$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft File: 3af4p0oKdM_262MEKLbJ1w1XvXY.mft (raw, json) Hash identifier: Rkvz0/APKuy9OdQPp2cF4HuKv8dge17UiNmsZegq7i8= Subject key identifier: DA:EF:A6:10:F5:03:CA:4D:4A:1F:77:49:56:75:28:61:36:C9:54:D8 Authority key identifier: DD:A7:F8:A7:4A:0A:74:CF:F6:EB:63:04:28:B6:C9:D7:0D:57:BD:76 Certificate issuer: /CN=A91E7BC4/serialNumber=DDA7F8A74A0A74CFF6EB630428B6C9D70D57BD76 Certificate serial: 0DF0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3af4p0oKdM_262MEKLbJ1w1XvXY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft Manifest number: 0DB6 Signing time: Sat 18 Oct 2025 18:37:37 +0000 Manifest this update: Sat 18 Oct 2025 18:37:36 +0000 Manifest next update: Sat 25 Oct 2025 18:37:36 +0000 Files and hashes: 1: 3af4p0oKdM_262MEKLbJ1w1XvXY.crl (hash: kWU8tsso/NJqUfgp5TVvVUdkdZYeIzqQ/LuWnf+VRls=) 2: CE83F0E6F0E411EAA47C3968C4F9AE02.roa (hash: ZQBdoWyO873LcT1vKoBchR3Mc6PGkjTHNlXwZK5KBUA=) 3: E69AF38AB11C11EAACC28D2EC4F9AE02.roa (hash: vmjmVmXjdkD0vxVvLQigcrFyWXDcETievw8r2QIVv8s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.crl rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3af4p0oKdM_262MEKLbJ1w1XvXY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:37:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3568 (0xdf0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7BC4, serialNumber=DDA7F8A74A0A74CFF6EB630428B6C9D70D57BD76 Validity Not Before: Oct 18 18:37:36 2025 GMT Not After : Oct 25 18:37:36 2025 GMT Subject: CN=68f3de71-ae75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:99:7c:70:ea:0b:78:cf:39:77:a7:9f:71:6f: 81:83:d7:a6:0e:e5:6c:cb:7a:18:63:d4:ec:b2:13: 34:d9:c3:76:c6:02:aa:f5:d6:0f:ec:db:fc:e3:eb: 56:cd:eb:e2:dd:2d:1a:62:3e:4b:ce:6a:50:45:ce: 3a:00:ff:d8:e3:1b:38:b2:d7:20:ce:f3:b7:bc:d8: b6:a2:56:6f:45:10:5e:c1:0e:59:fd:1c:fc:b9:52: 15:b1:c1:42:d0:85:fd:9d:5f:e2:f5:65:d8:67:06: 14:a1:a1:2b:dc:69:70:e6:2b:72:6e:8b:0f:da:97: aa:25:63:df:ec:19:08:c1:a1:dd:38:e5:3a:90:00: b6:c8:97:b8:0a:5b:07:92:76:2d:40:aa:1a:23:9d: 15:7f:ba:61:66:bc:7b:4f:f9:3c:4d:c8:95:98:7a: c7:59:62:e1:1d:16:82:34:ba:bd:29:13:38:26:4e: e8:4d:dd:cc:4e:60:d0:1c:63:52:2e:a5:2d:56:8c: 6a:2a:a6:e2:db:dd:d0:e3:1e:cd:b7:88:28:d7:6e: c3:a4:1f:67:1f:df:aa:99:06:a8:b6:8b:f0:97:42: 16:75:95:ac:0d:0c:84:70:4d:ce:24:e0:9f:40:18: 24:1a:93:43:68:41:cf:32:e9:8b:a9:19:a5:32:fc: 10:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:EF:A6:10:F5:03:CA:4D:4A:1F:77:49:56:75:28:61:36:C9:54:D8 X509v3 Authority Key Identifier: keyid:DD:A7:F8:A7:4A:0A:74:CF:F6:EB:63:04:28:B6:C9:D7:0D:57:BD:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3af4p0oKdM_262MEKLbJ1w1XvXY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:18:1a:6a:30:e9:21:08:6a:24:f0:b6:5c:84:bc:5c:84:dc: f3:d2:5c:bc:ad:4f:60:20:da:aa:e9:e8:06:d7:77:5e:06:c5: 89:2c:1b:d2:3d:34:4f:1d:76:47:94:84:6d:f4:2c:ca:5c:21: 8d:cb:f6:3d:95:d1:5e:ea:77:9b:fc:80:6b:b5:59:12:9f:12: 0a:c3:1f:7a:4a:dd:c8:07:f1:01:a8:c0:c1:f5:7d:bf:8b:bc: 09:8e:f4:11:19:f9:ae:2d:96:9a:89:e4:83:71:81:e8:0a:19: 75:f0:df:60:ac:c2:ed:e7:b8:a0:80:14:e1:a4:e8:b5:7d:be: 6b:90:11:34:dc:55:47:99:e2:ec:0c:fd:aa:54:77:a8:0b:e1: 00:f5:60:0e:b6:7a:2b:13:80:8b:4c:b4:06:ef:f2:c8:24:67: 1f:7b:5e:cf:63:ed:b5:3f:2b:cf:a9:54:b0:ec:0b:ad:b1:08: 5c:cc:b1:9c:f9:56:33:41:d5:d8:82:47:66:f9:1d:c8:14:f0: 77:67:f9:21:3e:a5:79:41:c9:d7:4b:1e:8e:c5:c1:c9:3e:ce: 1c:42:65:f8:33:f0:f8:37:bb:bb:6d:0e:ec:74:64:15:fd:2a: a2:f9:74:46:4f:91:44:e6:99:3b:3e:e1:a7:08:ad:09:55:9a: c3:a5:85:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDfAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdCQzQxMTAvBgNVBAUTKEREQTdGOEE3NEEwQTc0Q0ZGNkVCNjMwNDI4QjZDOUQ3 MEQ1N0JENzYwHhcNMjUxMDE4MTgzNzM2WhcNMjUxMDI1MTgzNzM2WjAYMRYwFAYD VQQDEw02OGYzZGU3MS1hZTc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7Zl8cOoLeM85d6efcW+Bg9emDuVsy3oYY9TsshM02cN2xgKq9dYP7Nv84+tW zevi3S0aYj5LzmpQRc46AP/Y4xs4stcgzvO3vNi2olZvRRBewQ5Z/Rz8uVIVscFC 0IX9nV/i9WXYZwYUoaEr3Glw5itybosP2peqJWPf7BkIwaHdOOU6kAC2yJe4ClsH knYtQKoaI50Vf7phZrx7T/k8TciVmHrHWWLhHRaCNLq9KRM4Jk7oTd3MTmDQHGNS LqUtVoxqKqbi293Q4x7Nt4go127DpB9nH9+qmQaotovwl0IWdZWsDQyEcE3OJOCf QBgkGpNDaEHPMumLqRmlMvwQfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNrvphD1 A8pNSh93SVZ1KGE2yVTYMB8GA1UdIwQYMBaAFN2n+KdKCnTP9utjBCi2ydcNV712 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0JDNC8yRDFBNTk1QUQ1 MEQxMUU5QkFENkMyMjZDNEY5QUUwMi8zYWY0cDBvS2RNXzI2Mk1FS0xiSjF3MVh2 WFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNhZjRwMG9LZE1fMjYyTUVLTGJKMXcxWHZYWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0JDNC8yRDFBNTk1QUQ1MEQxMUU5QkFENkMyMjZDNEY5QUUwMi8zYWY0cDBvS2RN XzI2Mk1FS0xiSjF3MVh2WFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnGBpqMOkhCGok8LZchLxchNzz0ly8rU9gINqq6egG13deBsWJLBvS PTRPHXZHlIRt9CzKXCGNy/Y9ldFe6neb/IBrtVkSnxIKwx96St3IB/EBqMDB9X2/ i7wJjvQRGfmuLZaaieSDcYHoChl18N9grMLt57iggBThpOi1fb5rkBE03FVHmeLs DP2qVHeoC+EA9WAOtnorE4CLTLQG7/LIJGcfe17PY+21PyvPqVSw7AutsQhczLGc +VYzQdXYgkdm+R3IFPB3Z/khPqV5QcnXSx6OxcHJPs4cQmX4M/D4N7u7bQ7sdGQV /Sqi+XRGT5FE5pk7PuGnCK0JVZrDpYWx -----END CERTIFICATE-----Generated at Mon Oct 20 09:36:55 2025 by rpki-client