$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.mft File: dxt4h8SJvZsXs87YMWTvRNxWTvU.mft (raw, json) Hash identifier: YiaF9oueWuK5wSeSrjnlz+1kY8uaXX9C7EjS9Q4nNek= Subject key identifier: 3D:1A:CD:87:18:15:69:C1:7C:4E:6A:96:76:BD:4B:FC:CE:58:2F:46 Authority key identifier: 77:1B:78:87:C4:89:BD:9B:17:B3:CE:D8:31:64:EF:44:DC:56:4E:F5 Certificate issuer: /CN=A91E9641/serialNumber=771B7887C489BD9B17B3CED83164EF44DC564EF5 Certificate serial: 01BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dxt4h8SJvZsXs87YMWTvRNxWTvU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.mft Manifest number: 01B7 Signing time: Mon 03 Nov 2025 03:04:01 +0000 Manifest this update: Mon 03 Nov 2025 03:04:00 +0000 Manifest next update: Mon 10 Nov 2025 03:04:00 +0000 Files and hashes: 1: dxt4h8SJvZsXs87YMWTvRNxWTvU.crl (hash: qsoogfc/Rjbf6YgK4cu1aZJ6dlNJz9OQcJBNpqayBHw=) 2: 5D432F98177711EEAB396D1CC4F9AE02.roa (hash: 64T0QVyxSFq/Fdklobji66MEyYuHugmocsuY/nRlqQ0=) 3: 5CB1666C177711EEAB396D1CC4F9AE02.roa (hash: i/4qbq1olZ1yrHtpcck4H45nkVfaKLB8DIL2yG7lkLw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.crl rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dxt4h8SJvZsXs87YMWTvRNxWTvU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:03:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 445 (0x1bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9641, serialNumber=771B7887C489BD9B17B3CED83164EF44DC564EF5 Validity Not Before: Nov 3 03:04:00 2025 GMT Not After : Nov 10 03:04:00 2025 GMT Subject: CN=69081ba0-370c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:50:07:4a:f8:c4:25:a1:61:04:67:eb:9c:d9: 9f:11:70:4d:9f:2c:5c:e9:b9:05:f3:20:9d:e2:66: 2f:6f:31:69:30:fd:d5:fe:dc:76:03:44:61:d0:d9: be:da:72:6f:2a:51:33:0d:fd:9a:e6:c2:75:a1:2c: 68:ac:5c:88:cf:8c:81:43:6e:0c:94:bb:df:29:ab: a3:ec:06:f7:5d:40:ce:02:e0:ee:71:c1:dc:98:de: fb:44:8e:09:9c:2f:89:20:2e:6b:3a:b7:5b:c9:cf: 37:27:30:e4:fe:b0:37:80:b3:dc:ea:70:a6:a7:93: 5c:38:bf:2e:74:20:db:74:fe:04:cc:af:bf:66:e2: 69:66:e9:16:3c:b5:2e:00:b1:c0:17:02:10:f0:ca: 7a:63:97:76:f2:8e:75:be:25:c0:b1:51:4f:6b:8f: f0:e3:e0:c2:70:77:ac:81:25:99:59:0a:2b:30:ae: 5b:b2:c5:44:d4:ed:af:17:5c:6f:2d:8f:4b:13:8c: 8a:15:75:e0:39:1b:1c:99:fb:36:00:5c:f0:1e:5a: e7:b2:54:02:a4:92:fc:bd:57:2a:0c:23:da:c4:cd: 4b:99:7b:b9:a9:a2:66:00:58:6d:1e:e5:9a:90:f0: 13:71:2b:99:f2:72:da:aa:f1:ac:a2:2a:6d:64:a1: 44:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:1A:CD:87:18:15:69:C1:7C:4E:6A:96:76:BD:4B:FC:CE:58:2F:46 X509v3 Authority Key Identifier: keyid:77:1B:78:87:C4:89:BD:9B:17:B3:CE:D8:31:64:EF:44:DC:56:4E:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dxt4h8SJvZsXs87YMWTvRNxWTvU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:68:54:d0:9c:bb:2e:08:e4:0f:82:86:cd:d1:73:b0:f5:f5: 0b:5e:f4:a7:2a:71:29:cf:b6:5a:14:25:e2:a7:fb:25:d5:e7: 63:cb:94:69:72:bc:f1:39:51:c0:5d:d8:a5:7c:00:e1:5c:ca: d2:ab:41:d1:1c:1f:e8:1a:30:06:90:9d:f2:22:f8:4c:44:fb: 3b:f9:3d:1e:ed:81:3e:8c:b5:b6:68:14:8f:bd:c4:fa:f7:07: 39:c8:2f:d8:1f:8a:de:55:e9:a8:7f:63:33:99:f7:b9:b8:dc: 97:90:fa:77:7d:5b:72:ee:88:6c:bd:35:8a:b6:78:78:66:d2: e0:64:03:ca:4a:8a:3b:2c:1f:af:25:d3:92:b9:dc:87:17:d2: 21:b4:3e:a7:47:43:b8:03:61:cb:96:5a:c5:ab:9c:3a:b3:9d: 32:2d:d4:fa:09:58:26:c6:3b:74:fe:54:87:6e:3c:12:ae:b4: a1:46:d5:74:c7:e4:6d:94:09:5f:54:ed:2c:f5:9a:4b:8a:a8: 55:ed:83:58:55:df:73:a5:56:fb:d9:11:f4:c3:ae:45:1b:78: 1c:2a:a4:19:35:9f:11:1a:d1:bb:e6:69:29:e2:62:55:99:c9: 79:4e:ff:27:e9:30:6f:f4:c0:a4:2a:8c:ac:e5:30:b2:45:bd: 1e:0b:65:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAb0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk2NDExMTAvBgNVBAUTKDc3MUI3ODg3QzQ4OUJEOUIxN0IzQ0VEODMxNjRFRjQ0 REM1NjRFRjUwHhcNMjUxMTAzMDMwNDAwWhcNMjUxMTEwMDMwNDAwWjAYMRYwFAYD VQQDEw02OTA4MWJhMC0zNzBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm1AHSvjEJaFhBGfrnNmfEXBNnyxc6bkF8yCd4mYvbzFpMP3V/tx2A0Rh0Nm+ 2nJvKlEzDf2a5sJ1oSxorFyIz4yBQ24MlLvfKauj7Ab3XUDOAuDuccHcmN77RI4J nC+JIC5rOrdbyc83JzDk/rA3gLPc6nCmp5NcOL8udCDbdP4EzK+/ZuJpZukWPLUu ALHAFwIQ8Mp6Y5d28o51viXAsVFPa4/w4+DCcHesgSWZWQorMK5bssVE1O2vF1xv LY9LE4yKFXXgORscmfs2AFzwHlrnslQCpJL8vVcqDCPaxM1LmXu5qaJmAFhtHuWa kPATcSuZ8nLaqvGsoiptZKFEhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD0azYcY FWnBfE5qlna9S/zOWC9GMB8GA1UdIwQYMBaAFHcbeIfEib2bF7PO2DFk70TcVk71 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTY0MS83RDAyODdFQTE3 NzAxMUVFOTQ1Q0Q4NTlDNEY5QUUwMi9keHQ0aDhTSnZac1hzODdZTVdUdlJOeFdU dlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2R4dDRoOFNKdlpzWHM4N1lNV1R2Uk54V1R2VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTY0MS83RDAyODdFQTE3NzAxMUVFOTQ1Q0Q4NTlDNEY5QUUwMi9keHQ0aDhTSnZa c1hzODdZTVdUdlJOeFdUdlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKaFTQnLsuCOQPgobN0XOw9fULXvSnKnEpz7ZaFCXip/sl1edjy5Rp crzxOVHAXdilfADhXMrSq0HRHB/oGjAGkJ3yIvhMRPs7+T0e7YE+jLW2aBSPvcT6 9wc5yC/YH4reVemof2Mzmfe5uNyXkPp3fVty7ohsvTWKtnh4ZtLgZAPKSoo7LB+v JdOSudyHF9IhtD6nR0O4A2HLllrFq5w6s50yLdT6CVgmxjt0/lSHbjwSrrShRtV0 x+RtlAlfVO0s9ZpLiqhV7YNYVd9zpVb72RH0w65FG3gcKqQZNZ8RGtG75mkp4mJV mcl5Tv8n6TBv9MCkKoys5TCyRb0eC2Wu -----END CERTIFICATE-----Generated at Tue Nov 4 21:34:37 2025 by rpki-client