$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.mft File: dD54xFmO_HLaCEZGUOuPnNoW-YA.mft (raw, json) Hash identifier: GsCGOCkZbRRSg9CqktChi3/4GEx2oHoXvdMDROmdxds= Subject key identifier: 73:C9:81:C1:9D:94:0F:F5:98:92:A1:60:C9:5A:41:D2:CB:EE:62:30 Authority key identifier: 74:3E:78:C4:59:8E:FC:72:DA:08:46:46:50:EB:8F:9C:DA:16:F9:80 Certificate issuer: /CN=A91DE500/serialNumber=743E78C4598EFC72DA08464650EB8F9CDA16F980 Certificate serial: 0149 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dD54xFmO_HLaCEZGUOuPnNoW-YA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.mft Manifest number: 0289 Signing time: Mon 03 Nov 2025 04:20:57 +0000 Manifest this update: Mon 03 Nov 2025 04:20:57 +0000 Manifest next update: Mon 10 Nov 2025 04:20:57 +0000 Files and hashes: 1: dD54xFmO_HLaCEZGUOuPnNoW-YA.crl (hash: q+6Nsn7k0bh6r2kzKITN/h6BAyk9v3Ktye48uJJy3uI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.crl rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dD54xFmO_HLaCEZGUOuPnNoW-YA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:20:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 329 (0x149) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE500, serialNumber=743E78C4598EFC72DA08464650EB8F9CDA16F980 Validity Not Before: Nov 3 04:20:57 2025 GMT Not After : Nov 10 04:20:57 2025 GMT Subject: CN=69082da9-8e90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:28:2a:61:44:5e:19:89:97:ac:1b:dc:8c:d6: 45:29:8e:d4:34:dd:0f:92:fb:6a:da:65:bc:c6:7c: 2b:64:18:61:d9:93:7a:4c:d4:bf:aa:e7:fc:17:77: c0:33:77:5e:93:39:19:ed:48:e8:86:49:fe:d8:b5: 81:d8:b4:56:45:22:64:b3:a7:1d:bb:03:83:f6:0a: 55:29:5b:ba:ba:e9:7a:33:7c:fb:6c:1e:da:3f:ea: 98:54:5f:1f:a6:6a:9a:75:cf:3a:69:a6:53:a0:da: b2:fc:f6:37:6e:25:45:b6:83:5a:a5:1f:9c:c1:f5: c8:c0:3c:98:b7:23:a6:c8:e4:3b:b3:54:3d:5b:7b: 8b:bb:30:a4:f8:7f:1a:c6:fc:10:0a:47:0e:c4:f6: 92:69:79:3b:13:5d:3d:79:8c:a7:91:f7:bc:9d:a9: bd:87:29:2d:23:15:bf:73:f3:7b:b0:73:55:63:ff: e7:d0:68:8c:dd:22:41:d9:84:b0:c4:87:ec:a4:02: 48:02:c8:74:a9:5b:02:7d:c3:0d:c7:8c:5a:10:d3: 12:a8:34:d2:48:d6:ce:36:26:13:3d:8c:4b:14:bd: a3:a0:3d:f0:e3:04:51:20:51:c8:5e:21:15:98:fa: c2:b2:78:62:cc:6a:c9:1a:b0:45:e8:46:65:79:09: d4:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:C9:81:C1:9D:94:0F:F5:98:92:A1:60:C9:5A:41:D2:CB:EE:62:30 X509v3 Authority Key Identifier: keyid:74:3E:78:C4:59:8E:FC:72:DA:08:46:46:50:EB:8F:9C:DA:16:F9:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dD54xFmO_HLaCEZGUOuPnNoW-YA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:45:6c:e2:dc:dc:89:57:9a:18:77:ab:b9:47:a3:8a:34:62: b4:83:11:e1:da:e5:5c:68:80:bc:0f:58:2f:8c:bc:64:c6:64: e3:9e:a3:fd:30:e0:2e:89:8c:37:c9:8d:c1:26:11:1a:6b:43: ce:d0:39:7b:74:6f:64:96:37:ea:26:d8:67:39:f3:af:5f:39: 35:07:42:56:d5:31:03:e3:ea:dd:4e:e3:93:10:cb:25:2d:cf: 4b:d9:c9:95:70:6e:aa:3a:99:cd:13:22:86:cb:20:3a:e2:f7: 17:07:d1:c2:01:86:07:8e:f9:12:81:bd:13:c4:a6:e5:13:1c: 8c:e6:95:1b:5a:95:b2:38:73:f7:2c:13:38:a0:e4:33:00:49: b1:e5:6e:56:d0:94:15:fe:f8:6e:8c:f2:01:45:c7:c3:3b:c1: 2e:27:e0:b5:77:c0:ba:13:ac:8d:70:83:8c:84:35:dc:1c:0f: 89:26:bc:0c:d2:6e:8e:8a:2d:63:f3:95:e8:53:d8:82:11:28: 58:e4:ba:e8:d1:4d:b9:00:e3:10:1a:b6:4c:8b:5b:61:db:98: 6c:3a:8c:60:a1:2d:4f:3a:ff:d2:16:61:db:de:75:f5:ba:89: d8:18:c9:23:7e:7f:00:f1:7e:d2:4b:52:e8:2b:8b:0c:6e:45: 8b:89:8c:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU1MDAxMTAvBgNVBAUTKDc0M0U3OEM0NTk4RUZDNzJEQTA4NDY0NjUwRUI4RjlD REExNkY5ODAwHhcNMjUxMTAzMDQyMDU3WhcNMjUxMTEwMDQyMDU3WjAYMRYwFAYD VQQDEw02OTA4MmRhOS04ZTkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtygqYUReGYmXrBvcjNZFKY7UNN0Pkvtq2mW8xnwrZBhh2ZN6TNS/quf8F3fA M3dekzkZ7Ujohkn+2LWB2LRWRSJks6cduwOD9gpVKVu6uul6M3z7bB7aP+qYVF8f pmqadc86aaZToNqy/PY3biVFtoNapR+cwfXIwDyYtyOmyOQ7s1Q9W3uLuzCk+H8a xvwQCkcOxPaSaXk7E109eYynkfe8nam9hyktIxW/c/N7sHNVY//n0GiM3SJB2YSw xIfspAJIAsh0qVsCfcMNx4xaENMSqDTSSNbONiYTPYxLFL2joD3w4wRRIFHIXiEV mPrCsnhizGrJGrBF6EZleQnUVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHPJgcGd lA/1mJKhYMlaQdLL7mIwMB8GA1UdIwQYMBaAFHQ+eMRZjvxy2ghGRlDrj5zaFvmA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTUwMC8zRkZGNUMzRUM3 MkQxMUVFOUM3QzM1MURDNEY5QUUwMi9kRDU0eEZtT19ITGFDRVpHVU91UG5Ob1ct WUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RENTR4Rm1PX0hMYUNFWkdVT3VQbk5vVy1ZQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTUwMC8zRkZGNUMzRUM3MkQxMUVFOUM3QzM1MURDNEY5QUUwMi9kRDU0eEZtT19I TGFDRVpHVU91UG5Ob1ctWUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATRWzi3NyJV5oYd6u5R6OKNGK0gxHh2uVcaIC8D1gvjLxkxmTjnqP9 MOAuiYw3yY3BJhEaa0PO0Dl7dG9kljfqJthnOfOvXzk1B0JW1TED4+rdTuOTEMsl Lc9L2cmVcG6qOpnNEyKGyyA64vcXB9HCAYYHjvkSgb0TxKblExyM5pUbWpWyOHP3 LBM4oOQzAEmx5W5W0JQV/vhujPIBRcfDO8EuJ+C1d8C6E6yNcIOMhDXcHA+JJrwM 0m6Oii1j85XoU9iCEShY5Lro0U25AOMQGrZMi1th25hsOoxgoS1POv/SFmHb3nX1 uonYGMkjfn8A8X7SS1LoK4sMbkWLiYz3 -----END CERTIFICATE-----Generated at Wed Nov 5 04:46:40 2025 by rpki-client