$ rpki-client -vvf rpki.apnic.net/member_repository/A91B19F8/CAE6B4CEBCA111EDA370780DC4F9AE02/dku4R4v_jMi_8U6PtqrcKO1eSGQ.mft File: dku4R4v_jMi_8U6PtqrcKO1eSGQ.mft (raw, json) Hash identifier: zD0SgBIx1JqmIG4UgYYe0ALmywV/FDYuM4et4LxaLsA= Subject key identifier: 83:33:6B:DD:2B:B7:4F:A8:8D:F0:03:38:39:1B:60:EF:34:6F:A1:01 Authority key identifier: 76:4B:B8:47:8B:FF:8C:C8:BF:F1:4E:8F:B6:AA:DC:28:ED:5E:48:64 Certificate issuer: /CN=A91B19F8/serialNumber=764BB8478BFF8CC8BFF14E8FB6AADC28ED5E4864 Certificate serial: 01F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dku4R4v_jMi_8U6PtqrcKO1eSGQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B19F8/CAE6B4CEBCA111EDA370780DC4F9AE02/dku4R4v_jMi_8U6PtqrcKO1eSGQ.mft Manifest number: 01F2 Signing time: Mon 03 Nov 2025 02:28:28 +0000 Manifest this update: Mon 03 Nov 2025 02:28:28 +0000 Manifest next update: Mon 10 Nov 2025 02:28:28 +0000 Files and hashes: 1: dku4R4v_jMi_8U6PtqrcKO1eSGQ.crl (hash: YGeHtfDtsaA/21poF7tKdDn+QpX5IJqBrPulKqenClw=) 2: 5E5DF206BCA411EDBD39730EC4F9AE02.roa (hash: 285R3oYGxnsmMAJjm1+eYdJApQO5EQQ/gOWcq+lr5pI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B19F8/CAE6B4CEBCA111EDA370780DC4F9AE02/dku4R4v_jMi_8U6PtqrcKO1eSGQ.crl rsync://rpki.apnic.net/member_repository/A91B19F8/CAE6B4CEBCA111EDA370780DC4F9AE02/dku4R4v_jMi_8U6PtqrcKO1eSGQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dku4R4v_jMi_8U6PtqrcKO1eSGQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:28:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 502 (0x1f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B19F8, serialNumber=764BB8478BFF8CC8BFF14E8FB6AADC28ED5E4864 Validity Not Before: Nov 3 02:28:28 2025 GMT Not After : Nov 10 02:28:28 2025 GMT Subject: CN=6908134c-186b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:45:4f:58:7f:3e:7f:43:2a:73:03:17:ac:95: e0:d9:fb:59:70:73:6d:31:7e:3b:71:a3:91:34:e0: dd:fc:92:ee:b3:27:64:37:5f:3c:9b:80:e1:ec:65: 19:c1:53:1d:e8:fd:b1:27:17:ad:64:d7:e0:d4:6f: 74:7a:8e:4a:3e:1d:10:14:02:6e:18:a4:11:e8:ae: 5c:6f:1d:77:cc:74:61:5e:4b:1b:f2:39:38:de:0d: a7:99:90:26:2c:1d:6b:8f:e4:60:b2:33:66:6f:4a: 34:02:93:53:1e:97:f8:4a:0b:8c:eb:26:43:b8:0c: 5f:2e:d4:52:7a:30:00:4c:d2:bc:14:39:bd:ff:fb: 4f:f3:55:4e:ff:0b:a5:b4:ae:5b:a9:c0:0a:6f:3f: 04:db:b1:df:dd:39:29:ec:68:36:b9:41:61:d2:ad: b5:2a:3a:29:7c:5e:7d:fd:da:cf:a0:18:fb:2c:a1: 01:eb:28:ab:00:fe:70:16:3f:d9:58:4d:f8:e6:f0: 09:37:4b:6b:1e:20:2a:fe:95:3c:5f:e3:90:79:00: 6c:a0:4f:be:d3:36:a6:a8:da:44:b6:a2:7e:dd:b8: c4:ba:06:67:bc:87:13:f3:65:fb:15:03:6d:9e:1f: 06:5f:6d:5e:37:83:61:f4:b3:9c:6f:be:e6:0d:a5: bc:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:33:6B:DD:2B:B7:4F:A8:8D:F0:03:38:39:1B:60:EF:34:6F:A1:01 X509v3 Authority Key Identifier: keyid:76:4B:B8:47:8B:FF:8C:C8:BF:F1:4E:8F:B6:AA:DC:28:ED:5E:48:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B19F8/CAE6B4CEBCA111EDA370780DC4F9AE02/dku4R4v_jMi_8U6PtqrcKO1eSGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dku4R4v_jMi_8U6PtqrcKO1eSGQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B19F8/CAE6B4CEBCA111EDA370780DC4F9AE02/dku4R4v_jMi_8U6PtqrcKO1eSGQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:36:b8:e0:a8:bf:93:4e:2c:66:49:1b:75:87:f8:a0:4c:55: b2:a2:78:fc:d4:b3:7d:44:c9:ca:d6:1d:e8:1b:91:d4:af:d9: a1:df:b3:a0:c1:e9:e8:6e:36:3d:35:ba:5d:cf:c1:89:28:4f: e2:13:62:b5:d4:46:fd:9a:0b:d0:8c:d5:b9:ec:11:8a:1b:0e: d4:6e:48:96:a3:56:0e:e4:42:33:9d:d0:a2:59:16:3b:b5:51: d2:b1:e3:4d:a5:04:41:fa:37:75:ac:83:b0:0e:ca:1d:da:03: 3a:e6:b5:2c:9b:08:9a:db:f0:51:19:14:51:e7:fa:6d:64:27: d5:5f:a7:3d:49:91:18:00:a0:8d:fe:3d:60:fe:d2:35:0c:a4: 6b:49:59:d6:6b:9f:58:51:24:3a:60:67:36:a3:1a:66:33:4f: 49:87:d5:1f:76:a3:c2:6f:63:cc:87:5f:7c:99:69:d0:27:b2: aa:d4:04:03:2d:ed:a2:54:bf:e4:ba:ee:cb:06:a9:8c:d2:4c: 5b:60:9b:c4:21:4d:06:ab:bb:3d:d8:78:f9:de:c4:0b:45:0b: 5c:d1:9b:7a:0e:f1:7f:f9:3e:90:c0:88:d3:b6:c6:6a:24:41: ce:03:a2:9b:e1:4a:f8:f6:1e:d1:ba:14:0a:db:27:59:1c:49: 27:df:08:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjE5RjgxMTAvBgNVBAUTKDc2NEJCODQ3OEJGRjhDQzhCRkYxNEU4RkI2QUFEQzI4 RUQ1RTQ4NjQwHhcNMjUxMTAzMDIyODI4WhcNMjUxMTEwMDIyODI4WjAYMRYwFAYD VQQDEw02OTA4MTM0Yy0xODZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3EVPWH8+f0MqcwMXrJXg2ftZcHNtMX47caORNODd/JLusydkN188m4Dh7GUZ wVMd6P2xJxetZNfg1G90eo5KPh0QFAJuGKQR6K5cbx13zHRhXksb8jk43g2nmZAm LB1rj+RgsjNmb0o0ApNTHpf4SguM6yZDuAxfLtRSejAATNK8FDm9//tP81VO/wul tK5bqcAKbz8E27Hf3Tkp7Gg2uUFh0q21KjopfF59/drPoBj7LKEB6yirAP5wFj/Z WE345vAJN0trHiAq/pU8X+OQeQBsoE++0zamqNpEtqJ+3bjEugZnvIcT82X7FQNt nh8GX21eN4Nh9LOcb77mDaW8IQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIMza90r t0+ojfADODkbYO80b6EBMB8GA1UdIwQYMBaAFHZLuEeL/4zIv/FOj7aq3CjtXkhk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTlGOC9DQUU2QjRDRUJD QTExMUVEQTM3MDc4MERDNEY5QUUwMi9ka3U0UjR2X2pNaV84VTZQdHFyY0tPMWVT R1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RrdTRSNHZfak1pXzhVNlB0cXJjS08xZVNHUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTlGOC9DQUU2QjRDRUJDQTExMUVEQTM3MDc4MERDNEY5QUUwMi9ka3U0UjR2X2pN aV84VTZQdHFyY0tPMWVTR1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATNrjgqL+TTixmSRt1h/igTFWyonj81LN9RMnK1h3oG5HUr9mh37Og wenobjY9Nbpdz8GJKE/iE2K11Eb9mgvQjNW57BGKGw7UbkiWo1YO5EIzndCiWRY7 tVHSseNNpQRB+jd1rIOwDsod2gM65rUsmwia2/BRGRRR5/ptZCfVX6c9SZEYAKCN /j1g/tI1DKRrSVnWa59YUSQ6YGc2oxpmM09Jh9UfdqPCb2PMh198mWnQJ7Kq1AQD Le2iVL/kuu7LBqmM0kxbYJvEIU0Gq7s92Hj53sQLRQtc0Zt6DvF/+T6QwIjTtsZq JEHOA6Kb4Ur49h7RuhQK2ydZHEkn3wjO -----END CERTIFICATE-----Generated at Tue Nov 4 08:13:56 2025 by rpki-client