$ rpki-client -vvf rpki.apnic.net/member_repository/A91E33D7/DC7D8864AEB011E98D08E13CC4F9AE02/DtUqdvMcJCF0oq0ZSByVcDty4jY.mft File: DtUqdvMcJCF0oq0ZSByVcDty4jY.mft (raw, json) Hash identifier: dKZbU+aIRy7mGPYd8CDdj8pzFb/T3fe0QJGk06ejTPE= Subject key identifier: B0:87:04:0F:85:1B:B4:1C:DD:04:3E:DD:F1:2A:0A:13:C3:E9:D0:AB Authority key identifier: 0E:D5:2A:76:F3:1C:24:21:74:A2:AD:19:48:1C:95:70:3B:72:E2:36 Certificate issuer: /CN=A91E33D7/serialNumber=0ED52A76F31C242174A2AD19481C95703B72E236 Certificate serial: 0E4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DtUqdvMcJCF0oq0ZSByVcDty4jY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E33D7/DC7D8864AEB011E98D08E13CC4F9AE02/DtUqdvMcJCF0oq0ZSByVcDty4jY.mft Manifest number: 0E44 Signing time: Sat 18 Oct 2025 18:26:09 +0000 Manifest this update: Sat 18 Oct 2025 18:26:08 +0000 Manifest next update: Sat 25 Oct 2025 18:26:08 +0000 Files and hashes: 1: DtUqdvMcJCF0oq0ZSByVcDty4jY.crl (hash: R5O4ML09Jl/z0edEac/KaY9VgnpqtwWXHpGmEgEVnTA=) 2: C26576D4F4ED11E9ACC51713C4F9AE02.roa (hash: iq5QW3Y97Rtj3h5uSMsDVDo+gTS/iiUYWbO1Wkr9rpU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E33D7/DC7D8864AEB011E98D08E13CC4F9AE02/DtUqdvMcJCF0oq0ZSByVcDty4jY.crl rsync://rpki.apnic.net/member_repository/A91E33D7/DC7D8864AEB011E98D08E13CC4F9AE02/DtUqdvMcJCF0oq0ZSByVcDty4jY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DtUqdvMcJCF0oq0ZSByVcDty4jY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:26:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3662 (0xe4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E33D7, serialNumber=0ED52A76F31C242174A2AD19481C95703B72E236 Validity Not Before: Oct 18 18:26:08 2025 GMT Not After : Oct 25 18:26:08 2025 GMT Subject: CN=68f3dbc1-780e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:ee:8b:4a:23:ae:10:df:e8:e9:6e:07:af:f0: 8d:38:ad:1d:e5:6f:4a:c4:a4:4f:08:09:60:84:00: 12:15:5e:94:7b:39:03:44:20:07:9a:92:e6:38:f8: ca:87:49:f9:e7:3f:ac:aa:4a:e2:68:81:42:a6:27: 9b:b2:88:00:6b:8e:8b:e6:f8:4f:4d:6f:27:5a:6d: 67:be:a9:3f:43:11:c4:41:bf:55:90:34:d1:57:4c: 05:2f:92:c3:ad:d0:a1:df:c7:d9:3f:b4:b3:23:32: 75:88:9c:64:14:64:d0:ed:3a:7d:a1:cc:0e:8a:36: da:c5:10:66:a4:57:ad:a2:4e:11:96:d0:3b:92:ba: d9:7d:65:96:41:96:17:00:6c:1e:a3:44:17:e5:7e: ec:28:dd:2b:f3:6c:45:c4:17:76:e3:7b:89:dc:86: b9:fd:fa:f3:b7:b3:47:f5:b9:a3:59:9d:74:c9:bd: d8:ae:d5:63:aa:81:60:29:75:5d:08:d8:df:39:d4: c2:ee:a9:a7:60:b4:02:41:58:8c:cb:e0:68:00:9d: cf:76:db:c6:54:a6:0f:9a:af:62:5f:59:49:f6:59: b7:55:a9:10:a7:df:0d:79:25:42:52:21:f2:4a:ad: 70:5c:ff:a3:23:fe:7a:53:77:2d:d5:76:e1:cf:8c: a0:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:87:04:0F:85:1B:B4:1C:DD:04:3E:DD:F1:2A:0A:13:C3:E9:D0:AB X509v3 Authority Key Identifier: keyid:0E:D5:2A:76:F3:1C:24:21:74:A2:AD:19:48:1C:95:70:3B:72:E2:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E33D7/DC7D8864AEB011E98D08E13CC4F9AE02/DtUqdvMcJCF0oq0ZSByVcDty4jY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DtUqdvMcJCF0oq0ZSByVcDty4jY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E33D7/DC7D8864AEB011E98D08E13CC4F9AE02/DtUqdvMcJCF0oq0ZSByVcDty4jY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:bb:f0:b3:b6:a0:03:80:48:cb:44:7c:08:aa:9b:2b:94:ef: ab:52:07:66:80:99:d2:73:5b:4f:7f:f5:3b:e0:d5:68:6d:ac: 9d:e3:9c:6e:88:08:1c:92:8a:c8:9e:c4:fe:60:4c:cd:43:b7: 5c:2b:5e:40:78:69:49:f4:13:93:35:ea:36:62:1b:3a:8c:86: b4:5b:54:be:3c:f6:e4:60:3d:a0:ef:82:ff:ea:c7:96:fc:f6: 4e:45:0f:be:14:3c:a3:39:c4:a9:99:cf:46:d7:d8:e4:ed:44: 49:54:62:57:a9:d9:06:a7:64:c7:3d:9e:a2:12:18:d9:d8:27: fb:e9:12:28:2d:93:cc:ed:ef:ea:a4:0e:16:10:26:b3:72:95: 95:75:75:ae:63:59:cd:3b:e0:87:10:c7:40:e8:58:23:f1:60: 02:a4:22:76:5f:9e:24:4f:b5:24:34:6c:8f:c9:16:a9:aa:88: f5:43:6b:66:13:95:6b:35:bf:d8:10:45:06:32:77:8b:42:7f: 1e:b4:8f:54:74:21:3c:d2:cd:97:9a:24:d9:31:b3:8f:d0:6b: aa:5a:bc:c1:3f:9e:83:f5:2a:e2:95:aa:73:02:cb:81:16:70: ff:94:64:0d:4e:0e:10:c3:ec:a6:fc:9f:92:d7:4a:db:0e:0a: df:16:f6:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDk4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTMzRDcxMTAvBgNVBAUTKDBFRDUyQTc2RjMxQzI0MjE3NEEyQUQxOTQ4MUM5NTcw M0I3MkUyMzYwHhcNMjUxMDE4MTgyNjA4WhcNMjUxMDI1MTgyNjA4WjAYMRYwFAYD VQQDEw02OGYzZGJjMS03ODBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoO6LSiOuEN/o6W4Hr/CNOK0d5W9KxKRPCAlghAASFV6UezkDRCAHmpLmOPjK h0n55z+sqkriaIFCpiebsogAa46L5vhPTW8nWm1nvqk/QxHEQb9VkDTRV0wFL5LD rdCh38fZP7SzIzJ1iJxkFGTQ7Tp9ocwOijbaxRBmpFetok4RltA7krrZfWWWQZYX AGweo0QX5X7sKN0r82xFxBd243uJ3Ia5/frzt7NH9bmjWZ10yb3YrtVjqoFgKXVd CNjfOdTC7qmnYLQCQViMy+BoAJ3PdtvGVKYPmq9iX1lJ9lm3VakQp98NeSVCUiHy Sq1wXP+jI/56U3ct1Xbhz4ygDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLCHBA+F G7Qc3QQ+3fEqChPD6dCrMB8GA1UdIwQYMBaAFA7VKnbzHCQhdKKtGUgclXA7cuI2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzNENy9EQzdEODg2NEFF QjAxMUU5OEQwOEUxM0NDNEY5QUUwMi9EdFVxZHZNY0pDRjBvcTBaU0J5VmNEdHk0 alkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0R0VXFkdk1jSkNGMG9xMFpTQnlWY0R0eTRqWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzNENy9EQzdEODg2NEFFQjAxMUU5OEQwOEUxM0NDNEY5QUUwMi9EdFVxZHZNY0pD RjBvcTBaU0J5VmNEdHk0alkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBku/CztqADgEjLRHwIqpsrlO+rUgdmgJnSc1tPf/U74NVobayd45xu iAgckorInsT+YEzNQ7dcK15AeGlJ9BOTNeo2Yhs6jIa0W1S+PPbkYD2g74L/6seW /PZORQ++FDyjOcSpmc9G19jk7URJVGJXqdkGp2THPZ6iEhjZ2Cf76RIoLZPM7e/q pA4WECazcpWVdXWuY1nNO+CHEMdA6Fgj8WACpCJ2X54kT7UkNGyPyRapqoj1Q2tm E5VrNb/YEEUGMneLQn8etI9UdCE80s2XmiTZMbOP0GuqWrzBP56D9SrilapzAsuB FnD/lGQNTg4Qw+ym/J+S10rbDgrfFvbf -----END CERTIFICATE-----Generated at Mon Oct 20 04:47:08 2025 by rpki-client