$ rpki-client -vvf rpki.apnic.net/member_repository/A91560A3/E4DF96AAFDF811E8AD2C1262C4F9AE02/Di3qFP18_9DQqeo-N0N7keRUsjY.mft File: Di3qFP18_9DQqeo-N0N7keRUsjY.mft (raw, json) Hash identifier: qfg2Qv7d43x+7GPNLhZKCIXT20Y9uph2LNR7dw7IkRQ= Subject key identifier: D7:2E:E1:DB:52:48:67:89:9D:E2:63:D1:FE:CA:56:0C:5C:86:EA:0D Authority key identifier: 0E:2D:EA:14:FD:7C:FF:D0:D0:A9:EA:3E:37:43:7B:91:E4:54:B2:36 Certificate issuer: /CN=A91560A3/serialNumber=0E2DEA14FD7CFFD0D0A9EA3E37437B91E454B236 Certificate serial: 11D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Di3qFP18_9DQqeo-N0N7keRUsjY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91560A3/E4DF96AAFDF811E8AD2C1262C4F9AE02/Di3qFP18_9DQqeo-N0N7keRUsjY.mft Manifest number: 11CA Signing time: Tue 04 Nov 2025 17:16:31 +0000 Manifest this update: Tue 04 Nov 2025 17:16:31 +0000 Manifest next update: Tue 11 Nov 2025 17:16:30 +0000 Files and hashes: 1: Di3qFP18_9DQqeo-N0N7keRUsjY.crl (hash: yADjZX0+MwqUzbdby6gdzV3/96zZy3E1k/HVJii167M=) 2: 2245CE0A606811EB80E3D531C4F9AE02.roa (hash: PSSQDCbjfGOv5hsREHHq3AE69qVBQBbQjxmYclshFuc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91560A3/E4DF96AAFDF811E8AD2C1262C4F9AE02/Di3qFP18_9DQqeo-N0N7keRUsjY.crl rsync://rpki.apnic.net/member_repository/A91560A3/E4DF96AAFDF811E8AD2C1262C4F9AE02/Di3qFP18_9DQqeo-N0N7keRUsjY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Di3qFP18_9DQqeo-N0N7keRUsjY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:16:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4560 (0x11d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91560A3, serialNumber=0E2DEA14FD7CFFD0D0A9EA3E37437B91E454B236 Validity Not Before: Nov 4 17:16:31 2025 GMT Not After : Nov 11 17:16:30 2025 GMT Subject: CN=690a34ef-310d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:8a:d8:6a:60:6d:f4:52:7d:6b:2d:5d:24:cc: 80:f1:8e:0b:c6:bd:73:4f:7d:28:94:89:01:ec:af: 69:40:59:94:33:99:85:1d:94:13:87:8c:13:97:ff: b9:30:85:7f:fa:24:dc:5b:fe:c3:ae:a2:1a:76:77: fd:77:6a:5a:d3:c4:16:17:26:8d:b4:3d:18:f9:03: d4:49:eb:bf:de:bd:ae:10:c7:50:49:84:22:b1:25: 1d:69:1b:58:86:9d:a3:04:10:e4:37:11:71:61:f8: 28:7f:25:7f:8a:86:7d:29:cc:9f:87:57:f5:c6:2c: 41:00:6f:df:10:35:7c:aa:4a:d6:b4:f4:e3:e8:cb: dc:f4:20:1d:c5:6a:32:2a:1d:e6:6f:67:58:19:57: d9:4e:52:f2:7a:9e:f0:77:9d:48:40:72:18:8b:d8: 9a:4a:e0:30:36:37:b1:89:7e:9d:91:7a:a4:a5:37: 1b:00:ce:53:fb:22:e7:84:d5:b7:24:c5:f6:d7:22: 67:84:1d:0f:13:b6:38:0b:f3:ec:0a:6a:2b:90:31: bf:aa:86:da:ab:dc:eb:ed:2c:8b:1c:f4:7a:bc:e5: c6:69:1b:04:75:37:9c:42:ed:77:b3:6b:01:e0:73: e5:9c:da:e3:0b:0e:0b:12:8f:75:05:77:75:94:21: 68:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:2E:E1:DB:52:48:67:89:9D:E2:63:D1:FE:CA:56:0C:5C:86:EA:0D X509v3 Authority Key Identifier: keyid:0E:2D:EA:14:FD:7C:FF:D0:D0:A9:EA:3E:37:43:7B:91:E4:54:B2:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91560A3/E4DF96AAFDF811E8AD2C1262C4F9AE02/Di3qFP18_9DQqeo-N0N7keRUsjY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Di3qFP18_9DQqeo-N0N7keRUsjY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91560A3/E4DF96AAFDF811E8AD2C1262C4F9AE02/Di3qFP18_9DQqeo-N0N7keRUsjY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:c5:4b:42:93:25:2a:30:fe:e0:3a:96:0d:fc:28:1e:d8:26: b7:3c:67:20:a3:03:35:5d:8b:8e:e8:75:89:06:88:9b:52:35: cd:f1:a7:70:d2:68:f1:1f:17:4b:33:4a:88:4e:ef:c9:33:00: bf:08:c7:05:a9:6e:cb:99:b2:10:d3:db:07:4e:d5:2d:07:18: 55:9e:11:83:19:b0:6d:4d:cc:0c:76:d3:ab:9a:e6:9b:1e:20: 2a:7f:f5:b6:b8:6c:5b:75:9a:34:73:fa:ab:c8:48:4d:34:6b: ea:02:b7:a6:6f:88:65:79:3a:91:96:ce:fb:2e:f8:51:60:3e: 52:f3:dd:03:b0:e1:1e:ef:cd:98:36:28:ed:38:dd:1f:cb:a8: b6:91:c1:48:e3:b6:10:aa:82:c2:78:03:c6:ab:69:b3:8e:b3: 77:a1:17:a9:82:46:99:4c:85:ac:06:7c:17:4d:70:a8:73:b8: 18:80:f6:fe:9b:f1:0f:09:4d:68:39:01:0f:c9:10:15:44:86: fa:d3:60:ad:27:28:f3:4e:34:82:24:8d:9b:b3:da:00:96:bb: ad:99:97:f6:a5:65:5f:21:75:05:8a:a0:ca:9a:47:bb:80:6f: f8:73:84:2e:e1:02:30:e3:e1:c3:2b:66:68:6a:b2:f1:e0:8f: be:15:e2:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEdAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYwQTMxMTAvBgNVBAUTKDBFMkRFQTE0RkQ3Q0ZGRDBEMEE5RUEzRTM3NDM3Qjkx RTQ1NEIyMzYwHhcNMjUxMTA0MTcxNjMxWhcNMjUxMTExMTcxNjMwWjAYMRYwFAYD VQQDEw02OTBhMzRlZi0zMTBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt4rYamBt9FJ9ay1dJMyA8Y4Lxr1zT30olIkB7K9pQFmUM5mFHZQTh4wTl/+5 MIV/+iTcW/7DrqIadnf9d2pa08QWFyaNtD0Y+QPUSeu/3r2uEMdQSYQisSUdaRtY hp2jBBDkNxFxYfgofyV/ioZ9Kcyfh1f1xixBAG/fEDV8qkrWtPTj6Mvc9CAdxWoy Kh3mb2dYGVfZTlLyep7wd51IQHIYi9iaSuAwNjexiX6dkXqkpTcbAM5T+yLnhNW3 JMX21yJnhB0PE7Y4C/PsCmorkDG/qobaq9zr7SyLHPR6vOXGaRsEdTecQu13s2sB 4HPlnNrjCw4LEo91BXd1lCFogQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNcu4dtS SGeJneJj0f7KVgxchuoNMB8GA1UdIwQYMBaAFA4t6hT9fP/Q0KnqPjdDe5HkVLI2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjBBMy9FNERGOTZBQUZE RjgxMUU4QUQyQzEyNjJDNEY5QUUwMi9EaTNxRlAxOF85RFFxZW8tTjBON2tlUlVz alkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RpM3FGUDE4XzlEUXFlby1OME43a2VSVXNqWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjBBMy9FNERGOTZBQUZERjgxMUU4QUQyQzEyNjJDNEY5QUUwMi9EaTNxRlAxOF85 RFFxZW8tTjBON2tlUlVzalkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYxUtCkyUqMP7gOpYN/Cge2Ca3PGcgowM1XYuO6HWJBoibUjXN8adw 0mjxHxdLM0qITu/JMwC/CMcFqW7LmbIQ09sHTtUtBxhVnhGDGbBtTcwMdtOrmuab HiAqf/W2uGxbdZo0c/qryEhNNGvqAremb4hleTqRls77LvhRYD5S890DsOEe782Y NijtON0fy6i2kcFI47YQqoLCeAPGq2mzjrN3oRepgkaZTIWsBnwXTXCoc7gYgPb+ m/EPCU1oOQEPyRAVRIb602CtJyjzTjSCJI2bs9oAlrutmZf2pWVfIXUFiqDKmke7 gG/4c4Qu4QIw4+HDK2ZoarLx4I++FeLb -----END CERTIFICATE-----Generated at Wed Nov 5 05:25:17 2025 by rpki-client