$ rpki-client -vvf rpki.apnic.net/member_repository/A91D03FC/C7B093561D7111EF95E26840C4F9AE02/D1kUy7lqcNoGsR7z3StjyeQHsxw.mft File: D1kUy7lqcNoGsR7z3StjyeQHsxw.mft (raw, json) Hash identifier: CxeXWYR3XZ561jEn6yvX18B53VsipJQYXlVoTppRgm8= Subject key identifier: 10:D3:60:FD:36:5C:3A:9A:F5:DC:E4:BF:19:7A:1D:88:2D:E0:53:B6 Authority key identifier: 0F:59:14:CB:B9:6A:70:DA:06:B1:1E:F3:DD:2B:63:C9:E4:07:B3:1C Certificate issuer: /CN=A91D03FC/serialNumber=0F5914CBB96A70DA06B11EF3DD2B63C9E407B31C Certificate serial: 0119 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D1kUy7lqcNoGsR7z3StjyeQHsxw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D03FC/C7B093561D7111EF95E26840C4F9AE02/D1kUy7lqcNoGsR7z3StjyeQHsxw.mft Manifest number: 0112 Signing time: Wed 05 Nov 2025 05:04:23 +0000 Manifest this update: Wed 05 Nov 2025 05:04:23 +0000 Manifest next update: Wed 12 Nov 2025 05:04:23 +0000 Files and hashes: 1: D1kUy7lqcNoGsR7z3StjyeQHsxw.crl (hash: 0qYU2sXEtL4AsMClFjllaDZ4+M1ikGu0/NYgBNWGLZM=) 2: 4FFFD8D41D7211EFA095B25AC4F9AE02.roa (hash: 7t/pdYKTKmwUGR/lE+qnEM4TrcYeXROZCsv49aYTSqk=) 3: 507C31C21D7211EFA095B25AC4F9AE02.roa (hash: c1LdcyfxBkh65MfHEWuLe4Y+neliIailfDFE8qX4bKs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D03FC/C7B093561D7111EF95E26840C4F9AE02/D1kUy7lqcNoGsR7z3StjyeQHsxw.crl rsync://rpki.apnic.net/member_repository/A91D03FC/C7B093561D7111EF95E26840C4F9AE02/D1kUy7lqcNoGsR7z3StjyeQHsxw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D1kUy7lqcNoGsR7z3StjyeQHsxw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:04:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 281 (0x119) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D03FC, serialNumber=0F5914CBB96A70DA06B11EF3DD2B63C9E407B31C Validity Not Before: Nov 5 05:04:23 2025 GMT Not After : Nov 12 05:04:23 2025 GMT Subject: CN=690adad7-836c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:99:3b:99:4a:ef:6e:e7:f1:3f:5c:17:e2:0b: 5a:0b:9a:00:f9:3b:1b:a1:10:0c:f5:c8:33:79:33: e5:69:8a:19:3b:93:69:46:e1:7c:26:13:18:d2:ff: 03:eb:5c:6c:bc:45:0d:05:c5:6a:2b:63:bc:20:a4: 45:96:28:81:9c:e5:03:7e:74:e5:22:a4:2b:ca:52: 20:d0:bc:d3:d1:30:21:57:03:e6:03:51:2f:66:7f: 36:7a:f9:c7:f0:33:91:42:e5:8e:8a:43:59:96:c3: 15:ac:1d:a3:94:7e:31:44:53:c6:20:ca:42:8f:c6: ef:bd:c7:b4:30:b6:f1:53:b5:ad:92:01:70:b9:ac: e7:da:55:83:e6:b5:db:7a:4d:39:7f:a0:05:39:ab: c0:b7:da:04:38:8b:31:c4:ac:07:21:c1:a9:86:55: 92:bb:f4:6f:2e:6b:26:06:c7:54:c1:36:2a:0a:cc: 86:a5:73:07:bb:a2:b3:69:fc:26:0d:b9:e2:64:7e: e3:ae:70:39:b3:4d:1c:26:d7:0b:d2:d9:73:84:3d: 0c:74:b9:96:50:b3:3b:f2:65:db:a4:4d:10:5e:ae: d0:0f:51:af:89:bf:d7:df:72:6f:40:96:97:77:fc: ca:8e:4c:4e:0a:75:50:8d:9a:c7:81:13:7e:f2:73: 1b:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:D3:60:FD:36:5C:3A:9A:F5:DC:E4:BF:19:7A:1D:88:2D:E0:53:B6 X509v3 Authority Key Identifier: keyid:0F:59:14:CB:B9:6A:70:DA:06:B1:1E:F3:DD:2B:63:C9:E4:07:B3:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D03FC/C7B093561D7111EF95E26840C4F9AE02/D1kUy7lqcNoGsR7z3StjyeQHsxw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D1kUy7lqcNoGsR7z3StjyeQHsxw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D03FC/C7B093561D7111EF95E26840C4F9AE02/D1kUy7lqcNoGsR7z3StjyeQHsxw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:4c:fc:77:e1:cb:7b:39:2d:c5:69:8e:36:fe:62:1d:87:34: 82:cb:02:c2:95:ff:a2:c5:6d:b8:f2:3e:1b:6d:04:fc:88:9d: cf:56:47:b8:f8:38:8c:df:c6:ee:e0:32:7e:9c:a9:39:6c:e9: ba:80:31:8e:5d:50:1e:e9:29:90:3b:c1:19:17:e2:b4:da:b1: f1:e6:75:74:bf:30:27:6c:d8:02:86:59:2a:72:82:ca:22:28: 26:38:e6:a4:7c:cb:19:3b:3e:35:40:88:38:b0:26:6f:60:8c: d4:18:2d:9e:ab:9c:f9:14:ad:f7:21:ee:6d:74:74:d9:11:ba: 87:e8:e7:8e:69:d2:95:81:be:3d:4b:88:81:c6:76:51:91:7f: f4:3c:8e:e9:1a:ad:d4:43:64:0b:37:5e:c3:54:b0:c3:60:2b: 4b:73:a5:30:04:32:a5:b0:ea:af:28:d1:bf:5c:47:28:50:ab: 95:1b:34:af:1c:c8:d7:8d:0f:38:96:d6:f3:cb:9d:52:77:10: ae:e6:38:a1:5d:3d:fe:cc:97:da:03:f2:f2:71:a4:0b:9f:40: 48:5a:04:10:08:b0:8a:c7:b7:0c:3b:9a:81:50:43:4c:47:c3: 1a:ac:87:38:94:6d:fb:f1:e7:ce:c8:be:65:bb:d6:94:fd:ca: 6c:67:14:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDAzRkMxMTAvBgNVBAUTKDBGNTkxNENCQjk2QTcwREEwNkIxMUVGM0REMkI2M0M5 RTQwN0IzMUMwHhcNMjUxMTA1MDUwNDIzWhcNMjUxMTEyMDUwNDIzWjAYMRYwFAYD VQQDEw02OTBhZGFkNy04MzZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzJk7mUrvbufxP1wX4gtaC5oA+TsboRAM9cgzeTPlaYoZO5NpRuF8JhMY0v8D 61xsvEUNBcVqK2O8IKRFliiBnOUDfnTlIqQrylIg0LzT0TAhVwPmA1EvZn82evnH 8DORQuWOikNZlsMVrB2jlH4xRFPGIMpCj8bvvce0MLbxU7WtkgFwuazn2lWD5rXb ek05f6AFOavAt9oEOIsxxKwHIcGphlWSu/RvLmsmBsdUwTYqCsyGpXMHu6Kzafwm DbniZH7jrnA5s00cJtcL0tlzhD0MdLmWULM78mXbpE0QXq7QD1Gvib/X33JvQJaX d/zKjkxOCnVQjZrHgRN+8nMbsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBDTYP02 XDqa9dzkvxl6HYgt4FO2MB8GA1UdIwQYMBaAFA9ZFMu5anDaBrEe890rY8nkB7Mc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDNGQy9DN0IwOTM1NjFE NzExMUVGOTVFMjY4NDBDNEY5QUUwMi9EMWtVeTdscWNOb0dzUjd6M1N0anllUUhz eHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Qxa1V5N2xxY05vR3NSN3ozU3RqeWVRSHN4dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MDNGQy9DN0IwOTM1NjFENzExMUVGOTVFMjY4NDBDNEY5QUUwMi9EMWtVeTdscWNO b0dzUjd6M1N0anllUUhzeHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDATPx34ct7OS3FaY42/mIdhzSCywLClf+ixW248j4bbQT8iJ3PVke4 +DiM38bu4DJ+nKk5bOm6gDGOXVAe6SmQO8EZF+K02rHx5nV0vzAnbNgChlkqcoLK IigmOOakfMsZOz41QIg4sCZvYIzUGC2eq5z5FK33Ie5tdHTZEbqH6OeOadKVgb49 S4iBxnZRkX/0PI7pGq3UQ2QLN17DVLDDYCtLc6UwBDKlsOqvKNG/XEcoUKuVGzSv HMjXjQ84ltbzy51SdxCu5jihXT3+zJfaA/LycaQLn0BIWgQQCLCKx7cMO5qBUENM R8MarIc4lG378efOyL5lu9aU/cpsZxRF -----END CERTIFICATE-----Generated at Wed Nov 5 18:36:14 2025 by rpki-client