$ rpki-client -vvf rpki.apnic.net/member_repository/A9163BEF/8AAFE28C25CF11EC8B4A992EC4F9AE02/DL7Sere2gbyZZqziRPy_KX5lyhk.mft File: DL7Sere2gbyZZqziRPy_KX5lyhk.mft (raw, json) Hash identifier: HhyHPSroLOPjyT1EZiGwI6gnAtMQDYGbDr/ffGbU+So= Subject key identifier: A2:02:DD:D6:A1:60:BA:94:5D:53:D5:2B:78:5A:F1:2E:70:24:E9:1F Authority key identifier: 0C:BE:D2:7A:B7:B6:81:BC:99:66:AC:E2:44:FC:BF:29:7E:65:CA:19 Certificate issuer: /CN=A9163BEF/serialNumber=0CBED27AB7B681BC9966ACE244FCBF297E65CA19 Certificate serial: 0520 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DL7Sere2gbyZZqziRPy_KX5lyhk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163BEF/8AAFE28C25CF11EC8B4A992EC4F9AE02/DL7Sere2gbyZZqziRPy_KX5lyhk.mft Manifest number: 0518 Signing time: Tue 04 Nov 2025 23:39:01 +0000 Manifest this update: Tue 04 Nov 2025 23:39:01 +0000 Manifest next update: Tue 11 Nov 2025 23:39:01 +0000 Files and hashes: 1: DL7Sere2gbyZZqziRPy_KX5lyhk.crl (hash: aiz7w7csihIPK5rljKVLskoUwCWWgVzTVCCcWQEn/Jw=) 2: 8A9545AE6D1011EFA13D6E2BC4F9AE02.roa (hash: RwcRY83ScxlbqM04nHpwXB0Y4y38xjFyFzwqEWYpGkc=) 3: 8A190AB66D1011EFA13D6E2BC4F9AE02.roa (hash: AAv9iRZkCrIdjmlojo08VQ3Lr0iHsrSZtwCxTUl/qrA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163BEF/8AAFE28C25CF11EC8B4A992EC4F9AE02/DL7Sere2gbyZZqziRPy_KX5lyhk.crl rsync://rpki.apnic.net/member_repository/A9163BEF/8AAFE28C25CF11EC8B4A992EC4F9AE02/DL7Sere2gbyZZqziRPy_KX5lyhk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DL7Sere2gbyZZqziRPy_KX5lyhk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:39:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1312 (0x520) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163BEF, serialNumber=0CBED27AB7B681BC9966ACE244FCBF297E65CA19 Validity Not Before: Nov 4 23:39:01 2025 GMT Not After : Nov 11 23:39:01 2025 GMT Subject: CN=690a8e95-f873 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:2b:bf:03:00:00:68:ed:de:6e:4b:9b:cd:69: 3c:ed:1e:cc:3e:ec:b9:5f:78:0c:c3:db:c0:54:06: ee:42:d9:97:d9:19:33:9e:77:c2:47:57:76:a8:46: 03:a5:2c:a3:b9:e5:ea:7d:1a:a1:e9:2f:b0:c8:1f: ce:e5:d8:4e:bc:7a:07:9e:a5:81:92:8b:67:8a:cf: 04:c4:4e:fc:f4:5e:94:85:5b:5e:71:84:a1:12:93: 60:53:b5:e1:b7:54:4b:71:92:5a:40:fc:6a:aa:01: be:4d:8e:86:71:37:70:f7:2d:b2:e9:22:a8:cd:51: 2d:32:c9:61:79:a4:ef:24:d6:d8:4f:cc:a4:79:e7: 49:0d:67:69:f5:0f:33:0f:c9:09:19:17:c4:20:80: 1a:e7:1e:26:b8:b4:43:b4:06:0b:59:7d:ab:fa:fa: a6:da:47:b0:de:de:3a:0a:58:85:7b:03:d3:07:6a: 3f:ef:8e:44:8d:4b:30:c6:c2:ed:9b:76:c5:0a:2e: 17:60:ab:8c:c3:72:34:2b:93:5a:e4:86:98:84:30: 92:c4:ee:a6:b2:d6:84:e4:af:da:71:84:16:f8:97: 59:fe:aa:0c:d3:3e:fd:68:88:6c:3d:b5:48:5c:fc: 6b:0c:4f:c2:aa:31:7b:ab:4a:3b:c4:c8:62:75:3d: 8c:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:02:DD:D6:A1:60:BA:94:5D:53:D5:2B:78:5A:F1:2E:70:24:E9:1F X509v3 Authority Key Identifier: keyid:0C:BE:D2:7A:B7:B6:81:BC:99:66:AC:E2:44:FC:BF:29:7E:65:CA:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163BEF/8AAFE28C25CF11EC8B4A992EC4F9AE02/DL7Sere2gbyZZqziRPy_KX5lyhk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DL7Sere2gbyZZqziRPy_KX5lyhk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163BEF/8AAFE28C25CF11EC8B4A992EC4F9AE02/DL7Sere2gbyZZqziRPy_KX5lyhk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:e3:fb:48:57:c1:c2:ad:f8:96:6c:f5:cf:3a:a6:ee:13:8b: a1:4c:6a:9e:56:47:71:4c:7a:d3:60:6f:f4:b2:e9:d4:89:40: e6:85:f2:cf:f1:61:fb:03:3b:99:06:12:3f:07:b5:24:38:c4: 31:ef:f7:92:fe:64:c4:23:11:e8:c3:8f:ca:4f:3a:d0:9d:97: 6a:77:29:44:25:28:6a:90:31:2d:52:1d:f6:f5:f5:d0:8c:0f: 39:bc:b2:08:51:d2:2a:00:9b:bb:18:b9:a2:cf:a3:5c:26:81: 60:70:57:64:cd:76:01:e6:76:c7:e7:12:38:18:37:f0:ba:b9: 9c:2f:a5:f0:36:36:ad:c9:b4:0f:f3:07:3f:da:ec:f4:86:07: 40:47:18:f2:7e:aa:de:50:f6:53:df:c4:7d:92:b8:d4:2d:f5: 49:3e:f4:c1:e4:54:a9:ed:a2:11:61:66:9e:1e:f6:ea:0a:6d: b7:0a:78:8b:38:d2:95:b8:7e:d0:8e:52:2f:31:97:0d:ca:6a: 74:c5:9a:e7:c9:39:bf:aa:e9:db:0d:a1:45:1f:17:d4:49:06: 23:4e:c5:21:af:ac:ab:cd:f1:14:c7:f7:70:16:db:40:e5:ef: d5:f5:cf:b6:2a:66:6a:4e:c7:3e:db:7e:0c:f4:ff:ab:87:45: a9:c0:3c:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBSAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjNCRUYxMTAvBgNVBAUTKDBDQkVEMjdBQjdCNjgxQkM5OTY2QUNFMjQ0RkNCRjI5 N0U2NUNBMTkwHhcNMjUxMTA0MjMzOTAxWhcNMjUxMTExMjMzOTAxWjAYMRYwFAYD VQQDEw02OTBhOGU5NS1mODczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuyu/AwAAaO3ebkubzWk87R7MPuy5X3gMw9vAVAbuQtmX2RkznnfCR1d2qEYD pSyjueXqfRqh6S+wyB/O5dhOvHoHnqWBkotnis8ExE789F6UhVtecYShEpNgU7Xh t1RLcZJaQPxqqgG+TY6GcTdw9y2y6SKozVEtMslheaTvJNbYT8ykeedJDWdp9Q8z D8kJGRfEIIAa5x4muLRDtAYLWX2r+vqm2kew3t46CliFewPTB2o/745EjUswxsLt m3bFCi4XYKuMw3I0K5Na5IaYhDCSxO6mstaE5K/acYQW+JdZ/qoM0z79aIhsPbVI XPxrDE/CqjF7q0o7xMhidT2MrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKIC3dah YLqUXVPVK3ha8S5wJOkfMB8GA1UdIwQYMBaAFAy+0nq3toG8mWas4kT8vyl+ZcoZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2M0JFRi84QUFGRTI4QzI1 Q0YxMUVDOEI0QTk5MkVDNEY5QUUwMi9ETDdTZXJlMmdieVpacXppUlB5X0tYNWx5 aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RMN1NlcmUyZ2J5WlpxemlSUHlfS1g1bHloay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 M0JFRi84QUFGRTI4QzI1Q0YxMUVDOEI0QTk5MkVDNEY5QUUwMi9ETDdTZXJlMmdi eVpacXppUlB5X0tYNWx5aGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAo4/tIV8HCrfiWbPXPOqbuE4uhTGqeVkdxTHrTYG/0sunUiUDmhfLP 8WH7AzuZBhI/B7UkOMQx7/eS/mTEIxHow4/KTzrQnZdqdylEJShqkDEtUh329fXQ jA85vLIIUdIqAJu7GLmiz6NcJoFgcFdkzXYB5nbH5xI4GDfwurmcL6XwNjatybQP 8wc/2uz0hgdARxjyfqreUPZT38R9krjULfVJPvTB5FSp7aIRYWaeHvbqCm23CniL ONKVuH7QjlIvMZcNymp0xZrnyTm/qunbDaFFHxfUSQYjTsUhr6yrzfEUx/dwFttA 5e/V9c+2KmZqTsc+234M9P+rh0WpwDx1 -----END CERTIFICATE-----Generated at Wed Nov 5 04:49:19 2025 by rpki-client