$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.mft File: dxt4h8SJvZsXs87YMWTvRNxWTvU.mft (raw, json) Hash identifier: DnyqZZsvB0hSJq9FYtB3wUSbut77AeurGf1vhKQbPWI= Subject key identifier: 26:97:30:F6:CF:DA:BF:08:70:19:46:94:C7:3C:2E:A8:31:79:20:1E Authority key identifier: 77:1B:78:87:C4:89:BD:9B:17:B3:CE:D8:31:64:EF:44:DC:56:4E:F5 Certificate issuer: /CN=A91E9641/serialNumber=771B7887C489BD9B17B3CED83164EF44DC564EF5 Certificate serial: 01AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dxt4h8SJvZsXs87YMWTvRNxWTvU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.mft Manifest number: 01A9 Signing time: Tue 07 Oct 2025 03:27:56 +0000 Manifest this update: Tue 07 Oct 2025 03:27:56 +0000 Manifest next update: Tue 14 Oct 2025 03:27:56 +0000 Files and hashes: 1: dxt4h8SJvZsXs87YMWTvRNxWTvU.crl (hash: R9dN1PSkHdERhv14KTQovQa6HUyxo9UO/7bcAXRnZjQ=) 2: 5D432F98177711EEAB396D1CC4F9AE02.roa (hash: 64T0QVyxSFq/Fdklobji66MEyYuHugmocsuY/nRlqQ0=) 3: 5CB1666C177711EEAB396D1CC4F9AE02.roa (hash: i/4qbq1olZ1yrHtpcck4H45nkVfaKLB8DIL2yG7lkLw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.crl rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dxt4h8SJvZsXs87YMWTvRNxWTvU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Oct 2025 03:27:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 431 (0x1af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9641, serialNumber=771B7887C489BD9B17B3CED83164EF44DC564EF5 Validity Not Before: Oct 7 03:27:56 2025 GMT Not After : Oct 14 03:27:56 2025 GMT Subject: CN=68e488bc-6d5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:fd:b0:41:b1:35:8e:91:e8:cb:d9:1c:24:4e: 24:4c:e5:4b:ea:19:fe:61:f0:7d:7b:6b:54:81:64: e0:08:c0:5d:57:91:be:a3:58:e9:fe:55:00:e4:c1: e1:dc:9a:b5:d4:6b:f2:49:5c:ae:70:4b:c7:09:4f: c6:4a:a3:54:ff:86:27:8e:17:6d:a0:85:ed:a9:fd: 2d:08:09:d5:86:dc:d1:b7:2b:f2:b8:36:dd:31:50: bf:3a:c6:fa:bb:43:28:a0:9a:74:77:5e:d4:e5:08: d0:db:c2:df:ba:90:c7:33:65:25:8f:31:fb:fa:73: b9:54:9a:41:b3:05:8a:74:fe:95:ef:3a:47:80:b3: a9:c7:f1:02:0e:0e:6b:0d:0a:6c:65:38:02:b8:1f: d5:0d:f2:29:5e:1a:7b:8b:8a:7a:ac:25:bc:af:c5: 68:31:3c:12:c6:d6:e0:ef:0b:76:7f:5f:7b:51:72: 19:5b:18:69:9d:88:1a:66:97:f6:de:d1:20:21:59: ca:c9:d5:85:32:ec:43:0e:6d:24:87:34:c1:9d:33: 53:0d:71:46:b6:23:0d:6d:3c:dd:9f:02:be:ab:44: ba:8e:1c:75:8b:f2:f6:32:88:31:10:91:42:0c:ea: de:13:99:09:23:7f:5f:f1:7c:d7:8a:f0:7a:8d:42: ef:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:97:30:F6:CF:DA:BF:08:70:19:46:94:C7:3C:2E:A8:31:79:20:1E X509v3 Authority Key Identifier: keyid:77:1B:78:87:C4:89:BD:9B:17:B3:CE:D8:31:64:EF:44:DC:56:4E:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dxt4h8SJvZsXs87YMWTvRNxWTvU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:2e:42:2d:66:41:21:59:62:94:62:4c:0f:78:19:11:23:77: bd:cd:88:24:36:db:d6:b3:53:93:42:73:07:22:87:93:37:47: 3d:5f:f1:11:d9:fa:95:47:d4:a1:2c:c2:bb:96:dc:bc:2e:18: df:fc:a5:e1:ff:fa:59:e7:c1:a3:6f:0d:66:3a:cf:eb:20:28: 41:63:db:88:8d:aa:42:d4:68:02:25:82:d2:51:fd:ee:3c:b3: a7:e7:1a:be:cb:5a:a2:66:76:66:a6:68:cf:ab:0c:09:e5:11: c6:82:87:41:57:ce:73:07:98:5f:f7:d2:5b:11:23:2a:13:70: a7:7b:cd:34:03:03:5c:fa:5d:9c:c4:b7:c6:30:2f:67:4a:46: 3b:2e:7a:10:48:80:94:3e:11:bf:52:04:9a:14:8e:a9:1a:b9: 66:c8:48:9d:96:01:c9:92:91:45:3d:fc:16:94:56:f2:d9:7a: 06:6c:b8:16:25:2f:60:49:ce:8e:a0:05:4d:68:9e:70:fa:c9: 85:e0:55:b2:6d:7e:f8:5a:df:7f:0d:d3:2c:c0:d3:24:4e:a9: 80:f4:9b:e3:82:35:13:a0:a4:13:77:31:db:a6:2f:07:ff:0a: 60:41:61:69:7e:11:0b:06:1a:b1:87:49:cd:f0:92:c8:00:0d: 7d:da:b8:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAa8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk2NDExMTAvBgNVBAUTKDc3MUI3ODg3QzQ4OUJEOUIxN0IzQ0VEODMxNjRFRjQ0 REM1NjRFRjUwHhcNMjUxMDA3MDMyNzU2WhcNMjUxMDE0MDMyNzU2WjAYMRYwFAYD VQQDEw02OGU0ODhiYy02ZDVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4f2wQbE1jpHoy9kcJE4kTOVL6hn+YfB9e2tUgWTgCMBdV5G+o1jp/lUA5MHh 3Jq11GvySVyucEvHCU/GSqNU/4YnjhdtoIXtqf0tCAnVhtzRtyvyuDbdMVC/Osb6 u0MooJp0d17U5QjQ28LfupDHM2UljzH7+nO5VJpBswWKdP6V7zpHgLOpx/ECDg5r DQpsZTgCuB/VDfIpXhp7i4p6rCW8r8VoMTwSxtbg7wt2f197UXIZWxhpnYgaZpf2 3tEgIVnKydWFMuxDDm0khzTBnTNTDXFGtiMNbTzdnwK+q0S6jhx1i/L2MogxEJFC DOreE5kJI39f8XzXivB6jULvcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCaXMPbP 2r8IcBlGlMc8LqgxeSAeMB8GA1UdIwQYMBaAFHcbeIfEib2bF7PO2DFk70TcVk71 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTY0MS83RDAyODdFQTE3 NzAxMUVFOTQ1Q0Q4NTlDNEY5QUUwMi9keHQ0aDhTSnZac1hzODdZTVdUdlJOeFdU dlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2R4dDRoOFNKdlpzWHM4N1lNV1R2Uk54V1R2VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTY0MS83RDAyODdFQTE3NzAxMUVFOTQ1Q0Q4NTlDNEY5QUUwMi9keHQ0aDhTSnZa c1hzODdZTVdUdlJOeFdUdlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZLkItZkEhWWKUYkwPeBkRI3e9zYgkNtvWs1OTQnMHIoeTN0c9X/ER 2fqVR9ShLMK7lty8Lhjf/KXh//pZ58Gjbw1mOs/rIChBY9uIjapC1GgCJYLSUf3u PLOn5xq+y1qiZnZmpmjPqwwJ5RHGgodBV85zB5hf99JbESMqE3Cne800AwNc+l2c xLfGMC9nSkY7LnoQSICUPhG/UgSaFI6pGrlmyEidlgHJkpFFPfwWlFby2XoGbLgW JS9gSc6OoAVNaJ5w+smF4FWybX74Wt9/DdMswNMkTqmA9JvjgjUToKQTdzHbpi8H /wpgQWFpfhELBhqxh0nN8JLIAA192rjG -----END CERTIFICATE-----Generated at Thu Oct 9 01:26:59 2025 by rpki-client