$ rpki-client -vvf rpki.apnic.net/member_repository/A91509A4/DBAB936EDA7611ECA48FFC6CC4F9AE02/DAmet3to0aLfVJLHMbZNVB9VmwI.mft File: DAmet3to0aLfVJLHMbZNVB9VmwI.mft (raw, json) Hash identifier: AUwMsjawXoyys5pytSINu7k3ueu7LAuYzMnYAT8sMvQ= Subject key identifier: 72:9F:ED:37:AA:F3:97:8C:BF:BA:68:2A:BD:C2:93:FF:B9:EB:DD:DD Authority key identifier: 0C:09:9E:B7:7B:68:D1:A2:DF:54:92:C7:31:B6:4D:54:1F:55:9B:02 Certificate issuer: /CN=A91509A4/serialNumber=0C099EB77B68D1A2DF5492C731B64D541F559B02 Certificate serial: 0355 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DAmet3to0aLfVJLHMbZNVB9VmwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91509A4/DBAB936EDA7611ECA48FFC6CC4F9AE02/DAmet3to0aLfVJLHMbZNVB9VmwI.mft Manifest number: 034E Signing time: Wed 05 Nov 2025 01:04:57 +0000 Manifest this update: Wed 05 Nov 2025 01:04:56 +0000 Manifest next update: Wed 12 Nov 2025 01:04:56 +0000 Files and hashes: 1: DAmet3to0aLfVJLHMbZNVB9VmwI.crl (hash: wirYSe7ChyhOE9dutvh3KrJUh3WufiW/qvNdiL/wmcA=) 2: 32F44056DB1911EC87E56C0DC4F9AE02.roa (hash: dymLbJxwcC+zoVbs1raLnxC102YzGfBqYVissSmUr50=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91509A4/DBAB936EDA7611ECA48FFC6CC4F9AE02/DAmet3to0aLfVJLHMbZNVB9VmwI.crl rsync://rpki.apnic.net/member_repository/A91509A4/DBAB936EDA7611ECA48FFC6CC4F9AE02/DAmet3to0aLfVJLHMbZNVB9VmwI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DAmet3to0aLfVJLHMbZNVB9VmwI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:04:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 853 (0x355) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509A4, serialNumber=0C099EB77B68D1A2DF5492C731B64D541F559B02 Validity Not Before: Nov 5 01:04:56 2025 GMT Not After : Nov 12 01:04:56 2025 GMT Subject: CN=690aa2b8-27ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:9e:0c:7b:d8:9a:b3:0c:78:22:3e:a6:12:85: 1e:f6:10:e9:56:1d:a9:00:59:cf:be:ee:bd:11:ef: 5f:f3:5a:fe:25:47:72:c6:d6:f0:48:db:d5:eb:df: 70:cd:f8:b7:4b:a2:fb:aa:d7:f1:bd:9d:74:ba:4f: ab:09:72:ca:d7:87:d1:c4:9b:9a:ff:36:5f:f7:89: 97:98:09:80:ee:0c:5d:23:1d:b2:c8:af:26:9f:dc: 66:4d:1e:ee:86:c6:6d:0f:d4:39:99:57:6c:8d:2b: 00:45:f5:7d:8f:5e:24:8a:d0:c2:f3:62:b4:31:44: 6b:f3:3f:34:3e:7b:13:5b:44:96:03:f3:d1:16:d9: 58:1b:82:ac:58:38:3a:d0:40:39:83:2a:b6:1d:54: 54:ef:7f:0a:11:46:ac:84:f8:9f:26:71:d8:d3:83: c3:f9:e4:b8:4f:96:15:8f:d8:4d:79:86:2d:91:71: bf:b9:0b:a0:dc:26:66:e6:dc:0a:ff:5d:c9:7a:fe: 3c:96:9f:16:88:e8:db:e9:dd:d6:91:f5:53:46:43: cf:74:c6:28:ce:6b:71:3c:29:dd:80:28:9a:b5:7c: c5:f4:4c:06:4e:9f:cb:53:83:d1:81:d4:98:d1:da: d2:1e:b2:08:ff:16:8f:3f:8c:0e:d1:78:9a:9a:b3: b5:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:9F:ED:37:AA:F3:97:8C:BF:BA:68:2A:BD:C2:93:FF:B9:EB:DD:DD X509v3 Authority Key Identifier: keyid:0C:09:9E:B7:7B:68:D1:A2:DF:54:92:C7:31:B6:4D:54:1F:55:9B:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91509A4/DBAB936EDA7611ECA48FFC6CC4F9AE02/DAmet3to0aLfVJLHMbZNVB9VmwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DAmet3to0aLfVJLHMbZNVB9VmwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91509A4/DBAB936EDA7611ECA48FFC6CC4F9AE02/DAmet3to0aLfVJLHMbZNVB9VmwI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:ed:3b:83:fe:5e:bf:f4:ce:75:81:c1:56:a3:16:70:50:aa: 0f:38:98:19:db:67:e1:e1:49:ce:e9:29:2b:80:35:8c:01:72: a8:4e:13:80:62:b6:ae:2e:50:96:b1:f1:da:52:aa:b2:3d:0a: c7:22:f8:17:14:08:4a:13:41:46:ae:ff:b0:68:e7:2c:64:22: 66:cb:f7:24:ba:b8:8a:45:0d:83:fc:f0:c1:b2:27:19:94:33: 2f:1c:dc:3b:4b:78:a6:c4:3c:38:90:29:50:80:2f:45:63:59: ad:82:f2:4a:7a:b4:98:84:3f:4e:4d:70:70:87:0a:70:dc:31: d2:68:71:22:2a:21:d1:22:af:09:b1:54:42:06:6d:bd:d8:62: 3f:ae:64:74:4c:ab:fd:90:be:be:ed:1a:6b:63:46:58:dc:6e: 65:32:8f:a6:2c:aa:35:07:c9:dc:80:59:14:c5:de:e9:5d:b3: 85:fe:d7:3a:6b:79:a6:ef:7d:3b:6f:b0:44:f1:cd:6c:75:71: 24:f4:8e:f0:b5:b3:07:16:72:66:e2:51:f5:88:3e:c0:75:99: ed:44:c1:41:dd:e9:6f:c3:97:7a:0e:0b:f9:f1:39:29:f1:57: 89:58:fc:70:ae:84:be:f2:d2:7a:af:a9:3f:59:66:6e:fe:88: 29:31:4f:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA1UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTA5QTQxMTAvBgNVBAUTKDBDMDk5RUI3N0I2OEQxQTJERjU0OTJDNzMxQjY0RDU0 MUY1NTlCMDIwHhcNMjUxMTA1MDEwNDU2WhcNMjUxMTEyMDEwNDU2WjAYMRYwFAYD VQQDEw02OTBhYTJiOC0yN2VlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0J4Me9iaswx4Ij6mEoUe9hDpVh2pAFnPvu69Ee9f81r+JUdyxtbwSNvV699w zfi3S6L7qtfxvZ10uk+rCXLK14fRxJua/zZf94mXmAmA7gxdIx2yyK8mn9xmTR7u hsZtD9Q5mVdsjSsARfV9j14kitDC82K0MURr8z80PnsTW0SWA/PRFtlYG4KsWDg6 0EA5gyq2HVRU738KEUashPifJnHY04PD+eS4T5YVj9hNeYYtkXG/uQug3CZm5twK /13Jev48lp8WiOjb6d3WkfVTRkPPdMYozmtxPCndgCiatXzF9EwGTp/LU4PRgdSY 0drSHrII/xaPP4wO0XiamrO1wwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHKf7Teq 85eMv7poKr3Ck/+5693dMB8GA1UdIwQYMBaAFAwJnrd7aNGi31SSxzG2TVQfVZsC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDlBNC9EQkFCOTM2RURB NzYxMUVDQTQ4RkZDNkNDNEY5QUUwMi9EQW1ldDN0bzBhTGZWSkxITWJaTlZCOVZt d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RBbWV0M3RvMGFMZlZKTEhNYlpOVkI5Vm13SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDlBNC9EQkFCOTM2RURBNzYxMUVDQTQ4RkZDNkNDNEY5QUUwMi9EQW1ldDN0bzBh TGZWSkxITWJaTlZCOVZtd0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAO7TuD/l6/9M51gcFWoxZwUKoPOJgZ22fh4UnO6SkrgDWMAXKoThOA YrauLlCWsfHaUqqyPQrHIvgXFAhKE0FGrv+waOcsZCJmy/ckuriKRQ2D/PDBsicZ lDMvHNw7S3imxDw4kClQgC9FY1mtgvJKerSYhD9OTXBwhwpw3DHSaHEiKiHRIq8J sVRCBm292GI/rmR0TKv9kL6+7RprY0ZY3G5lMo+mLKo1B8ncgFkUxd7pXbOF/tc6 a3mm7307b7BE8c1sdXEk9I7wtbMHFnJm4lH1iD7AdZntRMFB3elvw5d6Dgv58Tkp 8VeJWPxwroS+8tJ6r6k/WWZu/ogpMU8y -----END CERTIFICATE-----Generated at Wed Nov 5 21:10:22 2025 by rpki-client