$ rpki-client -vvf rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft File: DYtx2GteICkzvLAqW210CSpSoXw.mft (raw, json) Hash identifier: Zc24DQbNri8KKhclDAtMRVMiBcJC7HcT2lKTqejokxs= Subject key identifier: C5:FD:DB:BF:5D:54:BF:93:A3:CA:FD:F1:D8:85:98:94:27:48:82:2E Authority key identifier: 0D:8B:71:D8:6B:5E:20:29:33:BC:B0:2A:5B:6D:74:09:2A:52:A1:7C Certificate issuer: /CN=A91A395C/serialNumber=0D8B71D86B5E202933BCB02A5B6D74092A52A17C Certificate serial: 3526 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft Manifest number: 34F8 Signing time: Sun 02 Nov 2025 14:51:00 +0000 Manifest this update: Sun 02 Nov 2025 14:51:00 +0000 Manifest next update: Sun 09 Nov 2025 14:51:00 +0000 Files and hashes: 1: DYtx2GteICkzvLAqW210CSpSoXw.crl (hash: ifJnV6GsHGISoJRn0SML5ReDj/dUl16XshF8VoZya6c=) 2: 991EB004BE8511EE960E5082C4F9AE02.roa (hash: IR/fxoozFicSxIrUXHGZXGMAUroK6RP4wvdk7z4PV7A=) 3: 9B71FEB0593F11EA9F9FA238C4F9AE02.roa (hash: XQCwNi2PZQw3HwB0S22xbUukUjh1gRPdN0DptoUSl6Q=) 4: D56D9FD87E8711EC9A928B6AC4F9AE02.roa (hash: MzFm0njK9GauK3PVGzL0I/Klqbd6ft5wJ9/podujw/8=) 5: 9A2B0DE4593F11EA9F9FA238C4F9AE02.roa (hash: jv97nGJvaH0WKHe7n31vkT3MMMbNqFjpDhhexD6X6+Q=) 6: 65552C3AE8D411ED8D0FAD45C4F9AE02.roa (hash: ifJGYL5q49BedEWwURROMxMLmQuzo6sd4i9VU7gjPWk=) 7: 3DBC186C5AD611EF85A4557BC4F9AE02.roa (hash: crg/ljxSxvSurizJ6VoDNQFMCKyOAKHsQIWFOorvrvI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.crl rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 14:50:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13606 (0x3526) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A395C, serialNumber=0D8B71D86B5E202933BCB02A5B6D74092A52A17C Validity Not Before: Nov 2 14:51:00 2025 GMT Not After : Nov 9 14:51:00 2025 GMT Subject: CN=69076fd4-b864 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:6c:66:10:b4:2b:fb:92:27:9c:49:15:62:91: 30:ab:c1:14:bd:ef:44:ae:13:c9:b4:fb:a1:9a:3c: 4e:ff:31:60:b5:bb:cc:8b:78:0a:9e:29:25:cb:88: 88:7d:87:58:13:ab:db:f1:64:95:1b:fc:ff:0d:a7: 04:35:db:0a:66:a8:c9:e9:d3:b9:7f:6c:c3:6f:e3: 35:ef:38:64:a5:17:b5:63:d5:35:3e:d9:91:8b:fe: 07:99:86:7b:bf:f8:29:95:a3:a5:7f:15:e4:e6:49: 25:95:cb:a4:05:42:24:f1:ed:cf:ff:b1:9e:2b:75: 09:8b:66:ba:79:a3:7d:86:ff:94:ee:66:ab:86:e5: ec:ad:b3:12:f2:61:a2:58:d4:b1:0f:48:f1:79:14: ad:72:f6:d2:c6:d2:cb:2a:3d:59:ad:c9:53:99:a3: 47:78:58:40:10:17:ff:11:8b:c6:d1:c1:1e:98:3b: 87:9f:c1:1d:00:fc:1f:a1:ee:f8:68:01:94:1b:8e: 72:1c:6e:99:c2:46:cb:76:87:93:99:7e:fd:8c:b2: 70:87:a1:e5:2e:40:24:3a:95:27:f6:27:8e:e8:0b: 43:ef:60:6d:8a:32:7b:e2:83:6a:4a:b8:03:cd:d2: 2c:8d:3e:d2:67:a2:15:ce:36:0f:8e:29:11:d8:6e: ae:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:FD:DB:BF:5D:54:BF:93:A3:CA:FD:F1:D8:85:98:94:27:48:82:2E X509v3 Authority Key Identifier: keyid:0D:8B:71:D8:6B:5E:20:29:33:BC:B0:2A:5B:6D:74:09:2A:52:A1:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:da:5d:ab:54:5c:48:c9:f7:65:f0:5c:19:05:46:83:b2:a2: 81:2b:61:06:e0:37:25:99:05:56:65:3d:81:22:34:e2:78:36: c3:c0:7e:e5:fc:f1:f9:82:28:be:a2:22:2e:0f:05:99:c7:08: e6:3a:5f:55:56:eb:2d:8d:e9:58:a3:33:99:26:b9:0f:44:5e: af:cc:ee:6e:72:97:dc:57:4e:e3:4a:64:2c:b6:2e:d4:5a:25: 0c:66:4d:90:a3:58:94:57:94:26:c6:27:f9:77:27:97:3f:1c: cb:94:aa:b9:20:40:79:9c:56:5a:72:4a:89:0a:6f:bc:59:b9: ac:18:38:dd:7d:fe:db:b0:10:aa:e5:2a:75:5f:31:7f:24:9b: 04:59:ff:06:ad:f6:e2:69:35:07:69:9d:d1:cd:7c:64:55:35: 03:f3:3c:66:24:8b:d4:18:7f:bc:08:09:8f:0e:dd:37:06:8c: b9:e8:7e:78:15:98:3a:3e:0c:88:a2:b7:74:1f:b7:48:e2:84: bd:42:63:3f:40:e0:9d:cc:c8:05:2c:00:9b:97:48:38:9f:3c: 0b:26:fb:bf:66:4a:e7:b8:e7:4d:82:83:c6:94:1b:1a:1f:cf: ca:b5:5a:b1:19:81:8b:00:51:e0:07:a0:83:dd:b3:af:b6:04: 2a:2c:9d:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNSYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM5NUMxMTAvBgNVBAUTKDBEOEI3MUQ4NkI1RTIwMjkzM0JDQjAyQTVCNkQ3NDA5 MkE1MkExN0MwHhcNMjUxMTAyMTQ1MTAwWhcNMjUxMTA5MTQ1MTAwWjAYMRYwFAYD VQQDEw02OTA3NmZkNC1iODY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA72xmELQr+5InnEkVYpEwq8EUve9ErhPJtPuhmjxO/zFgtbvMi3gKnikly4iI fYdYE6vb8WSVG/z/DacENdsKZqjJ6dO5f2zDb+M17zhkpRe1Y9U1PtmRi/4HmYZ7 v/gplaOlfxXk5kkllcukBUIk8e3P/7GeK3UJi2a6eaN9hv+U7marhuXsrbMS8mGi WNSxD0jxeRStcvbSxtLLKj1ZrclTmaNHeFhAEBf/EYvG0cEemDuHn8EdAPwfoe74 aAGUG45yHG6ZwkbLdoeTmX79jLJwh6HlLkAkOpUn9ieO6AtD72BtijJ74oNqSrgD zdIsjT7SZ6IVzjYPjikR2G6u2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMX9279d VL+To8r98diFmJQnSIIuMB8GA1UdIwQYMBaAFA2LcdhrXiApM7ywKlttdAkqUqF8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzk1Qy9CQjM0MTdDMDFE OTYxMUUyQjhCQjgyN0YwOEIwMkNEMi9EWXR4Mkd0ZUlDa3p2TEFxVzIxMENTcFNv WHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RZdHgyR3RlSUNrenZMQXFXMjEwQ1NwU29Ydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Mzk1Qy9CQjM0MTdDMDFEOTYxMUUyQjhCQjgyN0YwOEIwMkNEMi9EWXR4Mkd0ZUlD a3p2TEFxVzIxMENTcFNvWHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAm2l2rVFxIyfdl8FwZBUaDsqKBK2EG4DclmQVWZT2BIjTieDbDwH7l /PH5gii+oiIuDwWZxwjmOl9VVustjelYozOZJrkPRF6vzO5ucpfcV07jSmQsti7U WiUMZk2Qo1iUV5Qmxif5dyeXPxzLlKq5IEB5nFZackqJCm+8WbmsGDjdff7bsBCq 5Sp1XzF/JJsEWf8GrfbiaTUHaZ3RzXxkVTUD8zxmJIvUGH+8CAmPDt03Boy56H54 FZg6PgyIord0H7dI4oS9QmM/QOCdzMgFLACbl0g4nzwLJvu/ZkrnuOdNgoPGlBsa H8/KtVqxGYGLAFHgB6CD3bOvtgQqLJ3P -----END CERTIFICATE-----Generated at Tue Nov 4 02:19:50 2025 by rpki-client