$ rpki-client -vvf rpki.apnic.net/member_repository/A9111623/50AD0718FD4511EEAB3AD71BC4F9AE02/dpU2g0Agk0lSKX69t4GJNXsToUU.mft File: dpU2g0Agk0lSKX69t4GJNXsToUU.mft (raw, json) Hash identifier: 6TIA3/+xX/y5kcex4Ugzjnxzxc5XBCYhX/vtuoyO2Zk= Subject key identifier: 45:D3:63:E2:05:73:81:19:16:6A:F0:0A:9F:09:54:27:19:B6:EF:A4 Authority key identifier: 76:95:36:83:40:20:93:49:52:29:7E:BD:B7:81:89:35:7B:13:A1:45 Certificate issuer: /CN=A9111623/serialNumber=769536834020934952297EBDB78189357B13A145 Certificate serial: 0128 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dpU2g0Agk0lSKX69t4GJNXsToUU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111623/50AD0718FD4511EEAB3AD71BC4F9AE02/dpU2g0Agk0lSKX69t4GJNXsToUU.mft Manifest number: 0124 Signing time: Mon 03 Nov 2025 04:43:43 +0000 Manifest this update: Mon 03 Nov 2025 04:43:43 +0000 Manifest next update: Mon 10 Nov 2025 04:43:43 +0000 Files and hashes: 1: dpU2g0Agk0lSKX69t4GJNXsToUU.crl (hash: 7CRyjdtCzVdJjM5coURoMH4LttNVZ4WPgClj8tOPfMo=) 2: CAE74ADEFD4511EEA97C9D1CC4F9AE02.roa (hash: Fsngn3T1P2F9caL/353bXgiO502hh5tKTNXu5S+xNYY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111623/50AD0718FD4511EEAB3AD71BC4F9AE02/dpU2g0Agk0lSKX69t4GJNXsToUU.crl rsync://rpki.apnic.net/member_repository/A9111623/50AD0718FD4511EEAB3AD71BC4F9AE02/dpU2g0Agk0lSKX69t4GJNXsToUU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dpU2g0Agk0lSKX69t4GJNXsToUU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:43:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 296 (0x128) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111623, serialNumber=769536834020934952297EBDB78189357B13A145 Validity Not Before: Nov 3 04:43:43 2025 GMT Not After : Nov 10 04:43:43 2025 GMT Subject: CN=690832ff-0603 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:f8:94:3b:84:d7:7b:7a:a0:dc:44:68:1d:ed: f5:93:56:a3:46:e4:02:2c:d5:96:12:f9:94:62:7c: c8:f4:33:34:be:c3:91:bf:0b:83:39:e3:58:67:b4: ba:dc:30:c7:7c:dd:2a:9a:62:5c:ca:b1:fc:03:40: 45:2b:45:d9:07:a3:9d:66:ce:86:df:8b:80:8e:4f: 7c:37:e5:a7:e9:d8:2e:b0:d5:2b:6f:82:4d:c3:d1: c4:c4:e1:52:f1:f5:e3:bc:c3:12:e4:08:65:cc:72: 89:c8:20:02:02:e5:49:9b:82:3f:bb:ce:46:cc:2b: 98:93:08:dd:56:93:b6:44:0e:a0:2b:f6:41:72:8c: 12:a7:99:a7:fc:ee:a9:6c:57:bc:94:39:e4:a6:be: f8:09:fd:97:07:b2:6e:72:63:02:b7:76:eb:47:01: e1:01:2f:6d:38:18:e4:cc:6e:b8:14:19:1d:e5:8e: 5c:aa:ae:8c:b0:b3:9c:fe:74:61:fa:78:f7:6b:c8: 01:b5:18:77:93:6f:a2:4c:16:27:42:b3:57:61:3d: 51:1a:5e:01:d0:27:6c:04:22:a8:b1:a3:d3:b6:b3: 69:03:fd:6b:e4:a3:24:e6:af:7b:6f:98:7e:c9:c1: 37:c3:dc:f4:04:06:4f:4e:c7:6c:4f:ef:8d:ee:1d: e5:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:D3:63:E2:05:73:81:19:16:6A:F0:0A:9F:09:54:27:19:B6:EF:A4 X509v3 Authority Key Identifier: keyid:76:95:36:83:40:20:93:49:52:29:7E:BD:B7:81:89:35:7B:13:A1:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111623/50AD0718FD4511EEAB3AD71BC4F9AE02/dpU2g0Agk0lSKX69t4GJNXsToUU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dpU2g0Agk0lSKX69t4GJNXsToUU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111623/50AD0718FD4511EEAB3AD71BC4F9AE02/dpU2g0Agk0lSKX69t4GJNXsToUU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:22:37:7f:86:f1:02:65:04:b4:00:cd:86:92:02:de:e2:8e: 6d:ca:ea:6f:df:c1:a7:46:76:58:bf:ed:8d:0b:bb:3a:0d:fd: a6:6a:e6:8b:06:0a:2c:d7:46:5f:38:ac:62:d7:73:22:1d:27: b0:97:48:44:b2:77:5a:4c:ed:a1:0b:00:b9:82:36:85:0c:67: 25:3f:97:07:7c:0a:46:fc:15:ec:9f:0e:e0:9e:69:90:c4:96: 31:79:46:26:61:f2:76:ee:69:09:a7:97:5a:70:99:24:b2:bf: 1e:04:5d:71:8e:44:85:8a:4a:23:88:f1:98:79:53:df:ee:60: 6d:e9:82:62:87:7e:a3:81:0f:91:99:5d:b1:23:c8:af:3d:76: 9f:1e:ec:b4:21:50:68:71:59:1c:1e:6b:f7:78:af:3f:3a:bc: be:b8:74:ab:e5:29:21:dc:f0:4b:d9:b1:f6:39:97:0a:31:d2: 58:ff:9c:7e:d1:91:b6:da:dc:51:a0:a9:f1:ae:e1:13:f5:70: 92:e1:b2:e1:71:36:4d:20:ea:45:40:68:6d:69:a5:a3:13:52: 2a:48:e0:85:53:de:18:86:09:f8:bc:24:9d:24:1d:44:60:7c: e3:95:12:0c:2f:a1:f1:5f:ad:e3:41:5e:08:c7:8a:57:2a:1a: 36:25:42:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTE2MjMxMTAvBgNVBAUTKDc2OTUzNjgzNDAyMDkzNDk1MjI5N0VCREI3ODE4OTM1 N0IxM0ExNDUwHhcNMjUxMTAzMDQ0MzQzWhcNMjUxMTEwMDQ0MzQzWjAYMRYwFAYD VQQDEw02OTA4MzJmZi0wNjAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1fiUO4TXe3qg3ERoHe31k1ajRuQCLNWWEvmUYnzI9DM0vsORvwuDOeNYZ7S6 3DDHfN0qmmJcyrH8A0BFK0XZB6OdZs6G34uAjk98N+Wn6dgusNUrb4JNw9HExOFS 8fXjvMMS5AhlzHKJyCACAuVJm4I/u85GzCuYkwjdVpO2RA6gK/ZBcowSp5mn/O6p bFe8lDnkpr74Cf2XB7JucmMCt3brRwHhAS9tOBjkzG64FBkd5Y5cqq6MsLOc/nRh +nj3a8gBtRh3k2+iTBYnQrNXYT1RGl4B0CdsBCKosaPTtrNpA/1r5KMk5q97b5h+ ycE3w9z0BAZPTsdsT++N7h3lMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEXTY+IF c4EZFmrwCp8JVCcZtu+kMB8GA1UdIwQYMBaAFHaVNoNAIJNJUil+vbeBiTV7E6FF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMTYyMy81MEFEMDcxOEZE NDUxMUVFQUIzQUQ3MUJDNEY5QUUwMi9kcFUyZzBBZ2swbFNLWDY5dDRHSk5Yc1Rv VVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RwVTJnMEFnazBsU0tYNjl0NEdKTlhzVG9VVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MTYyMy81MEFEMDcxOEZENDUxMUVFQUIzQUQ3MUJDNEY5QUUwMi9kcFUyZzBBZ2sw bFNLWDY5dDRHSk5Yc1RvVVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1Ijd/hvECZQS0AM2GkgLe4o5tyupv38GnRnZYv+2NC7s6Df2mauaL Bgos10ZfOKxi13MiHSewl0hEsndaTO2hCwC5gjaFDGclP5cHfApG/BXsnw7gnmmQ xJYxeUYmYfJ27mkJp5dacJkksr8eBF1xjkSFikojiPGYeVPf7mBt6YJih36jgQ+R mV2xI8ivPXafHuy0IVBocVkcHmv3eK8/Ory+uHSr5Skh3PBL2bH2OZcKMdJY/5x+ 0ZG22txRoKnxruET9XCS4bLhcTZNIOpFQGhtaaWjE1IqSOCFU94Yhgn4vCSdJB1E YHzjlRIML6HxX63jQV4Ix4pXKho2JUIn -----END CERTIFICATE-----Generated at Mon Nov 3 18:10:07 2025 by rpki-client