$ rpki-client -vvf rpki.apnic.net/member_repository/A9132742/0415D6FE84B711ECB5A71B42C4F9AE02/DO4Nlnc9XdrUZ54Og5qNwSZp4jI.mft File: DO4Nlnc9XdrUZ54Og5qNwSZp4jI.mft (raw, json) Hash identifier: b2a+7tBHBfA3zxb/qQXYezV8Ob3EnSYOs5EHc6j0Qns= Subject key identifier: 20:6E:25:C3:CC:F9:CE:DA:8D:52:23:70:59:15:5C:93:72:2B:F8:AD Authority key identifier: 0C:EE:0D:96:77:3D:5D:DA:D4:67:9E:0E:83:9A:8D:C1:26:69:E2:32 Certificate issuer: /CN=A9132742/serialNumber=0CEE0D96773D5DDAD4679E0E839A8DC12669E232 Certificate serial: 0427 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DO4Nlnc9XdrUZ54Og5qNwSZp4jI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132742/0415D6FE84B711ECB5A71B42C4F9AE02/DO4Nlnc9XdrUZ54Og5qNwSZp4jI.mft Manifest number: 0423 Signing time: Mon 03 Nov 2025 00:18:38 +0000 Manifest this update: Mon 03 Nov 2025 00:18:38 +0000 Manifest next update: Mon 10 Nov 2025 00:18:38 +0000 Files and hashes: 1: DO4Nlnc9XdrUZ54Og5qNwSZp4jI.crl (hash: Yis8zEEajjO2BANbJzYNNUeWkcGSZfI8x4QdCELOBhk=) 2: 41A312C684BB11EC95CF1D6DC4F9AE02.roa (hash: gOa0TpZKNAKtEp1z7Y7hA0Mkc96+IudmzfWq1Ab24PI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132742/0415D6FE84B711ECB5A71B42C4F9AE02/DO4Nlnc9XdrUZ54Og5qNwSZp4jI.crl rsync://rpki.apnic.net/member_repository/A9132742/0415D6FE84B711ECB5A71B42C4F9AE02/DO4Nlnc9XdrUZ54Og5qNwSZp4jI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DO4Nlnc9XdrUZ54Og5qNwSZp4jI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:18:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1063 (0x427) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132742, serialNumber=0CEE0D96773D5DDAD4679E0E839A8DC12669E232 Validity Not Before: Nov 3 00:18:38 2025 GMT Not After : Nov 10 00:18:38 2025 GMT Subject: CN=6907f4de-2431 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:e3:88:f3:4a:89:ba:a0:d6:b5:0c:8e:d6:bf: 2f:96:c8:b7:07:8f:f4:b6:96:02:2e:88:ca:06:31: 6d:31:5a:04:ae:81:7b:65:d4:39:26:e9:ef:eb:63: ab:0a:2b:ef:ff:bf:e0:5e:91:b9:21:02:e4:11:90: bd:e8:62:04:e0:9d:10:39:19:17:d5:95:9f:b3:ca: a1:5b:47:6e:36:7f:22:78:66:1d:57:d7:2b:7b:7a: 98:6f:dd:60:41:3c:d0:44:77:ba:01:fb:64:55:0c: 1c:66:f3:82:b1:6e:0e:40:50:cd:4f:35:53:b4:1d: 1d:f1:f6:aa:24:8b:a8:48:ef:55:57:06:4e:57:af: b0:02:39:99:d0:58:c8:19:a5:bd:8a:c0:92:c4:d8: d3:e0:b4:b0:50:7a:3e:16:4a:c8:90:b2:ec:17:69: fa:d7:98:a1:89:8e:6c:1b:9d:0f:d7:5e:18:3a:7c: aa:60:ce:5f:a0:c4:9c:c0:f2:d1:8a:cd:81:be:df: eb:59:01:d5:8d:5c:fa:81:8f:93:cd:a6:3f:c0:4b: 29:37:0f:b0:d6:7d:2c:31:90:2f:2a:9f:95:61:5a: 3f:86:d0:58:42:d7:ed:01:b9:3a:31:c1:30:70:8c: d2:32:ae:72:ce:87:d7:74:c7:dd:85:8b:ec:f6:8b: 43:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:6E:25:C3:CC:F9:CE:DA:8D:52:23:70:59:15:5C:93:72:2B:F8:AD X509v3 Authority Key Identifier: keyid:0C:EE:0D:96:77:3D:5D:DA:D4:67:9E:0E:83:9A:8D:C1:26:69:E2:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132742/0415D6FE84B711ECB5A71B42C4F9AE02/DO4Nlnc9XdrUZ54Og5qNwSZp4jI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DO4Nlnc9XdrUZ54Og5qNwSZp4jI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132742/0415D6FE84B711ECB5A71B42C4F9AE02/DO4Nlnc9XdrUZ54Og5qNwSZp4jI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:25:6c:82:25:a0:1d:ca:2e:0a:2f:2c:aa:98:a0:26:b6:fb: 53:13:2f:a2:57:99:68:71:33:62:dd:a6:6a:36:3f:08:79:40: d5:99:5d:05:b8:48:a9:e5:03:63:5e:fa:0b:28:c2:7c:2e:f3: 8f:34:ce:c1:c6:c3:78:3e:be:c9:65:32:84:94:c6:de:54:98: 68:8f:f2:4f:de:78:c6:b5:50:ee:71:d1:00:22:28:4d:23:29: 78:5e:f5:48:df:f9:0b:0c:56:3b:7f:11:19:9b:d3:da:7f:f4: bb:f4:5d:37:05:98:17:09:e8:f8:e4:37:00:1b:58:d3:dd:d0: 0d:76:dd:f7:15:9c:ff:98:36:9f:4a:fb:48:39:b8:d3:08:33: 02:ff:18:70:8c:1c:1b:99:5c:da:a9:7a:01:06:1a:24:01:08: e5:3b:71:2d:a7:ba:3d:f9:20:46:c4:69:f9:94:79:6c:29:8e: 2c:72:19:36:84:60:7f:1c:bf:79:58:bd:11:88:24:b1:b3:b4: 54:99:ec:03:d6:e6:1e:98:1c:7c:ce:b6:9d:29:ed:34:ab:5d: 78:1b:9b:e9:b5:88:eb:4b:5c:7f:a9:82:aa:2f:97:37:2a:55: 92:b2:d7:04:82:de:dc:1e:0d:be:99:bd:fa:6e:6d:38:86:59: 4c:ec:85:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzI3NDIxMTAvBgNVBAUTKDBDRUUwRDk2NzczRDVEREFENDY3OUUwRTgzOUE4REMx MjY2OUUyMzIwHhcNMjUxMTAzMDAxODM4WhcNMjUxMTEwMDAxODM4WjAYMRYwFAYD VQQDEw02OTA3ZjRkZS0yNDMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvOOI80qJuqDWtQyO1r8vlsi3B4/0tpYCLojKBjFtMVoEroF7ZdQ5Junv62Or Civv/7/gXpG5IQLkEZC96GIE4J0QORkX1ZWfs8qhW0duNn8ieGYdV9cre3qYb91g QTzQRHe6AftkVQwcZvOCsW4OQFDNTzVTtB0d8faqJIuoSO9VVwZOV6+wAjmZ0FjI GaW9isCSxNjT4LSwUHo+FkrIkLLsF2n615ihiY5sG50P114YOnyqYM5foMScwPLR is2Bvt/rWQHVjVz6gY+TzaY/wEspNw+w1n0sMZAvKp+VYVo/htBYQtftAbk6McEw cIzSMq5yzofXdMfdhYvs9otDWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCBuJcPM +c7ajVIjcFkVXJNyK/itMB8GA1UdIwQYMBaAFAzuDZZ3PV3a1GeeDoOajcEmaeIy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMjc0Mi8wNDE1RDZGRTg0 QjcxMUVDQjVBNzFCNDJDNEY5QUUwMi9ETzRObG5jOVhkclVaNTRPZzVxTndTWnA0 akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RPNE5sbmM5WGRyVVo1NE9nNXFOd1NacDRqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz Mjc0Mi8wNDE1RDZGRTg0QjcxMUVDQjVBNzFCNDJDNEY5QUUwMi9ETzRObG5jOVhk clVaNTRPZzVxTndTWnA0akkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiJWyCJaAdyi4KLyyqmKAmtvtTEy+iV5locTNi3aZqNj8IeUDVmV0F uEip5QNjXvoLKMJ8LvOPNM7BxsN4Pr7JZTKElMbeVJhoj/JP3njGtVDucdEAIihN Iyl4XvVI3/kLDFY7fxEZm9Paf/S79F03BZgXCej45DcAG1jT3dANdt33FZz/mDaf SvtIObjTCDMC/xhwjBwbmVzaqXoBBhokAQjlO3Etp7o9+SBGxGn5lHlsKY4schk2 hGB/HL95WL0RiCSxs7RUmewD1uYemBx8zradKe00q114G5vptYjrS1x/qYKqL5c3 KlWSstcEgt7cHg2+mb36bm04hllM7IU2 -----END CERTIFICATE-----Generated at Tue Nov 4 21:36:04 2025 by rpki-client