$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.mft File: dt9_kRaaPzgMCmvNOOkYbe_zG6s.mft (raw, json) Hash identifier: 6o4qatwcBHGwGcgwur3FqCKiFLUShweT4gX9wBOMJAQ= Subject key identifier: 6A:FE:4F:7C:5D:8F:75:A4:21:43:D6:C2:5C:43:76:6E:46:E8:F7:BA Authority key identifier: 76:DF:7F:91:16:9A:3F:38:0C:0A:6B:CD:38:E9:18:6D:EF:F3:1B:AB Certificate issuer: /CN=A91D4DC1/serialNumber=76DF7F91169A3F380C0A6BCD38E9186DEFF31BAB Certificate serial: 05CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dt9_kRaaPzgMCmvNOOkYbe_zG6s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.mft Manifest number: 05C5 Signing time: Sun 19 Oct 2025 00:44:09 +0000 Manifest this update: Sun 19 Oct 2025 00:44:08 +0000 Manifest next update: Sun 26 Oct 2025 00:44:08 +0000 Files and hashes: 1: dt9_kRaaPzgMCmvNOOkYbe_zG6s.crl (hash: +TNx4pwFpTEgygTcoNd1Kj4VdeJIKcOKuaC9oNT6hak=) 2: B5A7B020DBDB11EB8EC1494EC4F9AE02.roa (hash: pYihusS4UyoIsK9PCzKPk27dDaihl6ZYHFqiCUhf6Dc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.crl rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dt9_kRaaPzgMCmvNOOkYbe_zG6s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:44:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1482 (0x5ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4DC1, serialNumber=76DF7F91169A3F380C0A6BCD38E9186DEFF31BAB Validity Not Before: Oct 19 00:44:08 2025 GMT Not After : Oct 26 00:44:08 2025 GMT Subject: CN=68f43459-2b3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:2f:b1:17:45:22:d4:e2:ec:0c:70:72:2f:f4: b0:7c:89:81:7d:9d:4e:51:e1:d8:95:c8:55:9e:15: a7:e6:35:75:72:a2:36:64:10:71:79:a6:ee:c8:38: f2:c6:60:ce:1f:94:cf:49:9c:e2:b4:b9:84:b0:2b: d5:31:50:f8:05:7e:5d:fe:7d:e2:fc:af:88:d6:81: 4f:7b:69:aa:54:e4:f3:0b:27:9d:d8:d1:72:8e:39: a8:d6:61:61:52:23:6e:01:27:48:56:69:80:45:ee: 74:7b:05:9f:ef:20:22:c3:30:50:16:b3:7e:6d:78: 41:45:6f:4a:3d:1e:3d:db:82:78:8c:be:fa:50:e5: d5:90:b8:cf:15:31:5f:c1:c4:1e:09:a8:da:57:ac: 85:50:23:10:9e:11:d5:29:01:35:3b:8c:1d:f4:9f: 29:15:84:bf:39:5b:56:62:1c:a7:fa:be:44:65:2f: ca:80:8b:d3:b0:a1:68:81:b2:7b:df:68:40:e9:c6: 71:fd:30:0f:b5:ef:cd:49:22:fe:a1:95:a5:79:55: d8:99:e0:7b:5f:5e:ea:53:2d:d5:dc:b8:9c:58:d7: 1f:b4:a5:4a:7f:8b:5e:05:6e:a2:89:05:08:06:d1: 2b:30:e7:fb:0c:ec:ad:60:d3:6c:a6:80:b1:08:76: d1:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:FE:4F:7C:5D:8F:75:A4:21:43:D6:C2:5C:43:76:6E:46:E8:F7:BA X509v3 Authority Key Identifier: keyid:76:DF:7F:91:16:9A:3F:38:0C:0A:6B:CD:38:E9:18:6D:EF:F3:1B:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dt9_kRaaPzgMCmvNOOkYbe_zG6s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:e6:7d:36:f0:b6:70:fa:33:50:1a:1e:00:9b:aa:42:12:80: bc:40:8b:80:25:09:a6:2e:be:c1:fc:85:78:66:d6:91:f3:f3: 1d:ae:13:da:f9:8e:a8:85:7e:f7:e4:dc:d8:ce:3a:eb:8f:b9: 69:0c:13:67:f3:1a:a9:52:28:d3:c0:ba:a7:0a:7a:be:9f:d9: f6:7b:58:e7:ae:1e:7f:71:f1:a8:cf:a5:1b:55:a4:af:20:2c: e1:64:55:a4:8a:6f:19:b7:91:7d:d8:41:ef:d3:c4:d0:e2:31: 1a:23:86:21:21:0f:27:6f:26:0d:15:6f:42:a5:b6:9e:84:21: 17:68:9c:56:72:30:28:17:c7:3d:f9:24:6b:53:1b:ef:0c:58: 6a:fe:16:9e:d7:f7:2c:86:86:13:2c:7d:c9:28:4e:d5:d3:66: c5:0e:fb:43:32:8c:00:ad:2f:7e:50:ed:a2:dd:1c:97:eb:1a: c5:d0:6d:bf:32:51:98:d8:1a:3b:93:67:e5:76:22:2f:f0:e8: e4:5b:d1:5b:a7:37:7e:06:eb:73:c9:73:c4:fe:2f:8c:fa:7c: 27:b7:cc:58:bc:82:7e:51:1f:1e:a1:18:1c:80:d6:e5:49:8c: 24:b2:29:f2:44:3e:0f:af:90:93:b4:27:fe:2e:3f:2c:cf:26: 43:f7:1c:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBcowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDREQzExMTAvBgNVBAUTKDc2REY3RjkxMTY5QTNGMzgwQzBBNkJDRDM4RTkxODZE RUZGMzFCQUIwHhcNMjUxMDE5MDA0NDA4WhcNMjUxMDI2MDA0NDA4WjAYMRYwFAYD VQQDEw02OGY0MzQ1OS0yYjNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxy+xF0Ui1OLsDHByL/SwfImBfZ1OUeHYlchVnhWn5jV1cqI2ZBBxeabuyDjy xmDOH5TPSZzitLmEsCvVMVD4BX5d/n3i/K+I1oFPe2mqVOTzCyed2NFyjjmo1mFh UiNuASdIVmmARe50ewWf7yAiwzBQFrN+bXhBRW9KPR4924J4jL76UOXVkLjPFTFf wcQeCajaV6yFUCMQnhHVKQE1O4wd9J8pFYS/OVtWYhyn+r5EZS/KgIvTsKFogbJ7 32hA6cZx/TAPte/NSSL+oZWleVXYmeB7X17qUy3V3LicWNcftKVKf4teBW6iiQUI BtErMOf7DOytYNNspoCxCHbRDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGr+T3xd j3WkIUPWwlxDdm5G6Pe6MB8GA1UdIwQYMBaAFHbff5EWmj84DAprzTjpGG3v8xur MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENERDMS85OTZGOThFQURC RDcxMUVCQjk1MTE3NDVDNEY5QUUwMi9kdDlfa1JhYVB6Z01DbXZOT09rWWJlX3pH NnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2R0OV9rUmFhUHpnTUNtdk5PT2tZYmVfekc2cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NERDMS85OTZGOThFQURCRDcxMUVCQjk1MTE3NDVDNEY5QUUwMi9kdDlfa1JhYVB6 Z01DbXZOT09rWWJlX3pHNnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAw5n028LZw+jNQGh4Am6pCEoC8QIuAJQmmLr7B/IV4ZtaR8/MdrhPa +Y6ohX735NzYzjrrj7lpDBNn8xqpUijTwLqnCnq+n9n2e1jnrh5/cfGoz6UbVaSv ICzhZFWkim8Zt5F92EHv08TQ4jEaI4YhIQ8nbyYNFW9CpbaehCEXaJxWcjAoF8c9 +SRrUxvvDFhq/hae1/cshoYTLH3JKE7V02bFDvtDMowArS9+UO2i3RyX6xrF0G2/ MlGY2Bo7k2fldiIv8OjkW9Fbpzd+ButzyXPE/i+M+nwnt8xYvIJ+UR8eoRgcgNbl SYwksinyRD4Pr5CTtCf+Lj8szyZD9xwH -----END CERTIFICATE-----Generated at Sun Oct 19 23:29:07 2025 by rpki-client