$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft File: dQ-le1kVZTnLFuVKYKbO21sQ654.mft (raw, json) Hash identifier: N2NYRWaaKGbBfCByU6A/+yLWqai/OTeY/FVtJ3WJz3k= Subject key identifier: 79:BC:74:90:D3:2A:50:0E:38:DA:24:98:AE:21:33:08:22:02:C0:D7 Authority key identifier: 75:0F:A5:7B:59:15:65:39:CB:16:E5:4A:60:A6:CE:DB:5B:10:EB:9E Certificate issuer: /CN=A91BB1F3/serialNumber=750FA57B59156539CB16E54A60A6CEDB5B10EB9E Certificate serial: ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQ-le1kVZTnLFuVKYKbO21sQ654.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft Manifest number: EB Signing time: Sun 19 Oct 2025 08:19:31 +0000 Manifest this update: Sun 19 Oct 2025 08:19:30 +0000 Manifest next update: Sun 26 Oct 2025 08:19:30 +0000 Files and hashes: 1: dQ-le1kVZTnLFuVKYKbO21sQ654.crl (hash: 0jpf8/ozF0UL3GwcYDrAMlvP6FBq/Z625HmHSTptaYQ=) 2: F9E4E14645AE11EF8870C771C4F9AE02.roa (hash: R0ve1rGoHZXsOYQBScXwsDxNaaTbtMNOWotF4DpFkvU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.crl rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQ-le1kVZTnLFuVKYKbO21sQ654.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:19:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 237 (0xed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB1F3, serialNumber=750FA57B59156539CB16E54A60A6CEDB5B10EB9E Validity Not Before: Oct 19 08:19:30 2025 GMT Not After : Oct 26 08:19:30 2025 GMT Subject: CN=68f49f13-4377 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:6b:0c:c0:1e:ff:cd:c5:46:6c:88:71:d5:97: 84:e8:94:a2:e9:f1:27:fd:fa:57:34:bb:cc:2e:c2: a7:80:15:4d:7d:2a:02:e0:e3:9d:1d:eb:8c:52:52: 55:51:9d:03:7a:e0:09:b5:33:21:df:9a:92:bb:c6: 76:9a:93:7c:f4:13:ec:fa:c4:06:12:67:9d:8a:40: 65:96:a2:16:de:74:1a:02:cd:7f:6d:c4:aa:1e:83: 96:e7:d9:0d:83:c0:dc:90:cb:0b:29:f0:d9:fa:1d: af:f5:6b:02:02:19:3f:e5:11:84:c9:d9:57:31:7c: 3c:08:db:91:14:be:b9:95:68:76:e0:ff:b5:8d:74: 42:c2:22:0d:c0:ba:03:a2:9d:b2:4f:6a:23:ab:e3: 46:7e:f7:6c:a0:a7:68:9c:a4:21:85:03:8e:f8:67: 03:cd:3a:44:96:da:89:6c:95:f0:cd:86:ae:74:7e: 40:d7:71:8b:ec:b0:93:c8:96:c4:26:ca:2f:21:9a: 89:69:8d:e9:03:db:fe:b7:07:17:c6:0b:bc:0e:e4: 11:ac:04:26:b1:05:4e:b3:3f:79:2e:70:b7:b0:0a: 42:a4:40:21:b6:34:7c:0f:b5:dd:a8:c0:c9:7b:ca: 89:3a:6c:83:34:8e:f9:5f:32:c3:3f:df:75:0c:35: 0b:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:BC:74:90:D3:2A:50:0E:38:DA:24:98:AE:21:33:08:22:02:C0:D7 X509v3 Authority Key Identifier: keyid:75:0F:A5:7B:59:15:65:39:CB:16:E5:4A:60:A6:CE:DB:5B:10:EB:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQ-le1kVZTnLFuVKYKbO21sQ654.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:d8:c2:71:03:2b:de:20:75:50:f2:a3:21:d5:cd:a4:94:a7: 48:1d:47:52:4b:ef:10:11:e6:b4:5f:d9:3f:b9:3c:44:85:62: 95:5f:c3:73:6c:bc:84:8e:2b:ae:20:45:35:fe:07:20:55:72: 0b:5f:71:7b:88:fe:c8:01:7b:a3:a4:26:13:c6:88:c7:9f:39: 83:3d:58:ea:c4:99:d7:1f:77:6b:77:51:ba:55:a3:b0:86:17: f9:f2:70:d8:5a:f1:a7:c3:37:c8:a4:1d:43:4d:89:62:69:88: 9b:4f:2f:5d:19:d2:54:7f:0c:61:ce:f7:d3:c6:ee:b3:eb:27: fe:cf:e5:68:ab:f3:14:f7:8a:8e:39:48:08:8b:1f:45:c4:c7: e1:9c:d0:0d:49:86:4d:64:90:32:a9:d4:e5:61:1a:93:19:14: 2e:7b:ee:fc:c5:9f:d7:ae:dd:e9:b5:34:61:71:f5:06:2c:e0: 1a:38:f4:7e:82:3d:21:db:d3:4e:f2:bb:9f:2f:63:5e:46:62: 3c:3e:2c:b1:cf:f1:07:e1:9a:22:57:d2:f0:9a:fd:bd:d1:56: c3:36:39:67:ec:8f:55:20:dc:d5:4c:59:34:a0:f6:2d:62:de: 18:93:30:33:c8:6b:7a:25:5e:4b:a3:cf:92:3a:2d:ce:b5:65: a8:0f:a6:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkIxRjMxMTAvBgNVBAUTKDc1MEZBNTdCNTkxNTY1MzlDQjE2RTU0QTYwQTZDRURC NUIxMEVCOUUwHhcNMjUxMDE5MDgxOTMwWhcNMjUxMDI2MDgxOTMwWjAYMRYwFAYD VQQDEw02OGY0OWYxMy00Mzc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0msMwB7/zcVGbIhx1ZeE6JSi6fEn/fpXNLvMLsKngBVNfSoC4OOdHeuMUlJV UZ0DeuAJtTMh35qSu8Z2mpN89BPs+sQGEmedikBllqIW3nQaAs1/bcSqHoOW59kN g8DckMsLKfDZ+h2v9WsCAhk/5RGEydlXMXw8CNuRFL65lWh24P+1jXRCwiINwLoD op2yT2ojq+NGfvdsoKdonKQhhQOO+GcDzTpEltqJbJXwzYaudH5A13GL7LCTyJbE JsovIZqJaY3pA9v+twcXxgu8DuQRrAQmsQVOsz95LnC3sApCpEAhtjR8D7XdqMDJ e8qJOmyDNI75XzLDP991DDULwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHm8dJDT KlAOONokmK4hMwgiAsDXMB8GA1UdIwQYMBaAFHUPpXtZFWU5yxblSmCmzttbEOue MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjFGMy80Mjk3RDA1MjQ1 QUUxMUVGQjYyMzc4NzBDNEY5QUUwMi9kUS1sZTFrVlpUbkxGdVZLWUtiTzIxc1E2 NTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RRLWxlMWtWWlRuTEZ1VktZS2JPMjFzUTY1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjFGMy80Mjk3RDA1MjQ1QUUxMUVGQjYyMzc4NzBDNEY5QUUwMi9kUS1sZTFrVlpU bkxGdVZLWUtiTzIxc1E2NTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBK2MJxAyveIHVQ8qMh1c2klKdIHUdSS+8QEea0X9k/uTxEhWKVX8Nz bLyEjiuuIEU1/gcgVXILX3F7iP7IAXujpCYTxojHnzmDPVjqxJnXH3drd1G6VaOw hhf58nDYWvGnwzfIpB1DTYliaYibTy9dGdJUfwxhzvfTxu6z6yf+z+Voq/MU94qO OUgIix9FxMfhnNANSYZNZJAyqdTlYRqTGRQue+78xZ/Xrt3ptTRhcfUGLOAaOPR+ gj0h29NO8rufL2NeRmI8Piyxz/EH4ZoiV9Lwmv290VbDNjln7I9VINzVTFk0oPYt Yt4YkzAzyGt6JV5Lo8+SOi3OtWWoD6Zl -----END CERTIFICATE-----Generated at Tue Oct 21 04:55:17 2025 by rpki-client