$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3BDE/50A90E36081411EA8EB5F810C4F9AE02/DKQH8N1TBy-ooGCBaRkpbmV31oI.mft File: DKQH8N1TBy-ooGCBaRkpbmV31oI.mft (raw, json) Hash identifier: AxjIdI34KJhPyiyvMUauBbLaxhsB9EnNTZl/xvMUHq4= Subject key identifier: 11:B6:8A:03:CA:D2:4D:BD:F1:49:3E:27:E4:79:84:13:DF:23:CF:EA Authority key identifier: 0C:A4:07:F0:DD:53:07:2F:A8:A0:60:81:69:19:29:6E:65:77:D6:82 Certificate issuer: /CN=A91F3BDE/serialNumber=0CA407F0DD53072FA8A060816919296E6577D682 Certificate serial: 0C90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DKQH8N1TBy-ooGCBaRkpbmV31oI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3BDE/50A90E36081411EA8EB5F810C4F9AE02/DKQH8N1TBy-ooGCBaRkpbmV31oI.mft Manifest number: 0C83 Signing time: Sat 18 Oct 2025 19:10:57 +0000 Manifest this update: Sat 18 Oct 2025 19:10:56 +0000 Manifest next update: Sat 25 Oct 2025 19:10:56 +0000 Files and hashes: 1: DKQH8N1TBy-ooGCBaRkpbmV31oI.crl (hash: pK6pu1m8flcm2DP5hzIo8jhDAieJZez5JGdmKlzNRMA=) 2: 2A8DE0F42FA611EB980DEF79C4F9AE02.roa (hash: YiyWCIvNLdPDV222FaDBu9f6FoqEAO4drbd6AsmezW0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3BDE/50A90E36081411EA8EB5F810C4F9AE02/DKQH8N1TBy-ooGCBaRkpbmV31oI.crl rsync://rpki.apnic.net/member_repository/A91F3BDE/50A90E36081411EA8EB5F810C4F9AE02/DKQH8N1TBy-ooGCBaRkpbmV31oI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DKQH8N1TBy-ooGCBaRkpbmV31oI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:10:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3216 (0xc90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3BDE, serialNumber=0CA407F0DD53072FA8A060816919296E6577D682 Validity Not Before: Oct 18 19:10:56 2025 GMT Not After : Oct 25 19:10:56 2025 GMT Subject: CN=68f3e640-1c1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:dd:9f:ad:a8:82:ec:fc:32:dd:f3:cb:52:9d: d2:cb:52:99:24:05:18:fa:5e:04:9b:e0:73:18:4d: 1e:77:41:b0:4f:fa:13:89:08:19:46:d5:e3:a4:02: 73:c3:2c:3d:76:10:8a:d1:45:9a:9f:ef:c0:55:cb: 31:51:70:02:d8:98:1f:c6:2a:4b:e2:52:36:5b:d0: b4:7b:0f:d3:2c:a6:3f:db:59:7e:4d:e2:ca:03:e6: 9a:a0:8c:32:18:06:af:bc:e5:da:66:19:e5:c1:46: dd:39:f9:b1:83:45:22:a3:4a:b4:73:31:1a:2e:c7: c8:5d:fe:a1:bb:cf:4c:af:ea:ad:e1:4b:58:55:1a: d3:e5:99:80:6e:40:05:3c:a1:2d:9d:cb:59:a0:55: ef:cf:1a:c6:fb:82:b9:9b:93:fe:ec:65:69:26:94: 07:5f:ce:3a:27:b3:57:0b:f9:40:5a:0b:02:45:79: f4:69:15:7b:9c:4b:18:51:51:56:47:a2:7d:0f:00: 98:c3:01:96:02:d9:1c:85:d0:5b:2d:77:08:12:de: c5:41:45:1b:e6:42:b1:87:c0:83:34:c0:8e:a7:67: 1c:5e:ac:74:ba:ec:34:e6:bd:43:e5:d9:e5:51:d6: be:49:6c:89:ab:b8:e0:bd:fe:1e:b0:10:e0:d6:9f: 95:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:B6:8A:03:CA:D2:4D:BD:F1:49:3E:27:E4:79:84:13:DF:23:CF:EA X509v3 Authority Key Identifier: keyid:0C:A4:07:F0:DD:53:07:2F:A8:A0:60:81:69:19:29:6E:65:77:D6:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3BDE/50A90E36081411EA8EB5F810C4F9AE02/DKQH8N1TBy-ooGCBaRkpbmV31oI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DKQH8N1TBy-ooGCBaRkpbmV31oI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3BDE/50A90E36081411EA8EB5F810C4F9AE02/DKQH8N1TBy-ooGCBaRkpbmV31oI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:8c:9f:30:75:e7:13:d7:e6:aa:66:0d:9b:82:9f:8b:6d:1c: ee:9b:41:e5:8c:d2:56:fe:96:68:54:b9:1f:05:45:ed:26:66: b2:fd:01:9d:81:2f:98:82:49:ca:a0:5f:88:fa:f7:91:34:53: dc:b7:07:74:c8:87:d1:49:8d:df:2d:36:a9:f6:0e:e1:61:47: 0a:7b:ba:8c:ed:57:d4:b8:78:a8:00:ab:39:54:4e:0b:de:02: a8:ea:85:9f:ac:4d:f0:75:af:a1:77:0c:aa:29:f2:27:95:b9: 5d:fe:a9:09:1e:ba:78:ad:40:77:a2:da:62:64:1b:0b:91:4a: 01:e4:09:d4:0c:0a:6b:e9:0b:3a:b3:73:f1:87:55:2b:c7:31: df:79:64:c9:52:0f:a9:03:45:f0:42:4b:be:3c:72:91:1a:60: 32:b7:b6:32:cd:7d:ec:a2:bf:49:03:8d:7c:03:c0:22:a3:4d: 8b:fd:94:ef:93:18:61:83:5a:1c:c8:c7:d3:41:42:6d:6f:4e: 01:75:62:5b:73:f6:bf:54:33:d3:56:c2:32:e7:d5:70:54:48: dd:73:03:2d:90:34:6f:69:c0:c2:d4:ef:b8:ec:5f:53:4f:da: 34:0a:29:87:28:b6:20:d9:90:61:50:cc:8c:36:2d:3f:ce:df: 00:4c:cc:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNCREUxMTAvBgNVBAUTKDBDQTQwN0YwREQ1MzA3MkZBOEEwNjA4MTY5MTkyOTZF NjU3N0Q2ODIwHhcNMjUxMDE4MTkxMDU2WhcNMjUxMDI1MTkxMDU2WjAYMRYwFAYD VQQDEw02OGYzZTY0MC0xYzFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzN2fraiC7Pwy3fPLUp3Sy1KZJAUY+l4Em+BzGE0ed0GwT/oTiQgZRtXjpAJz wyw9dhCK0UWan+/AVcsxUXAC2JgfxipL4lI2W9C0ew/TLKY/21l+TeLKA+aaoIwy GAavvOXaZhnlwUbdOfmxg0Uio0q0czEaLsfIXf6hu89Mr+qt4UtYVRrT5ZmAbkAF PKEtnctZoFXvzxrG+4K5m5P+7GVpJpQHX846J7NXC/lAWgsCRXn0aRV7nEsYUVFW R6J9DwCYwwGWAtkchdBbLXcIEt7FQUUb5kKxh8CDNMCOp2ccXqx0uuw05r1D5dnl Uda+SWyJq7jgvf4esBDg1p+VzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBG2igPK 0k298Uk+J+R5hBPfI8/qMB8GA1UdIwQYMBaAFAykB/DdUwcvqKBggWkZKW5ld9aC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0JERS81MEE5MEUzNjA4 MTQxMUVBOEVCNUY4MTBDNEY5QUUwMi9ES1FIOE4xVEJ5LW9vR0NCYVJrcGJtVjMx b0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RLUUg4TjFUQnktb29HQ0JhUmtwYm1WMzFvSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG M0JERS81MEE5MEUzNjA4MTQxMUVBOEVCNUY4MTBDNEY5QUUwMi9ES1FIOE4xVEJ5 LW9vR0NCYVJrcGJtVjMxb0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhjJ8wdecT1+aqZg2bgp+LbRzum0HljNJW/pZoVLkfBUXtJmay/QGd gS+YgknKoF+I+veRNFPctwd0yIfRSY3fLTap9g7hYUcKe7qM7VfUuHioAKs5VE4L 3gKo6oWfrE3wda+hdwyqKfInlbld/qkJHrp4rUB3otpiZBsLkUoB5AnUDApr6Qs6 s3Pxh1UrxzHfeWTJUg+pA0XwQku+PHKRGmAyt7YyzX3sor9JA418A8Aio02L/ZTv kxhhg1ocyMfTQUJtb04BdWJbc/a/VDPTVsIy59VwVEjdcwMtkDRvacDC1O+47F9T T9o0CimHKLYg2ZBhUMyMNi0/zt8ATMyn -----END CERTIFICATE-----Generated at Sun Oct 19 23:31:34 2025 by rpki-client