$ rpki-client -vvf rpki.apnic.net/member_repository/A9112BDE/5E128FFC3E7D11EBBBEF274CC4F9AE02/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.mft File: DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.mft (raw, json) Hash identifier: 004ybY1f7e8lwdO4p1oTQuxkn+v16obBl/l0jpIKXXw= Subject key identifier: D2:50:6C:E6:79:3D:0F:1C:0D:BB:0B:86:3B:42:E7:30:B2:29:AE:77 Authority key identifier: 0D:03:46:C8:A2:66:BE:6A:DC:E4:B7:E8:39:50:AF:5F:E1:EB:E5:C4 Certificate issuer: /CN=A9112BDE/serialNumber=0D0346C8A266BE6ADCE4B7E83950AF5FE1EBE5C4 Certificate serial: 0764 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112BDE/5E128FFC3E7D11EBBBEF274CC4F9AE02/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.mft Manifest number: 075E Signing time: Tue 04 Nov 2025 21:44:38 +0000 Manifest this update: Tue 04 Nov 2025 21:44:38 +0000 Manifest next update: Tue 11 Nov 2025 21:44:38 +0000 Files and hashes: 1: DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.crl (hash: QwvIr1dOQPCFwluzxVns3Sqoek+mDmH/AnOxek3pupg=) 2: 511EBFFE3E7E11EB979F564CC4F9AE02.roa (hash: Vr7eqcQZAVOzBkNtRv4RGA5ST9LjW4Xtker8ajEEVvQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112BDE/5E128FFC3E7D11EBBBEF274CC4F9AE02/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.crl rsync://rpki.apnic.net/member_repository/A9112BDE/5E128FFC3E7D11EBBBEF274CC4F9AE02/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:44:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1892 (0x764) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112BDE, serialNumber=0D0346C8A266BE6ADCE4B7E83950AF5FE1EBE5C4 Validity Not Before: Nov 4 21:44:38 2025 GMT Not After : Nov 11 21:44:38 2025 GMT Subject: CN=690a73c6-a27a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c1:d7:4b:0b:de:0b:46:ae:2e:b5:2d:89:b5: e8:f3:03:a3:9f:e1:6d:dd:b5:d5:0e:09:ac:a1:39: 4c:65:7c:e3:c8:2f:80:51:75:65:55:4a:e1:80:00: 24:d2:d5:0a:06:fd:a7:be:ea:e3:d5:4c:a5:d7:cd: e6:64:fe:9d:44:06:4f:2e:97:08:aa:32:e1:3b:cc: 50:af:b5:6b:fe:af:22:20:aa:c2:e1:fa:b2:3b:bc: 57:e0:03:04:6a:57:e5:12:97:36:d4:0d:ce:9c:ea: 25:4e:02:36:87:b3:3c:d4:c2:04:e7:1d:d3:15:54: 53:50:fc:57:40:b3:37:93:9e:4a:d2:dd:85:b0:76: 5a:0f:55:62:3a:67:1e:a8:a5:b9:1d:40:74:53:0e: 2a:aa:ee:29:c2:99:f7:2a:33:12:12:59:59:a1:62: 42:20:c0:ed:51:e5:58:0a:0e:9a:88:f6:f9:06:55: 42:2a:02:ed:50:18:f8:fe:1c:60:4f:1c:5c:6d:9a: ca:d1:9b:58:81:3b:1e:c9:3a:ba:9f:58:da:26:34: 35:bc:2d:3a:03:cd:59:dd:46:04:cf:01:7e:ce:e8: 5e:f1:46:cd:31:8d:39:66:07:d1:5c:fe:b3:84:07: f4:21:5c:4b:62:d2:ca:07:d8:c5:f6:20:47:d9:68: 2f:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:50:6C:E6:79:3D:0F:1C:0D:BB:0B:86:3B:42:E7:30:B2:29:AE:77 X509v3 Authority Key Identifier: keyid:0D:03:46:C8:A2:66:BE:6A:DC:E4:B7:E8:39:50:AF:5F:E1:EB:E5:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112BDE/5E128FFC3E7D11EBBBEF274CC4F9AE02/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112BDE/5E128FFC3E7D11EBBBEF274CC4F9AE02/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:98:62:38:15:36:f4:4f:dd:cf:b3:d5:9a:09:da:a1:35:de: f9:bb:92:74:53:85:c1:c1:32:f4:3c:1d:49:68:4e:95:7f:60: 26:01:42:36:2a:7c:1a:35:5b:64:2f:8c:8a:2e:85:bf:ef:e1: 9e:18:7a:59:27:ef:9c:bb:b0:28:0b:84:d4:5a:89:95:37:86: 91:90:24:fd:3a:a5:58:7e:7c:72:b1:1b:eb:ed:8f:91:6c:2c: 0f:37:9a:b7:0c:94:ef:1d:22:b7:df:3c:42:b8:6d:a9:bf:1d: 5c:c5:f0:86:78:7b:b3:29:7b:5a:f0:2f:2c:4a:b1:79:bc:53: 8f:4f:9e:41:d6:f5:18:4b:c1:b0:59:88:d8:2d:de:68:f7:4f: 08:b2:ef:91:77:78:9f:36:f1:30:91:34:57:1a:79:03:95:3b: 55:de:ff:12:03:6b:0b:de:40:00:c1:1c:c5:1e:93:90:9b:a9: ee:b1:1d:70:fa:21:d3:99:c9:e6:b2:8e:94:83:75:8b:98:aa: cd:71:1d:94:c6:e0:40:f5:2a:d3:ec:a0:4a:ad:9b:4d:55:70: 27:eb:93:05:ab:7f:f7:ba:74:6b:56:bd:56:0f:a0:61:69:c1: 6a:e9:79:bb:65:71:fd:9d:cd:69:c5:fe:da:05:6a:2e:60:19: 8a:c4:f0:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB2QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTJCREUxMTAvBgNVBAUTKDBEMDM0NkM4QTI2NkJFNkFEQ0U0QjdFODM5NTBBRjVG RTFFQkU1QzQwHhcNMjUxMTA0MjE0NDM4WhcNMjUxMTExMjE0NDM4WjAYMRYwFAYD VQQDEw02OTBhNzNjNi1hMjdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq8HXSwveC0auLrUtibXo8wOjn+Ft3bXVDgmsoTlMZXzjyC+AUXVlVUrhgAAk 0tUKBv2nvurj1Uyl183mZP6dRAZPLpcIqjLhO8xQr7Vr/q8iIKrC4fqyO7xX4AME alflEpc21A3OnOolTgI2h7M81MIE5x3TFVRTUPxXQLM3k55K0t2FsHZaD1ViOmce qKW5HUB0Uw4qqu4pwpn3KjMSEllZoWJCIMDtUeVYCg6aiPb5BlVCKgLtUBj4/hxg TxxcbZrK0ZtYgTseyTq6n1jaJjQ1vC06A81Z3UYEzwF+zuhe8UbNMY05ZgfRXP6z hAf0IVxLYtLKB9jF9iBH2WgvMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNJQbOZ5 PQ8cDbsLhjtC5zCyKa53MB8GA1UdIwQYMBaAFA0DRsiiZr5q3OS36DlQr1/h6+XE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMkJERS81RTEyOEZGQzNF N0QxMUVCQkJFRjI3NENDNEY5QUUwMi9EUU5HeUtKbXZtcmM1TGZvT1ZDdlgtSHI1 Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RRTkd5S0ptdm1yYzVMZm9PVkN2WC1IcjVjUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MkJERS81RTEyOEZGQzNFN0QxMUVCQkJFRjI3NENDNEY5QUUwMi9EUU5HeUtKbXZt cmM1TGZvT1ZDdlgtSHI1Y1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJmGI4FTb0T93Ps9WaCdqhNd75u5J0U4XBwTL0PB1JaE6Vf2AmAUI2 KnwaNVtkL4yKLoW/7+GeGHpZJ++cu7AoC4TUWomVN4aRkCT9OqVYfnxysRvr7Y+R bCwPN5q3DJTvHSK33zxCuG2pvx1cxfCGeHuzKXta8C8sSrF5vFOPT55B1vUYS8Gw WYjYLd5o908Isu+Rd3ifNvEwkTRXGnkDlTtV3v8SA2sL3kAAwRzFHpOQm6nusR1w +iHTmcnmso6Ug3WLmKrNcR2UxuBA9SrT7KBKrZtNVXAn65MFq3/3unRrVr1WD6Bh acFq6Xm7ZXH9nc1pxf7aBWouYBmKxPCn -----END CERTIFICATE-----Generated at Wed Nov 5 09:59:29 2025 by rpki-client