$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.mft File: d3ZhKkPCLQpmuPE2gLMFi-1dmJI.mft (raw, json) Hash identifier: Tt7/s5dXnQA3SBx6tO80vQpcC5DeBCj2C1K9A9DMUfU= Subject key identifier: 0D:CF:FF:CD:BD:2B:E5:2D:BF:1D:20:D5:80:59:D7:EE:32:3D:06:E4 Authority key identifier: 77:76:61:2A:43:C2:2D:0A:66:B8:F1:36:80:B3:05:8B:ED:5D:98:92 Certificate issuer: /CN=A91DEB81/serialNumber=7776612A43C22D0A66B8F13680B3058BED5D9892 Certificate serial: 049C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.mft Manifest number: 0474 Signing time: Wed 05 Nov 2025 00:16:43 +0000 Manifest this update: Wed 05 Nov 2025 00:16:43 +0000 Manifest next update: Wed 12 Nov 2025 00:16:43 +0000 Files and hashes: 1: d3ZhKkPCLQpmuPE2gLMFi-1dmJI.crl (hash: phtq4J3iw14VI1icPXuCwMj6iIwa2hFIOhrGF7SyEI0=) 2: EEECC55A8C3611EFA07E612DC4F9AE02.roa (hash: S448nKM+pkzyKAVAq+QLZ6c2Rwj7lMGOSqjzi17yKYo=) 3: 216DB034DE9711EC9289256FC4F9AE02.roa (hash: +Y2vKS8CZ7xVCXV7DmrOc6o0OVVkIHves16LK2wsX2I=) 4: 204E25DADE9711EC9289256FC4F9AE02.roa (hash: Nm0NB5K/NvPqifGuFp/i7DvZfN/unt+xIyxa1mf1Ru8=) 5: E184C6F48F2C11EEA361B22FC4F9AE02.roa (hash: m7hFb23btwRa7iUoc5sSfQwuK6EzzQbsJrT19RdsUzA=) 6: 1FBEA1EEDE9711EC9289256FC4F9AE02.roa (hash: wFyDTsNGRzgAv8mhqHHalbGpjw+H79Gqqrm8IklHVfE=) 7: E0C5B7148F2C11EEA361B22FC4F9AE02.roa (hash: Aqyl2hhEx5BpBctkE5rWM8Kv0ZDOqQAIfUrt5yWaYks=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.crl rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:16:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1180 (0x49c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEB81, serialNumber=7776612A43C22D0A66B8F13680B3058BED5D9892 Validity Not Before: Nov 5 00:16:43 2025 GMT Not After : Nov 12 00:16:43 2025 GMT Subject: CN=690a976b-b9e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:cb:72:80:e3:28:46:2b:1f:57:7b:6e:21:f1: d6:3a:74:c5:19:6e:8e:1d:ab:16:1c:3f:fd:fb:43: f0:a6:09:fd:73:12:53:ac:2f:19:ed:6e:5f:f8:9e: fe:c3:c6:34:bd:ee:5a:de:89:3b:ae:30:72:1f:2c: 31:9d:ac:e1:14:0a:ad:1e:95:cc:ea:3f:1b:8a:9e: c2:44:85:e4:5e:16:e0:7c:22:26:ed:f4:18:7c:09: 92:76:1e:7a:ec:3f:01:47:67:e1:90:a6:6d:56:17: 38:2d:c8:bb:81:ca:1a:e3:9b:e6:f5:d2:7f:82:ac: f4:42:e9:2c:c2:03:17:70:57:cb:46:27:05:c0:47: 86:07:d8:c2:3a:4a:93:cb:2d:d9:27:33:f1:04:8d: 91:b8:d4:ee:d6:2a:83:c7:98:1c:a4:ed:60:22:be: 69:3f:57:0b:11:a8:cb:d4:b7:8a:47:4e:50:e5:d8: 78:d0:2d:3b:b1:ef:4e:5d:2d:d6:51:5e:4e:a3:b7: 3f:94:f6:4a:0b:48:5f:4f:5b:d7:9b:d6:67:01:3a: 85:b0:f6:89:1e:a5:45:14:09:78:6c:7c:4c:d1:f4: f2:fd:c6:e6:4f:d4:e0:aa:21:e3:2a:01:3a:7c:f4: a5:39:00:58:fd:c1:36:88:4b:ce:ba:68:82:03:60: 8d:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:CF:FF:CD:BD:2B:E5:2D:BF:1D:20:D5:80:59:D7:EE:32:3D:06:E4 X509v3 Authority Key Identifier: keyid:77:76:61:2A:43:C2:2D:0A:66:B8:F1:36:80:B3:05:8B:ED:5D:98:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:6e:11:4b:4d:49:04:01:ec:b2:c5:17:a9:49:fd:9a:1d:d4: 6c:9a:89:f8:20:88:d6:de:93:4e:66:7e:a9:24:66:af:b0:56: c1:73:2c:15:2f:b9:01:e1:3f:d2:73:e7:23:e0:00:52:11:82: cc:d8:15:64:f5:89:d6:16:a8:d5:fb:e0:5d:84:47:ec:2f:79: 15:b0:bf:71:b4:4c:fb:b7:09:cf:74:85:bd:a9:ed:bc:52:7a: 14:ed:28:ab:a9:65:e5:bf:4a:14:04:f2:f9:16:88:c8:23:b5: 07:d7:ad:d9:8a:b1:d9:63:00:5d:fb:4b:ad:bb:41:e2:cb:cd: d5:9c:12:1c:ed:c7:9a:59:5c:04:24:c3:8b:00:81:20:33:2c: 29:e8:ec:ed:e6:07:62:b9:9d:d2:39:50:4b:1a:b8:a0:59:4c: 2c:5c:92:b6:2f:0c:4e:0b:38:16:ab:68:38:5d:37:6b:65:e9: 8c:a9:ee:15:d5:50:46:cf:b4:c6:c3:6a:78:1d:c3:b7:41:28: bb:74:c9:1e:da:b6:c4:e8:a4:ef:36:52:89:b4:46:30:83:91: 87:93:80:d3:6f:2e:f4:fb:8e:c7:41:51:70:a9:fe:9a:e2:23: 5a:d5:1a:d4:19:ab:bd:32:1f:23:cf:bf:db:61:cf:6e:40:01: 92:ef:33:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVCODExMTAvBgNVBAUTKDc3NzY2MTJBNDNDMjJEMEE2NkI4RjEzNjgwQjMwNThC RUQ1RDk4OTIwHhcNMjUxMTA1MDAxNjQzWhcNMjUxMTEyMDAxNjQzWjAYMRYwFAYD VQQDEw02OTBhOTc2Yi1iOWU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyMtygOMoRisfV3tuIfHWOnTFGW6OHasWHD/9+0Pwpgn9cxJTrC8Z7W5f+J7+ w8Y0ve5a3ok7rjByHywxnazhFAqtHpXM6j8bip7CRIXkXhbgfCIm7fQYfAmSdh56 7D8BR2fhkKZtVhc4Lci7gcoa45vm9dJ/gqz0QukswgMXcFfLRicFwEeGB9jCOkqT yy3ZJzPxBI2RuNTu1iqDx5gcpO1gIr5pP1cLEajL1LeKR05Q5dh40C07se9OXS3W UV5Oo7c/lPZKC0hfT1vXm9ZnATqFsPaJHqVFFAl4bHxM0fTy/cbmT9TgqiHjKgE6 fPSlOQBY/cE2iEvOumiCA2CNnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA3P/829 K+Utvx0g1YBZ1+4yPQbkMB8GA1UdIwQYMBaAFHd2YSpDwi0KZrjxNoCzBYvtXZiS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUI4MS9DRjk2NjNDNjcw RjcxMUVDQjMxOEU0M0FDNEY5QUUwMi9kM1poS2tQQ0xRcG11UEUyZ0xNRmktMWRt SkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2QzWmhLa1BDTFFwbXVQRTJnTE1GaS0xZG1KSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUI4MS9DRjk2NjNDNjcwRjcxMUVDQjMxOEU0M0FDNEY5QUUwMi9kM1poS2tQQ0xR cG11UEUyZ0xNRmktMWRtSkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVbhFLTUkEAeyyxRepSf2aHdRsmon4IIjW3pNOZn6pJGavsFbBcywV L7kB4T/Sc+cj4ABSEYLM2BVk9YnWFqjV++BdhEfsL3kVsL9xtEz7twnPdIW9qe28 UnoU7SirqWXlv0oUBPL5FojII7UH163ZirHZYwBd+0utu0Hiy83VnBIc7ceaWVwE JMOLAIEgMywp6Ozt5gdiuZ3SOVBLGrigWUwsXJK2LwxOCzgWq2g4XTdrZemMqe4V 1VBGz7TGw2p4HcO3QSi7dMke2rbE6KTvNlKJtEYwg5GHk4DTby70+47HQVFwqf6a 4iNa1RrUGau9Mh8jz7/bYc9uQAGS7zMt -----END CERTIFICATE-----Generated at Wed Nov 5 12:24:49 2025 by rpki-client