$ rpki-client -vvf rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft File: dNRNlor0Y--xfAgNX60BDErAl6o.mft (raw, json) Hash identifier: BHySSU0+hQZPlvC1T48+OP4wDg+UMETAMjG7tblDvRI= Subject key identifier: E2:AE:C5:10:0F:C9:9A:DB:E2:05:5F:E0:46:87:29:1E:12:C9:4C:EB Authority key identifier: 74:D4:4D:96:8A:F4:63:EF:B1:7C:08:0D:5F:AD:01:0C:4A:C0:97:AA Certificate issuer: /CN=A917E0A8/serialNumber=74D44D968AF463EFB17C080D5FAD010C4AC097AA Certificate serial: 06A0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dNRNlor0Y--xfAgNX60BDErAl6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft Manifest number: 0693 Signing time: Tue 04 Nov 2025 19:35:42 +0000 Manifest this update: Tue 04 Nov 2025 19:35:42 +0000 Manifest next update: Tue 11 Nov 2025 19:35:42 +0000 Files and hashes: 1: dNRNlor0Y--xfAgNX60BDErAl6o.crl (hash: EBPNokooN0QfO45/oGF08PtiD5yaYMF6UYOv579l95M=) 2: 11C0D5DA9B4011EB9C1BFC4EC4F9AE02.roa (hash: c7+1xl97Qj2WBa7uEaRi3C9ZQy4QYdknXZBQu0sbmag=) 3: F9C23E2A3ACB11EC9FEBB367C4F9AE02.roa (hash: nh7VvVbwlcEI7LPWlEzxHGSM7ZH4CPOm9G5I1MGrFHY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.crl rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dNRNlor0Y--xfAgNX60BDErAl6o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:35:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1696 (0x6a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E0A8, serialNumber=74D44D968AF463EFB17C080D5FAD010C4AC097AA Validity Not Before: Nov 4 19:35:42 2025 GMT Not After : Nov 11 19:35:42 2025 GMT Subject: CN=690a558e-e7cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:59:f3:b2:2b:48:03:b1:d2:2c:5d:72:1c:92: 6d:3c:70:8f:02:2c:6d:45:1c:2f:75:10:ae:6d:98: 6d:68:9f:44:3e:25:4e:d4:23:54:26:a2:fe:46:73: 4e:a3:f4:41:d9:97:36:2c:df:a1:8c:f0:bc:12:30: 25:26:c0:54:84:a2:d7:fc:9c:71:ff:91:ad:63:32: fd:12:66:14:d0:2b:15:4a:e8:60:33:70:0a:e8:d5: f0:2c:0f:01:0b:b7:85:e1:96:f6:0f:dc:f9:21:25: 4d:f7:d6:5b:81:b7:28:8e:50:d2:5b:eb:7a:1d:9c: 5a:f8:ce:57:9c:0b:b0:0a:13:dd:ef:6c:e3:39:54: 1e:fa:0c:00:cc:d7:29:00:2a:48:cf:93:e4:b2:53: 79:cb:4b:da:1a:d4:24:18:b2:30:ed:70:66:80:ae: 03:f3:52:ee:2b:96:9f:b1:89:b3:5c:31:19:15:e7: 96:9c:3a:c3:89:8b:ac:15:f4:55:cb:89:18:cb:69: d4:cd:ff:fe:82:00:2f:54:9f:a2:40:68:61:5e:25: 90:2a:d9:ed:03:b8:d2:5b:6a:95:27:df:e7:72:c9: e7:7f:36:c1:2f:03:dc:8e:62:18:d5:95:79:6d:ec: f7:8c:0d:9d:6e:33:9c:25:d0:7a:d3:1f:ac:94:19: 48:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:AE:C5:10:0F:C9:9A:DB:E2:05:5F:E0:46:87:29:1E:12:C9:4C:EB X509v3 Authority Key Identifier: keyid:74:D4:4D:96:8A:F4:63:EF:B1:7C:08:0D:5F:AD:01:0C:4A:C0:97:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dNRNlor0Y--xfAgNX60BDErAl6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:ad:85:49:6b:03:45:40:d6:bd:da:ae:06:b7:ea:d1:c5:f4: 17:7f:b6:53:f3:ae:09:9a:fd:e4:1e:62:4c:7f:26:2b:f8:83: a2:7a:44:fe:df:3a:2e:4e:fc:3d:d7:b5:89:a4:70:dc:2b:c3: e9:3c:64:8d:ca:b5:30:e9:7f:66:ba:4e:e6:0d:b0:d7:e6:41: 49:dd:44:e5:e5:11:ba:06:20:c6:ac:11:41:1e:cd:76:af:94: 08:80:22:e2:e9:9e:46:08:32:5e:40:41:13:b9:da:0e:83:cc: 0b:89:cb:fb:09:b6:7e:34:6f:55:a1:9d:d9:ad:b7:1f:b9:04: 65:17:72:2d:76:cf:13:e8:97:89:39:40:38:2b:27:15:33:aa: 2f:51:00:b5:d4:0f:57:c1:45:a5:86:e7:ba:25:be:97:17:02: 21:7b:e8:2b:f1:00:72:91:5a:87:6a:fb:c4:cb:07:ca:81:29: 60:80:ee:15:cb:b7:f9:5d:e1:24:63:5e:c5:63:99:8d:64:a9: 34:9e:fe:0a:53:fb:76:2b:3b:97:53:5e:c8:26:5c:0e:04:95: 70:5b:e7:c9:9f:82:cd:27:aa:fe:fe:97:9f:28:77:b0:d7:ab: 42:15:ed:0a:77:08:7d:f3:30:9d:ee:e1:0d:19:f5:df:55:ac: ae:a8:9f:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwQTgxMTAvBgNVBAUTKDc0RDQ0RDk2OEFGNDYzRUZCMTdDMDgwRDVGQUQwMTBD NEFDMDk3QUEwHhcNMjUxMTA0MTkzNTQyWhcNMjUxMTExMTkzNTQyWjAYMRYwFAYD VQQDEw02OTBhNTU4ZS1lN2NmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3lnzsitIA7HSLF1yHJJtPHCPAixtRRwvdRCubZhtaJ9EPiVO1CNUJqL+RnNO o/RB2Zc2LN+hjPC8EjAlJsBUhKLX/Jxx/5GtYzL9EmYU0CsVSuhgM3AK6NXwLA8B C7eF4Zb2D9z5ISVN99ZbgbcojlDSW+t6HZxa+M5XnAuwChPd72zjOVQe+gwAzNcp ACpIz5PkslN5y0vaGtQkGLIw7XBmgK4D81LuK5afsYmzXDEZFeeWnDrDiYusFfRV y4kYy2nUzf/+ggAvVJ+iQGhhXiWQKtntA7jSW2qVJ9/ncsnnfzbBLwPcjmIY1ZV5 bez3jA2dbjOcJdB60x+slBlINwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOKuxRAP yZrb4gVf4EaHKR4SyUzrMB8GA1UdIwQYMBaAFHTUTZaK9GPvsXwIDV+tAQxKwJeq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTBBOC82RUZDMEJFRTk4 NEMxMUVCOEE0MUZBMjBDNEY5QUUwMi9kTlJObG9yMFktLXhmQWdOWDYwQkRFckFs Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2ROUk5sb3IwWS0teGZBZ05YNjBCREVyQWw2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTBBOC82RUZDMEJFRTk4NEMxMUVCOEE0MUZBMjBDNEY5QUUwMi9kTlJObG9yMFkt LXhmQWdOWDYwQkRFckFsNm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqrYVJawNFQNa92q4Gt+rRxfQXf7ZT864Jmv3kHmJMfyYr+IOiekT+ 3zouTvw917WJpHDcK8PpPGSNyrUw6X9muk7mDbDX5kFJ3UTl5RG6BiDGrBFBHs12 r5QIgCLi6Z5GCDJeQEETudoOg8wLicv7CbZ+NG9VoZ3ZrbcfuQRlF3Itds8T6JeJ OUA4KycVM6ovUQC11A9XwUWlhue6Jb6XFwIhe+gr8QBykVqHavvEywfKgSlggO4V y7f5XeEkY17FY5mNZKk0nv4KU/t2KzuXU17IJlwOBJVwW+fJn4LNJ6r+/pefKHew 16tCFe0Kdwh98zCd7uENGfXfVayuqJ9A -----END CERTIFICATE-----Generated at Wed Nov 5 19:49:17 2025 by rpki-client