$ rpki-client -vvf rpki.apnic.net/member_repository/A91273B6/5481AFC081AA11F0B4CDAD1CC4F9AE02/dRHLMT64Pxw5AqpjxDt6A2rMYxc.mft File: dRHLMT64Pxw5AqpjxDt6A2rMYxc.mft (raw, json) Hash identifier: jsYBb6uogI3P2uTttfzerX6yh1f05Ppm94Gb5Mu+qNM= Subject key identifier: D4:1E:91:28:8D:D4:2A:91:4A:BF:51:67:01:C5:E5:16:6B:BB:F6:4B Authority key identifier: 75:11:CB:31:3E:B8:3F:1C:39:02:AA:63:C4:3B:7A:03:6A:CC:63:17 Certificate issuer: /CN=A91273B6/serialNumber=7511CB313EB83F1C3902AA63C43B7A036ACC6317 Certificate serial: 25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dRHLMT64Pxw5AqpjxDt6A2rMYxc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91273B6/5481AFC081AA11F0B4CDAD1CC4F9AE02/dRHLMT64Pxw5AqpjxDt6A2rMYxc.mft Manifest number: 24 Signing time: Mon 03 Nov 2025 07:43:06 +0000 Manifest this update: Mon 03 Nov 2025 07:43:06 +0000 Manifest next update: Mon 10 Nov 2025 07:43:06 +0000 Files and hashes: 1: dRHLMT64Pxw5AqpjxDt6A2rMYxc.crl (hash: HDC6OY78e2aYzuLz2GDDpYs6kXfx7iPhn33riYvsw+c=) 2: 5F9C3E0681AB11F09884FA0BC4F9AE02.roa (hash: F4Qio5WYvuiwdHGB0kchv0Q5AZIoWb0UXCVdpuPI1Cs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91273B6/5481AFC081AA11F0B4CDAD1CC4F9AE02/dRHLMT64Pxw5AqpjxDt6A2rMYxc.crl rsync://rpki.apnic.net/member_repository/A91273B6/5481AFC081AA11F0B4CDAD1CC4F9AE02/dRHLMT64Pxw5AqpjxDt6A2rMYxc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dRHLMT64Pxw5AqpjxDt6A2rMYxc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:43:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37 (0x25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91273B6, serialNumber=7511CB313EB83F1C3902AA63C43B7A036ACC6317 Validity Not Before: Nov 3 07:43:06 2025 GMT Not After : Nov 10 07:43:06 2025 GMT Subject: CN=69085d0a-fa22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:9f:c0:25:44:75:bd:e3:59:56:de:5c:65:96: 7b:37:2d:39:da:19:6b:8a:c9:84:71:6b:5f:f6:9a: 75:68:57:d7:28:9f:7d:84:47:f7:70:ad:34:36:33: a3:c4:0d:fd:94:6b:43:fe:7a:13:a7:47:69:de:eb: 49:8f:76:12:4d:cc:ce:f0:91:44:35:5a:60:37:ba: cb:41:89:9f:51:cd:c8:06:d8:0b:7c:12:b8:33:31: 43:90:fa:57:e6:bb:88:b6:c2:a5:fc:22:38:ea:ed: a9:07:b4:62:e3:95:62:34:ca:cb:31:15:fb:dc:b7: 4c:f2:cb:90:02:d6:da:98:ca:f6:45:f4:29:79:d5: 96:e7:f8:b5:e6:09:86:61:cb:1f:20:ca:fa:54:57: 6a:ae:1f:98:39:90:9f:1d:a2:72:9f:ac:7d:be:a7: de:7b:ce:d5:98:b2:b1:ed:8c:7f:d1:95:e6:5b:28: dd:0d:18:d1:f4:d2:74:09:ad:1c:b3:62:c9:fb:67: 83:00:24:bf:45:35:8c:74:c5:20:83:c6:3e:c0:c6: c7:f2:12:4e:af:e3:25:f9:6b:58:5e:bd:0b:e2:22: ff:38:be:cc:5e:56:90:c7:33:fa:3f:2e:0b:a5:e2: 5b:46:d5:59:82:10:23:23:4c:b4:d7:c5:b2:c8:57: 7c:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:1E:91:28:8D:D4:2A:91:4A:BF:51:67:01:C5:E5:16:6B:BB:F6:4B X509v3 Authority Key Identifier: keyid:75:11:CB:31:3E:B8:3F:1C:39:02:AA:63:C4:3B:7A:03:6A:CC:63:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91273B6/5481AFC081AA11F0B4CDAD1CC4F9AE02/dRHLMT64Pxw5AqpjxDt6A2rMYxc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dRHLMT64Pxw5AqpjxDt6A2rMYxc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91273B6/5481AFC081AA11F0B4CDAD1CC4F9AE02/dRHLMT64Pxw5AqpjxDt6A2rMYxc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:21:c7:e9:a9:3f:47:70:0c:3a:7d:f9:fa:63:bd:e3:bb:f8: 34:56:ee:92:e4:71:8c:0a:4d:8d:e3:fe:4d:ff:5e:fb:0d:67: 98:c2:19:9b:b3:37:f1:d3:d5:eb:83:a4:78:fc:7f:c6:25:87: bf:a9:40:25:4b:21:71:8c:7c:ee:11:d8:e4:c8:af:8e:b3:c7: e4:3c:11:8e:fa:0f:20:a2:29:d1:9c:86:7f:32:63:f9:73:99: 1b:9d:86:44:e5:de:e2:1e:a5:50:03:06:a4:23:fd:2d:cb:24: 21:05:41:17:a0:e7:0e:14:a1:2d:94:d3:e6:1e:8f:6a:6f:f2: 82:fa:e4:7a:ee:09:5c:59:e8:aa:97:4a:b4:4c:48:07:1f:31: a1:28:79:7e:c0:5a:3f:18:07:7c:8c:8c:00:25:c5:40:7c:3c: be:3e:02:9c:e4:1d:c5:9e:e1:86:4e:5e:72:82:35:18:a7:92: c9:0e:84:48:f8:bc:e4:bf:84:be:c7:03:0d:4e:18:22:3a:88: ee:26:39:fe:e6:63:41:0f:2f:f4:ab:e0:64:87:d1:11:f5:04: 87:ab:26:dd:2d:40:31:12:6d:7b:e7:58:ad:07:b3:2a:c9:32: dc:d1:bc:b4:8e:b9:92:90:db:0e:43:33:35:2c:9e:eb:fc:c5: 62:43:c5:18 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NzNCNjExMC8GA1UEBRMoNzUxMUNCMzEzRUI4M0YxQzM5MDJBQTYzQzQzQjdBMDM2 QUNDNjMxNzAeFw0yNTExMDMwNzQzMDZaFw0yNTExMTAwNzQzMDZaMBgxFjAUBgNV BAMTDTY5MDg1ZDBhLWZhMjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCfn8AlRHW941lW3lxllns3LTnaGWuKyYRxa1/2mnVoV9con32ER/dwrTQ2M6PE Df2Ua0P+ehOnR2ne60mPdhJNzM7wkUQ1WmA3ustBiZ9RzcgG2At8ErgzMUOQ+lfm u4i2wqX8Ijjq7akHtGLjlWI0yssxFfvct0zyy5AC1tqYyvZF9Cl51Zbn+LXmCYZh yx8gyvpUV2quH5g5kJ8donKfrH2+p957ztWYsrHtjH/RleZbKN0NGNH00nQJrRyz Ysn7Z4MAJL9FNYx0xSCDxj7AxsfyEk6v4yX5a1hevQviIv84vsxeVpDHM/o/Lgul 4ltG1VmCECMjTLTXxbLIV3yTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU1B6RKI3U KpFKv1FnAcXlFmu79kswHwYDVR0jBBgwFoAUdRHLMT64Pxw5AqpjxDt6A2rMYxcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI3M0I2LzU0ODFBRkMwODFB QTExRjBCNENEQUQxQ0M0RjlBRTAyL2RSSExNVDY0UHh3NUFxcGp4RHQ2QTJyTVl4 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZFJITE1UNjRQeHc1QXFwanhEdDZBMnJNWXhjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI3 M0I2LzU0ODFBRkMwODFBQTExRjBCNENEQUQxQ0M0RjlBRTAyL2RSSExNVDY0UHh3 NUFxcGp4RHQ2QTJyTVl4Yy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAC4hx+mpP0dwDDp9+fpjveO7+DRW7pLkcYwKTY3j/k3/XvsNZ5jCGZuz N/HT1euDpHj8f8Ylh7+pQCVLIXGMfO4R2OTIr46zx+Q8EY76DyCiKdGchn8yY/lz mRudhkTl3uIepVADBqQj/S3LJCEFQReg5w4UoS2U0+Yej2pv8oL65HruCVxZ6KqX SrRMSAcfMaEoeX7AWj8YB3yMjAAlxUB8PL4+ApzkHcWe4YZOXnKCNRinkskOhEj4 vOS/hL7HAw1OGCI6iO4mOf7mY0EPL/Sr4GSH0RH1BIerJt0tQDESbXvnWK0HsyrJ MtzRvLSOuZKQ2w5DMzUsnuv8xWJDxRg= -----END CERTIFICATE-----Generated at Mon Nov 3 18:13:28 2025 by rpki-client