$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8282/061AAB52FBFE11EFB5520A12C4F9AE02/n3tC7xjTQv3Vap_cXz2AHi0sGrc.mft File: n3tC7xjTQv3Vap_cXz2AHi0sGrc.mft (raw, json) Hash identifier: qu+SqkrcV01TsOM2BgMu0KTJJknVHshiJJjDkr4lFSI= Subject key identifier: 87:B3:09:BE:2F:60:62:95:B3:92:0E:6D:A0:A5:D1:C8:63:38:B3:83 Authority key identifier: 9F:7B:42:EF:18:D3:42:FD:D5:6A:9F:DC:5F:3D:80:1E:2D:2C:1A:B7 Certificate issuer: /CN=A91F8282/serialNumber=9F7B42EF18D342FDD56A9FDC5F3D801E2D2C1AB7 Certificate serial: 76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n3tC7xjTQv3Vap_cXz2AHi0sGrc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8282/061AAB52FBFE11EFB5520A12C4F9AE02/n3tC7xjTQv3Vap_cXz2AHi0sGrc.mft Manifest number: 75 Signing time: Sun 19 Oct 2025 10:11:10 +0000 Manifest this update: Sun 19 Oct 2025 10:11:10 +0000 Manifest next update: Sun 26 Oct 2025 10:11:10 +0000 Files and hashes: 1: n3tC7xjTQv3Vap_cXz2AHi0sGrc.crl (hash: yy8cw9wLl3QEB7TKvh6TUzx/Quwn/z+Eiogd5sIk5HQ=) 2: 05EBB6CEFEF811EFB0C52572C4F9AE02.roa (hash: hHpuvEEfCl4OhjB2zfY/eTXHBtooIatBX5e91JuXgS8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8282/061AAB52FBFE11EFB5520A12C4F9AE02/n3tC7xjTQv3Vap_cXz2AHi0sGrc.crl rsync://rpki.apnic.net/member_repository/A91F8282/061AAB52FBFE11EFB5520A12C4F9AE02/n3tC7xjTQv3Vap_cXz2AHi0sGrc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n3tC7xjTQv3Vap_cXz2AHi0sGrc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:11:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 118 (0x76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8282, serialNumber=9F7B42EF18D342FDD56A9FDC5F3D801E2D2C1AB7 Validity Not Before: Oct 19 10:11:10 2025 GMT Not After : Oct 26 10:11:10 2025 GMT Subject: CN=68f4b93e-ca98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:bf:a7:b2:18:82:d9:2f:11:85:3d:15:67:7a: 6c:92:e5:26:48:ab:ec:28:f0:9b:50:31:90:8d:d2: 84:3e:a9:88:c4:f3:5e:84:32:6d:82:81:8a:f0:8f: 43:30:85:6e:f9:f7:cf:cd:ec:47:2b:41:bd:d1:63: c5:9a:1f:69:1d:c8:61:55:84:a2:30:8f:6e:55:a7: 02:fd:b2:02:04:f5:29:22:d8:01:d1:27:09:58:4a: 06:d5:d9:d4:b0:7d:33:8a:24:78:4a:07:06:43:e7: 9e:e0:e9:65:74:f2:e8:dd:9c:2a:2a:89:fe:66:a5: b6:9d:fc:0e:f3:79:e5:45:26:37:00:47:51:9b:2f: 2e:c3:52:70:d6:4b:65:91:e8:29:db:92:92:10:39: d8:5c:34:fe:d5:3d:c4:b5:31:6e:21:07:5f:bf:83: 1d:97:1c:f9:ae:d6:b5:99:f8:f1:e5:ac:7f:f9:83: 50:af:1c:82:f4:87:81:ca:3c:e6:1b:09:a6:31:36: c1:ae:10:b8:ac:e2:36:40:c6:6a:90:2e:1d:71:49: 7a:42:bb:e8:c1:eb:47:13:9c:b3:8d:49:92:0c:23: 96:10:30:b6:06:07:fb:ca:9b:9e:f9:ad:1c:94:4b: ad:dd:db:3f:ee:86:eb:1c:84:cb:1e:fe:d0:96:04: b7:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:B3:09:BE:2F:60:62:95:B3:92:0E:6D:A0:A5:D1:C8:63:38:B3:83 X509v3 Authority Key Identifier: keyid:9F:7B:42:EF:18:D3:42:FD:D5:6A:9F:DC:5F:3D:80:1E:2D:2C:1A:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8282/061AAB52FBFE11EFB5520A12C4F9AE02/n3tC7xjTQv3Vap_cXz2AHi0sGrc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n3tC7xjTQv3Vap_cXz2AHi0sGrc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8282/061AAB52FBFE11EFB5520A12C4F9AE02/n3tC7xjTQv3Vap_cXz2AHi0sGrc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:21:ab:0d:62:09:1a:70:13:38:42:44:29:c5:de:7a:72:e8: ac:30:1a:5c:d3:0e:c3:c0:02:8e:4e:42:f0:1e:21:fc:77:56: 4f:41:8c:a2:97:10:72:c6:49:2b:f8:88:02:3b:93:d8:6b:3d: 8f:78:70:4a:88:a5:de:4b:16:d3:4c:3d:f1:8c:7f:75:22:84: 2f:af:ee:d4:86:2a:35:65:7c:3e:d9:8c:b2:8f:d5:a7:7b:ae: 74:e9:81:80:4e:a1:1a:97:d5:4c:60:53:9c:33:cf:59:80:c5: 32:55:91:97:93:27:e6:85:e5:e4:c5:1a:26:86:5e:f8:2c:70: c1:16:29:da:8c:78:3f:da:95:d4:89:d9:11:a3:3f:14:2c:9b: 65:af:fc:ea:e9:c2:12:1c:73:87:14:58:84:86:25:27:03:74: b9:f6:ac:a0:f2:42:60:48:5e:2b:a5:8e:6b:db:87:6d:38:c4: 73:c6:cf:a6:0f:a2:42:5b:9b:8b:b1:95:97:dc:24:bd:85:90: a3:81:a1:14:0c:f5:f4:31:aa:ce:0f:60:d6:16:1a:02:19:af: 4f:f8:38:af:87:c7:3e:fa:71:d2:6c:1a:63:6e:8b:70:58:fa: 08:e4:3c:e2:b0:45:0f:80:c7:f8:e8:41:ea:f7:73:a1:d1:6a: a6:12:d4:12 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG ODI4MjExMC8GA1UEBRMoOUY3QjQyRUYxOEQzNDJGREQ1NkE5RkRDNUYzRDgwMUUy RDJDMUFCNzAeFw0yNTEwMTkxMDExMTBaFw0yNTEwMjYxMDExMTBaMBgxFjAUBgNV BAMTDTY4ZjRiOTNlLWNhOTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGv6eyGILZLxGFPRVnemyS5SZIq+wo8JtQMZCN0oQ+qYjE816EMm2CgYrwj0Mw hW7598/N7EcrQb3RY8WaH2kdyGFVhKIwj25VpwL9sgIE9Ski2AHRJwlYSgbV2dSw fTOKJHhKBwZD557g6WV08ujdnCoqif5mpbad/A7zeeVFJjcAR1GbLy7DUnDWS2WR 6CnbkpIQOdhcNP7VPcS1MW4hB1+/gx2XHPmu1rWZ+PHlrH/5g1CvHIL0h4HKPOYb CaYxNsGuELis4jZAxmqQLh1xSXpCu+jB60cTnLONSZIMI5YQMLYGB/vKm575rRyU S63d2z/uhuschMse/tCWBLeJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUh7MJvi9g YpWzkg5toKXRyGM4s4MwHwYDVR0jBBgwFoAUn3tC7xjTQv3Vap/cXz2AHi0sGrcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4MjgyLzA2MUFBQjUyRkJG RTExRUZCNTUyMEExMkM0RjlBRTAyL24zdEM3eGpUUXYzVmFwX2NYejJBSGkwc0dy Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbjN0Qzd4alRRdjNWYXBfY1h6MkFIaTBzR3JjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4 MjgyLzA2MUFBQjUyRkJGRTExRUZCNTUyMEExMkM0RjlBRTAyL24zdEM3eGpUUXYz VmFwX2NYejJBSGkwc0dyYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHohqw1iCRpwEzhCRCnF3npy6KwwGlzTDsPAAo5OQvAeIfx3Vk9BjKKX EHLGSSv4iAI7k9hrPY94cEqIpd5LFtNMPfGMf3UihC+v7tSGKjVlfD7ZjLKP1ad7 rnTpgYBOoRqX1UxgU5wzz1mAxTJVkZeTJ+aF5eTFGiaGXvgscMEWKdqMeD/aldSJ 2RGjPxQsm2Wv/OrpwhIcc4cUWISGJScDdLn2rKDyQmBIXiuljmvbh204xHPGz6YP okJbm4uxlZfcJL2FkKOBoRQM9fQxqs4PYNYWGgIZr0/4OK+Hxz76cdJsGmNui3BY +gjkPOKwRQ+Ax/joQer3c6HRaqYS1BI= -----END CERTIFICATE-----Generated at Mon Oct 20 07:58:38 2025 by rpki-client