$ rpki-client -vvf rpki.apnic.net/member_repository/A91557BA/6E74951004EB11EAA72FA363C4F9AE02/dwbQiOkh3osB67oGIB0EFQ6GTQQ.mft File: dwbQiOkh3osB67oGIB0EFQ6GTQQ.mft (raw, json) Hash identifier: eSqno1JSaz9DaEf29Q/EHu3FUxDA0AnY8PE3A7BUTW0= Subject key identifier: 06:7E:DB:59:2E:20:35:CE:2D:9C:86:2B:6E:F0:83:E2:B6:A0:AB:C8 Authority key identifier: 77:06:D0:88:E9:21:DE:8B:01:EB:BA:06:20:1D:04:15:0E:86:4D:04 Certificate issuer: /CN=A91557BA/serialNumber=7706D088E921DE8B01EBBA06201D04150E864D04 Certificate serial: 0CA7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dwbQiOkh3osB67oGIB0EFQ6GTQQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91557BA/6E74951004EB11EAA72FA363C4F9AE02/dwbQiOkh3osB67oGIB0EFQ6GTQQ.mft Manifest number: 0C9C Signing time: Sun 02 Nov 2025 18:17:51 +0000 Manifest this update: Sun 02 Nov 2025 18:17:50 +0000 Manifest next update: Sun 09 Nov 2025 18:17:50 +0000 Files and hashes: 1: dwbQiOkh3osB67oGIB0EFQ6GTQQ.crl (hash: eI4efX2wJ6pdOtL9wr0NkC/OuTqdfULa+c1767I42Fo=) 2: D68289BE984B11ECB04DAB38C4F9AE02.roa (hash: TFFXR7HvdoBBfkYQcKZFG8C4IZWcW3CzAFgZ6vyFYeQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91557BA/6E74951004EB11EAA72FA363C4F9AE02/dwbQiOkh3osB67oGIB0EFQ6GTQQ.crl rsync://rpki.apnic.net/member_repository/A91557BA/6E74951004EB11EAA72FA363C4F9AE02/dwbQiOkh3osB67oGIB0EFQ6GTQQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dwbQiOkh3osB67oGIB0EFQ6GTQQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:17:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3239 (0xca7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91557BA, serialNumber=7706D088E921DE8B01EBBA06201D04150E864D04 Validity Not Before: Nov 2 18:17:50 2025 GMT Not After : Nov 9 18:17:50 2025 GMT Subject: CN=6907a04e-1961 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:c0:b6:69:b9:57:44:a0:1d:ef:86:3e:1d:6d: 91:71:88:d0:aa:86:a4:28:24:1b:6e:cc:2e:cc:be: 3b:94:ed:b6:a3:ab:4c:12:05:61:72:b2:6c:a0:36: ae:83:ea:36:85:57:76:25:ef:4d:b2:8d:29:2a:f8: b0:0c:0d:e6:08:24:43:99:b9:b8:68:40:6e:0c:8d: 16:b3:09:97:b0:dd:7a:32:5e:3a:66:f0:39:e5:ae: 91:44:5f:f5:d6:1e:48:4f:8f:7f:5a:1b:ab:d3:d4: 3c:ac:f1:b5:d4:6e:59:74:5a:0c:39:26:03:74:55: b3:e0:47:51:64:e7:1a:6d:89:58:1d:27:e2:24:6c: 59:35:cf:8a:9a:0c:33:70:6b:3c:54:b9:73:7d:3e: 76:05:d0:17:63:ee:a7:11:d2:cd:d3:9a:6b:45:60: e8:b1:ed:8c:33:75:a2:28:c6:7b:89:74:6a:c5:a0: 86:46:34:14:49:46:f2:06:1e:72:37:6c:c4:af:66: 11:74:6a:a0:c6:70:99:f0:62:84:79:68:1a:27:80: d5:f7:7a:88:70:ed:cd:73:4f:e4:7b:a6:42:75:d6: ba:36:b4:96:b4:9f:41:f8:2d:8b:11:9d:93:d0:0e: 52:ec:c1:ed:c7:f8:2d:d0:24:e3:04:98:b8:25:59: 07:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:7E:DB:59:2E:20:35:CE:2D:9C:86:2B:6E:F0:83:E2:B6:A0:AB:C8 X509v3 Authority Key Identifier: keyid:77:06:D0:88:E9:21:DE:8B:01:EB:BA:06:20:1D:04:15:0E:86:4D:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91557BA/6E74951004EB11EAA72FA363C4F9AE02/dwbQiOkh3osB67oGIB0EFQ6GTQQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dwbQiOkh3osB67oGIB0EFQ6GTQQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91557BA/6E74951004EB11EAA72FA363C4F9AE02/dwbQiOkh3osB67oGIB0EFQ6GTQQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:fa:9f:58:84:cd:9b:53:66:a4:fa:ab:6e:d7:b7:e2:7b:13: e3:92:ea:7a:3e:95:51:47:b8:2c:32:98:20:66:6c:a1:fc:bb: d5:a3:f2:90:39:c1:b6:c2:e9:d7:e4:6b:f7:30:5e:37:fa:72: ea:d3:4a:9a:ca:3e:a5:04:dc:8d:cf:e7:3b:11:8d:51:ee:10: 6e:53:48:ed:32:3b:03:2d:81:1c:96:d4:47:ae:1f:ef:ce:06: 9e:fb:cd:9c:f5:15:83:8d:0c:05:c8:92:96:99:52:cb:43:03: d3:04:b4:a9:3c:7f:3e:90:c5:82:08:83:b1:f6:3b:82:f0:89: 16:c5:72:67:e2:50:26:c7:d8:48:c7:f2:9f:e4:90:92:06:bc: 8c:9d:b5:91:12:6b:d3:d4:6c:0e:1a:1a:05:5c:83:4b:8c:a5: 43:40:f9:7b:6c:0b:3d:f4:2f:74:2a:72:52:94:a8:b8:63:f9: ac:64:37:11:83:9b:6e:49:91:4d:8d:03:15:aa:7a:7e:e0:17: 78:e8:0d:b9:d2:4c:7f:0a:9a:a6:1b:9b:52:7e:cc:13:1e:80: 24:7e:a4:12:39:f0:24:ff:3a:05:62:b3:63:e1:c9:61:64:5f: ee:06:fb:f7:c8:b5:46:1b:fe:14:74:cb:a5:70:2c:6e:ea:02: 34:25:7c:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDKcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU3QkExMTAvBgNVBAUTKDc3MDZEMDg4RTkyMURFOEIwMUVCQkEwNjIwMUQwNDE1 MEU4NjREMDQwHhcNMjUxMTAyMTgxNzUwWhcNMjUxMTA5MTgxNzUwWjAYMRYwFAYD VQQDEw02OTA3YTA0ZS0xOTYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3MC2ablXRKAd74Y+HW2RcYjQqoakKCQbbswuzL47lO22o6tMEgVhcrJsoDau g+o2hVd2Je9Nso0pKviwDA3mCCRDmbm4aEBuDI0WswmXsN16Ml46ZvA55a6RRF/1 1h5IT49/Whur09Q8rPG11G5ZdFoMOSYDdFWz4EdRZOcabYlYHSfiJGxZNc+Kmgwz cGs8VLlzfT52BdAXY+6nEdLN05prRWDose2MM3WiKMZ7iXRqxaCGRjQUSUbyBh5y N2zEr2YRdGqgxnCZ8GKEeWgaJ4DV93qIcO3Nc0/ke6ZCdda6NrSWtJ9B+C2LEZ2T 0A5S7MHtx/gt0CTjBJi4JVkHtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAZ+21ku IDXOLZyGK27wg+K2oKvIMB8GA1UdIwQYMBaAFHcG0IjpId6LAeu6BiAdBBUOhk0E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTdCQS82RTc0OTUxMDA0 RUIxMUVBQTcyRkEzNjNDNEY5QUUwMi9kd2JRaU9raDNvc0I2N29HSUIwRUZRNkdU UVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2R3YlFpT2toM29zQjY3b0dJQjBFRlE2R1RRUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTdCQS82RTc0OTUxMDA0RUIxMUVBQTcyRkEzNjNDNEY5QUUwMi9kd2JRaU9raDNv c0I2N29HSUIwRUZRNkdUUVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/+p9YhM2bU2ak+qtu17fiexPjkup6PpVRR7gsMpggZmyh/LvVo/KQ OcG2wunX5Gv3MF43+nLq00qayj6lBNyNz+c7EY1R7hBuU0jtMjsDLYEcltRHrh/v zgae+82c9RWDjQwFyJKWmVLLQwPTBLSpPH8+kMWCCIOx9juC8IkWxXJn4lAmx9hI x/Kf5JCSBryMnbWREmvT1GwOGhoFXINLjKVDQPl7bAs99C90KnJSlKi4Y/msZDcR g5tuSZFNjQMVqnp+4Bd46A250kx/CpqmG5tSfswTHoAkfqQSOfAk/zoFYrNj4clh ZF/uBvv3yLVGG/4UdMulcCxu6gI0JXxF -----END CERTIFICATE-----Generated at Tue Nov 4 12:36:16 2025 by rpki-client