$ rpki-client -vvf rpki.apnic.net/member_repository/A912FE31/AB7956D4793611EA9208C558C4F9AE02/DmpDAZVo-XcRTm1GWwpvVWn1OD4.mft File: DmpDAZVo-XcRTm1GWwpvVWn1OD4.mft (raw, json) Hash identifier: 4pl6HiDzA277lVdnT9DnLLa/SXxOepl1/TQLctItjgQ= Subject key identifier: CA:3A:6B:DF:2A:DA:C5:C2:A1:25:72:0A:DE:FD:34:6C:3E:4D:5D:CB Authority key identifier: 0E:6A:43:01:95:68:F9:77:11:4E:6D:46:5B:0A:6F:55:69:F5:38:3E Certificate issuer: /CN=A912FE31/serialNumber=0E6A43019568F977114E6D465B0A6F5569F5383E Certificate serial: 0A49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmpDAZVo-XcRTm1GWwpvVWn1OD4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FE31/AB7956D4793611EA9208C558C4F9AE02/DmpDAZVo-XcRTm1GWwpvVWn1OD4.mft Manifest number: 0A40 Signing time: Wed 22 Oct 2025 20:23:12 +0000 Manifest this update: Wed 22 Oct 2025 20:23:12 +0000 Manifest next update: Wed 29 Oct 2025 20:23:12 +0000 Files and hashes: 1: DmpDAZVo-XcRTm1GWwpvVWn1OD4.crl (hash: +b9T1qumKcHJ84NaX9a7QJjhtUjcfw7Gu6t07S7ne4M=) 2: A42489D8799211EAA230E17FC4F9AE02.roa (hash: tQlFLU0/QDy1JWm1WrQnSqEMBi5FKL1OgfRiRvzeWq4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FE31/AB7956D4793611EA9208C558C4F9AE02/DmpDAZVo-XcRTm1GWwpvVWn1OD4.crl rsync://rpki.apnic.net/member_repository/A912FE31/AB7956D4793611EA9208C558C4F9AE02/DmpDAZVo-XcRTm1GWwpvVWn1OD4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmpDAZVo-XcRTm1GWwpvVWn1OD4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 20:23:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2633 (0xa49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FE31, serialNumber=0E6A43019568F977114E6D465B0A6F5569F5383E Validity Not Before: Oct 22 20:23:12 2025 GMT Not After : Oct 29 20:23:12 2025 GMT Subject: CN=68f93d30-a079 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:8f:94:9c:22:14:54:53:eb:f3:53:fd:66:fc: 66:3f:68:bd:54:44:69:21:33:72:6c:b4:7d:55:c8: 30:51:a1:75:60:fc:df:24:dd:79:56:8c:81:10:2e: aa:9f:f6:fd:5c:24:27:e5:7e:40:89:6c:bd:52:90: 5c:68:5f:d6:8b:20:64:6e:ca:4e:96:2b:7b:46:09: aa:a5:6c:60:fe:6c:3c:ec:83:74:53:34:e2:7f:04: cc:52:06:b7:59:6e:e0:06:51:ad:39:85:da:4b:26: 95:5f:85:79:85:a9:ca:1c:96:08:2f:4f:a1:45:f3: 8c:6f:dd:d5:95:f5:52:0e:ee:1b:48:04:eb:6a:6b: 80:af:d8:40:cf:b9:a0:c1:c6:31:a2:a5:f4:0c:89: ce:f2:ef:c2:9d:b2:d8:9f:c0:dd:99:f6:78:8a:8c: 71:b3:2b:ce:17:9b:50:b7:ad:12:6f:3c:a7:13:34: 68:ab:01:83:c1:52:9b:64:05:b7:8f:29:b5:ba:1f: 8b:0a:8b:40:7f:ed:ef:15:3b:51:a8:6b:c0:a5:95: e7:e9:fb:65:81:fd:d8:6a:c2:b2:f1:3a:de:df:27: f0:42:df:85:c6:fe:3b:0c:8e:21:b1:1a:b6:be:80: fd:5f:d9:dc:96:89:53:8c:6f:84:87:d8:38:0e:b5: de:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:3A:6B:DF:2A:DA:C5:C2:A1:25:72:0A:DE:FD:34:6C:3E:4D:5D:CB X509v3 Authority Key Identifier: keyid:0E:6A:43:01:95:68:F9:77:11:4E:6D:46:5B:0A:6F:55:69:F5:38:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FE31/AB7956D4793611EA9208C558C4F9AE02/DmpDAZVo-XcRTm1GWwpvVWn1OD4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmpDAZVo-XcRTm1GWwpvVWn1OD4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FE31/AB7956D4793611EA9208C558C4F9AE02/DmpDAZVo-XcRTm1GWwpvVWn1OD4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:4a:5d:92:20:6d:f2:e7:8d:ed:56:55:f2:e2:f8:56:57:a2: 44:88:9d:f0:c2:94:84:35:d8:c3:56:cf:e2:4a:fd:de:4f:e1: b4:f2:22:93:5d:f2:5e:16:2f:23:b2:7a:9e:dd:1e:e5:c0:91: e4:a7:31:c1:34:5f:ee:c7:81:13:c1:df:c4:d4:60:2b:37:d4: 2a:1a:ac:bf:48:5c:e6:c1:2f:ea:86:e5:d8:a6:0d:66:ce:60: 41:08:67:b7:3d:6f:6f:20:4c:45:0a:9f:6e:0e:4c:02:4c:86: 4c:f5:d3:dc:35:d5:16:d5:a3:2f:54:80:17:ce:f0:de:a3:c6: f1:12:17:71:a9:8c:2f:9b:cb:0b:4e:4e:b2:9a:54:07:78:75: dc:93:10:c5:89:73:86:77:80:96:7e:3d:46:6e:1f:94:38:29: dc:ee:9d:ec:a7:41:e3:f0:91:7f:50:94:a2:f5:b3:9e:31:94: 49:59:57:20:cc:0d:f3:47:3f:0e:ee:3e:a8:5c:41:0c:03:ed: 0b:6b:46:f6:bd:02:19:4d:26:27:9b:72:91:cd:77:a3:3d:43: 55:ce:fa:ce:e5:50:9a:6f:57:0f:43:8b:f9:52:62:79:3b:04: 6a:fc:ca:6e:2c:a5:67:44:c3:97:3b:8b:1c:e0:77:ba:85:44: 8b:5a:e5:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCkkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZFMzExMTAvBgNVBAUTKDBFNkE0MzAxOTU2OEY5NzcxMTRFNkQ0NjVCMEE2RjU1 NjlGNTM4M0UwHhcNMjUxMDIyMjAyMzEyWhcNMjUxMDI5MjAyMzEyWjAYMRYwFAYD VQQDEw02OGY5M2QzMC1hMDc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqo+UnCIUVFPr81P9ZvxmP2i9VERpITNybLR9VcgwUaF1YPzfJN15VoyBEC6q n/b9XCQn5X5AiWy9UpBcaF/WiyBkbspOlit7RgmqpWxg/mw87IN0UzTifwTMUga3 WW7gBlGtOYXaSyaVX4V5hanKHJYIL0+hRfOMb93VlfVSDu4bSATramuAr9hAz7mg wcYxoqX0DInO8u/CnbLYn8DdmfZ4ioxxsyvOF5tQt60SbzynEzRoqwGDwVKbZAW3 jym1uh+LCotAf+3vFTtRqGvApZXn6ftlgf3YasKy8Tre3yfwQt+Fxv47DI4hsRq2 voD9X9nclolTjG+Eh9g4DrXe+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMo6a98q 2sXCoSVyCt79NGw+TV3LMB8GA1UdIwQYMBaAFA5qQwGVaPl3EU5tRlsKb1Vp9Tg+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkUzMS9BQjc5NTZENDc5 MzYxMUVBOTIwOEM1NThDNEY5QUUwMi9EbXBEQVpWby1YY1JUbTFHV3dwdlZXbjFP RDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RtcERBWlZvLVhjUlRtMUdXd3B2VlduMU9ENC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RkUzMS9BQjc5NTZENDc5MzYxMUVBOTIwOEM1NThDNEY5QUUwMi9EbXBEQVpWby1Y Y1JUbTFHV3dwdlZXbjFPRDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdSl2SIG3y543tVlXy4vhWV6JEiJ3wwpSENdjDVs/iSv3eT+G08iKT XfJeFi8jsnqe3R7lwJHkpzHBNF/ux4ETwd/E1GArN9QqGqy/SFzmwS/qhuXYpg1m zmBBCGe3PW9vIExFCp9uDkwCTIZM9dPcNdUW1aMvVIAXzvDeo8bxEhdxqYwvm8sL Tk6ymlQHeHXckxDFiXOGd4CWfj1Gbh+UOCnc7p3sp0Hj8JF/UJSi9bOeMZRJWVcg zA3zRz8O7j6oXEEMA+0La0b2vQIZTSYnm3KRzXejPUNVzvrO5VCab1cPQ4v5UmJ5 OwRq/MpuLKVnRMOXO4sc4He6hUSLWuUU -----END CERTIFICATE-----Generated at Fri Oct 24 08:53:29 2025 by rpki-client