdZooC5uetTLx0DEgpL0H2l jnHv+mWfIYRqLIigc8ERBqzW2rTmCDiW+PkBDan15nZqEV315OWod7grT2lQhb55 REQqOEIWF7+BVGw2aKK4An8XOeeaWP6dRUTikpHOHhfb0dlw9NPVVcBFGORzkA9F dU8A3ELOCUlVYmdMv1RSsyMX8jD4ghz9D0PRRIrAY8JWmyoh/mC+jOZ5tgcNBFQD NELvmn86vrhgxyPvwR0BY5G1F4N2yVL4 -----END CERTIFICATE-----Generated at Mon Oct 20 04:46:14 2025 by rpki-client