$ rpki-client -vvf rpki.apnic.net/member_repository/A9163EDF/D8A7C736972211EE99AC337EC4F9AE02/dyPYVuUggiTyvImjgJd39SgzEvw.mft File: dyPYVuUggiTyvImjgJd39SgzEvw.mft (raw, json) Hash identifier: IlUKRr4b7Ptca5hQfwZ7X0OMBrOL5GC6WPpZqF6zboY= Subject key identifier: 00:21:63:3C:F9:57:81:2B:2E:12:2B:A2:96:26:0F:B1:44:C7:84:D0 Authority key identifier: 77:23:D8:56:E5:20:82:24:F2:BC:89:A3:80:97:77:F5:28:33:12:FC Certificate issuer: /CN=A9163EDF/serialNumber=7723D856E5208224F2BC89A3809777F5283312FC Certificate serial: 0168 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dyPYVuUggiTyvImjgJd39SgzEvw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163EDF/D8A7C736972211EE99AC337EC4F9AE02/dyPYVuUggiTyvImjgJd39SgzEvw.mft Manifest number: 0165 Signing time: Mon 03 Nov 2025 04:00:26 +0000 Manifest this update: Mon 03 Nov 2025 04:00:25 +0000 Manifest next update: Mon 10 Nov 2025 04:00:25 +0000 Files and hashes: 1: dyPYVuUggiTyvImjgJd39SgzEvw.crl (hash: 6FBAHdQiLqTU41cc4KtP8VVHtwbZHXAous4pKIQGX4M=) 2: 7FB5CBF097DB11EE8E67BA41C4F9AE02.roa (hash: Vqca7Dlck5zECijiatjZli/eAV/OHF6vZWtbK8kCw4s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163EDF/D8A7C736972211EE99AC337EC4F9AE02/dyPYVuUggiTyvImjgJd39SgzEvw.crl rsync://rpki.apnic.net/member_repository/A9163EDF/D8A7C736972211EE99AC337EC4F9AE02/dyPYVuUggiTyvImjgJd39SgzEvw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dyPYVuUggiTyvImjgJd39SgzEvw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 360 (0x168) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163EDF, serialNumber=7723D856E5208224F2BC89A3809777F5283312FC Validity Not Before: Nov 3 04:00:25 2025 GMT Not After : Nov 10 04:00:25 2025 GMT Subject: CN=690828d9-7448 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:3c:3a:81:d8:16:8f:d4:7e:4c:7f:3d:27:19: 65:5e:e9:90:88:39:d0:40:52:e7:13:12:37:0a:cb: 90:70:9d:b6:73:47:91:00:97:ff:ff:53:ae:95:cd: bf:03:76:88:93:f1:f1:b8:02:f2:2f:7b:36:b6:af: e3:c7:e5:80:4b:4b:13:59:37:00:39:e3:00:77:1d: 54:2d:17:dd:24:12:ab:61:e6:e5:f2:67:3c:61:62: f3:84:08:af:5c:3a:c8:cb:30:e1:af:70:13:10:53: c1:db:9d:39:07:bf:1c:35:96:b3:c6:a0:ef:6b:45: 9d:aa:94:8b:62:a4:76:a4:d8:9f:c4:b6:ba:97:71: 65:ff:3f:b0:fe:4d:c6:b8:aa:ed:d8:24:b1:97:41: 97:e0:b6:78:35:d4:a0:46:6d:0e:96:79:ac:c1:89: 1a:f8:d3:fb:e8:4c:03:fa:38:2e:f7:b9:b2:6e:22: 99:db:14:cb:79:2b:9e:ef:8d:0d:ae:6d:89:01:28: b6:a2:2c:af:c5:b8:eb:39:a1:8d:09:58:0a:8f:31: 10:b8:52:de:79:f8:74:f0:f2:61:82:fa:60:95:dc: bd:3c:f7:3f:42:43:7a:4b:cf:82:81:43:0e:7f:17: da:aa:11:4b:de:40:f9:f6:61:5d:53:df:54:ae:eb: aa:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:21:63:3C:F9:57:81:2B:2E:12:2B:A2:96:26:0F:B1:44:C7:84:D0 X509v3 Authority Key Identifier: keyid:77:23:D8:56:E5:20:82:24:F2:BC:89:A3:80:97:77:F5:28:33:12:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163EDF/D8A7C736972211EE99AC337EC4F9AE02/dyPYVuUggiTyvImjgJd39SgzEvw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dyPYVuUggiTyvImjgJd39SgzEvw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163EDF/D8A7C736972211EE99AC337EC4F9AE02/dyPYVuUggiTyvImjgJd39SgzEvw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:bc:bd:73:53:23:3f:9e:df:3e:f9:61:a2:24:46:9b:9a:97: ee:16:5a:b6:c5:01:c8:e8:84:0d:22:3e:fc:c5:4b:31:3e:5e: 18:5d:68:0c:f6:6d:bc:61:b9:3c:ed:5d:78:d3:ca:a4:5f:a4: 1c:ef:08:49:d4:e1:3f:a6:ec:b4:41:c0:c8:c0:48:46:85:e7: 45:e9:a1:6d:c3:09:6f:30:6d:2b:71:3a:48:80:20:c1:4f:b0: 86:58:52:31:7a:3d:5c:e0:a4:52:74:5c:f9:a9:d7:7d:b8:5a: dd:53:44:bb:ef:3d:66:21:75:91:bf:ef:89:e9:af:87:99:76: 68:ac:74:b5:e4:85:c1:f9:a7:75:b6:14:22:e2:e2:b1:ee:62: 67:71:34:e2:32:1d:5f:9b:fa:56:61:20:5a:47:b3:e9:1f:89: 3f:29:da:67:5d:a6:17:0f:c4:6f:56:c8:81:66:f4:c6:84:06: c3:e2:fb:6f:67:87:c6:0e:30:17:3c:2b:32:c1:91:26:49:32: 60:23:e2:f8:17:8e:ad:d9:21:ff:14:ab:14:4e:10:dd:cd:e6: ea:ea:85:d5:ce:b8:c6:d3:25:7c:f7:e4:99:2b:21:b9:e1:25: 26:61:7e:42:b4:00:75:98:d6:bf:5b:fe:d2:b2:03:b1:35:02: 11:d7:34:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjNFREYxMTAvBgNVBAUTKDc3MjNEODU2RTUyMDgyMjRGMkJDODlBMzgwOTc3N0Y1 MjgzMzEyRkMwHhcNMjUxMTAzMDQwMDI1WhcNMjUxMTEwMDQwMDI1WjAYMRYwFAYD VQQDEw02OTA4MjhkOS03NDQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8jw6gdgWj9R+TH89JxllXumQiDnQQFLnExI3CsuQcJ22c0eRAJf//1Oulc2/ A3aIk/HxuALyL3s2tq/jx+WAS0sTWTcAOeMAdx1ULRfdJBKrYebl8mc8YWLzhAiv XDrIyzDhr3ATEFPB2505B78cNZazxqDva0WdqpSLYqR2pNifxLa6l3Fl/z+w/k3G uKrt2CSxl0GX4LZ4NdSgRm0OlnmswYka+NP76EwD+jgu97mybiKZ2xTLeSue740N rm2JASi2oiyvxbjrOaGNCVgKjzEQuFLeefh08PJhgvpgldy9PPc/QkN6S8+CgUMO fxfaqhFL3kD59mFdU99UruuqQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAAhYzz5 V4ErLhIropYmD7FEx4TQMB8GA1UdIwQYMBaAFHcj2FblIIIk8ryJo4CXd/UoMxL8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2M0VERi9EOEE3QzczNjk3 MjIxMUVFOTlBQzMzN0VDNEY5QUUwMi9keVBZVnVVZ2dpVHl2SW1qZ0pkMzlTZ3pF dncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2R5UFlWdVVnZ2lUeXZJbWpnSmQzOVNnekV2dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 M0VERi9EOEE3QzczNjk3MjIxMUVFOTlBQzMzN0VDNEY5QUUwMi9keVBZVnVVZ2dp VHl2SW1qZ0pkMzlTZ3pFdncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdvL1zUyM/nt8++WGiJEabmpfuFlq2xQHI6IQNIj78xUsxPl4YXWgM 9m28Ybk87V1408qkX6Qc7whJ1OE/puy0QcDIwEhGhedF6aFtwwlvMG0rcTpIgCDB T7CGWFIxej1c4KRSdFz5qdd9uFrdU0S77z1mIXWRv++J6a+HmXZorHS15IXB+ad1 thQi4uKx7mJncTTiMh1fm/pWYSBaR7PpH4k/KdpnXaYXD8RvVsiBZvTGhAbD4vtv Z4fGDjAXPCsywZEmSTJgI+L4F46t2SH/FKsUThDdzebq6oXVzrjG0yV89+SZKyG5 4SUmYX5CtAB1mNa/W/7SsgOxNQIR1zQs -----END CERTIFICATE-----Generated at Mon Nov 3 18:14:35 2025 by rpki-client