$ rpki-client -vvf rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.mft File: -D3DokbRIVGsh6dyzsoO3SFfhio.mft (raw, json) Hash identifier: 9S1F95AJwaI8GyZR2Olas/JbuqoeAr7Oqwezsa4Rh2Y= Subject key identifier: E3:0C:C1:CA:45:07:D4:66:7C:14:C3:D2:6F:7B:0E:AE:3F:DB:9A:47 Authority key identifier: F8:3D:C3:A2:46:D1:21:51:AC:87:A7:72:CE:CA:0E:DD:21:5F:86:2A Certificate issuer: /CN=A91DDFF2/serialNumber=F83DC3A246D12151AC87A772CECA0EDD215F862A Certificate serial: 012F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-D3DokbRIVGsh6dyzsoO3SFfhio.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.mft Manifest number: 012B Signing time: Sun 19 Oct 2025 07:41:31 +0000 Manifest this update: Sun 19 Oct 2025 07:41:30 +0000 Manifest next update: Sun 26 Oct 2025 07:41:30 +0000 Files and hashes: 1: -D3DokbRIVGsh6dyzsoO3SFfhio.crl (hash: owTU1K8KAvzdmaPz60Qu7s6vFjAtezedBI5OjwoUKDs=) 2: EC7311FEE5C311EEBF217685C4F9AE02.roa (hash: iQdab95cXgGlPUuiYO+n8Hk1ialiC4/Jl2j60o0Nj04=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.crl rsync://rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-D3DokbRIVGsh6dyzsoO3SFfhio.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:41:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 303 (0x12f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DDFF2, serialNumber=F83DC3A246D12151AC87A772CECA0EDD215F862A Validity Not Before: Oct 19 07:41:30 2025 GMT Not After : Oct 26 07:41:30 2025 GMT Subject: CN=68f4962a-bab3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:45:fc:f9:5a:51:51:14:de:24:9a:fa:96:2b: 68:36:00:64:07:a1:24:d1:35:a6:2c:95:9a:b4:2c: cf:ec:0e:4c:de:2c:17:1e:0e:47:f4:00:12:65:58: fa:81:7c:a2:80:13:88:4f:f9:42:ea:18:89:88:c5: 71:3d:de:f9:a8:9d:1b:80:b8:62:46:7e:db:b3:ac: 0f:54:12:a7:06:d6:f3:2f:77:e4:ad:5a:fa:90:c8: 90:5f:d6:16:0e:fc:4c:76:2b:c5:0e:9f:03:7d:02: 6d:ee:da:29:45:fe:aa:f4:8e:59:b5:80:16:a2:28: 2f:40:01:5a:15:f0:15:3f:dd:4f:d6:85:ee:9a:07: 40:44:d7:9d:31:7b:44:1f:c5:8a:88:aa:a0:08:17: 9c:56:b2:cc:8d:8c:b4:17:11:a5:7d:aa:54:bd:0d: 2c:92:43:75:39:04:cd:4b:da:b1:e8:d0:59:da:3e: 4a:69:e7:49:25:7a:fd:09:28:fe:b3:23:a0:db:f2: b7:8d:1f:58:41:46:1e:ba:47:d4:b4:a9:f9:d2:d0: f6:75:3f:08:bd:bf:44:b3:99:fe:75:d0:0d:3d:94: 5d:29:10:23:0e:f8:df:bb:06:5b:4d:65:de:fc:aa: 40:2b:8d:6b:0f:fb:49:1a:24:c7:0f:a6:b1:19:60: 75:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:0C:C1:CA:45:07:D4:66:7C:14:C3:D2:6F:7B:0E:AE:3F:DB:9A:47 X509v3 Authority Key Identifier: keyid:F8:3D:C3:A2:46:D1:21:51:AC:87:A7:72:CE:CA:0E:DD:21:5F:86:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-D3DokbRIVGsh6dyzsoO3SFfhio.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:fb:79:80:c2:7d:a1:03:1b:38:e6:3a:b1:a9:7d:24:e0:48: 5d:53:43:71:e1:30:17:a4:7a:5c:4a:11:53:9f:8a:da:45:12: 82:bc:eb:7b:51:7a:0e:69:d9:a1:9c:f0:63:43:9a:18:2c:7c: a2:6b:03:d1:2e:17:df:99:c1:04:04:d4:cb:13:2c:75:23:9b: 05:6c:e3:bf:28:1c:d3:8b:91:a7:2d:99:ac:80:9b:03:81:cd: 53:ab:a7:6c:98:82:50:87:73:79:4e:0d:45:b7:61:6c:32:7f: 1d:f5:a6:ab:81:a8:75:d3:41:e0:af:1d:19:b9:7e:1a:d0:4a: 36:9d:42:26:43:8f:a7:3a:79:cc:69:94:22:94:9d:7c:2b:da: c2:42:23:e1:e2:99:85:91:96:26:c6:b3:2a:08:19:04:d0:e9: fd:76:41:eb:61:bf:41:5e:a1:03:fa:19:5b:c5:2b:3c:38:f0: 84:0b:b1:70:02:dc:06:96:2b:43:da:97:80:d7:8e:1a:b5:bf: a5:17:d3:16:d7:b6:db:cc:a6:7e:ae:17:be:ad:5f:31:57:51: 2c:85:5b:b5:7c:40:7c:7f:e8:3f:78:45:17:93:8e:fe:42:2a: ad:c5:6e:e2:77:19:02:1b:d9:f4:61:08:e1:4f:ec:d3:4c:9b: 6d:17:24:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAS8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RERGRjIxMTAvBgNVBAUTKEY4M0RDM0EyNDZEMTIxNTFBQzg3QTc3MkNFQ0EwRURE MjE1Rjg2MkEwHhcNMjUxMDE5MDc0MTMwWhcNMjUxMDI2MDc0MTMwWjAYMRYwFAYD VQQDEw02OGY0OTYyYS1iYWIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAokX8+VpRURTeJJr6litoNgBkB6Ek0TWmLJWatCzP7A5M3iwXHg5H9AASZVj6 gXyigBOIT/lC6hiJiMVxPd75qJ0bgLhiRn7bs6wPVBKnBtbzL3fkrVr6kMiQX9YW DvxMdivFDp8DfQJt7topRf6q9I5ZtYAWoigvQAFaFfAVP91P1oXumgdARNedMXtE H8WKiKqgCBecVrLMjYy0FxGlfapUvQ0skkN1OQTNS9qx6NBZ2j5KaedJJXr9CSj+ syOg2/K3jR9YQUYeukfUtKn50tD2dT8Ivb9Es5n+ddANPZRdKRAjDvjfuwZbTWXe /KpAK41rD/tJGiTHD6axGWB1vwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOMMwcpF B9RmfBTD0m97Dq4/25pHMB8GA1UdIwQYMBaAFPg9w6JG0SFRrIencs7KDt0hX4Yq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEREZGMi9DOUFGMjkzNEU1 QzExMUVFOThEQkU5NjJDNEY5QUUwMi8tRDNEb2tiUklWR3NoNmR5enNvTzNTRmZo aW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1EM0Rva2JSSVZHc2g2ZHl6c29PM1NGZmhpby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE REZGMi9DOUFGMjkzNEU1QzExMUVFOThEQkU5NjJDNEY5QUUwMi8tRDNEb2tiUklW R3NoNmR5enNvTzNTRmZoaW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCN+3mAwn2hAxs45jqxqX0k4EhdU0Nx4TAXpHpcShFTn4raRRKCvOt7 UXoOadmhnPBjQ5oYLHyiawPRLhffmcEEBNTLEyx1I5sFbOO/KBzTi5GnLZmsgJsD gc1Tq6dsmIJQh3N5Tg1Ft2FsMn8d9aargah100Hgrx0ZuX4a0Eo2nUImQ4+nOnnM aZQilJ18K9rCQiPh4pmFkZYmxrMqCBkE0On9dkHrYb9BXqED+hlbxSs8OPCEC7Fw AtwGlitD2peA144atb+lF9MW17bbzKZ+rhe+rV8xV1EshVu1fEB8f+g/eEUXk47+ QiqtxW7idxkCG9n0YQjhT+zTTJttFyQA -----END CERTIFICATE-----Generated at Mon Oct 20 12:17:06 2025 by rpki-client