$ rpki-client -vvf rpki.apnic.net/member_repository/A91F609C/0AA57C6C046511ED9C85F15EC4F9AE02/_dVXSqazoje0NmmVfYUzlZPcHpo.mft File: _dVXSqazoje0NmmVfYUzlZPcHpo.mft (raw, json) Hash identifier: Tyncy28HNuGYrz21d79NmFdKwCDcaweF62G+YXfqneo= Subject key identifier: 53:D3:91:6B:42:69:E9:59:81:0F:09:01:A7:B5:6D:FD:18:C4:9C:5B Authority key identifier: FD:D5:57:4A:A6:B3:A2:37:B4:36:69:95:7D:85:33:95:93:DC:1E:9A Certificate issuer: /CN=A91F609C/serialNumber=FDD5574AA6B3A237B43669957D85339593DC1E9A Certificate serial: 02E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_dVXSqazoje0NmmVfYUzlZPcHpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F609C/0AA57C6C046511ED9C85F15EC4F9AE02/_dVXSqazoje0NmmVfYUzlZPcHpo.mft Manifest number: 02DB Signing time: Sun 19 Oct 2025 03:27:12 +0000 Manifest this update: Sun 19 Oct 2025 03:27:12 +0000 Manifest next update: Sun 26 Oct 2025 03:27:12 +0000 Files and hashes: 1: _dVXSqazoje0NmmVfYUzlZPcHpo.crl (hash: LBEntWtUIYv3h5WCyhOcSxRIBrRG/LHy6gTew9UjAds=) 2: 06E87B54046711ED95A3495FC4F9AE02.roa (hash: ZYQF+B8J3kvs5xBRsxJyyeizflCtkKmYQojiW1ynZsg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F609C/0AA57C6C046511ED9C85F15EC4F9AE02/_dVXSqazoje0NmmVfYUzlZPcHpo.crl rsync://rpki.apnic.net/member_repository/A91F609C/0AA57C6C046511ED9C85F15EC4F9AE02/_dVXSqazoje0NmmVfYUzlZPcHpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_dVXSqazoje0NmmVfYUzlZPcHpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:27:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 737 (0x2e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F609C, serialNumber=FDD5574AA6B3A237B43669957D85339593DC1E9A Validity Not Before: Oct 19 03:27:12 2025 GMT Not After : Oct 26 03:27:12 2025 GMT Subject: CN=68f45a90-a9a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:29:91:f4:5a:17:7f:ee:27:f1:78:13:42:55: e2:70:ee:10:6a:01:8e:8d:5f:00:68:19:05:5e:7b: 43:ee:30:9f:20:58:6a:7c:ac:30:55:b2:f5:fc:42: a1:d6:a1:1c:71:80:73:19:0d:41:76:8e:6d:ba:43: 56:51:35:de:1d:10:27:ca:64:ed:98:68:19:90:f5: 40:d1:34:7e:7b:3c:c3:5f:3a:7a:43:68:14:2e:9c: 9a:cf:71:05:45:90:2f:01:7e:3d:ca:bd:cf:42:51: 74:62:5f:00:47:56:6d:06:f1:ae:db:dd:9b:fe:88: 05:58:9d:fa:14:f5:65:32:de:1d:a4:29:f3:71:f8: e5:b0:12:69:cc:2e:18:25:01:ed:d3:93:cf:43:ff: e4:ff:dd:37:c2:fc:75:5b:94:30:84:2a:5f:37:c7: 85:64:3c:33:1f:84:56:4e:85:6c:e4:55:9c:45:83: 2a:1b:03:28:35:c0:98:99:36:c4:d0:38:75:3b:cf: fa:8e:e8:a9:d7:bf:26:79:dd:49:15:ac:35:12:bb: 85:77:47:4b:80:4d:6d:c7:6f:da:7f:dc:01:8e:05: 51:24:c0:09:a7:91:a3:55:9d:d0:1f:97:8b:c8:cd: 38:02:ce:71:a7:d3:b1:dd:5c:22:47:ae:aa:7c:f0: 50:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:D3:91:6B:42:69:E9:59:81:0F:09:01:A7:B5:6D:FD:18:C4:9C:5B X509v3 Authority Key Identifier: keyid:FD:D5:57:4A:A6:B3:A2:37:B4:36:69:95:7D:85:33:95:93:DC:1E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F609C/0AA57C6C046511ED9C85F15EC4F9AE02/_dVXSqazoje0NmmVfYUzlZPcHpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_dVXSqazoje0NmmVfYUzlZPcHpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F609C/0AA57C6C046511ED9C85F15EC4F9AE02/_dVXSqazoje0NmmVfYUzlZPcHpo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:f7:95:1d:d5:c8:ac:4f:78:e5:98:66:86:3d:65:a1:a5:50: c2:3d:1a:24:af:67:1f:26:ef:53:3a:68:3a:24:11:52:6f:9c: 8b:75:76:c1:c0:8d:b3:ba:29:20:7e:e9:0c:d2:94:45:ef:ba: 13:5d:65:d1:1f:f5:53:a0:c3:95:3b:cf:d5:de:60:d9:d4:4a: 75:a9:23:be:b9:72:83:35:c2:1c:c6:c7:d4:59:b2:86:6c:0f: 38:d6:0d:77:ab:d7:48:9e:c9:b3:4d:a3:4b:62:ff:3f:da:4a: 8e:2e:75:35:8c:08:33:3b:41:0c:41:9c:7c:49:58:9b:98:e8: 68:3a:2f:62:11:e2:f1:67:44:c9:c1:9f:9e:00:d6:03:9e:37: 36:c5:2f:06:2e:cd:cd:6f:05:99:56:90:df:3d:18:a0:9b:d3: 22:29:52:0a:1f:8e:09:d5:0c:38:04:82:c0:2a:4d:e8:8b:88: 41:34:9a:6d:a9:7e:2c:91:f8:06:c7:f3:a1:5e:cf:f7:86:f8: 16:a4:3c:2c:09:67:3f:27:dc:89:33:25:cb:81:7f:3f:9c:ae: 9e:0d:b2:0d:96:1b:ff:c2:96:8e:32:0d:5b:1c:8f:c0:b1:c7: 23:bb:58:1a:48:cf:b8:5d:ce:91:4d:a7:fe:03:d0:19:16:80: f6:17:ed:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAuEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjYwOUMxMTAvBgNVBAUTKEZERDU1NzRBQTZCM0EyMzdCNDM2Njk5NTdEODUzMzk1 OTNEQzFFOUEwHhcNMjUxMDE5MDMyNzEyWhcNMjUxMDI2MDMyNzEyWjAYMRYwFAYD VQQDEw02OGY0NWE5MC1hOWE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtSmR9FoXf+4n8XgTQlXicO4QagGOjV8AaBkFXntD7jCfIFhqfKwwVbL1/EKh 1qEccYBzGQ1Bdo5tukNWUTXeHRAnymTtmGgZkPVA0TR+ezzDXzp6Q2gULpyaz3EF RZAvAX49yr3PQlF0Yl8AR1ZtBvGu292b/ogFWJ36FPVlMt4dpCnzcfjlsBJpzC4Y JQHt05PPQ//k/903wvx1W5QwhCpfN8eFZDwzH4RWToVs5FWcRYMqGwMoNcCYmTbE 0Dh1O8/6juip178med1JFaw1EruFd0dLgE1tx2/af9wBjgVRJMAJp5GjVZ3QH5eL yM04As5xp9Ox3VwiR66qfPBQFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFPTkWtC aelZgQ8JAae1bf0YxJxbMB8GA1UdIwQYMBaAFP3VV0qms6I3tDZplX2FM5WT3B6a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjA5Qy8wQUE1N0M2QzA0 NjUxMUVEOUM4NUYxNUVDNEY5QUUwMi9fZFZYU3Fhem9qZTBObW1WZllVemxaUGNI cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19kVlhTcWF6b2plME5tbVZmWVV6bFpQY0hwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjA5Qy8wQUE1N0M2QzA0NjUxMUVEOUM4NUYxNUVDNEY5QUUwMi9fZFZYU3Fhem9q ZTBObW1WZllVemxaUGNIcG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCj95Ud1cisT3jlmGaGPWWhpVDCPRokr2cfJu9TOmg6JBFSb5yLdXbB wI2zuikgfukM0pRF77oTXWXRH/VToMOVO8/V3mDZ1Ep1qSO+uXKDNcIcxsfUWbKG bA841g13q9dInsmzTaNLYv8/2kqOLnU1jAgzO0EMQZx8SVibmOhoOi9iEeLxZ0TJ wZ+eANYDnjc2xS8GLs3NbwWZVpDfPRigm9MiKVIKH44J1Qw4BILAKk3oi4hBNJpt qX4skfgGx/OhXs/3hvgWpDwsCWc/J9yJMyXLgX8/nK6eDbINlhv/wpaOMg1bHI/A sccju1gaSM+4Xc6RTaf+A9AZFoD2F+2Q -----END CERTIFICATE-----Generated at Mon Oct 20 08:55:44 2025 by rpki-client