$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA96A/D4C168826A6E11EF84F98E35C4F9AE02/DN1QWDLqjJpNI7EGNyAdeUKVZMA.mft File: DN1QWDLqjJpNI7EGNyAdeUKVZMA.mft (raw, json) Hash identifier: bjEsX2vS0oeEWBqjCcLGP/PQUAg1s7PrlWOhiuoWh6A= Subject key identifier: A9:6E:4C:CD:B7:90:7E:1D:0A:BC:AE:A1:2B:9B:B8:2E:95:0B:BC:BD Authority key identifier: 0C:DD:50:58:32:EA:8C:9A:4D:23:B1:06:37:20:1D:79:42:95:64:C0 Certificate issuer: /CN=A91AA96A/serialNumber=0CDD505832EA8C9A4D23B10637201D79429564C0 Certificate serial: E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DN1QWDLqjJpNI7EGNyAdeUKVZMA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA96A/D4C168826A6E11EF84F98E35C4F9AE02/DN1QWDLqjJpNI7EGNyAdeUKVZMA.mft Manifest number: DC Signing time: Sun 19 Oct 2025 08:42:36 +0000 Manifest this update: Sun 19 Oct 2025 08:42:36 +0000 Manifest next update: Sun 26 Oct 2025 08:42:36 +0000 Files and hashes: 1: DN1QWDLqjJpNI7EGNyAdeUKVZMA.crl (hash: pD0m0WcMJlrKQn4JEhCFiOZIT606VgPHqahVgqiN0AI=) 2: 6E7D3C16816811EF99DD7787C4F9AE02.roa (hash: GJjFHlhUrw3PK9n6h+pqP/cBSWFV8op0nahH1r+sT6k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA96A/D4C168826A6E11EF84F98E35C4F9AE02/DN1QWDLqjJpNI7EGNyAdeUKVZMA.crl rsync://rpki.apnic.net/member_repository/A91AA96A/D4C168826A6E11EF84F98E35C4F9AE02/DN1QWDLqjJpNI7EGNyAdeUKVZMA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DN1QWDLqjJpNI7EGNyAdeUKVZMA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:42:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 228 (0xe4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA96A, serialNumber=0CDD505832EA8C9A4D23B10637201D79429564C0 Validity Not Before: Oct 19 08:42:36 2025 GMT Not After : Oct 26 08:42:36 2025 GMT Subject: CN=68f4a47c-4564 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:58:e7:d3:5d:7f:7d:04:59:22:9a:11:02:af: cd:ea:4f:4f:38:94:3c:aa:b9:b4:b9:2d:99:a4:5d: 0f:21:7a:c8:9f:24:c1:ed:72:52:8f:66:88:fe:96: 8e:a7:83:ec:35:47:52:6e:61:69:f7:fe:59:93:1e: e5:16:9e:54:52:f2:d8:bf:b7:0b:20:10:9f:17:f9: 93:b3:65:da:60:82:dc:05:80:a6:11:34:8c:a0:aa: 05:d6:f5:06:18:37:a8:c6:45:fb:cf:b7:6f:ac:9e: 99:7c:c5:b2:91:bb:80:95:a7:fd:68:a6:83:3e:1a: f3:b1:c1:7b:6d:b4:39:bb:bf:c3:3a:a1:8f:6a:57: 3e:29:04:dc:13:2c:0f:65:0b:5e:a1:e1:6e:22:de: 1b:df:b0:84:b5:40:02:7e:16:f9:c0:84:f2:58:23: 0e:c6:24:bb:10:50:a4:4d:02:5d:3a:9b:6f:c0:40: 6c:d7:b0:52:6a:bb:87:44:23:8c:64:3b:e6:df:06: 58:b6:76:a3:04:93:ee:6c:35:dd:d7:2b:61:4d:cb: c1:d1:da:28:ce:fe:08:86:74:42:2e:1a:c6:2b:d5: 57:6b:69:a9:9e:35:6a:d5:56:65:e5:c2:6f:ad:e3: 2f:04:45:b8:93:0a:bb:a7:f8:65:89:4c:34:64:1e: 86:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:6E:4C:CD:B7:90:7E:1D:0A:BC:AE:A1:2B:9B:B8:2E:95:0B:BC:BD X509v3 Authority Key Identifier: keyid:0C:DD:50:58:32:EA:8C:9A:4D:23:B1:06:37:20:1D:79:42:95:64:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA96A/D4C168826A6E11EF84F98E35C4F9AE02/DN1QWDLqjJpNI7EGNyAdeUKVZMA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DN1QWDLqjJpNI7EGNyAdeUKVZMA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA96A/D4C168826A6E11EF84F98E35C4F9AE02/DN1QWDLqjJpNI7EGNyAdeUKVZMA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:0f:ad:20:ab:cd:cc:f5:1a:06:f2:26:bf:aa:a1:7d:31:90: 77:84:24:29:b1:93:b8:c3:54:c9:71:8b:e0:d1:33:ab:07:e3: dc:92:20:cd:63:04:cf:57:96:88:80:2c:79:4b:6b:27:9f:c2: 0b:c1:ac:94:48:69:fe:3d:7d:77:a4:a5:23:63:a9:06:13:05: 73:28:10:49:93:2a:93:82:2b:8a:79:8f:1a:ea:64:e4:c2:87: ff:4c:89:cf:9c:b6:cd:01:b8:f5:f9:a6:b4:5a:e3:dc:8c:5d: 49:ea:14:b3:37:76:62:a4:51:6a:86:57:c5:8f:2d:17:ed:6b: c1:14:88:38:d2:5f:93:49:e6:81:90:bb:79:cd:14:86:e3:a6: 00:33:7c:0c:9c:cc:13:17:5c:94:2c:88:28:40:aa:c0:a7:be: f5:52:49:d8:89:5c:e6:c8:8a:b8:dc:ae:8b:4c:8f:b0:5a:06: da:f4:5a:5d:7a:92:88:6d:d9:28:83:a5:42:80:1e:21:94:0b: 77:85:5f:87:be:27:01:2d:9a:74:c5:e4:a2:44:39:6c:86:81: 05:b1:0d:80:cb:db:f5:1a:af:8e:e7:42:92:20:3e:18:e3:0c: d9:19:6f:75:52:06:17:88:c1:ba:b5:11:a0:47:69:81:7e:0b: e5:11:dc:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUE5NkExMTAvBgNVBAUTKDBDREQ1MDU4MzJFQThDOUE0RDIzQjEwNjM3MjAxRDc5 NDI5NTY0QzAwHhcNMjUxMDE5MDg0MjM2WhcNMjUxMDI2MDg0MjM2WjAYMRYwFAYD VQQDEw02OGY0YTQ3Yy00NTY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw1jn011/fQRZIpoRAq/N6k9POJQ8qrm0uS2ZpF0PIXrInyTB7XJSj2aI/paO p4PsNUdSbmFp9/5Zkx7lFp5UUvLYv7cLIBCfF/mTs2XaYILcBYCmETSMoKoF1vUG GDeoxkX7z7dvrJ6ZfMWykbuAlaf9aKaDPhrzscF7bbQ5u7/DOqGPalc+KQTcEywP ZQteoeFuIt4b37CEtUACfhb5wITyWCMOxiS7EFCkTQJdOptvwEBs17BSaruHRCOM ZDvm3wZYtnajBJPubDXd1ythTcvB0doozv4IhnRCLhrGK9VXa2mpnjVq1VZl5cJv reMvBEW4kwq7p/hliUw0ZB6GAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKluTM23 kH4dCryuoSubuC6VC7y9MB8GA1UdIwQYMBaAFAzdUFgy6oyaTSOxBjcgHXlClWTA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTk2QS9ENEMxNjg4MjZB NkUxMUVGODRGOThFMzVDNEY5QUUwMi9ETjFRV0RMcWpKcE5JN0VHTnlBZGVVS1Za TUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ROMVFXRExxakpwTkk3RUdOeUFkZVVLVlpNQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTk2QS9ENEMxNjg4MjZBNkUxMUVGODRGOThFMzVDNEY5QUUwMi9ETjFRV0RMcWpK cE5JN0VHTnlBZGVVS1ZaTUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLD60gq83M9RoG8ia/qqF9MZB3hCQpsZO4w1TJcYvg0TOrB+PckiDN YwTPV5aIgCx5S2snn8ILwayUSGn+PX13pKUjY6kGEwVzKBBJkyqTgiuKeY8a6mTk wof/TInPnLbNAbj1+aa0WuPcjF1J6hSzN3ZipFFqhlfFjy0X7WvBFIg40l+TSeaB kLt5zRSG46YAM3wMnMwTF1yULIgoQKrAp771UknYiVzmyIq43K6LTI+wWgba9Fpd epKIbdkog6VCgB4hlAt3hV+HvicBLZp0xeSiRDlshoEFsQ2Ay9v1Gq+O50KSID4Y 4wzZGW91UgYXiMG6tRGgR2mBfgvlEdxL -----END CERTIFICATE-----Generated at Sun Oct 19 23:31:17 2025 by rpki-client