$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft File: gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft (raw, json) Hash identifier: k29jdseiU0IUgjOhfO7PVM/vIyEdcgQ0QrPuLo8EvTM= Subject key identifier: F0:52:67:8E:FE:76:6B:89:0B:FD:D4:1F:C6:78:3B:6D:65:D2:A8:BB Authority key identifier: 81:1D:E1:1E:7E:DC:1C:10:76:05:59:EE:B3:9B:FD:66:D6:9A:EA:46 Certificate issuer: /CN=A91E6BEF/serialNumber=811DE11E7EDC1C10760559EEB39BFD66D69AEA46 Certificate serial: 0DE1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gR3hHn7cHBB2BVnus5v9Ztaa6kY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft Manifest number: 0DD7 Signing time: Sat 18 Oct 2025 18:32:16 +0000 Manifest this update: Sat 18 Oct 2025 18:32:15 +0000 Manifest next update: Sat 25 Oct 2025 18:32:15 +0000 Files and hashes: 1: gR3hHn7cHBB2BVnus5v9Ztaa6kY.crl (hash: gLpc0IzPFInZ/XplfXL3BckRfGiDYH8Dju1OMeEI3JI=) 2: FEBD6C62C4B511E9B7D53A7FC4F9AE02.roa (hash: Pt5AOEwwZxq7lVNTYxsL3f5FIIGV0LQiKBFU4Ct/fFM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.crl rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gR3hHn7cHBB2BVnus5v9Ztaa6kY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:32:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3553 (0xde1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6BEF, serialNumber=811DE11E7EDC1C10760559EEB39BFD66D69AEA46 Validity Not Before: Oct 18 18:32:15 2025 GMT Not After : Oct 25 18:32:15 2025 GMT Subject: CN=68f3dd2f-e222 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:f5:26:b8:9f:e0:30:3b:a2:a0:91:59:13:87: 1a:e4:45:49:d8:49:53:76:22:6c:99:6e:ea:b2:69: 4f:eb:52:e8:ef:e6:a9:f7:f2:68:f2:6a:29:5e:35: 40:d8:c0:83:29:b3:66:07:87:96:bd:aa:6e:e0:cb: b2:66:0c:89:4a:22:d2:78:2c:7b:09:90:d3:6d:ee: 79:71:37:bd:0a:11:41:73:18:7c:e3:15:6b:54:14: f4:8d:e1:f5:4e:3a:3e:89:21:4d:15:28:e3:9a:85: d9:76:1a:9a:ab:ac:7d:83:ec:b4:66:8b:c6:85:53: 03:d7:fe:1d:c1:4f:36:a9:1c:b8:7a:c3:7f:06:f3: 78:bd:62:8a:da:67:60:ee:10:ba:8a:5b:0f:b7:9c: 68:75:8b:83:44:f6:a3:fb:56:db:d8:b8:98:8f:06: d5:ff:76:9f:ba:a9:09:0c:c2:94:52:40:a8:f2:db: 76:85:12:fc:2b:7d:a8:e2:fc:ad:fc:84:c9:f4:ea: 12:da:0d:93:16:75:e8:57:69:4a:95:2d:07:59:2c: 7e:21:2e:63:41:69:12:01:a2:da:57:24:9d:23:c2: 49:df:d3:2c:75:6a:fd:dc:d8:56:17:cf:3a:e6:84: ef:ac:5e:0c:4a:cf:4a:53:48:9f:10:bb:70:12:13: 2e:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:52:67:8E:FE:76:6B:89:0B:FD:D4:1F:C6:78:3B:6D:65:D2:A8:BB X509v3 Authority Key Identifier: keyid:81:1D:E1:1E:7E:DC:1C:10:76:05:59:EE:B3:9B:FD:66:D6:9A:EA:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gR3hHn7cHBB2BVnus5v9Ztaa6kY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:86:32:85:48:86:b0:c4:3c:9d:4c:d9:5d:9b:bb:0c:b9:c4: 25:3e:70:db:fa:ae:8e:9f:08:10:9a:a8:bd:d0:95:b0:a4:3c: 61:43:3a:0e:76:63:31:d6:54:23:7f:84:67:a9:4f:28:fc:00: 97:6d:6d:75:95:69:67:82:bd:e4:54:7f:86:61:52:10:01:39: db:9b:3a:f3:b9:ce:6c:4f:30:a6:b4:a7:24:c3:b6:d3:74:58: c4:6a:7a:ff:01:a2:39:c0:8e:10:f6:ef:50:d2:f9:09:1d:ca: d6:26:dd:02:15:c1:ba:13:a3:fb:b9:dd:26:10:e1:87:78:cb: 55:9b:eb:ec:c7:75:fb:c9:e8:87:09:79:f3:58:6e:75:22:5b: ed:47:08:86:a2:f5:7c:1c:de:b3:87:e3:85:f1:e0:6e:c7:9c: 04:c8:33:c5:dc:d1:8e:bf:e0:32:3d:46:62:62:db:e6:9b:01: 21:29:66:9a:c5:aa:03:38:36:15:4a:3e:bf:68:6c:8c:00:52: 8f:0b:04:8e:ab:9b:4e:df:ab:38:13:f9:18:2d:f6:4b:16:a5: e8:21:d8:33:3f:93:a2:e6:9d:e4:d7:06:1b:3b:c5:fa:e1:e3: ea:f8:c1:3e:76:23:f6:ac:4e:03:f7:79:8b:8e:fe:78:8e:2c: e1:b6:0c:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDeEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZCRUYxMTAvBgNVBAUTKDgxMURFMTFFN0VEQzFDMTA3NjA1NTlFRUIzOUJGRDY2 RDY5QUVBNDYwHhcNMjUxMDE4MTgzMjE1WhcNMjUxMDI1MTgzMjE1WjAYMRYwFAYD VQQDEw02OGYzZGQyZi1lMjIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmfUmuJ/gMDuioJFZE4ca5EVJ2ElTdiJsmW7qsmlP61Lo7+ap9/Jo8mopXjVA 2MCDKbNmB4eWvapu4MuyZgyJSiLSeCx7CZDTbe55cTe9ChFBcxh84xVrVBT0jeH1 Tjo+iSFNFSjjmoXZdhqaq6x9g+y0ZovGhVMD1/4dwU82qRy4esN/BvN4vWKK2mdg 7hC6ilsPt5xodYuDRPaj+1bb2LiYjwbV/3afuqkJDMKUUkCo8tt2hRL8K32o4vyt /ITJ9OoS2g2TFnXoV2lKlS0HWSx+IS5jQWkSAaLaVySdI8JJ39MsdWr93NhWF886 5oTvrF4MSs9KU0ifELtwEhMu8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPBSZ47+ dmuJC/3UH8Z4O21l0qi7MB8GA1UdIwQYMBaAFIEd4R5+3BwQdgVZ7rOb/WbWmupG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkJFRi80RUE4NjZDNEM0 NDIxMUU5OTQ3N0UyMUZDNEY5QUUwMi9nUjNoSG43Y0hCQjJCVm51czV2OVp0YWE2 a1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dSM2hIbjdjSEJCMkJWbnVzNXY5WnRhYTZrWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkJFRi80RUE4NjZDNEM0NDIxMUU5OTQ3N0UyMUZDNEY5QUUwMi9nUjNoSG43Y0hC QjJCVm51czV2OVp0YWE2a1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQhjKFSIawxDydTNldm7sMucQlPnDb+q6OnwgQmqi90JWwpDxhQzoO dmMx1lQjf4RnqU8o/ACXbW11lWlngr3kVH+GYVIQATnbmzrzuc5sTzCmtKckw7bT dFjEanr/AaI5wI4Q9u9Q0vkJHcrWJt0CFcG6E6P7ud0mEOGHeMtVm+vsx3X7yeiH CXnzWG51IlvtRwiGovV8HN6zh+OF8eBux5wEyDPF3NGOv+AyPUZiYtvmmwEhKWaa xaoDODYVSj6/aGyMAFKPCwSOq5tO36s4E/kYLfZLFqXoIdgzP5Oi5p3k1wYbO8X6 4ePq+ME+diP2rE4D93mLjv54jizhtgwG -----END CERTIFICATE-----Generated at Mon Oct 20 00:36:08 2025 by rpki-client