$ rpki-client -vvf rpki.apnic.net/member_repository/A91D74A6/7171BBF2D19C11EF83CEAD3CC4F9AE02/3IDIXlEBCJqyQl0_yRd5haASXG4.mft File: 3IDIXlEBCJqyQl0_yRd5haASXG4.mft (raw, json) Hash identifier: FGD4ru8EXWX7FNbozHpD7FE8uYSAVA/3LDDW000XX3A= Subject key identifier: 36:24:FC:02:BC:9E:36:31:DF:E0:0C:FA:8C:90:3E:4D:DD:90:58:22 Authority key identifier: DC:80:C8:5E:51:01:08:9A:B2:42:5D:3F:C9:17:79:85:A0:12:5C:6E Certificate issuer: /CN=A91D74A6/serialNumber=DC80C85E5101089AB2425D3FC9177985A0125C6E Certificate serial: A4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3IDIXlEBCJqyQl0_yRd5haASXG4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D74A6/7171BBF2D19C11EF83CEAD3CC4F9AE02/3IDIXlEBCJqyQl0_yRd5haASXG4.mft Manifest number: 9C Signing time: Sun 19 Oct 2025 09:45:35 +0000 Manifest this update: Sun 19 Oct 2025 09:45:34 +0000 Manifest next update: Sun 26 Oct 2025 09:45:34 +0000 Files and hashes: 1: 3IDIXlEBCJqyQl0_yRd5haASXG4.crl (hash: KuypSQ2YRxjbd/tJnY+84Z9KrO3wpWm2MxJgKZfLCaY=) 2: 727850D8D3EF11EFB596E00CC4F9AE02.roa (hash: hvte1LGzH8lQs5HlVIeT4otbezAzwXIr7d7vqIECmd8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D74A6/7171BBF2D19C11EF83CEAD3CC4F9AE02/3IDIXlEBCJqyQl0_yRd5haASXG4.crl rsync://rpki.apnic.net/member_repository/A91D74A6/7171BBF2D19C11EF83CEAD3CC4F9AE02/3IDIXlEBCJqyQl0_yRd5haASXG4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3IDIXlEBCJqyQl0_yRd5haASXG4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:45:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 164 (0xa4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D74A6, serialNumber=DC80C85E5101089AB2425D3FC9177985A0125C6E Validity Not Before: Oct 19 09:45:34 2025 GMT Not After : Oct 26 09:45:34 2025 GMT Subject: CN=68f4b33f-7897 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:28:a6:1e:7d:cb:84:81:3a:89:58:99:75:a6: dd:79:c5:d3:8d:41:d9:1d:d5:97:9e:84:66:6c:9e: 0a:e6:e6:56:b6:a5:95:44:5b:a3:03:f6:f2:76:c4: dc:3c:de:35:87:d4:07:2d:ee:07:ba:d7:e9:ff:8f: 7b:8f:73:5c:54:90:02:75:5a:c1:eb:64:5c:69:17: 48:57:6a:7d:df:3f:13:28:b3:80:23:db:7e:0e:de: f8:0d:c2:2c:f6:b0:29:f0:a4:de:e3:41:01:46:bf: 99:cb:e1:8a:28:1c:3f:d1:01:e5:d4:e1:f3:30:d3: f9:3e:0b:c7:f5:64:78:a7:7c:06:26:8f:75:3a:78: 30:28:2f:10:7d:2b:17:34:41:52:26:40:21:a7:4b: 2c:5a:ff:46:d7:9e:7e:7d:4a:54:5d:77:f2:f8:50: 03:ac:75:97:43:94:37:e5:be:df:c4:81:73:c9:b5: ce:d3:9f:18:31:fd:89:40:8f:21:f4:67:e0:7b:3d: be:a8:5a:bc:70:8f:de:c9:61:9a:52:21:25:6a:72: 60:7a:ae:74:d2:6b:c2:d9:b6:84:5c:73:9f:c0:9a: d8:07:31:63:93:0d:e5:21:15:59:e2:8c:cb:a1:19: d5:32:65:e4:0a:d6:97:f3:32:49:d3:3b:67:ac:6a: 72:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:24:FC:02:BC:9E:36:31:DF:E0:0C:FA:8C:90:3E:4D:DD:90:58:22 X509v3 Authority Key Identifier: keyid:DC:80:C8:5E:51:01:08:9A:B2:42:5D:3F:C9:17:79:85:A0:12:5C:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D74A6/7171BBF2D19C11EF83CEAD3CC4F9AE02/3IDIXlEBCJqyQl0_yRd5haASXG4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3IDIXlEBCJqyQl0_yRd5haASXG4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D74A6/7171BBF2D19C11EF83CEAD3CC4F9AE02/3IDIXlEBCJqyQl0_yRd5haASXG4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:25:36:48:3e:65:d4:76:82:ad:cf:a5:56:8c:74:f7:d9:c6: 68:53:12:28:68:bc:32:ba:9e:90:0c:a4:57:dd:7f:db:6a:d9: 4a:44:2a:4b:0a:27:e9:0e:a3:04:7c:72:40:e7:a3:aa:ff:cc: 64:3d:74:a0:e9:64:0d:c1:fb:67:4e:df:c5:9c:8f:c0:59:62: c2:c5:17:0f:e5:bf:4b:5e:11:44:15:74:30:23:5d:83:e2:0a: 12:94:e7:6e:68:1d:11:7b:b2:05:93:76:33:68:8a:55:c0:01: e3:1c:d0:f3:ad:59:e8:1a:ac:5b:8f:7b:5a:26:09:ac:2c:52: fd:90:46:08:13:2b:bb:b5:49:b8:4c:12:31:2e:8f:e1:2b:c9: 32:19:e3:1b:dd:d0:0f:82:c5:b6:35:d9:62:16:9f:a9:37:51: 18:3b:73:26:51:bc:f4:99:41:4f:68:e3:ff:ca:40:f9:fc:c3: d7:21:d2:90:ad:7a:14:42:ed:bc:b3:a5:73:6c:7c:c4:84:1b: 78:1a:f3:01:c5:6a:da:d5:3f:2c:b6:68:67:01:b3:68:12:ac: 36:2a:a9:61:05:c1:63:27:6c:30:ef:7e:20:8e:70:e8:22:b3: d4:53:9e:b5:d0:bc:c5:9c:9f:fb:56:af:93:2c:a0:37:5d:57: 3e:71:ad:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDc0QTYxMTAvBgNVBAUTKERDODBDODVFNTEwMTA4OUFCMjQyNUQzRkM5MTc3OTg1 QTAxMjVDNkUwHhcNMjUxMDE5MDk0NTM0WhcNMjUxMDI2MDk0NTM0WjAYMRYwFAYD VQQDEw02OGY0YjMzZi03ODk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsCimHn3LhIE6iViZdabdecXTjUHZHdWXnoRmbJ4K5uZWtqWVRFujA/bydsTc PN41h9QHLe4Hutfp/497j3NcVJACdVrB62RcaRdIV2p93z8TKLOAI9t+Dt74DcIs 9rAp8KTe40EBRr+Zy+GKKBw/0QHl1OHzMNP5PgvH9WR4p3wGJo91OngwKC8QfSsX NEFSJkAhp0ssWv9G155+fUpUXXfy+FADrHWXQ5Q35b7fxIFzybXO058YMf2JQI8h 9Gfgez2+qFq8cI/eyWGaUiElanJgeq500mvC2baEXHOfwJrYBzFjkw3lIRVZ4ozL oRnVMmXkCtaX8zJJ0ztnrGpy+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDYk/AK8 njYx3+AM+oyQPk3dkFgiMB8GA1UdIwQYMBaAFNyAyF5RAQiaskJdP8kXeYWgElxu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzRBNi83MTcxQkJGMkQx OUMxMUVGODNDRUFEM0NDNEY5QUUwMi8zSURJWGxFQkNKcXlRbDBfeVJkNWhhQVNY RzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzNJRElYbEVCQ0pxeVFsMF95UmQ1aGFBU1hHNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NzRBNi83MTcxQkJGMkQxOUMxMUVGODNDRUFEM0NDNEY5QUUwMi8zSURJWGxFQkNK cXlRbDBfeVJkNWhhQVNYRzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoJTZIPmXUdoKtz6VWjHT32cZoUxIoaLwyup6QDKRX3X/batlKRCpL CifpDqMEfHJA56Oq/8xkPXSg6WQNwftnTt/FnI/AWWLCxRcP5b9LXhFEFXQwI12D 4goSlOduaB0Re7IFk3YzaIpVwAHjHNDzrVnoGqxbj3taJgmsLFL9kEYIEyu7tUm4 TBIxLo/hK8kyGeMb3dAPgsW2NdliFp+pN1EYO3MmUbz0mUFPaOP/ykD5/MPXIdKQ rXoUQu28s6VzbHzEhBt4GvMBxWra1T8stmhnAbNoEqw2KqlhBcFjJ2ww734gjnDo IrPUU5610LzFnJ/7Vq+TLKA3XVc+ca0q -----END CERTIFICATE-----Generated at Mon Oct 20 15:09:30 2025 by rpki-client