$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5E1C/6475893A879311F0B5786346C4F9AE02/dgeNNhm3wq-92jOrU2PuX-16hg0.mft File: dgeNNhm3wq-92jOrU2PuX-16hg0.mft (raw, json) Hash identifier: zJLD9fdAFWTuF8yXisX8X+nLceyvd0Duwcn/S7J+3Ag= Subject key identifier: 59:FF:CE:F1:04:07:4A:38:48:02:42:5D:34:DE:D2:11:E6:71:32:33 Authority key identifier: 76:07:8D:36:19:B7:C2:AF:BD:DA:33:AB:53:63:EE:5F:ED:7A:86:0D Certificate issuer: /CN=A91C5E1C/serialNumber=76078D3619B7C2AFBDDA33AB5363EE5FED7A860D Certificate serial: 1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dgeNNhm3wq-92jOrU2PuX-16hg0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5E1C/6475893A879311F0B5786346C4F9AE02/dgeNNhm3wq-92jOrU2PuX-16hg0.mft Manifest number: 19 Signing time: Sun 19 Oct 2025 11:24:06 +0000 Manifest this update: Sun 19 Oct 2025 11:24:06 +0000 Manifest next update: Sun 26 Oct 2025 11:24:06 +0000 Files and hashes: 1: dgeNNhm3wq-92jOrU2PuX-16hg0.crl (hash: 74l51hMCESw+acGAFcxoSr/3HbhagNPDcgvFDY+EdN4=) 2: 2A3F7C6A879F11F09F9FAD48C4F9AE02.roa (hash: Axxx6+J8twN5fIfKmfOOFMg3aNjqRhz53eFIdguiEt0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5E1C/6475893A879311F0B5786346C4F9AE02/dgeNNhm3wq-92jOrU2PuX-16hg0.crl rsync://rpki.apnic.net/member_repository/A91C5E1C/6475893A879311F0B5786346C4F9AE02/dgeNNhm3wq-92jOrU2PuX-16hg0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dgeNNhm3wq-92jOrU2PuX-16hg0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:24:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26 (0x1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5E1C, serialNumber=76078D3619B7C2AFBDDA33AB5363EE5FED7A860D Validity Not Before: Oct 19 11:24:06 2025 GMT Not After : Oct 26 11:24:06 2025 GMT Subject: CN=68f4ca56-d3a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:84:e0:ed:b1:72:59:99:1f:65:cd:7e:c2:72: e8:5e:2f:65:0d:a3:84:5d:96:c1:f6:f6:e4:f8:24: 2c:bb:aa:54:6e:92:4d:bc:c7:db:57:d6:99:41:e1: 01:f1:ef:8b:28:e4:a3:c4:46:09:1f:be:0a:d4:78: 57:b6:00:f2:34:f7:4e:00:c2:36:b3:54:5f:71:dc: 9b:16:61:2a:fa:7d:5c:a5:5f:6b:40:d3:70:55:75: 8b:80:89:ae:29:5f:f0:d2:c9:18:bd:ee:08:6b:fc: 06:74:be:fc:65:3a:ca:52:d2:04:8a:f2:81:93:83: 54:92:5b:80:7c:20:53:77:56:b1:dd:cd:6a:ad:7f: e1:e8:cb:93:3d:a9:dc:9d:3b:c3:0e:ef:40:55:98: e2:f7:b7:59:4d:fd:cc:f0:88:a9:94:7a:ff:c8:27: 38:95:6c:9a:71:67:89:56:cf:8e:fd:96:d7:8e:89: ec:9f:73:a3:83:ac:5b:f3:e9:ee:80:81:d3:34:2d: 5f:a6:30:e4:48:1c:15:cf:94:5d:36:19:55:c4:eb: 00:c6:24:29:b2:84:33:2d:48:84:12:f3:bf:2c:6c: 89:55:95:fb:09:62:fc:70:fa:c9:16:9d:11:f1:57: bf:00:b6:38:7a:18:a0:1c:97:ef:2b:4e:f4:3f:72: 92:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:FF:CE:F1:04:07:4A:38:48:02:42:5D:34:DE:D2:11:E6:71:32:33 X509v3 Authority Key Identifier: keyid:76:07:8D:36:19:B7:C2:AF:BD:DA:33:AB:53:63:EE:5F:ED:7A:86:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5E1C/6475893A879311F0B5786346C4F9AE02/dgeNNhm3wq-92jOrU2PuX-16hg0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dgeNNhm3wq-92jOrU2PuX-16hg0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5E1C/6475893A879311F0B5786346C4F9AE02/dgeNNhm3wq-92jOrU2PuX-16hg0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:26:77:5c:37:a4:ee:8a:73:10:f1:74:2e:ca:d5:32:29:1e: 65:3a:51:79:50:c0:e9:05:74:87:14:f2:09:4d:84:31:a1:26: 64:47:c5:19:e3:c8:ea:17:48:02:b3:02:6e:cb:3a:14:aa:1d: 40:e8:6e:41:5f:c8:fa:69:ea:9b:ee:e4:0a:6f:ed:70:cf:de: 98:10:ef:3c:bc:34:4f:89:21:e7:84:0f:ed:99:8b:b0:df:f5: 46:ae:d8:01:48:84:9c:a2:13:86:00:51:da:2b:98:19:20:02: ca:f8:65:e6:bd:5c:93:c8:fa:9f:1f:fb:94:a1:c7:9a:dd:c5: ba:13:e9:86:96:f2:54:70:01:5c:37:c2:de:de:6d:cb:12:64: bd:f1:d0:77:32:ae:10:55:ee:ef:c7:7a:c5:7b:f8:ea:37:68: 15:34:2d:65:55:54:9b:ea:a3:24:a1:ec:f6:07:3b:f0:69:d3: 0e:4a:30:c4:21:19:cd:31:5c:01:a8:6a:2c:e8:f9:e0:c2:4f: 2b:1b:11:59:14:83:84:17:85:e4:ac:c1:77:40:78:f6:0e:79: 52:f9:bd:6b:dd:bf:1a:3b:b4:3d:95:dd:fc:c3:8d:8f:74:32: 54:c3:45:85:f7:aa:e6:54:42:6f:bd:a3:84:40:3c:8f:cb:de: 0e:89:25:02 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NUUxQzExMC8GA1UEBRMoNzYwNzhEMzYxOUI3QzJBRkJEREEzM0FCNTM2M0VFNUZF RDdBODYwRDAeFw0yNTEwMTkxMTI0MDZaFw0yNTEwMjYxMTI0MDZaMBgxFjAUBgNV BAMTDTY4ZjRjYTU2LWQzYTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCphODtsXJZmR9lzX7CcuheL2UNo4RdlsH29uT4JCy7qlRukk28x9tX1plB4QHx 74so5KPERgkfvgrUeFe2API0904AwjazVF9x3JsWYSr6fVylX2tA03BVdYuAia4p X/DSyRi97ghr/AZ0vvxlOspS0gSK8oGTg1SSW4B8IFN3VrHdzWqtf+Hoy5M9qdyd O8MO70BVmOL3t1lN/czwiKmUev/IJziVbJpxZ4lWz479lteOieyfc6ODrFvz6e6A gdM0LV+mMORIHBXPlF02GVXE6wDGJCmyhDMtSIQS878sbIlVlfsJYvxw+skWnRHx V78Atjh6GKAcl+8rTvQ/cpLDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUWf/O8QQH SjhIAkJdNN7SEeZxMjMwHwYDVR0jBBgwFoAUdgeNNhm3wq+92jOrU2PuX+16hg0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM1RTFDLzY0NzU4OTNBODc5 MzExRjBCNTc4NjM0NkM0RjlBRTAyL2RnZU5OaG0zd3EtOTJqT3JVMlB1WC0xNmhn MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZGdlTk5obTN3cS05MmpPclUyUHVYLTE2aGcwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM1 RTFDLzY0NzU4OTNBODc5MzExRjBCNTc4NjM0NkM0RjlBRTAyL2RnZU5OaG0zd3Et OTJqT3JVMlB1WC0xNmhnMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIsmd1w3pO6KcxDxdC7K1TIpHmU6UXlQwOkFdIcU8glNhDGhJmRHxRnj yOoXSAKzAm7LOhSqHUDobkFfyPpp6pvu5Apv7XDP3pgQ7zy8NE+JIeeED+2Zi7Df 9Uau2AFIhJyiE4YAUdormBkgAsr4Zea9XJPI+p8f+5Shx5rdxboT6YaW8lRwAVw3 wt7ebcsSZL3x0HcyrhBV7u/HesV7+Oo3aBU0LWVVVJvqoySh7PYHO/Bp0w5KMMQh Gc0xXAGoaizo+eDCTysbEVkUg4QXheSswXdAePYOeVL5vWvdvxo7tD2V3fzDjY90 MlTDRYX3quZUQm+9o4RAPI/L3g6JJQI= -----END CERTIFICATE-----Generated at Mon Oct 20 01:31:11 2025 by rpki-client