$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.mft File: 3oqNpw4WUAnRQNn2JFJNxNR51eg.mft (raw, json) Hash identifier: 3623mlnxrz8fvdVyiHFOlejglfZ2AmCg8Eyvv9nKYOQ= Subject key identifier: 50:E2:3E:3F:C9:B4:DD:B0:55:4B:BD:5E:E8:6F:A4:DA:0A:1E:A3:1E Authority key identifier: DE:8A:8D:A7:0E:16:50:09:D1:40:D9:F6:24:52:4D:C4:D4:79:D5:E8 Certificate issuer: /CN=A91DA13E/serialNumber=DE8A8DA70E165009D140D9F624524DC4D479D5E8 Certificate serial: 0817 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oqNpw4WUAnRQNn2JFJNxNR51eg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.mft Manifest number: 07FF Signing time: Sat 18 Oct 2025 22:20:57 +0000 Manifest this update: Sat 18 Oct 2025 22:20:57 +0000 Manifest next update: Sat 25 Oct 2025 22:20:57 +0000 Files and hashes: 1: 3oqNpw4WUAnRQNn2JFJNxNR51eg.crl (hash: G8Dtyj7LUHwtpxOZB+BBGjvUXHTXEGnFQnU6vhoA2Gw=) 2: 29D6DCB2849211EE8F9C5870C4F9AE02.roa (hash: Rw6zEr6DY5Vp9Hj5tF7TI5Kq9ScA3GH+aMoga9/kLfs=) 3: B9A51B1AFA4F11EDB82FCB1FC4F9AE02.roa (hash: 5YYK0YKoDCpaklYir4k5rIBA5wPjwgrEAbtRskRmQT8=) 4: 298965AC06B611EBBBFD6B2CC4F9AE02.roa (hash: U1bQn0cREbDCYE8np1FOgxq7ZLPbZTRmflBcUUu8DFM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.crl rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oqNpw4WUAnRQNn2JFJNxNR51eg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:20:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2071 (0x817) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA13E, serialNumber=DE8A8DA70E165009D140D9F624524DC4D479D5E8 Validity Not Before: Oct 18 22:20:57 2025 GMT Not After : Oct 25 22:20:57 2025 GMT Subject: CN=68f412c9-83f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:c2:8f:8a:14:82:a0:4f:5a:47:96:77:e1:f2: eb:a1:72:86:44:2f:de:08:75:98:70:97:2d:dd:78: 0b:f4:26:75:8a:cc:30:e4:c5:ab:9b:44:00:08:db: f3:ba:18:c5:17:0c:53:f8:b7:59:05:01:de:ba:b4: 91:51:35:e3:98:fc:09:99:d9:1d:2a:d3:b2:9f:c8: ea:9f:b4:76:a0:fd:db:31:26:44:71:a6:68:89:5a: 95:8d:81:2c:b6:75:70:c9:9a:12:8c:68:c8:13:39: 53:45:8d:03:c4:b7:cd:3a:30:75:ab:f4:f0:01:23: 45:94:c3:81:b6:99:8f:d7:11:52:53:30:6d:25:1c: c1:84:3a:1e:ca:6d:02:01:ce:3b:c9:cb:f1:1c:23: ea:a0:85:d0:fe:d3:33:bb:cc:e4:04:0b:62:56:a2: eb:ae:8d:04:c2:76:60:8c:18:b2:54:52:a5:4a:f5: df:f6:76:82:4a:6c:aa:f0:d8:74:26:12:e5:8e:3c: 72:11:86:b6:22:ab:23:ec:b0:74:8f:f4:05:49:a6: 1a:b3:93:09:e6:cd:ad:64:ce:b7:01:ca:69:70:42: ef:3e:23:20:d9:34:4d:a2:69:b7:fc:3e:fe:68:46: 4b:08:af:d0:d4:b2:4c:3d:52:6b:14:37:d8:ec:36: dc:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:E2:3E:3F:C9:B4:DD:B0:55:4B:BD:5E:E8:6F:A4:DA:0A:1E:A3:1E X509v3 Authority Key Identifier: keyid:DE:8A:8D:A7:0E:16:50:09:D1:40:D9:F6:24:52:4D:C4:D4:79:D5:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oqNpw4WUAnRQNn2JFJNxNR51eg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:47:bb:55:14:f3:b7:59:44:fa:a9:40:0c:e2:90:d6:bf:af: b8:a8:ff:bc:8c:ab:2c:92:3a:01:e3:e6:e4:2d:54:32:91:f9: c3:70:cd:09:40:08:b9:27:08:1a:4a:fb:18:c7:8d:aa:aa:1f: ce:50:cb:4d:99:6d:e6:ea:68:36:cf:8a:11:3b:e3:92:73:9b: cd:8f:46:63:e3:6c:1a:1d:f8:43:cb:8a:17:d2:13:c6:19:4c: c1:b8:2a:d6:2e:04:e3:ca:50:63:91:2d:2c:f1:9c:43:e1:10: b5:fb:b8:18:51:53:2a:ab:c9:41:ae:ed:af:d8:7d:9c:9b:6f: d8:18:31:86:7d:dd:2d:ed:74:90:1c:4c:d5:df:28:36:57:a5: bb:d1:10:bc:a5:b3:c2:18:95:34:31:d7:f4:e0:cb:bf:09:3e: 05:ee:a2:ac:07:5e:4d:2c:76:42:42:af:93:67:91:c1:33:5f: 8a:19:0d:d9:15:65:d0:66:73:9a:7f:e6:d2:9b:8e:0d:92:81: 6d:6c:dd:99:7c:88:5b:57:43:8b:46:ba:24:db:36:a3:e5:72: 83:75:a6:ba:dd:55:2b:57:f9:30:6f:13:a9:7c:b8:d3:a7:05: 8f:ea:75:c2:d5:03:1c:a6:11:80:99:c9:3f:a0:46:f0:25:8b: d8:0e:e7:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCBcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REExM0UxMTAvBgNVBAUTKERFOEE4REE3MEUxNjUwMDlEMTQwRDlGNjI0NTI0REM0 RDQ3OUQ1RTgwHhcNMjUxMDE4MjIyMDU3WhcNMjUxMDI1MjIyMDU3WjAYMRYwFAYD VQQDEw02OGY0MTJjOS04M2YyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvcKPihSCoE9aR5Z34fLroXKGRC/eCHWYcJct3XgL9CZ1isww5MWrm0QACNvz uhjFFwxT+LdZBQHeurSRUTXjmPwJmdkdKtOyn8jqn7R2oP3bMSZEcaZoiVqVjYEs tnVwyZoSjGjIEzlTRY0DxLfNOjB1q/TwASNFlMOBtpmP1xFSUzBtJRzBhDoeym0C Ac47ycvxHCPqoIXQ/tMzu8zkBAtiVqLrro0EwnZgjBiyVFKlSvXf9naCSmyq8Nh0 JhLljjxyEYa2Iqsj7LB0j/QFSaYas5MJ5s2tZM63AcppcELvPiMg2TRNomm3/D7+ aEZLCK/Q1LJMPVJrFDfY7DbcZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFDiPj/J tN2wVUu9XuhvpNoKHqMeMB8GA1UdIwQYMBaAFN6KjacOFlAJ0UDZ9iRSTcTUedXo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTEzRS81NEQ2QTUwRTA2 QjUxMUVCOTM3MkQzMkJDNEY5QUUwMi8zb3FOcHc0V1VBblJRTm4ySkZKTnhOUjUx ZWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNvcU5wdzRXVUFuUlFObjJKRkpOeE5SNTFlZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTEzRS81NEQ2QTUwRTA2QjUxMUVCOTM3MkQzMkJDNEY5QUUwMi8zb3FOcHc0V1VB blJRTm4ySkZKTnhOUjUxZWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/R7tVFPO3WUT6qUAM4pDWv6+4qP+8jKsskjoB4+bkLVQykfnDcM0J QAi5JwgaSvsYx42qqh/OUMtNmW3m6mg2z4oRO+OSc5vNj0Zj42waHfhDy4oX0hPG GUzBuCrWLgTjylBjkS0s8ZxD4RC1+7gYUVMqq8lBru2v2H2cm2/YGDGGfd0t7XSQ HEzV3yg2V6W70RC8pbPCGJU0Mdf04Mu/CT4F7qKsB15NLHZCQq+TZ5HBM1+KGQ3Z FWXQZnOaf+bSm44NkoFtbN2ZfIhbV0OLRrok2zaj5XKDdaa63VUrV/kwbxOpfLjT pwWP6nXC1QMcphGAmck/oEbwJYvYDud9 -----END CERTIFICATE-----Generated at Mon Oct 20 10:33:23 2025 by rpki-client