$ rpki-client -vvf rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft File: dd3NDNRiWKwZGsOQoskl2MA1qFc.mft (raw, json) Hash identifier: yKGDvBPl1Hgg0/zKvCPBERUFbNO00ON585putoQn/Po= Subject key identifier: 8B:36:7E:DD:D7:BD:69:CA:0E:3C:C9:4D:32:18:47:9D:92:46:25:AA Authority key identifier: 75:DD:CD:0C:D4:62:58:AC:19:1A:C3:90:A2:C9:25:D8:C0:35:A8:57 Certificate issuer: /CN=A917E04F/serialNumber=75DDCD0CD46258AC191AC390A2C925D8C035A857 Certificate serial: 0EC4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dd3NDNRiWKwZGsOQoskl2MA1qFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft Manifest number: 0EBC Signing time: Sat 18 Oct 2025 18:16:10 +0000 Manifest this update: Sat 18 Oct 2025 18:16:09 +0000 Manifest next update: Sat 25 Oct 2025 18:16:09 +0000 Files and hashes: 1: dd3NDNRiWKwZGsOQoskl2MA1qFc.crl (hash: vuRRjqR8in/RFfS+1kBHVBiZihvtn3zVguUYT7eUqxQ=) 2: 9C9389D4970311E9B7D3DE5AC4F9AE02.roa (hash: 0msFIFHq8Bi6Dy0orrBJDRYbRJioucs5FAZf2jEryJs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.crl rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dd3NDNRiWKwZGsOQoskl2MA1qFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:16:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3780 (0xec4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E04F, serialNumber=75DDCD0CD46258AC191AC390A2C925D8C035A857 Validity Not Before: Oct 18 18:16:09 2025 GMT Not After : Oct 25 18:16:09 2025 GMT Subject: CN=68f3d969-5eae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:20:42:04:60:9a:f7:07:e0:a7:0f:98:bb:86: 62:b8:7f:0e:2c:da:f7:15:f6:14:69:40:92:3f:67: 66:38:3d:a1:b5:32:dc:11:ac:28:f3:d9:9e:53:b8: 71:54:9d:5f:43:60:51:09:9a:60:61:3a:0b:c4:ad: 06:3e:b2:bd:0c:df:fe:f1:90:e9:a8:07:84:58:ee: 30:91:c4:bc:b1:5a:fb:76:df:e2:26:46:c2:7a:e0: 03:4a:92:75:96:c1:48:99:20:e4:d0:64:2c:68:fb: bb:7b:20:60:b3:39:29:f9:24:7a:fc:9e:45:57:c7: 39:7f:cc:d6:90:56:7e:f3:c0:ad:43:e9:1e:75:6c: 6a:01:38:fa:0d:e6:70:1e:8f:47:92:17:a0:80:cf: 32:83:0c:d6:b7:36:09:27:e5:9c:df:58:00:20:75: a0:02:66:d7:79:04:9f:a3:b9:b4:8c:7c:62:5d:7a: a1:ec:d5:1d:f0:d9:4e:b4:7e:96:08:15:7b:e0:ec: e9:b2:f2:16:76:37:11:17:49:36:30:ba:fa:a2:e5: dc:48:04:9c:ec:3d:9f:d1:89:e5:bb:a6:ca:a4:aa: 93:6d:e4:20:f5:87:99:e7:3d:e0:46:dd:4a:19:65: be:9a:23:64:14:da:b7:67:21:3c:16:be:ac:e2:2b: 2d:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:36:7E:DD:D7:BD:69:CA:0E:3C:C9:4D:32:18:47:9D:92:46:25:AA X509v3 Authority Key Identifier: keyid:75:DD:CD:0C:D4:62:58:AC:19:1A:C3:90:A2:C9:25:D8:C0:35:A8:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dd3NDNRiWKwZGsOQoskl2MA1qFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:43:59:5d:cf:29:5c:42:4f:7b:2a:98:8f:47:33:ed:2b:ff: d8:aa:dc:28:64:29:d4:5f:76:91:47:8e:2b:01:6e:3e:b6:e8: 26:78:71:4c:fb:b2:81:e2:5f:04:ee:19:df:ff:65:3f:95:9a: c7:96:52:f2:75:b5:69:60:f0:45:bd:7f:eb:ae:e1:da:41:50: ac:d3:73:bb:b1:1a:ec:2b:41:4e:e1:61:dd:8f:22:47:8f:32: f5:9e:d6:8c:53:dc:c6:66:ec:df:e9:49:d4:eb:4a:56:3a:f4: c0:e6:40:6f:84:f1:8e:10:03:fa:cc:a9:17:17:c2:ce:31:78: 1d:43:7a:7c:f1:60:fa:f4:f1:04:0c:de:86:53:d2:32:da:e6: 10:93:6e:79:02:35:1c:d6:71:6f:37:b2:5a:aa:50:ab:17:50: 49:47:95:8d:fe:f6:da:66:15:b0:e7:15:37:d1:06:b9:dd:7d: ed:de:f4:95:4e:f9:e6:8c:3c:30:cc:c6:bc:6b:6a:fe:34:28: 7b:e1:df:a0:1c:03:b0:19:24:95:08:ca:e6:23:f6:d0:8b:89: 4a:0f:1f:8c:ef:16:ba:2b:68:46:cf:cc:9b:31:b9:d1:46:40: 9a:6a:6b:f9:85:b9:4c:9e:bd:82:c4:99:79:a6:29:78:a1:65: 2a:2f:c0:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDsQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwNEYxMTAvBgNVBAUTKDc1RERDRDBDRDQ2MjU4QUMxOTFBQzM5MEEyQzkyNUQ4 QzAzNUE4NTcwHhcNMjUxMDE4MTgxNjA5WhcNMjUxMDI1MTgxNjA5WjAYMRYwFAYD VQQDEw02OGYzZDk2OS01ZWFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxCBCBGCa9wfgpw+Yu4ZiuH8OLNr3FfYUaUCSP2dmOD2htTLcEawo89meU7hx VJ1fQ2BRCZpgYToLxK0GPrK9DN/+8ZDpqAeEWO4wkcS8sVr7dt/iJkbCeuADSpJ1 lsFImSDk0GQsaPu7eyBgszkp+SR6/J5FV8c5f8zWkFZ+88CtQ+kedWxqATj6DeZw Ho9HkheggM8ygwzWtzYJJ+Wc31gAIHWgAmbXeQSfo7m0jHxiXXqh7NUd8NlOtH6W CBV74OzpsvIWdjcRF0k2MLr6ouXcSASc7D2f0Ynlu6bKpKqTbeQg9YeZ5z3gRt1K GWW+miNkFNq3ZyE8Fr6s4ist3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIs2ft3X vWnKDjzJTTIYR52SRiWqMB8GA1UdIwQYMBaAFHXdzQzUYlisGRrDkKLJJdjANahX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTA0Ri80MTg1MzdGNDk3 MDMxMUU5QjRCN0IyNUFDNEY5QUUwMi9kZDNORE5SaVdLd1pHc09Rb3NrbDJNQTFx RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RkM05ETlJpV0t3WkdzT1Fvc2tsMk1BMXFGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTA0Ri80MTg1MzdGNDk3MDMxMUU5QjRCN0IyNUFDNEY5QUUwMi9kZDNORE5SaVdL d1pHc09Rb3NrbDJNQTFxRmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCyQ1ldzylcQk97KpiPRzPtK//YqtwoZCnUX3aRR44rAW4+tugmeHFM +7KB4l8E7hnf/2U/lZrHllLydbVpYPBFvX/rruHaQVCs03O7sRrsK0FO4WHdjyJH jzL1ntaMU9zGZuzf6UnU60pWOvTA5kBvhPGOEAP6zKkXF8LOMXgdQ3p88WD69PEE DN6GU9Iy2uYQk255AjUc1nFvN7JaqlCrF1BJR5WN/vbaZhWw5xU30Qa53X3t3vSV TvnmjDwwzMa8a2r+NCh74d+gHAOwGSSVCMrmI/bQi4lKDx+M7xa6K2hGz8ybMbnR RkCaamv5hblMnr2CxJl5pil4oWUqL8DC -----END CERTIFICATE-----Generated at Mon Oct 20 04:49:40 2025 by rpki-client