$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0E6/D8ADD9423F3711EAA786434BC4F9AE02/dQWoa19PqlBUPSSMbwhUxQWu3A8.mft File: dQWoa19PqlBUPSSMbwhUxQWu3A8.mft (raw, json) Hash identifier: 6Y/TUK2ptXtQ3lSAczfVOUklo+OdP8roh0WvbM0ITvA= Subject key identifier: 12:74:64:8C:CB:74:D0:9B:3C:01:B0:0E:A6:DF:3E:F2:03:B2:CD:D5 Authority key identifier: 75:05:A8:6B:5F:4F:AA:50:54:3D:24:8C:6F:08:54:C5:05:AE:DC:0F Certificate issuer: /CN=A918D0E6/serialNumber=7505A86B5F4FAA50543D248C6F0854C505AEDC0F Certificate serial: 0B87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQWoa19PqlBUPSSMbwhUxQWu3A8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0E6/D8ADD9423F3711EAA786434BC4F9AE02/dQWoa19PqlBUPSSMbwhUxQWu3A8.mft Manifest number: 0B78 Signing time: Sun 02 Nov 2025 19:04:21 +0000 Manifest this update: Sun 02 Nov 2025 19:04:21 +0000 Manifest next update: Sun 09 Nov 2025 19:04:21 +0000 Files and hashes: 1: dQWoa19PqlBUPSSMbwhUxQWu3A8.crl (hash: Lja1UIfAHcw5Z37rmQ91dhyVA6w6M64UrP2yt157oSo=) 2: 4B1D295E9EA211EB901A9532C4F9AE02.roa (hash: 6+05b8G0TEW8X4nNCgb84dRnZnbGJzRjWgQsJpxv0jY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0E6/D8ADD9423F3711EAA786434BC4F9AE02/dQWoa19PqlBUPSSMbwhUxQWu3A8.crl rsync://rpki.apnic.net/member_repository/A918D0E6/D8ADD9423F3711EAA786434BC4F9AE02/dQWoa19PqlBUPSSMbwhUxQWu3A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQWoa19PqlBUPSSMbwhUxQWu3A8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 19:04:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2951 (0xb87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0E6, serialNumber=7505A86B5F4FAA50543D248C6F0854C505AEDC0F Validity Not Before: Nov 2 19:04:21 2025 GMT Not After : Nov 9 19:04:21 2025 GMT Subject: CN=6907ab35-2b5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:2b:3d:e2:38:ae:2b:ea:92:e9:75:f2:21:d5: 97:96:fe:b4:2d:27:ae:ee:be:ab:71:fa:76:8f:ad: 10:85:a1:73:bb:ed:e8:4c:07:4c:46:da:f0:5e:b8: 80:89:5f:b3:ff:53:d3:2d:57:44:ad:52:2e:ba:21: 8b:3e:57:c3:32:51:7e:46:87:e1:bb:40:a9:13:09: 29:a0:ea:f5:f4:f7:ca:3b:b0:f9:f6:5d:7f:e3:93: 8e:8c:cf:d3:dd:44:9a:44:0b:90:cd:75:40:21:21: f7:1e:0c:8f:9e:e0:75:71:ee:83:88:17:04:2a:9d: 88:82:e6:cc:55:ac:e0:d6:a8:af:b7:ac:60:d5:b6: e1:3a:50:10:8c:aa:3e:2f:9f:68:9c:a2:26:d9:f3: 30:e8:34:a2:b2:96:b0:8b:d8:e5:0e:e1:15:29:96: cb:58:75:f7:cf:99:e9:c2:b3:e3:8a:70:10:18:d1: 38:76:5d:98:7a:a3:86:30:ec:9a:c6:fa:3b:d5:d6: 52:b4:dc:bb:0a:af:80:85:08:33:f7:73:6a:c8:e8: 09:37:12:5b:b6:b6:74:ae:0a:9e:59:30:80:b4:37: 93:eb:1b:e8:78:8b:8c:0b:b5:b5:6c:aa:a0:69:03: 09:39:52:58:a0:ad:a1:87:d5:9b:5a:e3:d4:b5:54: 1c:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:74:64:8C:CB:74:D0:9B:3C:01:B0:0E:A6:DF:3E:F2:03:B2:CD:D5 X509v3 Authority Key Identifier: keyid:75:05:A8:6B:5F:4F:AA:50:54:3D:24:8C:6F:08:54:C5:05:AE:DC:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0E6/D8ADD9423F3711EAA786434BC4F9AE02/dQWoa19PqlBUPSSMbwhUxQWu3A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQWoa19PqlBUPSSMbwhUxQWu3A8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0E6/D8ADD9423F3711EAA786434BC4F9AE02/dQWoa19PqlBUPSSMbwhUxQWu3A8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:6e:56:e2:9b:b6:87:78:26:78:98:f4:fd:f2:f8:18:c5:d4: 66:d1:b3:7a:b4:e7:7e:00:ba:3a:aa:76:36:66:49:c7:bc:74: 67:43:8b:a9:e1:49:f3:9b:d0:1d:39:43:7f:ad:7c:dd:b9:59: 6a:96:6a:2c:20:62:05:70:78:1c:4a:22:6c:ee:08:46:e6:eb: 88:fa:71:85:db:6c:09:bc:07:55:93:e9:c6:55:7f:a5:04:14: 9b:03:71:73:88:f3:d0:eb:09:c8:de:d1:2b:8e:c8:de:4a:c3: f4:1f:dc:0b:bb:1f:fd:52:b3:5f:95:c7:aa:e8:03:04:83:f9: c3:ad:86:c6:8e:6e:28:47:34:92:03:ce:be:cf:a8:57:d0:9f: 1b:4f:7f:cc:b6:3f:4b:f4:45:ff:e0:85:fc:91:17:62:82:83: 2c:0c:a4:28:8e:b1:b2:ee:a1:3d:70:c1:34:87:a0:b0:a1:4d: 56:be:a3:7d:81:03:09:5e:23:1e:74:46:e1:46:2d:a1:ce:e9: 69:a7:18:ee:c8:bf:c5:85:37:07:27:4f:6d:48:be:82:6c:1a: 15:66:13:b7:76:1f:bb:64:c4:42:cc:96:c4:de:ac:19:8d:ac: 88:4b:97:23:1c:1a:33:d9:00:e5:bd:45:4a:43:78:ba:7e:36: bd:99:01:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC4cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwRTYxMTAvBgNVBAUTKDc1MDVBODZCNUY0RkFBNTA1NDNEMjQ4QzZGMDg1NEM1 MDVBRURDMEYwHhcNMjUxMTAyMTkwNDIxWhcNMjUxMTA5MTkwNDIxWjAYMRYwFAYD VQQDEw02OTA3YWIzNS0yYjVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0is94jiuK+qS6XXyIdWXlv60LSeu7r6rcfp2j60QhaFzu+3oTAdMRtrwXriA iV+z/1PTLVdErVIuuiGLPlfDMlF+Rofhu0CpEwkpoOr19PfKO7D59l1/45OOjM/T 3USaRAuQzXVAISH3HgyPnuB1ce6DiBcEKp2IgubMVazg1qivt6xg1bbhOlAQjKo+ L59onKIm2fMw6DSispawi9jlDuEVKZbLWHX3z5npwrPjinAQGNE4dl2YeqOGMOya xvo71dZStNy7Cq+AhQgz93NqyOgJNxJbtrZ0rgqeWTCAtDeT6xvoeIuMC7W1bKqg aQMJOVJYoK2hh9WbWuPUtVQcDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBJ0ZIzL dNCbPAGwDqbfPvIDss3VMB8GA1UdIwQYMBaAFHUFqGtfT6pQVD0kjG8IVMUFrtwP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBFNi9EOEFERDk0MjNG MzcxMUVBQTc4NjQzNEJDNEY5QUUwMi9kUVdvYTE5UHFsQlVQU1NNYndoVXhRV3Uz QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RRV29hMTlQcWxCVVBTU01id2hVeFFXdTNBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDBFNi9EOEFERDk0MjNGMzcxMUVBQTc4NjQzNEJDNEY5QUUwMi9kUVdvYTE5UHFs QlVQU1NNYndoVXhRV3UzQTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByblbim7aHeCZ4mPT98vgYxdRm0bN6tOd+ALo6qnY2ZknHvHRnQ4up 4Unzm9AdOUN/rXzduVlqlmosIGIFcHgcSiJs7ghG5uuI+nGF22wJvAdVk+nGVX+l BBSbA3FziPPQ6wnI3tErjsjeSsP0H9wLux/9UrNflceq6AMEg/nDrYbGjm4oRzSS A86+z6hX0J8bT3/Mtj9L9EX/4IX8kRdigoMsDKQojrGy7qE9cME0h6CwoU1WvqN9 gQMJXiMedEbhRi2hzulppxjuyL/FhTcHJ09tSL6CbBoVZhO3dh+7ZMRCzJbE3qwZ jayIS5cjHBoz2QDlvUVKQ3i6fja9mQFq -----END CERTIFICATE-----Generated at Mon Nov 3 18:06:50 2025 by rpki-client