$ rpki-client -vvf rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/d2KqgncCDQu1x1mX3l99ilFC3xQ.mft File: d2KqgncCDQu1x1mX3l99ilFC3xQ.mft (raw, json) Hash identifier: 6kbvlF7tDDozzbaaQF6OVIEk81g9hInoB/2Fj0OG5XA= Subject key identifier: 6F:ED:7F:41:25:74:C6:ED:35:25:95:CF:4E:43:89:55:F7:00:DB:99 Authority key identifier: 77:62:AA:82:77:02:0D:0B:B5:C7:59:97:DE:5F:7D:8A:51:42:DF:14 Certificate issuer: /CN=A911FAC3/serialNumber=7762AA8277020D0BB5C75997DE5F7D8A5142DF14 Certificate serial: 13F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d2KqgncCDQu1x1mX3l99ilFC3xQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/d2KqgncCDQu1x1mX3l99ilFC3xQ.mft Manifest number: 13D7 Signing time: Fri 24 Oct 2025 17:22:00 +0000 Manifest this update: Fri 24 Oct 2025 17:21:59 +0000 Manifest next update: Fri 31 Oct 2025 17:21:59 +0000 Files and hashes: 1: d2KqgncCDQu1x1mX3l99ilFC3xQ.crl (hash: laT3I0dXlyohzjq+ZIcUS1q9+zfycoJe6VfTXD151rs=) 2: 337C9CE4314C11F0845D2C39C4F9AE02.roa (hash: 3xfhrQz5XfecI25n9SPWe9dh+MA3sbDb74Wk4gI1r2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/d2KqgncCDQu1x1mX3l99ilFC3xQ.crl rsync://rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/d2KqgncCDQu1x1mX3l99ilFC3xQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d2KqgncCDQu1x1mX3l99ilFC3xQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 Oct 2025 17:21:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5110 (0x13f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911FAC3, serialNumber=7762AA8277020D0BB5C75997DE5F7D8A5142DF14 Validity Not Before: Oct 24 17:21:59 2025 GMT Not After : Oct 31 17:21:59 2025 GMT Subject: CN=68fbb5b8-0fb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:87:d2:c7:d4:c9:aa:e6:c8:b4:6f:af:4c:aa: 19:7b:b6:d5:fc:44:83:f6:9f:89:26:73:10:bf:32: d1:c7:bd:3a:48:97:23:55:a5:d1:c4:69:ce:28:46: 41:30:26:4f:bc:d9:5f:6f:fa:79:17:16:20:43:ef: 50:ae:28:17:dd:15:b7:c0:1d:65:73:ee:79:28:64: 63:1d:f9:23:29:ec:9e:b9:36:d6:71:84:ca:b9:5d: 40:10:51:ae:96:25:d8:a0:80:ed:8c:61:e8:62:0b: d2:bd:b4:9a:01:a5:57:14:81:91:6a:a8:89:10:6c: 14:44:f0:33:13:f2:58:c0:e6:68:70:ae:63:c6:6f: 6f:4e:38:ec:e2:eb:97:04:84:d7:85:cc:1d:5d:69: 39:75:04:f1:66:62:02:da:24:db:43:6d:b4:67:a8: fb:f8:c7:65:0e:e6:a3:7e:0e:d4:1c:88:74:e0:91: 7c:27:f4:87:3f:bb:08:73:ee:5a:11:92:be:59:d3: b7:d5:77:24:eb:18:8b:66:4f:f4:65:b8:96:b1:df: 7b:5a:43:56:0c:b3:26:06:38:3c:b5:1a:01:14:1c: 7e:3c:4b:dc:d7:91:02:c1:15:7b:05:1e:9e:c6:b0: 4f:ed:75:f6:ad:b4:2f:b0:2a:c8:3b:1f:62:4c:3d: 69:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:ED:7F:41:25:74:C6:ED:35:25:95:CF:4E:43:89:55:F7:00:DB:99 X509v3 Authority Key Identifier: keyid:77:62:AA:82:77:02:0D:0B:B5:C7:59:97:DE:5F:7D:8A:51:42:DF:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/d2KqgncCDQu1x1mX3l99ilFC3xQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d2KqgncCDQu1x1mX3l99ilFC3xQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/d2KqgncCDQu1x1mX3l99ilFC3xQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:10:ea:75:1c:f9:63:c7:83:3c:f7:6d:18:b7:78:67:7a:69: aa:f2:56:59:e1:92:18:8b:37:4d:48:22:85:14:65:54:fa:a1: 7f:a0:24:60:45:a0:d8:c6:84:52:13:7c:2f:c2:90:1e:ca:a5: 2d:eb:1d:ad:44:95:30:b1:80:5b:b8:9e:58:c3:2f:7e:d4:ec: fd:ba:6f:e3:16:ae:c8:a7:65:6a:74:4d:3c:8b:4c:4e:32:0d: 62:f1:30:04:35:3d:73:92:82:58:7e:33:e0:e1:4e:aa:14:64: a9:6f:91:fd:5c:8f:f5:f0:f3:7d:e3:10:9c:97:02:b3:b0:46: 35:f8:cc:f1:32:91:4d:d4:a9:2a:5d:a6:20:d2:ef:ed:49:48: d3:b6:1a:0b:a1:f4:9f:37:15:d6:2d:45:fe:e2:37:88:fa:7b: b2:24:78:d9:c0:6c:33:74:1f:d7:9c:85:3e:ac:c1:77:12:f9: f1:6b:a4:9e:b3:8c:3e:09:16:ea:fe:5b:da:12:e0:0f:07:2c: 0e:29:92:9f:e4:62:e4:07:09:df:38:42:67:b3:5e:e5:b4:1c: 26:e7:81:fa:56:24:4e:27:b7:fe:2a:e6:6b:bc:c9:cc:83:72: b1:a3:72:4d:cd:c5:e3:60:05:43:30:0a:a8:e8:93:23:a9:b3: 00:07:e3:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE/YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUZBQzMxMTAvBgNVBAUTKDc3NjJBQTgyNzcwMjBEMEJCNUM3NTk5N0RFNUY3RDhB NTE0MkRGMTQwHhcNMjUxMDI0MTcyMTU5WhcNMjUxMDMxMTcyMTU5WjAYMRYwFAYD VQQDEw02OGZiYjViOC0wZmIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxofSx9TJqubItG+vTKoZe7bV/ESD9p+JJnMQvzLRx706SJcjVaXRxGnOKEZB MCZPvNlfb/p5FxYgQ+9QrigX3RW3wB1lc+55KGRjHfkjKeyeuTbWcYTKuV1AEFGu liXYoIDtjGHoYgvSvbSaAaVXFIGRaqiJEGwURPAzE/JYwOZocK5jxm9vTjjs4uuX BITXhcwdXWk5dQTxZmIC2iTbQ220Z6j7+MdlDuajfg7UHIh04JF8J/SHP7sIc+5a EZK+WdO31Xck6xiLZk/0ZbiWsd97WkNWDLMmBjg8tRoBFBx+PEvc15ECwRV7BR6e xrBP7XX2rbQvsCrIOx9iTD1ptQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG/tf0El dMbtNSWVz05DiVX3ANuZMB8GA1UdIwQYMBaAFHdiqoJ3Ag0LtcdZl95ffYpRQt8U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRkFDMy83Qjg2OEMwODlE RjUxMUU4OTU3QUI0MTZDNEY5QUUwMi9kMktxZ25jQ0RRdTF4MW1YM2w5OWlsRkMz eFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2QyS3FnbmNDRFF1MXgxbVgzbDk5aWxGQzN4US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RkFDMy83Qjg2OEMwODlERjUxMUU4OTU3QUI0MTZDNEY5QUUwMi9kMktxZ25jQ0RR dTF4MW1YM2w5OWlsRkMzeFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9EOp1HPljx4M8920Yt3hnemmq8lZZ4ZIYizdNSCKFFGVU+qF/oCRg RaDYxoRSE3wvwpAeyqUt6x2tRJUwsYBbuJ5Ywy9+1Oz9um/jFq7Ip2VqdE08i0xO Mg1i8TAENT1zkoJYfjPg4U6qFGSpb5H9XI/18PN94xCclwKzsEY1+MzxMpFN1Kkq XaYg0u/tSUjTthoLofSfNxXWLUX+4jeI+nuyJHjZwGwzdB/XnIU+rMF3Evnxa6Se s4w+CRbq/lvaEuAPBywOKZKf5GLkBwnfOEJns17ltBwm54H6ViROJ7f+KuZrvMnM g3Kxo3JNzcXjYAVDMAqo6JMjqbMAB+Mi -----END CERTIFICATE-----Generated at Sun Oct 26 17:53:18 2025 by rpki-client