$ rpki-client -vvf rpki.apnic.net/member_repository/A9148AC0/E4ED539431D811EE83006A41C4F9AE02/dmhXuj98cotoBSWsQfp84qHwCS0.mft File: dmhXuj98cotoBSWsQfp84qHwCS0.mft (raw, json) Hash identifier: PeosPiMELQwMyvc1imbFHIvy8eLNUe1KkRDxehPhlbQ= Subject key identifier: 06:CC:11:0E:EE:8F:B4:11:67:93:54:0E:B2:4E:EB:E4:94:66:F2:C0 Authority key identifier: 76:68:57:BA:3F:7C:72:8B:68:05:25:AC:41:FA:7C:E2:A1:F0:09:2D Certificate issuer: /CN=A9148AC0/serialNumber=766857BA3F7C728B680525AC41FA7CE2A1F0092D Certificate serial: 01B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmhXuj98cotoBSWsQfp84qHwCS0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148AC0/E4ED539431D811EE83006A41C4F9AE02/dmhXuj98cotoBSWsQfp84qHwCS0.mft Manifest number: 01AA Signing time: Wed 05 Nov 2025 03:22:21 +0000 Manifest this update: Wed 05 Nov 2025 03:22:21 +0000 Manifest next update: Wed 12 Nov 2025 03:22:20 +0000 Files and hashes: 1: dmhXuj98cotoBSWsQfp84qHwCS0.crl (hash: pc13y8fk1feuyFh0rOOSrZB4j1p+5u8JLz/XtUWbXj8=) 2: 5D313B1C31DA11EEBE28A546C4F9AE02.roa (hash: FoAylNmdesRHU3oexctbCd7CtqneWbl6QUSlHnFcNTI=) 3: 47854B9031DB11EEA02CF647C4F9AE02.roa (hash: ILe+omtD9enCtMD3zyN9u23MElv4YiFIQdXMJ2ToBto=) 4: 5C9259B631DA11EEBE28A546C4F9AE02.roa (hash: V/GHEmcZXIPqnvjusU9+mbGUzJT92uVcYMqnl8YTyFc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148AC0/E4ED539431D811EE83006A41C4F9AE02/dmhXuj98cotoBSWsQfp84qHwCS0.crl rsync://rpki.apnic.net/member_repository/A9148AC0/E4ED539431D811EE83006A41C4F9AE02/dmhXuj98cotoBSWsQfp84qHwCS0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmhXuj98cotoBSWsQfp84qHwCS0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 436 (0x1b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148AC0, serialNumber=766857BA3F7C728B680525AC41FA7CE2A1F0092D Validity Not Before: Nov 5 03:22:21 2025 GMT Not After : Nov 12 03:22:20 2025 GMT Subject: CN=690ac2ed-d620 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:a3:72:c8:1e:83:4c:6c:27:50:5a:03:46:62: 33:42:6f:cb:02:4d:3a:45:d1:d5:e5:06:61:c4:31: 58:33:e7:27:28:f8:c0:76:b4:a4:ce:f8:c2:85:66: 81:a7:b9:3d:6d:e3:02:46:1d:b6:9a:77:1e:61:80: eb:1b:37:ac:4c:42:46:6b:f4:7c:5f:b5:f4:74:03: 61:05:36:40:11:0f:9f:dc:91:9e:4d:3a:20:e5:f8: af:23:e5:fb:73:74:23:ca:84:cc:63:a9:d0:04:ea: 3d:c2:36:8b:df:f3:0b:db:0f:7e:0d:65:9b:ff:e6: f9:db:3d:84:97:71:9a:0a:f2:d2:92:db:a3:43:4f: 8f:26:80:75:d7:61:e2:a1:a0:e7:c0:43:1a:3e:c1: b1:94:93:67:45:3b:bc:c8:ba:b0:8d:a3:30:0b:1c: 00:0a:3d:f4:e4:f5:ce:3c:05:39:37:06:08:70:da: 25:f9:9c:5d:85:4c:3d:36:8b:8d:e5:82:0d:15:1c: 69:f6:29:9b:a1:78:b6:58:7d:0e:90:e2:1a:c2:9e: e8:df:87:72:a2:f4:c3:a7:ea:54:5a:3d:ba:88:27: 98:16:7b:af:ef:f3:41:7f:11:50:e1:5d:cb:5a:da: 42:ce:86:75:3b:8a:ba:64:4f:39:40:d2:d9:73:8c: f0:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:CC:11:0E:EE:8F:B4:11:67:93:54:0E:B2:4E:EB:E4:94:66:F2:C0 X509v3 Authority Key Identifier: keyid:76:68:57:BA:3F:7C:72:8B:68:05:25:AC:41:FA:7C:E2:A1:F0:09:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148AC0/E4ED539431D811EE83006A41C4F9AE02/dmhXuj98cotoBSWsQfp84qHwCS0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmhXuj98cotoBSWsQfp84qHwCS0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148AC0/E4ED539431D811EE83006A41C4F9AE02/dmhXuj98cotoBSWsQfp84qHwCS0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:e7:97:b0:5f:38:c6:e8:03:dd:55:24:68:d5:13:f4:ce:54: ab:9a:38:8b:93:47:62:1b:75:82:6c:68:08:f1:b1:c0:7c:3b: b9:51:1f:7e:a7:4e:bd:48:dd:4f:50:1d:e3:8f:bb:ce:dd:70: 3d:4f:5a:64:4e:57:ca:5e:a3:90:9e:87:3b:49:f5:c8:25:92: 82:6b:34:04:74:c3:ac:1f:e9:c9:f3:3d:b8:a9:ea:bd:d4:8c: f2:08:38:27:87:b7:2e:0a:e4:b4:77:89:01:bc:4c:7a:7e:6a: d2:d1:22:d9:38:1d:16:8f:33:45:a7:3e:f6:60:b4:8e:3b:f9: b9:98:5f:52:6b:57:aa:9d:3d:20:b6:d3:fd:09:6c:53:d3:fc: 59:66:a4:23:10:cd:61:98:98:f2:d9:16:a0:51:31:2d:14:51: 86:fa:02:4b:30:ae:4d:f3:17:33:0b:57:3d:3c:d9:ed:4a:c4: 88:f9:59:d6:71:28:a4:fd:5c:c9:59:7a:16:07:e0:66:fa:10: 2a:a3:b9:d4:9c:bf:dc:b2:2d:53:7f:ed:6f:36:95:97:8f:db: 70:58:c3:87:80:a1:d4:1c:64:05:7e:b0:65:0d:c9:76:6f:56: 4c:db:14:e8:57:0f:b7:4f:20:55:d7:3a:ab:54:44:ec:28:f5: b8:0a:a8:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhBQzAxMTAvBgNVBAUTKDc2Njg1N0JBM0Y3QzcyOEI2ODA1MjVBQzQxRkE3Q0Uy QTFGMDA5MkQwHhcNMjUxMTA1MDMyMjIxWhcNMjUxMTEyMDMyMjIwWjAYMRYwFAYD VQQDEw02OTBhYzJlZC1kNjIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqKNyyB6DTGwnUFoDRmIzQm/LAk06RdHV5QZhxDFYM+cnKPjAdrSkzvjChWaB p7k9beMCRh22mnceYYDrGzesTEJGa/R8X7X0dANhBTZAEQ+f3JGeTTog5fivI+X7 c3QjyoTMY6nQBOo9wjaL3/ML2w9+DWWb/+b52z2El3GaCvLSktujQ0+PJoB112Hi oaDnwEMaPsGxlJNnRTu8yLqwjaMwCxwACj305PXOPAU5NwYIcNol+ZxdhUw9NouN 5YINFRxp9imboXi2WH0OkOIawp7o34dyovTDp+pUWj26iCeYFnuv7/NBfxFQ4V3L WtpCzoZ1O4q6ZE85QNLZc4zwEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAbMEQ7u j7QRZ5NUDrJO6+SUZvLAMB8GA1UdIwQYMBaAFHZoV7o/fHKLaAUlrEH6fOKh8Akt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEFDMC9FNEVENTM5NDMx RDgxMUVFODMwMDZBNDFDNEY5QUUwMi9kbWhYdWo5OGNvdG9CU1dzUWZwODRxSHdD UzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RtaFh1ajk4Y290b0JTV3NRZnA4NHFId0NTMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEFDMC9FNEVENTM5NDMxRDgxMUVFODMwMDZBNDFDNEY5QUUwMi9kbWhYdWo5OGNv dG9CU1dzUWZwODRxSHdDUzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAb55ewXzjG6APdVSRo1RP0zlSrmjiLk0diG3WCbGgI8bHAfDu5UR9+ p069SN1PUB3jj7vO3XA9T1pkTlfKXqOQnoc7SfXIJZKCazQEdMOsH+nJ8z24qeq9 1IzyCDgnh7cuCuS0d4kBvEx6fmrS0SLZOB0WjzNFpz72YLSOO/m5mF9Sa1eqnT0g ttP9CWxT0/xZZqQjEM1hmJjy2RagUTEtFFGG+gJLMK5N8xczC1c9PNntSsSI+VnW cSik/VzJWXoWB+Bm+hAqo7nUnL/csi1Tf+1vNpWXj9twWMOHgKHUHGQFfrBlDcl2 b1ZM2xToVw+3TyBV1zqrVETsKPW4Cqhs -----END CERTIFICATE-----Generated at Wed Nov 5 05:23:44 2025 by rpki-client