$ rpki-client -vvf rpki.apnic.net/member_repository/A9154961/FEBBFA801BE211EDAF17A558C4F9AE02/M7DVaJUEg2wR6ezdDRGcBY0_dgs.mft File: M7DVaJUEg2wR6ezdDRGcBY0_dgs.mft (raw, json) Hash identifier: p9PC9INERu18Nk8kSkHEN3+TGLxM3mCGvJ6u4t/SQcg= Subject key identifier: 58:5A:6E:A7:19:73:04:C7:D9:CD:22:CC:00:DD:67:6D:83:D1:09:2D Authority key identifier: 33:B0:D5:68:95:04:83:6C:11:E9:EC:DD:0D:11:9C:05:8D:3F:76:0B Certificate issuer: /CN=A9154961/serialNumber=33B0D5689504836C11E9ECDD0D119C058D3F760B Certificate serial: 02AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M7DVaJUEg2wR6ezdDRGcBY0_dgs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154961/FEBBFA801BE211EDAF17A558C4F9AE02/M7DVaJUEg2wR6ezdDRGcBY0_dgs.mft Manifest number: 02A5 Signing time: Mon 03 Nov 2025 01:29:27 +0000 Manifest this update: Mon 03 Nov 2025 01:29:26 +0000 Manifest next update: Mon 10 Nov 2025 01:29:26 +0000 Files and hashes: 1: M7DVaJUEg2wR6ezdDRGcBY0_dgs.crl (hash: colVrRrEsPt0Mqrsq44OvaFDwsrL/R7aQxyRHl2Spqc=) 2: 7359F5C43A4A11ED9B8FF35AC4F9AE02.roa (hash: ExbEkd7oCoyYXXiOdOycDgRHQS6NdbUqsudnvKbSXwU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154961/FEBBFA801BE211EDAF17A558C4F9AE02/M7DVaJUEg2wR6ezdDRGcBY0_dgs.crl rsync://rpki.apnic.net/member_repository/A9154961/FEBBFA801BE211EDAF17A558C4F9AE02/M7DVaJUEg2wR6ezdDRGcBY0_dgs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M7DVaJUEg2wR6ezdDRGcBY0_dgs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 01:29:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 684 (0x2ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154961, serialNumber=33B0D5689504836C11E9ECDD0D119C058D3F760B Validity Not Before: Nov 3 01:29:26 2025 GMT Not After : Nov 10 01:29:26 2025 GMT Subject: CN=69080577-4d53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:12:d7:14:34:8d:e4:49:03:0a:c7:6c:74:47: 9e:9d:b2:ab:86:03:1a:ae:19:7e:ff:f5:2a:6f:57: ca:db:d0:85:f2:d3:91:d5:5f:cd:5d:a2:72:8c:86: 07:60:ce:c8:90:2f:10:12:db:f3:d5:ae:56:8b:dc: 3d:e2:8e:7e:ba:01:03:e2:8a:d7:14:81:55:79:73: d4:77:a7:b0:b0:fa:6f:1b:5b:41:36:57:ec:ce:6e: dd:22:14:b5:8c:51:bc:65:a3:1d:69:b8:f9:db:41: 3b:58:fd:a5:91:7f:15:c7:cb:7c:e2:0e:94:bb:b7: 60:72:87:01:28:03:4b:00:81:35:51:e7:a4:5e:4d: 5e:3d:a5:c1:34:b6:a6:fc:37:93:80:0f:7f:df:5a: bd:7f:31:bb:ac:d7:0b:67:9b:91:ef:c2:91:72:83: a9:89:c4:5c:66:db:a9:eb:9f:24:d0:bc:8b:d7:36: bb:8c:f0:dd:9e:45:fa:44:a3:68:1b:f4:07:eb:4f: ba:50:40:8b:c5:78:e7:50:ac:e4:d3:be:93:17:7e: 12:bf:12:6c:48:7b:e0:18:ae:42:07:9c:63:a2:a4: bd:21:29:1f:d8:26:76:83:98:ca:b6:a5:31:2e:51: 3a:2a:8a:76:5d:80:02:cd:17:01:81:44:33:52:89: 54:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:5A:6E:A7:19:73:04:C7:D9:CD:22:CC:00:DD:67:6D:83:D1:09:2D X509v3 Authority Key Identifier: keyid:33:B0:D5:68:95:04:83:6C:11:E9:EC:DD:0D:11:9C:05:8D:3F:76:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154961/FEBBFA801BE211EDAF17A558C4F9AE02/M7DVaJUEg2wR6ezdDRGcBY0_dgs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M7DVaJUEg2wR6ezdDRGcBY0_dgs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154961/FEBBFA801BE211EDAF17A558C4F9AE02/M7DVaJUEg2wR6ezdDRGcBY0_dgs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:c5:68:99:35:08:09:d3:ef:7b:61:a8:63:4f:53:55:18:81: aa:f4:29:47:25:26:4a:b3:e2:b9:d2:3d:5d:60:15:d4:b2:76: fa:d5:5a:1d:7b:ce:7e:4d:ba:69:cf:7b:cb:7c:b3:ac:ef:ee: 17:25:b8:37:66:2b:20:a4:7b:9c:f4:c7:02:14:6f:1d:71:ed: 5d:5e:13:f5:b6:d3:37:2a:a1:65:b0:a7:2a:1e:61:25:12:e3: 92:22:98:55:e1:c8:8f:7a:d6:5a:f4:f2:43:43:94:28:6d:1e: 27:43:11:d3:e0:b2:9c:f7:7d:c5:9d:7f:49:2c:19:4d:76:f2: 37:db:10:c3:af:9e:f3:53:a1:f7:15:63:d4:32:92:ef:e2:d9: 31:33:f5:56:3f:e2:36:56:2c:64:51:02:d1:c2:58:45:d8:16: bc:20:22:9e:90:aa:6b:63:e0:96:9c:47:d6:dc:0e:0d:e3:1b: 94:c3:d7:1b:b4:0e:7d:17:4e:6e:6d:13:77:86:75:2e:a7:98: 0e:4d:2d:a8:28:92:b5:8f:13:35:70:10:d7:95:2a:71:89:8b: f8:6a:57:9e:f9:b2:a4:db:44:31:2b:10:58:71:b6:32:fa:d7: f2:f3:33:92:e8:fd:47:e4:a5:17:db:62:9f:4a:cc:93:56:1c: 93:fa:c9:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQ5NjExMTAvBgNVBAUTKDMzQjBENTY4OTUwNDgzNkMxMUU5RUNERDBEMTE5QzA1 OEQzRjc2MEIwHhcNMjUxMTAzMDEyOTI2WhcNMjUxMTEwMDEyOTI2WjAYMRYwFAYD VQQDEw02OTA4MDU3Ny00ZDUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtxLXFDSN5EkDCsdsdEeenbKrhgMarhl+//Uqb1fK29CF8tOR1V/NXaJyjIYH YM7IkC8QEtvz1a5Wi9w94o5+ugED4orXFIFVeXPUd6ewsPpvG1tBNlfszm7dIhS1 jFG8ZaMdabj520E7WP2lkX8Vx8t84g6Uu7dgcocBKANLAIE1UeekXk1ePaXBNLam /DeTgA9/31q9fzG7rNcLZ5uR78KRcoOpicRcZtup658k0LyL1za7jPDdnkX6RKNo G/QH60+6UECLxXjnUKzk076TF34SvxJsSHvgGK5CB5xjoqS9ISkf2CZ2g5jKtqUx LlE6Kop2XYACzRcBgUQzUolU8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFhabqcZ cwTH2c0izADdZ22D0QktMB8GA1UdIwQYMBaAFDOw1WiVBINsEens3Q0RnAWNP3YL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDk2MS9GRUJCRkE4MDFC RTIxMUVEQUYxN0E1NThDNEY5QUUwMi9NN0RWYUpVRWcyd1I2ZXpkRFJHY0JZMF9k Z3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL003RFZhSlVFZzJ3UjZlemREUkdjQlkwX2Rncy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDk2MS9GRUJCRkE4MDFCRTIxMUVEQUYxN0E1NThDNEY5QUUwMi9NN0RWYUpVRWcy d1I2ZXpkRFJHY0JZMF9kZ3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLxWiZNQgJ0+97YahjT1NVGIGq9ClHJSZKs+K50j1dYBXUsnb61Vod e85+Tbppz3vLfLOs7+4XJbg3ZisgpHuc9McCFG8dce1dXhP1ttM3KqFlsKcqHmEl EuOSIphV4ciPetZa9PJDQ5QobR4nQxHT4LKc933FnX9JLBlNdvI32xDDr57zU6H3 FWPUMpLv4tkxM/VWP+I2VixkUQLRwlhF2Ba8ICKekKprY+CWnEfW3A4N4xuUw9cb tA59F05ubRN3hnUup5gOTS2oKJK1jxM1cBDXlSpxiYv4alee+bKk20QxKxBYcbYy +tfy8zOS6P1H5KUX22KfSsyTVhyT+sli -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:14 2025 by rpki-client