$ rpki-client -vvf rpki.apnic.net/member_repository/A912B4DB/5C50296C1DA811E2AB6BA6A208B02CD2/DcXOSilPLJOAqRNe4fBTByikzaY.mft File: DcXOSilPLJOAqRNe4fBTByikzaY.mft (raw, json) Hash identifier: /iyOJ2kCvwgXWfuzwmQ/rdEQHgKXUWKOhe1Qm8iKNCI= Subject key identifier: 1B:76:1F:8B:AE:88:69:CB:9B:F7:4E:FB:EE:48:A2:B3:4D:70:EC:9E Authority key identifier: 0D:C5:CE:4A:29:4F:2C:93:80:A9:13:5E:E1:F0:53:07:28:A4:CD:A6 Certificate issuer: /CN=A912B4DB/serialNumber=0DC5CE4A294F2C9380A9135EE1F0530728A4CDA6 Certificate serial: 34EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DcXOSilPLJOAqRNe4fBTByikzaY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B4DB/5C50296C1DA811E2AB6BA6A208B02CD2/DcXOSilPLJOAqRNe4fBTByikzaY.mft Manifest number: 34E1 Signing time: Tue 04 Nov 2025 15:17:19 +0000 Manifest this update: Tue 04 Nov 2025 15:17:18 +0000 Manifest next update: Tue 11 Nov 2025 15:17:18 +0000 Files and hashes: 1: DcXOSilPLJOAqRNe4fBTByikzaY.crl (hash: Oy5PzmTTMcqe4JXNQv07N/R8VMbCu/ebeGQdShPQG4s=) 2: 7FE5F2CEDB9411E9832A463AC4F9AE02.roa (hash: Sw4ihe/uH6fmIDPdKoxmP7xAVXuq4ul6aZ2AD9s5AWE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B4DB/5C50296C1DA811E2AB6BA6A208B02CD2/DcXOSilPLJOAqRNe4fBTByikzaY.crl rsync://rpki.apnic.net/member_repository/A912B4DB/5C50296C1DA811E2AB6BA6A208B02CD2/DcXOSilPLJOAqRNe4fBTByikzaY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DcXOSilPLJOAqRNe4fBTByikzaY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:17:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13547 (0x34eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B4DB, serialNumber=0DC5CE4A294F2C9380A9135EE1F0530728A4CDA6 Validity Not Before: Nov 4 15:17:18 2025 GMT Not After : Nov 11 15:17:18 2025 GMT Subject: CN=690a18fe-4121 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:b7:31:34:f1:58:3a:1a:87:82:df:3b:df:18: 26:a2:d1:8d:0d:f6:0b:d3:66:a5:e5:2a:7d:08:35: 2e:55:62:e0:4b:a4:70:b4:48:9f:74:a2:74:e2:74: ba:fd:18:4e:9b:a4:43:cf:05:06:e4:d3:35:9e:af: 33:2a:62:d9:9e:16:75:94:1f:6e:a4:54:6a:3d:9d: 2f:11:0b:58:02:b8:0b:de:04:b0:57:e5:2e:51:2b: db:20:0a:98:77:20:47:34:a5:4d:13:de:ad:23:85: 02:0e:55:b1:64:a9:a0:29:99:32:c4:51:4a:2f:fb: 19:9c:62:66:8a:03:08:65:7b:be:4e:db:65:92:58: 44:53:14:04:42:34:e1:d9:4e:4d:24:7f:89:2a:47: d8:e5:18:a3:ec:94:ab:82:f7:8d:b1:40:0e:6c:67: 3f:fa:16:58:a7:86:12:5a:61:ec:bb:85:6a:40:20: 5b:86:88:b2:d2:65:5a:3a:30:e2:00:ed:1c:4a:ad: 31:8f:17:cd:4f:3f:c0:e9:41:99:23:42:68:ce:0d: 2e:ed:4a:3e:61:8b:38:8e:36:35:2d:91:43:2e:a3: 16:b8:d3:25:63:6b:6a:c6:39:00:c9:08:76:c4:e0: c5:7f:82:54:91:70:03:a0:99:73:99:ef:61:b2:59: 39:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:76:1F:8B:AE:88:69:CB:9B:F7:4E:FB:EE:48:A2:B3:4D:70:EC:9E X509v3 Authority Key Identifier: keyid:0D:C5:CE:4A:29:4F:2C:93:80:A9:13:5E:E1:F0:53:07:28:A4:CD:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B4DB/5C50296C1DA811E2AB6BA6A208B02CD2/DcXOSilPLJOAqRNe4fBTByikzaY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DcXOSilPLJOAqRNe4fBTByikzaY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B4DB/5C50296C1DA811E2AB6BA6A208B02CD2/DcXOSilPLJOAqRNe4fBTByikzaY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:b1:d3:db:43:bf:0f:33:8d:5b:ee:5d:e1:84:f3:7f:5a:c5: 4b:c9:9d:e9:8b:d7:76:bc:b6:92:9b:ec:77:a4:bc:90:2a:f4: 56:f3:0c:ca:69:ae:90:f8:7c:c8:85:20:6f:7c:43:1e:7f:5a: 1d:43:31:b5:ad:75:dc:ec:fb:ff:41:60:1a:a7:24:48:dc:f7: cd:14:49:0c:b4:1a:ea:94:69:30:ec:e9:36:a6:24:7a:13:ae: a6:9a:9c:ca:e4:b8:f2:d8:9d:dc:0a:29:d5:70:cd:76:33:26: 9e:21:ba:3b:1f:8b:a4:25:81:60:3c:4a:17:82:fc:36:82:fb: 21:b6:d0:75:f7:0d:7b:56:7b:a9:f2:2c:15:2a:a2:69:3a:12: 5e:02:45:3c:c1:ff:e1:87:f0:99:65:89:d0:10:01:43:1e:f4: 98:d4:da:2c:ed:16:00:bc:59:d6:88:12:52:f4:52:04:ba:06: 8a:8b:2d:ed:16:88:43:79:4b:e3:1d:10:f3:3e:d7:dd:61:d2: 1b:d9:2d:00:3c:d5:71:03:15:43:b9:18:64:c5:22:bc:2a:5b: bb:d5:fb:26:83:2c:fc:43:22:e9:61:bd:3c:44:be:9c:f0:78: 63:ea:29:b4:33:52:96:a5:f5:25:8a:02:32:0c:51:71:2d:b2: ad:99:3e:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkI0REIxMTAvBgNVBAUTKDBEQzVDRTRBMjk0RjJDOTM4MEE5MTM1RUUxRjA1MzA3 MjhBNENEQTYwHhcNMjUxMTA0MTUxNzE4WhcNMjUxMTExMTUxNzE4WjAYMRYwFAYD VQQDEw02OTBhMThmZS00MTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+rcxNPFYOhqHgt873xgmotGNDfYL02al5Sp9CDUuVWLgS6RwtEifdKJ04nS6 /RhOm6RDzwUG5NM1nq8zKmLZnhZ1lB9upFRqPZ0vEQtYArgL3gSwV+UuUSvbIAqY dyBHNKVNE96tI4UCDlWxZKmgKZkyxFFKL/sZnGJmigMIZXu+TttlklhEUxQEQjTh 2U5NJH+JKkfY5Rij7JSrgveNsUAObGc/+hZYp4YSWmHsu4VqQCBbhoiy0mVaOjDi AO0cSq0xjxfNTz/A6UGZI0Jozg0u7Uo+YYs4jjY1LZFDLqMWuNMlY2tqxjkAyQh2 xODFf4JUkXADoJlzme9hslk5fwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBt2H4uu iGnLm/dO++5IorNNcOyeMB8GA1UdIwQYMBaAFA3FzkopTyyTgKkTXuHwUwcopM2m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjREQi81QzUwMjk2QzFE QTgxMUUyQUI2QkE2QTIwOEIwMkNEMi9EY1hPU2lsUExKT0FxUk5lNGZCVEJ5aWt6 YVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RjWE9TaWxQTEpPQXFSTmU0ZkJUQnlpa3phWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QjREQi81QzUwMjk2QzFEQTgxMUUyQUI2QkE2QTIwOEIwMkNEMi9EY1hPU2lsUExK T0FxUk5lNGZCVEJ5aWt6YVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABsdPbQ78PM41b7l3hhPN/WsVLyZ3pi9d2vLaSm+x3pLyQKvRW8wzK aa6Q+HzIhSBvfEMef1odQzG1rXXc7Pv/QWAapyRI3PfNFEkMtBrqlGkw7Ok2piR6 E66mmpzK5Ljy2J3cCinVcM12MyaeIbo7H4ukJYFgPEoXgvw2gvshttB19w17Vnup 8iwVKqJpOhJeAkU8wf/hh/CZZYnQEAFDHvSY1Nos7RYAvFnWiBJS9FIEugaKiy3t FohDeUvjHRDzPtfdYdIb2S0APNVxAxVDuRhkxSK8Klu71fsmgyz8QyLpYb08RL6c 8Hhj6im0M1KWpfUligIyDFFxLbKtmT4B -----END CERTIFICATE-----Generated at Thu Nov 6 01:10:41 2025 by rpki-client