$ rpki-client -vvf rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.mft File: dlKiL8JQ-qrjqywMKv3QTjBH5Qc.mft (raw, json) Hash identifier: IkuMXyEXf9NmSXH1Sxh4t3OJPNs2T3z78DtIyDEvHH4= Subject key identifier: 37:9E:4E:60:3E:25:7A:CF:4A:2B:A4:7D:05:1B:53:6B:F8:C0:E1:23 Authority key identifier: 76:52:A2:2F:C2:50:FA:AA:E3:AB:2C:0C:2A:FD:D0:4E:30:47:E5:07 Certificate issuer: /CN=A917ADD1/serialNumber=7652A22FC250FAAAE3AB2C0C2AFDD04E3047E507 Certificate serial: 01A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.mft Manifest number: 01A2 Signing time: Mon 03 Nov 2025 03:17:27 +0000 Manifest this update: Mon 03 Nov 2025 03:17:26 +0000 Manifest next update: Mon 10 Nov 2025 03:17:26 +0000 Files and hashes: 1: dlKiL8JQ-qrjqywMKv3QTjBH5Qc.crl (hash: bNJfYYZfXJwWspqHQX7svtLlEE6UmZoFMrQjh8yZzns=) 2: 8D0C1E0E37EF11EE82AF270BC4F9AE02.roa (hash: GFGPvdmy2vrmiAyM3NUeTKYyq91wUi+ACbGsbCoh47g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.crl rsync://rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:17:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 421 (0x1a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ADD1, serialNumber=7652A22FC250FAAAE3AB2C0C2AFDD04E3047E507 Validity Not Before: Nov 3 03:17:26 2025 GMT Not After : Nov 10 03:17:26 2025 GMT Subject: CN=69081ec6-2bbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:81:ba:40:c1:37:9e:1a:a1:71:48:6c:1d:ee: 25:48:15:d0:45:de:b1:f7:4f:ee:80:81:e3:77:d7: 44:fb:df:28:f4:c6:ab:e4:ce:af:5c:93:f9:db:5b: 0a:9a:0b:6e:ac:55:ef:48:ca:c8:b7:7c:6c:53:01: 87:59:ac:74:2d:d6:15:16:f7:21:e6:5d:d2:2a:df: 12:a4:21:61:dd:90:38:30:e8:bf:e5:4f:a7:60:9d: da:cf:c1:30:40:26:01:46:9d:e6:61:7c:5f:0d:b6: ea:d2:c4:10:31:0b:13:66:f2:2a:af:b9:e0:6f:d6: 3f:0b:d3:32:59:f2:62:52:13:d4:84:f4:a1:ce:6d: 6e:e1:88:bb:00:4a:9a:07:0a:00:a8:7e:42:5d:b5: fa:e3:54:81:bf:a4:43:64:3b:69:9d:88:c7:2c:e8: 00:30:07:92:cf:61:27:5c:5a:ec:5a:ee:ef:e2:f3: 5c:2b:fd:ca:c6:52:52:41:6d:46:1a:dd:53:ed:76: cf:b1:52:35:81:36:54:63:e4:c1:7e:1f:01:a0:d1: b2:af:eb:cc:74:90:16:04:81:1d:96:dd:b3:bd:d1: 26:a6:7a:e0:a4:1a:2c:06:89:56:35:3f:5f:50:ca: 7d:b7:51:a3:ee:95:95:91:23:c7:e8:3b:e5:a9:78: 2b:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:9E:4E:60:3E:25:7A:CF:4A:2B:A4:7D:05:1B:53:6B:F8:C0:E1:23 X509v3 Authority Key Identifier: keyid:76:52:A2:2F:C2:50:FA:AA:E3:AB:2C:0C:2A:FD:D0:4E:30:47:E5:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:fb:8c:97:c6:47:91:1e:60:2c:63:7d:01:6a:dd:1d:9a:65: 68:2b:4c:96:5c:9d:10:09:2e:55:7a:ae:a2:43:74:96:2e:e4: 92:0c:e9:6d:a9:ee:01:0b:e8:e4:83:d0:9a:76:63:78:5c:be: f4:d4:18:31:51:43:e8:d7:dc:7e:69:05:7d:3f:e6:8f:29:f8: 70:1d:e6:c6:d1:dd:cb:dd:eb:93:32:5e:8f:d8:8c:91:18:2e: cd:28:ba:bb:23:49:86:e6:e4:52:75:1a:0c:a1:ca:46:1d:c7: 5d:72:be:da:07:56:c6:76:a5:cd:cd:e0:d2:69:3e:80:24:e7: 9a:f7:ab:47:1e:2e:97:25:3f:66:3a:b8:1f:fa:51:25:ba:e7: 41:cc:16:35:61:06:3f:e5:f3:b7:a1:d9:26:d9:33:cd:8b:09: f7:79:e6:5e:18:48:01:c7:de:eb:72:58:85:a5:1f:44:1c:de: e7:af:21:7e:68:39:79:c3:2a:bb:f4:a2:61:46:67:d0:3d:9a: 49:f9:30:2b:5c:2a:04:64:93:79:84:5f:2b:1b:26:a2:c8:8c: bc:5b:3a:db:2b:c1:1c:79:31:a3:b4:1e:5f:83:83:ca:f1:05: 90:a7:78:df:5b:e5:d6:69:d8:9c:e8:ee:31:50:01:3a:31:db: 17:c9:e7:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FERDExMTAvBgNVBAUTKDc2NTJBMjJGQzI1MEZBQUFFM0FCMkMwQzJBRkREMDRF MzA0N0U1MDcwHhcNMjUxMTAzMDMxNzI2WhcNMjUxMTEwMDMxNzI2WjAYMRYwFAYD VQQDEw02OTA4MWVjNi0yYmJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyIG6QME3nhqhcUhsHe4lSBXQRd6x90/ugIHjd9dE+98o9Mar5M6vXJP521sK mgturFXvSMrIt3xsUwGHWax0LdYVFvch5l3SKt8SpCFh3ZA4MOi/5U+nYJ3az8Ew QCYBRp3mYXxfDbbq0sQQMQsTZvIqr7ngb9Y/C9MyWfJiUhPUhPShzm1u4Yi7AEqa BwoAqH5CXbX641SBv6RDZDtpnYjHLOgAMAeSz2EnXFrsWu7v4vNcK/3KxlJSQW1G Gt1T7XbPsVI1gTZUY+TBfh8BoNGyr+vMdJAWBIEdlt2zvdEmpnrgpBosBolWNT9f UMp9t1Gj7pWVkSPH6DvlqXgrSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDeeTmA+ JXrPSiukfQUbU2v4wOEjMB8GA1UdIwQYMBaAFHZSoi/CUPqq46ssDCr90E4wR+UH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUREMS9EMDA2QzBERTM3 RUUxMUVFOThERjM2NjZDNEY5QUUwMi9kbEtpTDhKUS1xcmpxeXdNS3YzUVRqQkg1 UWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RsS2lMOEpRLXFyanF5d01LdjNRVGpCSDVRYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUREMS9EMDA2QzBERTM3RUUxMUVFOThERjM2NjZDNEY5QUUwMi9kbEtpTDhKUS1x cmpxeXdNS3YzUVRqQkg1UWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1+4yXxkeRHmAsY30Bat0dmmVoK0yWXJ0QCS5Veq6iQ3SWLuSSDOlt qe4BC+jkg9CadmN4XL701BgxUUPo19x+aQV9P+aPKfhwHebG0d3L3euTMl6P2IyR GC7NKLq7I0mG5uRSdRoMocpGHcddcr7aB1bGdqXNzeDSaT6AJOea96tHHi6XJT9m Orgf+lEluudBzBY1YQY/5fO3odkm2TPNiwn3eeZeGEgBx97rcliFpR9EHN7nryF+ aDl5wyq79KJhRmfQPZpJ+TArXCoEZJN5hF8rGyaiyIy8WzrbK8EceTGjtB5fg4PK 8QWQp3jfW+XWadic6O4xUAE6MdsXyedv -----END CERTIFICATE-----Generated at Mon Nov 3 18:17:14 2025 by rpki-client