$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft File: dQ-le1kVZTnLFuVKYKbO21sQ654.mft (raw, json) Hash identifier: TaLgdALDssZC2dDzyQxekzEwCH96n52tHrl+Qebyb1A= Subject key identifier: 10:25:B1:F2:4F:EC:D6:DB:7A:C1:AD:D3:53:E1:59:3E:B8:38:28:AC Authority key identifier: 75:0F:A5:7B:59:15:65:39:CB:16:E5:4A:60:A6:CE:DB:5B:10:EB:9E Certificate issuer: /CN=A91BB1F3/serialNumber=750FA57B59156539CB16E54A60A6CEDB5B10EB9E Certificate serial: F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQ-le1kVZTnLFuVKYKbO21sQ654.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft Manifest number: F2 Signing time: Mon 03 Nov 2025 05:14:51 +0000 Manifest this update: Mon 03 Nov 2025 05:14:51 +0000 Manifest next update: Mon 10 Nov 2025 05:14:51 +0000 Files and hashes: 1: dQ-le1kVZTnLFuVKYKbO21sQ654.crl (hash: TJhi+C6WasXPAt/aOdQtQcBw0YKowKC3GWsLSbWmX0s=) 2: F9E4E14645AE11EF8870C771C4F9AE02.roa (hash: R0ve1rGoHZXsOYQBScXwsDxNaaTbtMNOWotF4DpFkvU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.crl rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQ-le1kVZTnLFuVKYKbO21sQ654.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:14:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 244 (0xf4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB1F3, serialNumber=750FA57B59156539CB16E54A60A6CEDB5B10EB9E Validity Not Before: Nov 3 05:14:51 2025 GMT Not After : Nov 10 05:14:51 2025 GMT Subject: CN=69083a4b-f832 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:d0:1a:25:60:28:68:92:2d:25:e3:05:18:94: 14:03:14:2d:bc:91:ab:5a:16:a4:d8:7b:37:84:92: ab:ed:10:80:be:e3:30:da:09:9b:09:05:48:2e:a8: db:3c:e9:a6:b3:ab:a1:93:18:2d:d2:66:3f:8b:60: 16:36:0d:c3:7c:58:c7:c8:0a:8f:7a:34:ad:97:40: 2c:8b:4e:52:6a:17:8e:46:3b:85:68:44:01:77:37: 80:16:0c:35:db:9c:6f:4f:bd:a2:3d:14:6c:f3:9b: eb:19:e6:3c:74:95:d1:d3:9c:09:b9:95:bd:97:a5: 89:e1:f8:8f:c3:8b:0d:2d:9a:68:04:1e:f3:06:aa: 07:7f:55:57:ff:bd:08:9d:90:2c:45:df:2e:f2:a3: be:5c:10:83:06:8c:ba:32:34:b5:de:b7:3e:70:f1: 80:65:5f:78:31:08:fc:a2:1c:4a:d2:e9:2c:6f:c8: b4:03:76:5a:d3:1a:7c:a4:f2:b3:a3:c0:e7:75:1a: 95:22:4c:11:a3:54:52:10:72:cf:85:9b:9a:2a:14: 2b:ec:b7:2f:31:dd:a6:c8:c3:79:ad:1d:9f:e8:9d: 94:53:0b:16:1f:3e:49:d2:7c:68:39:3f:a6:87:2c: fb:67:27:58:3c:54:55:dd:aa:50:34:43:74:8d:d8: f3:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:25:B1:F2:4F:EC:D6:DB:7A:C1:AD:D3:53:E1:59:3E:B8:38:28:AC X509v3 Authority Key Identifier: keyid:75:0F:A5:7B:59:15:65:39:CB:16:E5:4A:60:A6:CE:DB:5B:10:EB:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQ-le1kVZTnLFuVKYKbO21sQ654.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:0e:72:4f:19:23:e3:3c:27:2e:b0:c0:e1:6d:3a:2e:b5:5c: ba:05:8c:4c:d0:fb:3f:8e:a8:ad:ad:b0:d8:12:4d:72:97:34: d8:bd:d9:14:c2:e3:cd:98:cd:5c:7e:6e:fb:8a:f8:90:62:3d: c9:7a:67:d8:17:8f:d7:9f:c4:a9:cb:ad:44:58:21:0d:5d:64: 8e:f5:57:45:6c:00:d8:aa:cd:02:7e:71:c5:fb:05:6c:17:9c: 95:bf:42:da:01:53:14:b2:9d:00:8e:6f:73:6a:91:3d:b4:72: d3:02:80:ca:27:51:cb:fa:cf:cb:2e:63:6a:c6:11:13:1d:8a: fa:d1:88:7d:c8:59:4c:e2:96:ad:e0:9a:0d:8c:59:ec:49:bb: f6:d6:b1:55:97:da:2c:68:51:06:5c:b3:5f:fb:5d:80:22:64: bd:5a:1e:32:5a:0a:da:d0:ee:c0:1c:23:8d:2c:44:58:18:8a: b7:63:a6:af:68:e6:cd:92:69:ac:46:11:74:07:0a:08:3f:48: 9a:48:77:2d:95:2a:8a:28:3e:b7:fa:93:09:1b:3a:eb:63:f0: 34:be:3d:5f:57:5b:7f:ff:af:1a:fc:3a:2e:86:01:27:22:ec: 1f:51:03:b1:fc:3d:25:f8:b6:ba:13:40:39:3a:05:cb:8b:42: 21:c2:07:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkIxRjMxMTAvBgNVBAUTKDc1MEZBNTdCNTkxNTY1MzlDQjE2RTU0QTYwQTZDRURC NUIxMEVCOUUwHhcNMjUxMTAzMDUxNDUxWhcNMjUxMTEwMDUxNDUxWjAYMRYwFAYD VQQDEw02OTA4M2E0Yi1mODMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoNAaJWAoaJItJeMFGJQUAxQtvJGrWhak2Hs3hJKr7RCAvuMw2gmbCQVILqjb POmms6uhkxgt0mY/i2AWNg3DfFjHyAqPejStl0Asi05SaheORjuFaEQBdzeAFgw1 25xvT72iPRRs85vrGeY8dJXR05wJuZW9l6WJ4fiPw4sNLZpoBB7zBqoHf1VX/70I nZAsRd8u8qO+XBCDBoy6MjS13rc+cPGAZV94MQj8ohxK0uksb8i0A3Za0xp8pPKz o8DndRqVIkwRo1RSEHLPhZuaKhQr7LcvMd2myMN5rR2f6J2UUwsWHz5J0nxoOT+m hyz7ZydYPFRV3apQNEN0jdjzkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBAlsfJP 7NbbesGt01PhWT64OCisMB8GA1UdIwQYMBaAFHUPpXtZFWU5yxblSmCmzttbEOue MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjFGMy80Mjk3RDA1MjQ1 QUUxMUVGQjYyMzc4NzBDNEY5QUUwMi9kUS1sZTFrVlpUbkxGdVZLWUtiTzIxc1E2 NTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RRLWxlMWtWWlRuTEZ1VktZS2JPMjFzUTY1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjFGMy80Mjk3RDA1MjQ1QUUxMUVGQjYyMzc4NzBDNEY5QUUwMi9kUS1sZTFrVlpU bkxGdVZLWUtiTzIxc1E2NTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnDnJPGSPjPCcusMDhbToutVy6BYxM0Ps/jqitrbDYEk1ylzTYvdkU wuPNmM1cfm77iviQYj3JemfYF4/Xn8Spy61EWCENXWSO9VdFbADYqs0CfnHF+wVs F5yVv0LaAVMUsp0Ajm9zapE9tHLTAoDKJ1HL+s/LLmNqxhETHYr60Yh9yFlM4pat 4JoNjFnsSbv21rFVl9osaFEGXLNf+12AImS9Wh4yWgra0O7AHCONLERYGIq3Y6av aObNkmmsRhF0BwoIP0iaSHctlSqKKD63+pMJGzrrY/A0vj1fV1t//68a/DouhgEn IuwfUQOx/D0l+La6E0A5OgXLi0Ihwgd1 -----END CERTIFICATE-----Generated at Tue Nov 4 02:15:01 2025 by rpki-client