$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6DB3/53AA1BD4C60811EC9B31446DC4F9AE02/A3JG1RS4I0Dt4GKJvxvIxFnb_OU.mft File: A3JG1RS4I0Dt4GKJvxvIxFnb_OU.mft (raw, json) Hash identifier: BmUDRxYYgDgB7gXrkwdapY1RiaEk5csAXXk6lohucN4= Subject key identifier: F1:7A:2A:D8:5A:CA:9B:58:6E:76:7C:07:26:08:A3:8C:B4:5F:85:5D Authority key identifier: 03:72:46:D5:14:B8:23:40:ED:E0:62:89:BF:1B:C8:C4:59:DB:FC:E5 Certificate issuer: /CN=A91E6DB3/serialNumber=037246D514B82340EDE06289BF1BC8C459DBFCE5 Certificate serial: 0382 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3JG1RS4I0Dt4GKJvxvIxFnb_OU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6DB3/53AA1BD4C60811EC9B31446DC4F9AE02/A3JG1RS4I0Dt4GKJvxvIxFnb_OU.mft Manifest number: 037A Signing time: Sun 19 Oct 2025 02:54:09 +0000 Manifest this update: Sun 19 Oct 2025 02:54:08 +0000 Manifest next update: Sun 26 Oct 2025 02:54:08 +0000 Files and hashes: 1: A3JG1RS4I0Dt4GKJvxvIxFnb_OU.crl (hash: zt+b1vr5QIYO0rl6L0is3wqxlFASM2bBmjlwmjNjtVk=) 2: 67A55414D56911EFB3E08134C4F9AE02.roa (hash: rSusYrdxwzMZ/h0NAAbSd/+Fpawy/2pH16Z/11B0adc=) 3: 671C31AAC6C811ECA5A9AB33C4F9AE02.roa (hash: 0dwKgZ8jlIMiRytgvBci6vNzPpvAs9BdKSq60BEmluY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6DB3/53AA1BD4C60811EC9B31446DC4F9AE02/A3JG1RS4I0Dt4GKJvxvIxFnb_OU.crl rsync://rpki.apnic.net/member_repository/A91E6DB3/53AA1BD4C60811EC9B31446DC4F9AE02/A3JG1RS4I0Dt4GKJvxvIxFnb_OU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3JG1RS4I0Dt4GKJvxvIxFnb_OU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:54:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 898 (0x382) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6DB3, serialNumber=037246D514B82340EDE06289BF1BC8C459DBFCE5 Validity Not Before: Oct 19 02:54:08 2025 GMT Not After : Oct 26 02:54:08 2025 GMT Subject: CN=68f452d0-38ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:85:a0:0b:d3:67:b6:0c:18:33:f9:f5:4f:17: ec:3b:cf:57:ef:70:78:cf:b4:50:94:d0:8d:ae:2d: df:6d:e9:79:d0:53:b7:20:45:74:e0:89:aa:23:08: 1e:69:a7:e4:da:92:9c:5f:e6:87:d6:f6:52:86:1d: a6:83:64:38:49:2a:27:ff:48:5c:f8:16:d0:8a:ce: ac:8b:69:44:90:87:24:10:33:88:34:16:8f:70:6b: 4f:a5:33:76:33:92:7e:76:53:84:b2:30:8f:bf:a1: c8:85:3c:95:68:8e:9b:2a:02:f4:bf:a4:b3:1c:8a: 55:8e:54:fa:e9:d2:0b:d6:14:77:fd:49:4a:03:29: a5:a0:31:1a:b4:d3:72:f3:71:fb:54:dc:f4:d5:e9: 5e:74:8b:90:06:eb:15:8a:46:d5:51:51:f5:c7:4f: 15:5d:9c:38:5b:9f:bb:3b:20:59:6e:27:c3:b9:04: 72:1d:8e:b7:6e:3f:b8:a0:ec:31:be:e1:1a:56:21: e9:84:8e:b7:9f:e5:34:8b:51:46:a0:99:60:73:5c: 8e:5a:90:2c:20:7e:90:d0:d7:52:bc:93:a5:ab:3e: 5f:5f:ae:82:41:2b:1f:ca:b1:26:c0:01:07:30:e3: 4d:7c:99:47:a9:30:34:05:a7:98:70:f9:b0:c5:8b: 81:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:7A:2A:D8:5A:CA:9B:58:6E:76:7C:07:26:08:A3:8C:B4:5F:85:5D X509v3 Authority Key Identifier: keyid:03:72:46:D5:14:B8:23:40:ED:E0:62:89:BF:1B:C8:C4:59:DB:FC:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6DB3/53AA1BD4C60811EC9B31446DC4F9AE02/A3JG1RS4I0Dt4GKJvxvIxFnb_OU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3JG1RS4I0Dt4GKJvxvIxFnb_OU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6DB3/53AA1BD4C60811EC9B31446DC4F9AE02/A3JG1RS4I0Dt4GKJvxvIxFnb_OU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:29:a2:56:57:9b:77:77:1f:38:08:47:68:d9:0d:2c:9f:88: ac:0d:6f:83:26:ca:1a:d2:f3:17:5c:42:2e:cd:8f:59:5c:5c: 8b:12:67:18:14:7c:a7:a2:03:a7:fd:1b:18:23:82:cc:50:03: 42:f0:43:ef:e6:0f:67:71:75:0c:44:e9:ef:c0:b3:fb:6e:a2: 0f:c5:90:28:de:60:67:0c:02:fe:d7:8c:e7:51:7f:7e:5b:11: 85:f6:e9:0b:28:cb:14:3f:d6:16:ba:e2:5c:66:98:f8:74:f1: 7d:69:a8:fa:5c:31:cb:e3:cf:cc:f7:88:86:a6:fe:c5:9c:5e: 4b:fc:b6:53:5a:0b:57:52:b4:81:e8:e4:a9:3b:a0:96:23:20: 6f:a6:03:af:ad:5b:bf:8a:73:e5:a1:1c:e8:7f:72:fc:b3:72: 13:66:d2:01:a2:3c:24:f3:85:16:07:0a:8e:e6:2c:53:fc:32: f7:b6:6f:d1:30:f3:ee:af:cb:27:e4:19:97:cc:a0:cc:7a:84: 88:05:ac:cb:a0:d8:4a:8c:bd:98:fc:54:83:83:9c:d8:0d:21: 66:2a:56:63:b2:f4:17:7d:67:5a:43:02:66:88:8c:a5:81:66: 35:4c:39:a7:3c:ee:15:99:61:80:71:78:a3:06:06:7b:3b:ac: 10:14:b5:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA4IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZEQjMxMTAvBgNVBAUTKDAzNzI0NkQ1MTRCODIzNDBFREUwNjI4OUJGMUJDOEM0 NTlEQkZDRTUwHhcNMjUxMDE5MDI1NDA4WhcNMjUxMDI2MDI1NDA4WjAYMRYwFAYD VQQDEw02OGY0NTJkMC0zOGNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo4WgC9NntgwYM/n1TxfsO89X73B4z7RQlNCNri3fbel50FO3IEV04ImqIwge aafk2pKcX+aH1vZShh2mg2Q4SSon/0hc+BbQis6si2lEkIckEDOINBaPcGtPpTN2 M5J+dlOEsjCPv6HIhTyVaI6bKgL0v6SzHIpVjlT66dIL1hR3/UlKAymloDEatNNy 83H7VNz01eledIuQBusVikbVUVH1x08VXZw4W5+7OyBZbifDuQRyHY63bj+4oOwx vuEaViHphI63n+U0i1FGoJlgc1yOWpAsIH6Q0NdSvJOlqz5fX66CQSsfyrEmwAEH MONNfJlHqTA0BaeYcPmwxYuBlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPF6Ktha yptYbnZ8ByYIo4y0X4VdMB8GA1UdIwQYMBaAFANyRtUUuCNA7eBiib8byMRZ2/zl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkRCMy81M0FBMUJENEM2 MDgxMUVDOUIzMTQ0NkRDNEY5QUUwMi9BM0pHMVJTNEkwRHQ0R0tKdnh2SXhGbmJf T1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EzSkcxUlM0STBEdDRHS0p2eHZJeEZuYl9PVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkRCMy81M0FBMUJENEM2MDgxMUVDOUIzMTQ0NkRDNEY5QUUwMi9BM0pHMVJTNEkw RHQ0R0tKdnh2SXhGbmJfT1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0KaJWV5t3dx84CEdo2Q0sn4isDW+DJsoa0vMXXEIuzY9ZXFyLEmcY FHynogOn/RsYI4LMUANC8EPv5g9ncXUMROnvwLP7bqIPxZAo3mBnDAL+14znUX9+ WxGF9ukLKMsUP9YWuuJcZpj4dPF9aaj6XDHL48/M94iGpv7FnF5L/LZTWgtXUrSB 6OSpO6CWIyBvpgOvrVu/inPloRzof3L8s3ITZtIBojwk84UWBwqO5ixT/DL3tm/R MPPur8sn5BmXzKDMeoSIBazLoNhKjL2Y/FSDg5zYDSFmKlZjsvQXfWdaQwJmiIyl gWY1TDmnPO4VmWGAcXijBgZ7O6wQFLXY -----END CERTIFICATE-----Generated at Mon Oct 20 01:46:05 2025 by rpki-client