$ rpki-client -vvf rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft File: dd3NDNRiWKwZGsOQoskl2MA1qFc.mft (raw, json) Hash identifier: bE7hx6AqFt/4/qjy76N2VYDdBgEUXGZXTLcjKNYm/8Y= Subject key identifier: FE:39:CC:4C:E4:03:75:3D:14:87:0C:26:8D:38:01:E0:DA:D9:8F:CA Authority key identifier: 75:DD:CD:0C:D4:62:58:AC:19:1A:C3:90:A2:C9:25:D8:C0:35:A8:57 Certificate issuer: /CN=A917E04F/serialNumber=75DDCD0CD46258AC191AC390A2C925D8C035A857 Certificate serial: 0ECD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dd3NDNRiWKwZGsOQoskl2MA1qFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft Manifest number: 0EC5 Signing time: Sun 02 Nov 2025 17:39:32 +0000 Manifest this update: Sun 02 Nov 2025 17:39:32 +0000 Manifest next update: Sun 09 Nov 2025 17:39:32 +0000 Files and hashes: 1: dd3NDNRiWKwZGsOQoskl2MA1qFc.crl (hash: aMejg3j/H/A59jYUPqO8vlvqLhe+NQA2pwcZStoITZk=) 2: 9C9389D4970311E9B7D3DE5AC4F9AE02.roa (hash: 0msFIFHq8Bi6Dy0orrBJDRYbRJioucs5FAZf2jEryJs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.crl rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dd3NDNRiWKwZGsOQoskl2MA1qFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 17:39:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3789 (0xecd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E04F, serialNumber=75DDCD0CD46258AC191AC390A2C925D8C035A857 Validity Not Before: Nov 2 17:39:32 2025 GMT Not After : Nov 9 17:39:32 2025 GMT Subject: CN=69079754-67b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:33:7f:a7:4b:f3:70:7c:c3:54:45:b5:db:48: f9:f1:04:e3:d2:fd:a2:03:18:8b:4f:77:f0:79:eb: 3d:03:46:52:c9:17:f0:2e:12:7a:0d:a5:16:4b:fb: 86:d3:ca:19:15:91:7f:9d:f2:57:b8:ed:cc:1d:65: 67:fa:e9:04:be:13:93:c4:db:16:94:61:82:c8:36: 64:91:9f:ca:db:b2:72:b6:e1:23:02:92:1d:13:e3: 39:84:53:e2:62:f4:73:2d:1f:0f:04:d9:66:4b:5e: 9d:57:6c:64:1b:e9:25:8a:d6:c6:a3:f5:0a:b1:a4: f2:5d:06:62:3a:8c:ce:5f:79:5c:28:91:00:ac:e2: b8:3b:f8:e0:a4:9c:88:74:ea:5b:93:ff:dd:b3:c4: 17:b5:56:93:cd:fc:0d:8c:22:7b:85:56:3a:2a:59: 89:f6:c7:cc:df:a0:74:74:df:f2:1b:2b:5d:2a:18: 0d:4b:29:e9:f2:b6:96:a2:05:d7:9c:f8:e0:1a:51: ac:fb:c9:ca:66:24:11:17:f8:8d:4b:99:01:1b:e9: 13:f4:f1:64:ed:3d:b2:58:65:61:e1:45:11:95:53: cd:31:47:49:67:a5:c3:b2:bf:cc:ec:00:43:4e:e5: ad:fd:12:1e:17:a6:0d:a7:26:0c:20:55:f8:aa:16: d6:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:39:CC:4C:E4:03:75:3D:14:87:0C:26:8D:38:01:E0:DA:D9:8F:CA X509v3 Authority Key Identifier: keyid:75:DD:CD:0C:D4:62:58:AC:19:1A:C3:90:A2:C9:25:D8:C0:35:A8:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dd3NDNRiWKwZGsOQoskl2MA1qFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:1c:61:40:d1:f6:b0:59:4f:2c:6f:41:16:9a:1b:54:99:82: e1:f3:a9:dd:bf:c6:f3:78:34:e2:a4:e6:f4:95:28:54:0c:5d: 94:7e:15:f1:4f:17:01:52:ee:20:7c:f1:ba:88:b2:77:19:1b: 87:e0:13:c0:f6:00:f0:80:fa:d3:44:6b:67:3e:a2:d4:b6:c5: 3b:b3:f5:9a:86:a3:e2:2c:74:cf:03:62:b0:7a:90:a9:e9:99: d6:f9:64:c8:48:6e:e9:8f:74:ab:58:1f:6a:3d:22:7a:21:f4: 21:b5:f2:4a:7c:6b:be:81:c2:1a:7a:9f:c5:be:49:ba:7b:e1: 05:57:32:14:8e:4d:e5:89:9a:e3:f4:a8:e6:8a:1b:35:97:12: ff:71:77:81:47:2e:fe:b2:47:d6:f8:d9:d1:a4:04:81:74:33: d8:06:9c:6a:ba:4a:cb:2d:77:d7:11:39:b2:59:88:a3:db:8b: 5c:24:90:de:67:1a:c9:43:51:bf:c6:97:bc:76:b3:6f:e9:54: 75:3c:77:de:ef:d5:da:19:cd:1b:90:1d:08:bc:c4:18:d3:cb: c8:a4:9a:84:fb:3d:40:19:a4:bf:8f:0f:6e:6f:f4:a6:86:15: 0b:a1:5c:2d:98:ae:e5:a7:06:5f:37:6e:35:d4:58:65:82:9c: 4a:13:48:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDs0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwNEYxMTAvBgNVBAUTKDc1RERDRDBDRDQ2MjU4QUMxOTFBQzM5MEEyQzkyNUQ4 QzAzNUE4NTcwHhcNMjUxMTAyMTczOTMyWhcNMjUxMTA5MTczOTMyWjAYMRYwFAYD VQQDEw02OTA3OTc1NC02N2IwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtzN/p0vzcHzDVEW120j58QTj0v2iAxiLT3fwees9A0ZSyRfwLhJ6DaUWS/uG 08oZFZF/nfJXuO3MHWVn+ukEvhOTxNsWlGGCyDZkkZ/K27JytuEjApIdE+M5hFPi YvRzLR8PBNlmS16dV2xkG+klitbGo/UKsaTyXQZiOozOX3lcKJEArOK4O/jgpJyI dOpbk//ds8QXtVaTzfwNjCJ7hVY6KlmJ9sfM36B0dN/yGytdKhgNSynp8raWogXX nPjgGlGs+8nKZiQRF/iNS5kBG+kT9PFk7T2yWGVh4UURlVPNMUdJZ6XDsr/M7ABD TuWt/RIeF6YNpyYMIFX4qhbWnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP45zEzk A3U9FIcMJo04AeDa2Y/KMB8GA1UdIwQYMBaAFHXdzQzUYlisGRrDkKLJJdjANahX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTA0Ri80MTg1MzdGNDk3 MDMxMUU5QjRCN0IyNUFDNEY5QUUwMi9kZDNORE5SaVdLd1pHc09Rb3NrbDJNQTFx RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RkM05ETlJpV0t3WkdzT1Fvc2tsMk1BMXFGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTA0Ri80MTg1MzdGNDk3MDMxMUU5QjRCN0IyNUFDNEY5QUUwMi9kZDNORE5SaVdL d1pHc09Rb3NrbDJNQTFxRmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAHGFA0fawWU8sb0EWmhtUmYLh86ndv8bzeDTipOb0lShUDF2UfhXx TxcBUu4gfPG6iLJ3GRuH4BPA9gDwgPrTRGtnPqLUtsU7s/WahqPiLHTPA2KwepCp 6ZnW+WTISG7pj3SrWB9qPSJ6IfQhtfJKfGu+gcIaep/Fvkm6e+EFVzIUjk3liZrj 9Kjmihs1lxL/cXeBRy7+skfW+NnRpASBdDPYBpxqukrLLXfXETmyWYij24tcJJDe ZxrJQ1G/xpe8drNv6VR1PHfe79XaGc0bkB0IvMQY08vIpJqE+z1AGaS/jw9ub/Sm hhULoVwtmK7lpwZfN2411FhlgpxKE0gZ -----END CERTIFICATE-----Generated at Mon Nov 3 18:08:19 2025 by rpki-client