$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE19B/DAB85E28A37311F08F891C37C4F9AE02/3yKppXt9OorrEk1pDHkXBmtNtZ4.mft File: 3yKppXt9OorrEk1pDHkXBmtNtZ4.mft (raw, json) Hash identifier: nx5hlK1fVjpXzkan1T+vuRlZAO3WpA/iU96PQ30ecmk= Subject key identifier: 52:50:E3:18:2D:3D:1B:DF:4E:C5:E8:26:9E:C2:D3:4F:1C:52:AC:E9 Authority key identifier: DF:22:A9:A5:7B:7D:3A:8A:EB:12:4D:69:0C:79:17:06:6B:4D:B5:9E Certificate issuer: /CN=A91DE19B/serialNumber=DF22A9A57B7D3A8AEB124D690C7917066B4DB59E Certificate serial: 1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yKppXt9OorrEk1pDHkXBmtNtZ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE19B/DAB85E28A37311F08F891C37C4F9AE02/3yKppXt9OorrEk1pDHkXBmtNtZ4.mft Manifest number: 11 Signing time: Sun 19 Oct 2025 11:38:23 +0000 Manifest this update: Sun 19 Oct 2025 11:38:22 +0000 Manifest next update: Sun 26 Oct 2025 11:38:22 +0000 Files and hashes: 1: 3yKppXt9OorrEk1pDHkXBmtNtZ4.crl (hash: JpY6DjSEYc0D7d6j1lc4sB+ZT8F/AtlyFUwnnvGYV7o=) 2: DA06E7EAA37511F09017D760C4F9AE02.roa (hash: wpQC06DiQ+xzlEL7d1LfcmEUWMK/NDUMBZdyTADqLL4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE19B/DAB85E28A37311F08F891C37C4F9AE02/3yKppXt9OorrEk1pDHkXBmtNtZ4.crl rsync://rpki.apnic.net/member_repository/A91DE19B/DAB85E28A37311F08F891C37C4F9AE02/3yKppXt9OorrEk1pDHkXBmtNtZ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yKppXt9OorrEk1pDHkXBmtNtZ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:38:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26 (0x1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE19B, serialNumber=DF22A9A57B7D3A8AEB124D690C7917066B4DB59E Validity Not Before: Oct 19 11:38:22 2025 GMT Not After : Oct 26 11:38:22 2025 GMT Subject: CN=68f4cdaf-edd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:c8:57:7c:c1:e1:f1:d8:da:9a:22:18:e3:54: 58:2f:f2:76:f3:8c:6f:a3:8b:b6:ff:4c:53:d0:d0: 87:d0:ae:77:ef:3d:ff:83:66:7d:5b:03:b6:e5:f8: 40:54:24:71:d9:b1:57:db:5b:92:0b:67:85:9a:d0: 8b:50:b8:4a:1f:a8:2d:47:84:25:19:ae:ea:42:ee: e4:b4:19:5f:ec:88:ad:e1:d4:95:62:78:16:74:25: f4:10:57:d3:79:0a:cc:a1:60:9f:8b:fb:0a:10:22: e4:be:f7:c2:49:e2:aa:4e:ad:66:81:67:35:1e:8e: f8:21:c6:5c:96:a5:d3:03:49:1f:4d:d8:7c:d9:78: 18:f9:85:b6:e3:3f:59:d4:e3:5d:96:7e:39:ee:70: 63:97:51:25:f3:d6:10:d8:04:ce:7f:d7:64:f2:a2: c5:81:3e:a1:be:80:7f:d6:12:e5:ae:1e:9f:44:db: 5a:f3:75:6d:3f:d0:e7:39:fd:9f:54:23:13:5f:e9: f3:4a:6d:dd:42:25:4e:fe:5b:79:a8:f3:ae:cc:d6: 18:d0:41:f2:24:73:73:81:44:3e:00:27:91:a3:a8: d6:3d:83:2d:83:22:eb:c5:41:39:18:38:c7:92:6e: a7:92:93:94:e7:fc:d0:85:41:98:c7:55:5e:53:38: 1d:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:50:E3:18:2D:3D:1B:DF:4E:C5:E8:26:9E:C2:D3:4F:1C:52:AC:E9 X509v3 Authority Key Identifier: keyid:DF:22:A9:A5:7B:7D:3A:8A:EB:12:4D:69:0C:79:17:06:6B:4D:B5:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE19B/DAB85E28A37311F08F891C37C4F9AE02/3yKppXt9OorrEk1pDHkXBmtNtZ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yKppXt9OorrEk1pDHkXBmtNtZ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE19B/DAB85E28A37311F08F891C37C4F9AE02/3yKppXt9OorrEk1pDHkXBmtNtZ4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:e6:14:7c:0b:b2:ae:a3:51:49:bd:b0:e2:b4:8c:f7:0a:13: 2a:bf:1f:3e:5a:0d:f8:ed:9d:85:1a:57:22:9c:6f:55:23:66: 08:f3:82:f9:39:9b:57:ba:8d:46:5a:39:31:cf:b5:8f:bc:93: 33:c7:f6:84:fa:c4:ab:68:22:b5:aa:20:37:3e:14:d0:73:35: 72:68:ee:93:c9:20:35:ff:60:a9:95:90:c3:2f:f5:d9:4b:3e: 76:93:f9:23:4a:e5:14:37:a3:3b:30:f6:07:0d:bd:66:3c:bb: d6:f9:70:ea:94:b8:b4:62:d9:3c:63:ae:f2:83:a9:81:8f:44: 63:50:cb:f1:41:63:2b:51:66:fd:52:6e:97:6e:72:82:d5:b6: 93:7c:86:af:1b:68:70:75:57:6e:3a:e3:ef:1a:fe:ef:7e:f7: d7:95:ab:5c:cf:bf:4d:7e:87:c0:4f:ad:61:2f:8c:6f:56:dc: a6:99:d8:d6:92:ed:c5:75:86:d3:1e:e3:1b:00:0c:c2:30:81: c5:07:10:11:d9:46:7c:fa:8a:c8:54:6b:7a:d4:1a:13:bf:18: c1:4c:ab:de:05:f1:63:d3:3d:d4:7e:f7:bb:67:99:9d:5d:70: c7:20:8f:8b:2b:c3:c4:eb:22:3d:9d:c1:bf:75:d5:31:99:9a: 78:80:11:3d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE RTE5QjExMC8GA1UEBRMoREYyMkE5QTU3QjdEM0E4QUVCMTI0RDY5MEM3OTE3MDY2 QjREQjU5RTAeFw0yNTEwMTkxMTM4MjJaFw0yNTEwMjYxMTM4MjJaMBgxFjAUBgNV BAMTDTY4ZjRjZGFmLWVkZDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDxyFd8weHx2NqaIhjjVFgv8nbzjG+ji7b/TFPQ0IfQrnfvPf+DZn1bA7bl+EBU JHHZsVfbW5ILZ4Wa0ItQuEofqC1HhCUZrupC7uS0GV/siK3h1JVieBZ0JfQQV9N5 CsyhYJ+L+woQIuS+98JJ4qpOrWaBZzUejvghxlyWpdMDSR9N2HzZeBj5hbbjP1nU 412WfjnucGOXUSXz1hDYBM5/12TyosWBPqG+gH/WEuWuHp9E21rzdW0/0Oc5/Z9U IxNf6fNKbd1CJU7+W3mo867M1hjQQfIkc3OBRD4AJ5GjqNY9gy2DIuvFQTkYOMeS bqeSk5Tn/NCFQZjHVV5TOB0XAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUUlDjGC09 G99OxegmnsLTTxxSrOkwHwYDVR0jBBgwFoAU3yKppXt9OorrEk1pDHkXBmtNtZ4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURFMTlCL0RBQjg1RTI4QTM3 MzExRjA4Rjg5MUMzN0M0RjlBRTAyLzN5S3BwWHQ5T29yckVrMXBESGtYQm10TnRa NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM3lLcHBYdDlPb3JyRWsxcERIa1hCbXROdFo0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURF MTlCL0RBQjg1RTI4QTM3MzExRjA4Rjg5MUMzN0M0RjlBRTAyLzN5S3BwWHQ5T29y ckVrMXBESGtYQm10TnRaNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAATmFHwLsq6jUUm9sOK0jPcKEyq/Hz5aDfjtnYUaVyKcb1UjZgjzgvk5 m1e6jUZaOTHPtY+8kzPH9oT6xKtoIrWqIDc+FNBzNXJo7pPJIDX/YKmVkMMv9dlL PnaT+SNK5RQ3ozsw9gcNvWY8u9b5cOqUuLRi2TxjrvKDqYGPRGNQy/FBYytRZv1S bpducoLVtpN8hq8baHB1V2464+8a/u9+99eVq1zPv01+h8BPrWEvjG9W3KaZ2NaS 7cV1htMe4xsADMIwgcUHEBHZRnz6ishUa3rUGhO/GMFMq94F8WPTPdR+97tnmZ1d cMcgj4srw8TrIj2dwb911TGZmniAET0= -----END CERTIFICATE-----Generated at Mon Oct 20 08:28:13 2025 by rpki-client