$ rpki-client -vvf rpki.apnic.net/member_repository/A91273B6/5481AFC081AA11F0B4CDAD1CC4F9AE02/dRHLMT64Pxw5AqpjxDt6A2rMYxc.mft File: dRHLMT64Pxw5AqpjxDt6A2rMYxc.mft (raw, json) Hash identifier: MXYvusKqscPOYrCWBCssy7xDm0VtE8tZ4qsDFSae6yw= Subject key identifier: 68:8A:8F:B3:D7:A4:27:57:10:01:A7:7B:80:BA:E8:6F:E1:73:9C:1F Authority key identifier: 75:11:CB:31:3E:B8:3F:1C:39:02:AA:63:C4:3B:7A:03:6A:CC:63:17 Certificate issuer: /CN=A91273B6/serialNumber=7511CB313EB83F1C3902AA63C43B7A036ACC6317 Certificate serial: 1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dRHLMT64Pxw5AqpjxDt6A2rMYxc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91273B6/5481AFC081AA11F0B4CDAD1CC4F9AE02/dRHLMT64Pxw5AqpjxDt6A2rMYxc.mft Manifest number: 1D Signing time: Sun 19 Oct 2025 11:21:36 +0000 Manifest this update: Sun 19 Oct 2025 11:21:35 +0000 Manifest next update: Sun 26 Oct 2025 11:21:35 +0000 Files and hashes: 1: dRHLMT64Pxw5AqpjxDt6A2rMYxc.crl (hash: mlWKuu8DinpeW0Oz9dOOlXLZ/lVwCK5AwjIUzvefdxA=) 2: 5F9C3E0681AB11F09884FA0BC4F9AE02.roa (hash: F4Qio5WYvuiwdHGB0kchv0Q5AZIoWb0UXCVdpuPI1Cs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91273B6/5481AFC081AA11F0B4CDAD1CC4F9AE02/dRHLMT64Pxw5AqpjxDt6A2rMYxc.crl rsync://rpki.apnic.net/member_repository/A91273B6/5481AFC081AA11F0B4CDAD1CC4F9AE02/dRHLMT64Pxw5AqpjxDt6A2rMYxc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dRHLMT64Pxw5AqpjxDt6A2rMYxc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:21:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30 (0x1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91273B6, serialNumber=7511CB313EB83F1C3902AA63C43B7A036ACC6317 Validity Not Before: Oct 19 11:21:35 2025 GMT Not After : Oct 26 11:21:35 2025 GMT Subject: CN=68f4c9bf-4fde Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:9f:dc:61:57:3d:80:3e:4b:79:77:5a:de:87: 63:82:c8:9b:b4:cb:4e:54:7c:8f:1c:e6:2a:f0:ef: b8:6b:d0:5c:e4:33:2d:54:1b:cb:47:c0:b6:56:0a: 3a:ab:60:d4:ce:56:75:4f:5c:41:7d:0d:cb:26:5f: 73:44:13:c2:39:9b:6d:6d:77:44:3a:ab:39:a0:19: c2:c6:e5:4a:6c:8c:ee:80:78:c8:c7:9d:b8:97:79: 17:2d:a7:65:b6:54:ed:2b:45:a5:f9:80:ab:13:bd: 77:d5:a4:38:d5:82:0c:1f:48:77:5d:ee:1f:54:49: 29:14:b5:ec:2f:3a:40:4a:f6:fc:5b:ab:c8:4a:7b: 8e:a9:41:39:91:0b:36:5f:11:0e:b8:3a:ac:7f:fa: 37:df:0f:f9:a3:68:81:61:47:89:19:79:32:fa:dc: 87:db:ea:ae:d2:6f:de:fc:49:27:a3:c9:8a:2c:f9: c7:82:54:01:a2:ba:e9:37:fd:80:7c:4f:73:eb:01: e3:db:85:f6:6a:9a:94:32:67:23:5a:9f:62:5d:b5: ad:4c:6c:de:b9:44:bf:ed:3e:2d:1b:92:17:9e:a2: cb:d6:87:f7:e8:72:30:ae:b5:65:91:b0:e3:83:16: 8e:a5:3a:15:05:82:2b:6a:1e:7e:a3:2f:40:2e:17: ac:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:8A:8F:B3:D7:A4:27:57:10:01:A7:7B:80:BA:E8:6F:E1:73:9C:1F X509v3 Authority Key Identifier: keyid:75:11:CB:31:3E:B8:3F:1C:39:02:AA:63:C4:3B:7A:03:6A:CC:63:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91273B6/5481AFC081AA11F0B4CDAD1CC4F9AE02/dRHLMT64Pxw5AqpjxDt6A2rMYxc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dRHLMT64Pxw5AqpjxDt6A2rMYxc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91273B6/5481AFC081AA11F0B4CDAD1CC4F9AE02/dRHLMT64Pxw5AqpjxDt6A2rMYxc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:0e:3f:ef:28:be:3c:e0:96:88:a8:94:74:9e:e4:bc:b5:88: bc:bc:43:eb:e3:31:d0:7d:c8:48:b4:b8:e1:17:57:17:e3:db: 46:4d:42:e1:ef:6f:03:f3:b9:a0:d8:66:f3:c6:37:94:13:5f: 79:59:59:1b:31:1c:a7:aa:b4:72:47:a6:3a:7b:31:33:a1:ef: 43:3f:0d:63:fd:aa:4b:d4:b7:53:13:8d:7a:a4:2d:ec:78:cc: 94:50:87:f9:36:28:5a:b1:ff:1e:db:c2:8c:46:09:45:28:cb: db:c6:76:72:43:73:9f:38:93:85:04:aa:9f:eb:40:5c:02:84: db:47:aa:ac:95:9e:c1:64:a1:b7:77:73:4e:a1:eb:f3:9b:09: a7:0c:0b:16:aa:aa:e2:97:7f:c2:12:4d:20:13:c9:b9:ba:a6: ba:aa:ba:6b:93:e2:09:e6:2a:1a:1e:72:6c:6b:46:11:e2:39: 64:23:04:18:0a:fa:5d:e1:c3:50:6c:d6:2b:7c:f8:9c:d3:d1: 26:e5:a1:26:ba:ab:ad:b7:5f:d9:87:11:e2:34:6a:ac:38:05: 55:59:b6:a6:cf:ab:e0:2f:e2:87:0a:d0:a6:9a:d2:4f:a2:bc: fd:8a:eb:06:30:0a:a7:91:31:2d:f8:2e:a9:b2:51:16:7b:27: 4b:05:49:ea -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NzNCNjExMC8GA1UEBRMoNzUxMUNCMzEzRUI4M0YxQzM5MDJBQTYzQzQzQjdBMDM2 QUNDNjMxNzAeFw0yNTEwMTkxMTIxMzVaFw0yNTEwMjYxMTIxMzVaMBgxFjAUBgNV BAMTDTY4ZjRjOWJmLTRmZGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCnn9xhVz2APkt5d1reh2OCyJu0y05UfI8c5irw77hr0FzkMy1UG8tHwLZWCjqr YNTOVnVPXEF9DcsmX3NEE8I5m21td0Q6qzmgGcLG5UpsjO6AeMjHnbiXeRctp2W2 VO0rRaX5gKsTvXfVpDjVggwfSHdd7h9USSkUtewvOkBK9vxbq8hKe46pQTmRCzZf EQ64Oqx/+jffD/mjaIFhR4kZeTL63Ifb6q7Sb978SSejyYos+ceCVAGiuuk3/YB8 T3PrAePbhfZqmpQyZyNan2Jdta1MbN65RL/tPi0bkheeosvWh/focjCutWWRsOOD Fo6lOhUFgitqHn6jL0AuF6z1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUaIqPs9ek J1cQAad7gLrob+FznB8wHwYDVR0jBBgwFoAUdRHLMT64Pxw5AqpjxDt6A2rMYxcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI3M0I2LzU0ODFBRkMwODFB QTExRjBCNENEQUQxQ0M0RjlBRTAyL2RSSExNVDY0UHh3NUFxcGp4RHQ2QTJyTVl4 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZFJITE1UNjRQeHc1QXFwanhEdDZBMnJNWXhjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI3 M0I2LzU0ODFBRkMwODFBQTExRjBCNENEQUQxQ0M0RjlBRTAyL2RSSExNVDY0UHh3 NUFxcGp4RHQ2QTJyTVl4Yy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAYOP+8ovjzgloiolHSe5Ly1iLy8Q+vjMdB9yEi0uOEXVxfj20ZNQuHv bwPzuaDYZvPGN5QTX3lZWRsxHKeqtHJHpjp7MTOh70M/DWP9qkvUt1MTjXqkLex4 zJRQh/k2KFqx/x7bwoxGCUUoy9vGdnJDc584k4UEqp/rQFwChNtHqqyVnsFkobd3 c06h6/ObCacMCxaqquKXf8ISTSATybm6prqqumuT4gnmKhoecmxrRhHiOWQjBBgK +l3hw1Bs1it8+JzT0SbloSa6q623X9mHEeI0aqw4BVVZtqbPq+Av4ocK0Kaa0k+i vP2K6wYwCqeRMS34LqmyURZ7J0sFSeo= -----END CERTIFICATE-----Generated at Mon Oct 20 08:31:51 2025 by rpki-client