$ rpki-client -vvf rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/d2KqgncCDQu1x1mX3l99ilFC3xQ.mft File: d2KqgncCDQu1x1mX3l99ilFC3xQ.mft (raw, json) Hash identifier: JCZW9rhx4WmP0A0+iGN0Isw//xpJAEh3JohyHeJxFwc= Subject key identifier: 7A:EF:EE:31:C0:25:B5:34:A1:74:A6:70:B8:56:2F:AE:77:CF:E7:8B Authority key identifier: 77:62:AA:82:77:02:0D:0B:B5:C7:59:97:DE:5F:7D:8A:51:42:DF:14 Certificate issuer: /CN=A911FAC3/serialNumber=7762AA8277020D0BB5C75997DE5F7D8A5142DF14 Certificate serial: 13FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d2KqgncCDQu1x1mX3l99ilFC3xQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/d2KqgncCDQu1x1mX3l99ilFC3xQ.mft Manifest number: 13DD Signing time: Tue 04 Nov 2025 17:02:49 +0000 Manifest this update: Tue 04 Nov 2025 17:02:49 +0000 Manifest next update: Tue 11 Nov 2025 17:02:49 +0000 Files and hashes: 1: d2KqgncCDQu1x1mX3l99ilFC3xQ.crl (hash: ClxfB/4KHr4Euy1Qwowapnt0/hYS8r15BY0Q11R5nRs=) 2: 337C9CE4314C11F0845D2C39C4F9AE02.roa (hash: 3xfhrQz5XfecI25n9SPWe9dh+MA3sbDb74Wk4gI1r2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/d2KqgncCDQu1x1mX3l99ilFC3xQ.crl rsync://rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/d2KqgncCDQu1x1mX3l99ilFC3xQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d2KqgncCDQu1x1mX3l99ilFC3xQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:02:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5116 (0x13fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911FAC3, serialNumber=7762AA8277020D0BB5C75997DE5F7D8A5142DF14 Validity Not Before: Nov 4 17:02:49 2025 GMT Not After : Nov 11 17:02:49 2025 GMT Subject: CN=690a31b9-3a8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:67:50:a8:4b:2e:87:0d:64:c7:c1:61:c4:5c: c3:57:35:a6:3c:df:e5:be:d8:dc:70:18:56:0a:fb: 3d:e5:5b:6f:de:62:71:5a:76:c8:f0:44:39:ef:46: 6b:69:3e:fc:db:ea:07:0e:fe:14:7b:69:cd:fb:59: 2d:d1:70:81:8a:ed:38:81:91:18:25:55:f7:4a:b5: 2d:eb:2d:b0:1b:e4:48:28:99:e8:5a:70:91:f0:80: 7c:47:da:17:9e:c3:43:8d:8a:21:68:3e:39:29:2c: d2:75:ca:bb:49:1f:50:83:30:6c:8f:c4:45:b7:ee: 9e:d6:c5:4d:c4:7f:ac:ed:07:e8:90:21:25:47:2e: c9:5d:6f:d8:49:67:b7:a6:a6:1b:6e:b2:14:a6:ab: d6:a5:4c:b7:25:b3:aa:17:6e:43:e0:86:10:71:b6: 69:90:43:b0:79:90:bc:0e:79:29:0e:08:b9:34:d3: 95:7b:7e:3c:41:84:c2:b7:ba:14:13:73:5f:c5:0e: 2a:7b:2a:e3:99:62:1e:58:65:bf:2d:6a:1f:0c:3f: 49:52:38:7f:50:e0:95:eb:e7:a6:49:f5:a6:81:40: 88:ab:de:0e:87:8e:57:9d:ee:82:43:f3:d3:98:46: bb:10:30:f6:02:ee:90:13:69:1d:53:aa:8d:98:eb: 2e:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:EF:EE:31:C0:25:B5:34:A1:74:A6:70:B8:56:2F:AE:77:CF:E7:8B X509v3 Authority Key Identifier: keyid:77:62:AA:82:77:02:0D:0B:B5:C7:59:97:DE:5F:7D:8A:51:42:DF:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/d2KqgncCDQu1x1mX3l99ilFC3xQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d2KqgncCDQu1x1mX3l99ilFC3xQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/d2KqgncCDQu1x1mX3l99ilFC3xQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:9b:70:71:62:1d:32:34:71:b1:14:77:e5:a7:1f:17:b2:e8: 37:68:5c:d4:76:89:8e:1b:1e:6e:1f:a4:3a:d7:f0:32:56:be: b3:ad:a0:fc:9c:37:4a:69:01:5f:dd:d6:5e:25:c0:6f:83:fa: 3c:e1:8f:a6:37:a3:22:58:03:42:7a:1a:fb:0d:5d:c0:34:a7: d2:bc:5b:8d:3b:17:d3:c1:d1:a7:cc:f3:c0:f6:bc:33:bd:ab: 65:b3:7a:02:13:f4:49:d8:df:fb:e3:df:95:19:01:fc:ca:cc: 14:81:97:01:a5:7c:08:c5:d1:72:97:c1:17:b1:ec:71:3d:67: f4:e6:6e:f8:3d:a3:b5:43:c3:80:33:47:d4:aa:d8:90:26:64: 20:0f:de:e3:5c:cb:96:cc:c2:ed:83:ad:98:d4:a2:d8:dd:3f: 8a:7e:c0:ae:a4:77:1a:00:6c:ea:b8:41:f4:54:51:07:74:58: b5:28:c8:7d:de:00:0b:44:7a:04:11:e3:51:3c:de:74:eb:a6: 8d:d6:96:82:c4:2a:ff:26:1f:73:dd:aa:a4:fe:ef:ef:11:8f: cd:48:a2:a6:2a:43:4c:be:21:b0:7b:18:7c:26:18:33:94:c4: b2:ae:11:62:8d:e9:9c:d7:14:9e:1e:e1:c3:ac:1a:e3:c8:24: 16:bb:fc:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE/wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUZBQzMxMTAvBgNVBAUTKDc3NjJBQTgyNzcwMjBEMEJCNUM3NTk5N0RFNUY3RDhB NTE0MkRGMTQwHhcNMjUxMTA0MTcwMjQ5WhcNMjUxMTExMTcwMjQ5WjAYMRYwFAYD VQQDEw02OTBhMzFiOS0zYThlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA12dQqEsuhw1kx8FhxFzDVzWmPN/lvtjccBhWCvs95Vtv3mJxWnbI8EQ570Zr aT782+oHDv4Ue2nN+1kt0XCBiu04gZEYJVX3SrUt6y2wG+RIKJnoWnCR8IB8R9oX nsNDjYohaD45KSzSdcq7SR9QgzBsj8RFt+6e1sVNxH+s7QfokCElRy7JXW/YSWe3 pqYbbrIUpqvWpUy3JbOqF25D4IYQcbZpkEOweZC8DnkpDgi5NNOVe348QYTCt7oU E3NfxQ4qeyrjmWIeWGW/LWofDD9JUjh/UOCV6+emSfWmgUCIq94Oh45Xne6CQ/PT mEa7EDD2Au6QE2kdU6qNmOsuswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHrv7jHA JbU0oXSmcLhWL653z+eLMB8GA1UdIwQYMBaAFHdiqoJ3Ag0LtcdZl95ffYpRQt8U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRkFDMy83Qjg2OEMwODlE RjUxMUU4OTU3QUI0MTZDNEY5QUUwMi9kMktxZ25jQ0RRdTF4MW1YM2w5OWlsRkMz eFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2QyS3FnbmNDRFF1MXgxbVgzbDk5aWxGQzN4US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RkFDMy83Qjg2OEMwODlERjUxMUU4OTU3QUI0MTZDNEY5QUUwMi9kMktxZ25jQ0RR dTF4MW1YM2w5OWlsRkMzeFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRm3BxYh0yNHGxFHflpx8Xsug3aFzUdomOGx5uH6Q61/AyVr6zraD8 nDdKaQFf3dZeJcBvg/o84Y+mN6MiWANCehr7DV3ANKfSvFuNOxfTwdGnzPPA9rwz vatls3oCE/RJ2N/749+VGQH8yswUgZcBpXwIxdFyl8EXsexxPWf05m74PaO1Q8OA M0fUqtiQJmQgD97jXMuWzMLtg62Y1KLY3T+KfsCupHcaAGzquEH0VFEHdFi1KMh9 3gALRHoEEeNRPN5066aN1paCxCr/Jh9z3aqk/u/vEY/NSKKmKkNMviGwexh8Jhgz lMSyrhFijemc1xSeHuHDrBrjyCQWu/zc -----END CERTIFICATE-----Generated at Wed Nov 5 05:12:10 2025 by rpki-client