$ rpki-client -vvf rpki.apnic.net/member_repository/A91836C4/9D4B10688FCA11EDB7911254C4F9AE02/fDPCHh829n5MagTrI5AZrXcryyo.mft File: fDPCHh829n5MagTrI5AZrXcryyo.mft (raw, json) Hash identifier: 0qqESQQ3CnDT8cTfFemztpjuu62PgvHnV9THnO28+6g= Subject key identifier: 8D:48:91:D4:B4:C0:70:06:A2:61:8F:98:D1:C3:EE:9C:23:03:8D:F7 Authority key identifier: 7C:33:C2:1E:1F:36:F6:7E:4C:6A:04:EB:23:90:19:AD:77:2B:CB:2A Certificate issuer: /CN=A91836C4/serialNumber=7C33C21E1F36F67E4C6A04EB239019AD772BCB2A Certificate serial: 0213 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fDPCHh829n5MagTrI5AZrXcryyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91836C4/9D4B10688FCA11EDB7911254C4F9AE02/fDPCHh829n5MagTrI5AZrXcryyo.mft Manifest number: 020F Signing time: Wed 05 Nov 2025 02:22:05 +0000 Manifest this update: Wed 05 Nov 2025 02:22:04 +0000 Manifest next update: Wed 12 Nov 2025 02:22:04 +0000 Files and hashes: 1: fDPCHh829n5MagTrI5AZrXcryyo.crl (hash: Bm46EYOpJc6/1HbmcimRdaJm9DTA08nNe0JugrQWT+0=) 2: 37A0ACFC8FCD11EDB4772D55C4F9AE02.roa (hash: oBuS5xinsgEEPRO4L87WKgJisQvCYTMja8uyPjXphjc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91836C4/9D4B10688FCA11EDB7911254C4F9AE02/fDPCHh829n5MagTrI5AZrXcryyo.crl rsync://rpki.apnic.net/member_repository/A91836C4/9D4B10688FCA11EDB7911254C4F9AE02/fDPCHh829n5MagTrI5AZrXcryyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fDPCHh829n5MagTrI5AZrXcryyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:22:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 531 (0x213) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91836C4, serialNumber=7C33C21E1F36F67E4C6A04EB239019AD772BCB2A Validity Not Before: Nov 5 02:22:04 2025 GMT Not After : Nov 12 02:22:04 2025 GMT Subject: CN=690ab4cc-6878 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:df:0b:8e:36:a4:43:54:1e:57:de:df:9b:e4: e3:48:43:ee:fd:9f:5f:f2:6b:1f:8b:7d:31:6d:dd: e8:55:17:7f:31:08:1b:92:49:e8:ee:86:7d:04:ab: 75:66:e7:89:1d:7c:91:01:a7:2a:e6:ab:6c:aa:45: 2c:3e:6b:9f:6b:ca:32:5c:58:93:dc:3c:80:ba:20: 17:f3:26:f0:84:c6:47:64:4f:b1:bf:ba:6e:f4:26: 1b:b6:9f:b3:e3:38:1f:92:7d:8a:f7:48:37:6e:bc: e0:1b:56:ac:6d:7f:bd:97:dc:25:64:38:c9:ba:c3: 74:54:db:e8:d9:9b:63:2e:bb:13:75:79:d8:6c:77: b5:dd:2e:dc:9a:0a:50:8c:57:fd:f9:b7:ac:e8:54: 0a:0e:d6:9f:fc:7d:65:38:0f:72:71:3c:a0:5f:ca: 46:c1:96:81:76:53:85:69:42:c7:15:a1:31:7e:1b: 84:02:09:d7:9e:be:74:0d:3d:90:8d:2b:f7:da:ef: 4b:71:c0:05:bd:a9:02:d1:95:e7:6c:81:b7:f6:4d: dc:7d:76:cb:d4:86:e0:fe:4d:58:de:83:51:3b:0a: 56:d6:da:1f:bd:ff:1a:ae:77:74:31:6d:25:b3:02: 15:6a:9e:9a:d3:fb:84:8f:37:7b:c3:4e:a1:71:5e: 3e:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:48:91:D4:B4:C0:70:06:A2:61:8F:98:D1:C3:EE:9C:23:03:8D:F7 X509v3 Authority Key Identifier: keyid:7C:33:C2:1E:1F:36:F6:7E:4C:6A:04:EB:23:90:19:AD:77:2B:CB:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91836C4/9D4B10688FCA11EDB7911254C4F9AE02/fDPCHh829n5MagTrI5AZrXcryyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fDPCHh829n5MagTrI5AZrXcryyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91836C4/9D4B10688FCA11EDB7911254C4F9AE02/fDPCHh829n5MagTrI5AZrXcryyo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:8a:f5:c9:2b:a8:82:f4:f2:f9:8a:72:af:3e:55:e2:e1:1c: 40:44:00:35:fd:39:be:4d:98:39:12:b8:2e:f7:2f:ec:50:b4: d7:4a:72:c5:f9:66:2a:1f:2f:50:90:ed:91:08:13:9b:d5:eb: 06:9e:b7:98:f9:81:04:12:d2:ca:28:b8:4e:7a:99:0e:d4:46: b2:2b:c2:3e:3f:dd:e2:53:14:09:bd:5a:b8:5d:13:0c:44:a0: 97:cf:80:ab:70:ce:57:d9:a0:e7:1b:4c:c2:c5:b0:96:cc:85: 4f:23:6a:f6:9a:3d:a4:c9:64:58:52:65:11:93:fc:f6:74:99: 24:75:76:b1:42:31:cb:ef:0d:cd:10:24:a9:d7:e3:7e:9d:f8: b4:d5:31:6d:5b:38:f6:6a:10:d0:31:8c:8f:ac:22:fa:d5:8a: fb:0f:6e:9b:62:db:ba:c6:06:da:a7:8e:96:64:0e:1f:ca:d5: 54:77:0e:c9:c4:ac:4c:c0:13:46:05:25:b0:e5:7c:b3:c4:74: 5a:ca:cd:63:b7:1e:0b:f4:62:15:c0:b6:72:81:a9:54:5e:82: 9c:1c:01:64:20:e2:32:ab:72:23:a9:26:cf:e5:5e:76:0f:8e: 4e:74:d8:c7:41:70:8d:15:36:c5:95:44:d4:cd:79:d5:b9:36: d9:59:6e:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODM2QzQxMTAvBgNVBAUTKDdDMzNDMjFFMUYzNkY2N0U0QzZBMDRFQjIzOTAxOUFE NzcyQkNCMkEwHhcNMjUxMTA1MDIyMjA0WhcNMjUxMTEyMDIyMjA0WjAYMRYwFAYD VQQDEw02OTBhYjRjYy02ODc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwt8LjjakQ1QeV97fm+TjSEPu/Z9f8msfi30xbd3oVRd/MQgbkkno7oZ9BKt1 ZueJHXyRAacq5qtsqkUsPmufa8oyXFiT3DyAuiAX8ybwhMZHZE+xv7pu9CYbtp+z 4zgfkn2K90g3brzgG1asbX+9l9wlZDjJusN0VNvo2ZtjLrsTdXnYbHe13S7cmgpQ jFf9+bes6FQKDtaf/H1lOA9ycTygX8pGwZaBdlOFaULHFaExfhuEAgnXnr50DT2Q jSv32u9LccAFvakC0ZXnbIG39k3cfXbL1Ibg/k1Y3oNROwpW1tofvf8arnd0MW0l swIVap6a0/uEjzd7w06hcV4+vQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI1IkdS0 wHAGomGPmNHD7pwjA433MB8GA1UdIwQYMBaAFHwzwh4fNvZ+TGoE6yOQGa13K8sq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MzZDNC85RDRCMTA2ODhG Q0ExMUVEQjc5MTEyNTRDNEY5QUUwMi9mRFBDSGg4MjluNU1hZ1RySTVBWnJYY3J5 eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZEUENIaDgyOW41TWFnVHJJNUFaclhjcnl5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MzZDNC85RDRCMTA2ODhGQ0ExMUVEQjc5MTEyNTRDNEY5QUUwMi9mRFBDSGg4Mjlu NU1hZ1RySTVBWnJYY3J5eW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKivXJK6iC9PL5inKvPlXi4RxARAA1/Tm+TZg5Ergu9y/sULTXSnLF +WYqHy9QkO2RCBOb1esGnreY+YEEEtLKKLhOepkO1EayK8I+P93iUxQJvVq4XRMM RKCXz4CrcM5X2aDnG0zCxbCWzIVPI2r2mj2kyWRYUmURk/z2dJkkdXaxQjHL7w3N ECSp1+N+nfi01TFtWzj2ahDQMYyPrCL61Yr7D26bYtu6xgbap46WZA4fytVUdw7J xKxMwBNGBSWw5XyzxHRays1jtx4L9GIVwLZygalUXoKcHAFkIOIyq3IjqSbP5V52 D45OdNjHQXCNFTbFlUTUzXnVuTbZWW6I -----END CERTIFICATE-----Generated at Wed Nov 5 11:55:48 2025 by rpki-client