$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft File: 3rTAuQf6yhxdN3a9SUb0uqjKazA.mft (raw, json) Hash identifier: Rs9WB32P1eT50W1vW9fneIRV2y7JXD8tnp12J1SRmGA= Subject key identifier: 03:43:E8:37:3F:32:15:8B:D1:7C:F7:C7:7D:BA:A1:81:7A:BB:0F:DF Authority key identifier: DE:B4:C0:B9:07:FA:CA:1C:5D:37:76:BD:49:46:F4:BA:A8:CA:6B:30 Certificate issuer: /CN=A91F3B5F/serialNumber=DEB4C0B907FACA1C5D3776BD4946F4BAA8CA6B30 Certificate serial: 68 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3rTAuQf6yhxdN3a9SUb0uqjKazA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft Manifest number: 67 Signing time: Sun 19 Oct 2025 10:23:52 +0000 Manifest this update: Sun 19 Oct 2025 10:23:51 +0000 Manifest next update: Sun 26 Oct 2025 10:23:51 +0000 Files and hashes: 1: 3rTAuQf6yhxdN3a9SUb0uqjKazA.crl (hash: l6Fa3Cw7oE1cCGQEBh1awUj9NwowsNDKtpO+avbR+rc=) 2: 0B65C980136D11F09F542C81C4F9AE02.roa (hash: VBqh2E7rkd2+euZfBVuvn8Wuy6ZridPl7cQmEbFqT/k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.crl rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3rTAuQf6yhxdN3a9SUb0uqjKazA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:23:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 104 (0x68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3B5F, serialNumber=DEB4C0B907FACA1C5D3776BD4946F4BAA8CA6B30 Validity Not Before: Oct 19 10:23:51 2025 GMT Not After : Oct 26 10:23:51 2025 GMT Subject: CN=68f4bc38-80fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:7a:9e:f8:4c:70:61:00:0a:76:4b:88:ee:51: 70:db:8a:50:6b:62:1b:ca:49:c1:0b:d1:59:8a:2b: fa:e7:d6:ce:64:cc:75:aa:46:27:36:70:b5:d5:89: 51:b6:bd:b1:3f:99:4e:b8:60:ba:57:20:15:e3:f0: 58:81:7e:78:a4:0f:2e:81:7e:ae:ad:a5:61:74:1d: a3:27:3a:8c:d5:ab:ac:ec:78:0b:78:cc:d9:d6:b7: d7:a9:8a:e2:af:99:83:35:47:91:ac:c9:b1:2b:23: fe:c1:99:5a:cf:96:b4:fc:bd:26:5f:bb:6b:be:2f: 73:9e:1a:69:a2:98:70:dd:ac:75:47:04:40:8f:ba: 7a:16:42:61:56:b4:da:d2:94:c9:b5:1a:50:6f:1d: f6:98:e0:85:56:26:d1:18:9b:d5:5b:e6:75:3b:04: 15:c8:8d:5c:00:98:51:db:c3:49:17:18:b4:18:bb: c8:ec:66:2e:9b:de:46:1f:77:8f:3f:bd:9d:dc:63: 1f:93:dc:42:e1:2d:b4:5b:a8:67:2e:ee:76:21:ae: ac:51:15:42:b9:4e:7b:d1:d6:bd:a8:95:b4:da:f0: 5e:49:ef:4d:be:af:35:0e:eb:6c:fe:5a:59:00:82: c0:e0:bd:3b:d8:95:c3:e0:f1:69:ab:47:95:75:4f: 1e:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:43:E8:37:3F:32:15:8B:D1:7C:F7:C7:7D:BA:A1:81:7A:BB:0F:DF X509v3 Authority Key Identifier: keyid:DE:B4:C0:B9:07:FA:CA:1C:5D:37:76:BD:49:46:F4:BA:A8:CA:6B:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3rTAuQf6yhxdN3a9SUb0uqjKazA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:84:63:f7:e7:15:a0:f1:2a:df:7e:74:5b:86:77:b8:a7:ef: 3c:29:1a:d7:20:ae:c0:ad:82:e7:a4:54:d6:ff:c6:ce:b5:c4: d8:f8:d8:b0:15:4e:d4:f1:d3:ef:eb:48:1c:46:c5:38:2a:8a: 9d:2d:03:2a:40:a2:65:f3:61:50:fb:48:44:b2:a6:17:d7:b8: 6b:8f:6f:37:65:00:9a:1f:e1:b6:bd:5b:ff:ff:60:7d:89:db: 73:48:32:f4:a2:ab:17:ed:03:70:5c:52:b8:41:d1:6c:d8:66: f8:ee:fa:10:f2:2f:9c:fc:75:4f:d6:28:a4:75:30:ec:af:99: 9c:70:74:25:41:80:e1:2d:b9:58:cd:a4:9f:42:3c:8f:be:1f: 03:d0:bf:91:ba:e3:75:b9:af:8f:3d:33:19:f9:e4:69:d1:9d: dd:aa:6c:e4:2c:e1:5c:13:61:c1:2d:bc:5a:05:ab:24:de:a8: f4:3f:2e:b0:15:77:06:3f:f7:35:02:7c:c9:b0:0c:28:42:0d: a5:45:ce:f8:8d:d4:80:83:f7:5b:ba:0a:f3:d1:f8:f1:39:54: b0:78:5b:77:5d:b7:f6:87:9e:59:e5:06:d8:1d:fd:14:39:23: 83:60:64:39:9e:ef:7e:30:ea:79:b8:d8:0a:49:21:3c:86:c9: 47:82:ce:7c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBaDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG M0I1RjExMC8GA1UEBRMoREVCNEMwQjkwN0ZBQ0ExQzVEMzc3NkJENDk0NkY0QkFB OENBNkIzMDAeFw0yNTEwMTkxMDIzNTFaFw0yNTEwMjYxMDIzNTFaMBgxFjAUBgNV BAMTDTY4ZjRiYzM4LTgwZmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCpep74THBhAAp2S4juUXDbilBrYhvKScEL0VmKK/rn1s5kzHWqRic2cLXViVG2 vbE/mU64YLpXIBXj8FiBfnikDy6Bfq6tpWF0HaMnOozVq6zseAt4zNnWt9epiuKv mYM1R5GsybErI/7BmVrPlrT8vSZfu2u+L3OeGmmimHDdrHVHBECPunoWQmFWtNrS lMm1GlBvHfaY4IVWJtEYm9Vb5nU7BBXIjVwAmFHbw0kXGLQYu8jsZi6b3kYfd48/ vZ3cYx+T3ELhLbRbqGcu7nYhrqxRFUK5TnvR1r2olbTa8F5J702+rzUO62z+WlkA gsDgvTvYlcPg8WmrR5V1Tx7RAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUA0PoNz8y FYvRfPfHfbqhgXq7D98wHwYDVR0jBBgwFoAU3rTAuQf6yhxdN3a9SUb0uqjKazAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYzQjVGL0IxNzBDOTEyMTM2 NjExRjA4MkUzQzUwREM0RjlBRTAyLzNyVEF1UWY2eWh4ZE4zYTlTVWIwdXFqS2F6 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvM3JUQXVRZjZ5aHhkTjNhOVNVYjB1cWpLYXpBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYz QjVGL0IxNzBDOTEyMTM2NjExRjA4MkUzQzUwREM0RjlBRTAyLzNyVEF1UWY2eWh4 ZE4zYTlTVWIwdXFqS2F6QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABCEY/fnFaDxKt9+dFuGd7in7zwpGtcgrsCtguekVNb/xs61xNj42LAV TtTx0+/rSBxGxTgqip0tAypAomXzYVD7SESyphfXuGuPbzdlAJof4ba9W///YH2J 23NIMvSiqxftA3BcUrhB0WzYZvju+hDyL5z8dU/WKKR1MOyvmZxwdCVBgOEtuVjN pJ9CPI++HwPQv5G643W5r489Mxn55GnRnd2qbOQs4VwTYcEtvFoFqyTeqPQ/LrAV dwY/9zUCfMmwDChCDaVFzviN1ICD91u6CvPR+PE5VLB4W3ddt/aHnlnlBtgd/RQ5 I4NgZDme734w6nm42ApJITyGyUeCznw= -----END CERTIFICATE-----Generated at Tue Oct 21 00:29:17 2025 by rpki-client