$ rpki-client -vvf rpki.apnic.net/member_repository/A912B64D/2BBE4014467C11EE92D6463CC4F9AE02/DDegHLYzYjRPtzlnYP2U2cm5fHo.mft File: DDegHLYzYjRPtzlnYP2U2cm5fHo.mft (raw, json) Hash identifier: gk0yEAOsfqhYpNb/9L591w91QFy7oZLJm3kheBtCwJU= Subject key identifier: 09:06:63:59:FD:4C:96:BE:BA:E7:50:8E:9E:C8:51:A1:B3:29:87:B6 Authority key identifier: 0C:37:A0:1C:B6:33:62:34:4F:B7:39:67:60:FD:94:D9:C9:B9:7C:7A Certificate issuer: /CN=A912B64D/serialNumber=0C37A01CB63362344FB7396760FD94D9C9B97C7A Certificate serial: 0195 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DDegHLYzYjRPtzlnYP2U2cm5fHo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B64D/2BBE4014467C11EE92D6463CC4F9AE02/DDegHLYzYjRPtzlnYP2U2cm5fHo.mft Manifest number: 0192 Signing time: Sun 19 Oct 2025 06:01:38 +0000 Manifest this update: Sun 19 Oct 2025 06:01:38 +0000 Manifest next update: Sun 26 Oct 2025 06:01:38 +0000 Files and hashes: 1: DDegHLYzYjRPtzlnYP2U2cm5fHo.crl (hash: LkolsAI1jxpbIpHl3rFPG1giG+SlpbqPMLd3crp225s=) 2: 865B3F7C467C11EEBDE3D43CC4F9AE02.roa (hash: jXDiNUfmAph8KmmhKCwstWhLejYXnSu0uk3x3qOWIK4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B64D/2BBE4014467C11EE92D6463CC4F9AE02/DDegHLYzYjRPtzlnYP2U2cm5fHo.crl rsync://rpki.apnic.net/member_repository/A912B64D/2BBE4014467C11EE92D6463CC4F9AE02/DDegHLYzYjRPtzlnYP2U2cm5fHo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DDegHLYzYjRPtzlnYP2U2cm5fHo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:01:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 405 (0x195) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B64D, serialNumber=0C37A01CB63362344FB7396760FD94D9C9B97C7A Validity Not Before: Oct 19 06:01:38 2025 GMT Not After : Oct 26 06:01:38 2025 GMT Subject: CN=68f47ec2-dd51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:9a:ea:8d:45:50:6f:33:a2:2d:ff:56:b6:fe: 0b:6d:97:09:85:a3:90:e3:b2:21:ba:df:55:48:ed: 70:df:6c:56:1f:74:c2:c3:1a:93:62:86:a7:55:d8: 8b:2b:e7:f5:81:f9:29:4c:15:db:5a:27:62:81:c6: aa:3f:60:8d:e9:18:51:a7:95:8a:df:98:18:cf:59: 51:c8:79:d5:35:15:88:c2:a8:54:9f:7c:40:aa:df: fa:30:13:29:28:85:de:79:85:c7:65:32:0a:6c:67: c8:5f:83:ef:15:b0:82:6c:05:20:da:32:82:15:0f: cd:f1:2d:8f:f4:96:a6:ff:fd:88:98:8c:75:e4:86: 88:92:fd:95:b6:8a:01:db:31:c8:4a:4b:27:7e:5f: 62:0f:7c:47:e3:33:d0:8c:5f:9d:e8:6a:fc:67:42: c0:e9:53:3c:21:ad:40:e8:5f:99:67:03:81:aa:22: 7e:51:e1:94:e9:68:08:ba:b6:2b:c5:08:08:85:30: 6d:15:17:51:35:ec:45:71:dd:81:e2:7f:b5:98:f2: 11:50:15:ee:d5:1e:b9:c7:6a:26:56:d4:96:08:a8: 1c:8d:4e:eb:9c:23:af:0f:3b:77:cf:ad:3c:ef:44: 4d:07:ac:0f:76:d7:af:4d:b8:df:0c:88:ac:e6:ec: 42:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:06:63:59:FD:4C:96:BE:BA:E7:50:8E:9E:C8:51:A1:B3:29:87:B6 X509v3 Authority Key Identifier: keyid:0C:37:A0:1C:B6:33:62:34:4F:B7:39:67:60:FD:94:D9:C9:B9:7C:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B64D/2BBE4014467C11EE92D6463CC4F9AE02/DDegHLYzYjRPtzlnYP2U2cm5fHo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DDegHLYzYjRPtzlnYP2U2cm5fHo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B64D/2BBE4014467C11EE92D6463CC4F9AE02/DDegHLYzYjRPtzlnYP2U2cm5fHo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:d4:b7:b5:ab:d7:b0:be:2a:0f:c8:07:2e:e0:f9:c4:81:ff: ad:f5:02:f2:6c:64:9f:22:ec:a0:cf:64:13:1b:0e:40:94:e3: 59:fd:fe:fc:c6:f5:0f:ce:90:0e:57:f0:ac:77:92:8f:48:23: 7e:a2:7c:70:cd:8b:d9:97:4e:14:34:69:f2:72:a5:f4:64:71: 4d:e4:fb:87:e0:7b:f6:9b:44:90:07:fb:22:54:5e:9f:54:9f: 8f:e2:58:3b:fe:e7:a6:c5:4e:f1:4d:2f:00:c0:c8:d9:63:7a: 99:66:a4:f5:e2:26:a7:ea:e1:04:7d:98:ff:f9:c1:33:5b:0c: 87:70:9d:21:84:a9:3d:cd:d4:71:fc:07:af:98:4f:ed:eb:5f: 3f:29:1d:d8:47:29:0e:cc:ea:60:58:89:19:9f:70:5f:65:a7: 26:f2:a8:99:4a:b6:c2:72:b2:c8:ac:91:c6:e7:58:d4:9b:03: 81:3b:06:f6:bd:15:19:63:a0:47:36:17:29:82:6d:89:7a:17: a7:b0:32:8e:43:53:28:b4:b7:b3:63:51:b5:f5:13:92:cc:44: 63:ae:67:50:6d:9e:95:fc:9b:c9:a9:1e:94:80:68:e1:10:43: f5:0b:0c:f9:c5:61:1a:81:5d:8b:55:ef:31:84:4c:81:00:e3: e9:fd:ab:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkI2NEQxMTAvBgNVBAUTKDBDMzdBMDFDQjYzMzYyMzQ0RkI3Mzk2NzYwRkQ5NEQ5 QzlCOTdDN0EwHhcNMjUxMDE5MDYwMTM4WhcNMjUxMDI2MDYwMTM4WjAYMRYwFAYD VQQDEw02OGY0N2VjMi1kZDUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArJrqjUVQbzOiLf9Wtv4LbZcJhaOQ47Ihut9VSO1w32xWH3TCwxqTYoanVdiL K+f1gfkpTBXbWidigcaqP2CN6RhRp5WK35gYz1lRyHnVNRWIwqhUn3xAqt/6MBMp KIXeeYXHZTIKbGfIX4PvFbCCbAUg2jKCFQ/N8S2P9Jam//2ImIx15IaIkv2VtooB 2zHISksnfl9iD3xH4zPQjF+d6Gr8Z0LA6VM8Ia1A6F+ZZwOBqiJ+UeGU6WgIurYr xQgIhTBtFRdRNexFcd2B4n+1mPIRUBXu1R65x2omVtSWCKgcjU7rnCOvDzt3z608 70RNB6wPdtevTbjfDIis5uxCjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAkGY1n9 TJa+uudQjp7IUaGzKYe2MB8GA1UdIwQYMBaAFAw3oBy2M2I0T7c5Z2D9lNnJuXx6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjY0RC8yQkJFNDAxNDQ2 N0MxMUVFOTJENjQ2M0NDNEY5QUUwMi9ERGVnSExZellqUlB0emxuWVAyVTJjbTVm SG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0REZWdITFl6WWpSUHR6bG5ZUDJVMmNtNWZIby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QjY0RC8yQkJFNDAxNDQ2N0MxMUVFOTJENjQ2M0NDNEY5QUUwMi9ERGVnSExZellq UlB0emxuWVAyVTJjbTVmSG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/1Le1q9ewvioPyAcu4PnEgf+t9QLybGSfIuygz2QTGw5AlONZ/f78 xvUPzpAOV/Csd5KPSCN+onxwzYvZl04UNGnycqX0ZHFN5PuH4Hv2m0SQB/siVF6f VJ+P4lg7/uemxU7xTS8AwMjZY3qZZqT14ian6uEEfZj/+cEzWwyHcJ0hhKk9zdRx /AevmE/t618/KR3YRykOzOpgWIkZn3BfZacm8qiZSrbCcrLIrJHG51jUmwOBOwb2 vRUZY6BHNhcpgm2JehensDKOQ1MotLezY1G19ROSzERjrmdQbZ6V/JvJqR6UgGjh EEP1Cwz5xWEagV2LVe8xhEyBAOPp/asT -----END CERTIFICATE-----Generated at Sun Oct 19 23:28:59 2025 by rpki-client