$ rpki-client -vvf rpki.apnic.net/member_repository/A91F39A9/525486B8566211ECB8EC7331C4F9AE02/u3-5V71tGEoIkjFpTPg4nbaI_lM.mft File: u3-5V71tGEoIkjFpTPg4nbaI_lM.mft (raw, json) Hash identifier: reM/1iZwMZStpMB7qyo08wj9aGFD3xM9kRF3JuelOTQ= Subject key identifier: 12:FD:A4:76:4C:EC:F3:2F:4D:59:C6:0C:5E:3A:2C:7D:FA:C7:24:BC Authority key identifier: BB:7F:B9:57:BD:6D:18:4A:08:92:31:69:4C:F8:38:9D:B6:88:FE:53 Certificate issuer: /CN=A91F39A9/serialNumber=BB7FB957BD6D184A089231694CF8389DB688FE53 Certificate serial: 04A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u3-5V71tGEoIkjFpTPg4nbaI_lM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F39A9/525486B8566211ECB8EC7331C4F9AE02/u3-5V71tGEoIkjFpTPg4nbaI_lM.mft Manifest number: 049A Signing time: Sun 19 Oct 2025 01:50:39 +0000 Manifest this update: Sun 19 Oct 2025 01:50:39 +0000 Manifest next update: Sun 26 Oct 2025 01:50:39 +0000 Files and hashes: 1: u3-5V71tGEoIkjFpTPg4nbaI_lM.crl (hash: jdtNCUO3V4j6/93PtvkTmU8cy3vZUXDl7GJWoI+BJNA=) 2: 12702794577711ECB7FD0C6FC4F9AE02.roa (hash: 7OgpQvkBU6+tUiHR/xeuBjYzt4Evz4MreUzB4Ql4bWc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F39A9/525486B8566211ECB8EC7331C4F9AE02/u3-5V71tGEoIkjFpTPg4nbaI_lM.crl rsync://rpki.apnic.net/member_repository/A91F39A9/525486B8566211ECB8EC7331C4F9AE02/u3-5V71tGEoIkjFpTPg4nbaI_lM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u3-5V71tGEoIkjFpTPg4nbaI_lM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:50:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1184 (0x4a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F39A9, serialNumber=BB7FB957BD6D184A089231694CF8389DB688FE53 Validity Not Before: Oct 19 01:50:39 2025 GMT Not After : Oct 26 01:50:39 2025 GMT Subject: CN=68f443ef-91bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:04:a8:c7:45:07:a0:e6:2e:72:6e:58:34:05: 99:78:3f:fd:70:07:2f:1d:96:e7:ae:6d:2a:5b:26: c2:f6:f4:20:92:3f:f4:c7:00:48:5d:23:c5:b0:79: 57:e3:15:20:7b:8a:64:a1:6b:8f:cb:f0:34:87:1c: e8:cd:e0:12:46:fd:97:f1:9b:a5:de:c5:bf:7b:62: 76:16:8a:78:f8:a8:97:aa:32:be:e4:fe:15:37:dc: 59:48:77:6d:ac:6e:66:2a:ac:61:8d:2b:12:c2:b6: 83:de:13:9b:f5:15:92:21:4b:d0:2c:b6:ff:1b:90: e5:5c:e3:3c:03:32:04:e2:b6:46:8d:81:a1:c1:d7: d4:b5:a3:90:1e:af:f9:c0:b0:5b:c3:26:5c:21:f4: 49:53:8a:97:f9:18:93:8c:fd:6f:75:5a:da:e9:fd: 28:88:8c:ba:a4:98:d7:dc:a2:a9:51:18:51:60:a4: e0:ba:8d:08:01:e4:40:fe:26:53:dc:51:fd:ba:f5: 49:cf:a0:9a:ee:d5:02:91:23:26:50:52:5d:88:c9: 3d:73:5c:82:df:4e:fc:3f:fc:ef:3e:36:61:4e:b3: db:2a:4a:fe:9c:89:c9:8b:52:e1:e2:a9:48:b8:ec: e8:52:3a:e7:9a:e7:c2:dc:94:e1:45:67:b0:9e:e7: a3:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:FD:A4:76:4C:EC:F3:2F:4D:59:C6:0C:5E:3A:2C:7D:FA:C7:24:BC X509v3 Authority Key Identifier: keyid:BB:7F:B9:57:BD:6D:18:4A:08:92:31:69:4C:F8:38:9D:B6:88:FE:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F39A9/525486B8566211ECB8EC7331C4F9AE02/u3-5V71tGEoIkjFpTPg4nbaI_lM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u3-5V71tGEoIkjFpTPg4nbaI_lM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F39A9/525486B8566211ECB8EC7331C4F9AE02/u3-5V71tGEoIkjFpTPg4nbaI_lM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:b7:70:4e:4d:b4:20:d3:71:30:68:33:e6:f6:b2:ad:c9:0b: d8:5b:93:77:05:c1:6d:a0:c9:c3:fe:90:bc:bc:a9:0b:42:5f: 44:4e:ac:a7:0f:92:e7:e5:65:1a:56:b1:8d:e5:7e:20:c2:e6: a0:e6:cd:10:76:28:32:a4:3e:3a:8f:a5:7b:54:ca:b7:56:6a: 0c:8c:1a:40:59:d3:15:66:6f:dd:ff:9a:b5:55:bd:3e:0c:a6: 15:11:52:32:62:46:df:ca:97:e7:2a:2b:23:b6:af:5f:b1:87: fc:8d:91:43:df:54:60:5a:71:ae:9a:e5:4a:d2:2e:99:a2:91: 9e:03:5d:7f:4b:d9:c6:bd:11:7b:90:be:63:5c:88:af:80:9b: 24:ae:5a:bc:70:3a:0e:87:8c:d2:02:b6:3a:ee:cc:9d:87:2e: a6:82:a6:ec:dc:1b:f8:33:b8:f4:3a:bc:4b:06:4e:78:cb:43: a2:74:28:cd:a6:39:a2:dc:19:9b:89:3c:f2:e7:cb:6a:ab:65: 20:32:fa:05:79:59:d6:d6:80:ae:dc:2c:79:7c:74:65:55:8b: 94:45:9d:22:73:7e:66:ff:b2:9a:bd:ff:0a:b4:e9:d7:52:65: e7:32:93:ef:61:9a:5c:3e:43:f2:1c:51:00:5e:59:73:3a:79: 88:ac:57:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjM5QTkxMTAvBgNVBAUTKEJCN0ZCOTU3QkQ2RDE4NEEwODkyMzE2OTRDRjgzODlE QjY4OEZFNTMwHhcNMjUxMDE5MDE1MDM5WhcNMjUxMDI2MDE1MDM5WjAYMRYwFAYD VQQDEw02OGY0NDNlZi05MWJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsASox0UHoOYucm5YNAWZeD/9cAcvHZbnrm0qWybC9vQgkj/0xwBIXSPFsHlX 4xUge4pkoWuPy/A0hxzozeASRv2X8Zul3sW/e2J2Fop4+KiXqjK+5P4VN9xZSHdt rG5mKqxhjSsSwraD3hOb9RWSIUvQLLb/G5DlXOM8AzIE4rZGjYGhwdfUtaOQHq/5 wLBbwyZcIfRJU4qX+RiTjP1vdVra6f0oiIy6pJjX3KKpURhRYKTguo0IAeRA/iZT 3FH9uvVJz6Ca7tUCkSMmUFJdiMk9c1yC3078P/zvPjZhTrPbKkr+nInJi1Lh4qlI uOzoUjrnmufC3JThRWewnuejMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBL9pHZM 7PMvTVnGDF46LH36xyS8MB8GA1UdIwQYMBaAFLt/uVe9bRhKCJIxaUz4OJ22iP5T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzlBOS81MjU0ODZCODU2 NjIxMUVDQjhFQzczMzFDNEY5QUUwMi91My01VjcxdEdFb0lrakZwVFBnNG5iYUlf bE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UzLTVWNzF0R0VvSWtqRnBUUGc0bmJhSV9sTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MzlBOS81MjU0ODZCODU2NjIxMUVDQjhFQzczMzFDNEY5QUUwMi91My01VjcxdEdF b0lrakZwVFBnNG5iYUlfbE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLt3BOTbQg03EwaDPm9rKtyQvYW5N3BcFtoMnD/pC8vKkLQl9ETqyn D5Ln5WUaVrGN5X4gwuag5s0QdigypD46j6V7VMq3VmoMjBpAWdMVZm/d/5q1Vb0+ DKYVEVIyYkbfypfnKisjtq9fsYf8jZFD31RgWnGumuVK0i6ZopGeA11/S9nGvRF7 kL5jXIivgJskrlq8cDoOh4zSArY67sydhy6mgqbs3Bv4M7j0OrxLBk54y0OidCjN pjmi3BmbiTzy58tqq2UgMvoFeVnW1oCu3Cx5fHRlVYuURZ0ic35m/7Kavf8KtOnX UmXnMpPvYZpcPkPyHFEAXllzOnmIrFdq -----END CERTIFICATE-----Generated at Mon Oct 20 16:43:26 2025 by rpki-client