$ rpki-client -vvf rpki.apnic.net/member_repository/A9192B86/86E977CAA87D11EE9FA55A6DC4F9AE02/_dkd0w6bH-o7t-Eq73YhZigSmyM.mft File: _dkd0w6bH-o7t-Eq73YhZigSmyM.mft (raw, json) Hash identifier: 9QYZRdlmmT1jwvnrJpZUdfGhd1ZnbOlloaPb1B3kL3U= Subject key identifier: D3:B9:D6:F6:51:02:83:5B:24:64:A2:DE:80:80:77:24:3D:DA:B1:D6 Authority key identifier: FD:D9:1D:D3:0E:9B:1F:EA:3B:B7:E1:2A:EF:76:21:66:28:12:9B:23 Certificate issuer: /CN=A9192B86/serialNumber=FDD91DD30E9B1FEA3BB7E12AEF76216628129B23 Certificate serial: 0163 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_dkd0w6bH-o7t-Eq73YhZigSmyM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192B86/86E977CAA87D11EE9FA55A6DC4F9AE02/_dkd0w6bH-o7t-Eq73YhZigSmyM.mft Manifest number: 015E Signing time: Wed 05 Nov 2025 04:14:02 +0000 Manifest this update: Wed 05 Nov 2025 04:14:02 +0000 Manifest next update: Wed 12 Nov 2025 04:14:02 +0000 Files and hashes: 1: _dkd0w6bH-o7t-Eq73YhZigSmyM.crl (hash: dbAHR+UbGo2oasItUx3JL5SLEbtz1K9uxMeJ7NkBiow=) 2: DECE1662A87D11EE882D7B6EC4F9AE02.roa (hash: xl8vsoM8lRXsIwAeubyIxGM45u4MhqEQVgY77rzjzp4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192B86/86E977CAA87D11EE9FA55A6DC4F9AE02/_dkd0w6bH-o7t-Eq73YhZigSmyM.crl rsync://rpki.apnic.net/member_repository/A9192B86/86E977CAA87D11EE9FA55A6DC4F9AE02/_dkd0w6bH-o7t-Eq73YhZigSmyM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_dkd0w6bH-o7t-Eq73YhZigSmyM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:14:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 355 (0x163) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192B86, serialNumber=FDD91DD30E9B1FEA3BB7E12AEF76216628129B23 Validity Not Before: Nov 5 04:14:02 2025 GMT Not After : Nov 12 04:14:02 2025 GMT Subject: CN=690acf0a-c510 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:c4:35:8b:35:6f:5b:0b:3f:79:1e:e4:9f:d7: f6:ce:aa:3e:cf:a4:84:b5:2b:ac:b9:aa:2b:55:71: ac:11:d4:40:a2:60:16:64:54:23:b8:a3:4b:7c:27: 0f:c0:66:99:fb:c8:7a:63:48:f0:3e:5a:31:e0:4f: 61:68:8d:bb:64:2a:44:12:a7:bd:7e:31:8e:18:ef: 54:18:f9:c4:eb:ca:a7:37:af:fd:12:3c:3f:18:bd: 45:6f:44:ae:88:50:5f:8e:80:e1:52:8b:b8:e9:ed: 67:d0:8a:8d:58:a4:45:1b:be:d8:25:af:e3:36:db: fc:12:10:51:24:14:78:24:40:b7:71:a4:3b:8f:02: 15:69:ca:4f:ec:3a:45:60:3f:55:51:d8:01:e2:7c: ea:1c:31:65:f5:78:34:ce:09:e9:b6:fe:cc:97:80: 93:50:6e:59:78:ed:78:70:23:e7:d8:27:6a:76:9e: af:f4:39:30:18:de:c7:3d:69:78:6c:a7:91:e1:c7: aa:06:c2:9a:d9:69:8b:8d:a5:e6:b4:f8:ca:be:37: 3b:9b:60:e1:08:48:78:9f:e4:1b:f1:f1:22:d4:33: 25:ad:05:3d:ea:05:14:0c:f3:7f:9d:60:f5:1c:40: c9:c5:05:d8:ac:9c:14:59:5f:9b:35:f9:53:77:f8: a2:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:B9:D6:F6:51:02:83:5B:24:64:A2:DE:80:80:77:24:3D:DA:B1:D6 X509v3 Authority Key Identifier: keyid:FD:D9:1D:D3:0E:9B:1F:EA:3B:B7:E1:2A:EF:76:21:66:28:12:9B:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192B86/86E977CAA87D11EE9FA55A6DC4F9AE02/_dkd0w6bH-o7t-Eq73YhZigSmyM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_dkd0w6bH-o7t-Eq73YhZigSmyM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192B86/86E977CAA87D11EE9FA55A6DC4F9AE02/_dkd0w6bH-o7t-Eq73YhZigSmyM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:e3:a0:3b:75:40:1a:56:5c:67:47:34:c4:19:8f:55:ac:eb: 3d:48:dd:49:06:7e:e4:31:ea:58:82:03:1a:7f:31:7f:27:4c: ac:a8:9f:3e:b5:fd:25:d0:c8:db:34:86:97:87:66:f2:e6:19: e8:ea:00:a0:06:4c:29:0f:81:bc:15:5c:21:98:85:f1:73:34: 5a:dc:12:87:17:87:cb:bf:3d:44:bc:66:1a:38:6a:f6:b6:af: c1:6d:e3:71:1b:35:6e:4d:63:1e:0c:5a:40:d2:39:8a:fc:b3: 23:1a:30:52:32:fd:b1:4d:1f:fc:34:12:84:89:44:bc:7f:33: 56:7d:3d:51:d8:b9:8c:94:63:35:09:fc:f7:a6:32:a9:fc:38: 85:7c:6a:c2:da:ae:6c:42:de:b4:9c:01:14:fc:9f:50:3f:5a: 77:96:1a:4b:cb:d4:46:75:9e:12:c5:5c:03:d4:34:b1:8b:d2: 5b:f2:db:ae:1c:6a:29:61:94:7c:cd:7c:16:43:31:be:93:5d: 81:27:7c:fe:6b:f7:a9:5b:7e:44:c6:ac:02:4c:ab:22:f1:49: 4b:5d:9a:64:13:03:77:1c:c6:cb:59:96:e0:e4:c9:ce:90:40: 6e:e3:7b:8e:c8:56:15:50:32:fc:58:fe:6e:4e:62:da:4d:46: 89:4b:c7:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTJCODYxMTAvBgNVBAUTKEZERDkxREQzMEU5QjFGRUEzQkI3RTEyQUVGNzYyMTY2 MjgxMjlCMjMwHhcNMjUxMTA1MDQxNDAyWhcNMjUxMTEyMDQxNDAyWjAYMRYwFAYD VQQDEw02OTBhY2YwYS1jNTEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAosQ1izVvWws/eR7kn9f2zqo+z6SEtSusuaorVXGsEdRAomAWZFQjuKNLfCcP wGaZ+8h6Y0jwPlox4E9haI27ZCpEEqe9fjGOGO9UGPnE68qnN6/9Ejw/GL1Fb0Su iFBfjoDhUou46e1n0IqNWKRFG77YJa/jNtv8EhBRJBR4JEC3caQ7jwIVacpP7DpF YD9VUdgB4nzqHDFl9Xg0zgnptv7Ml4CTUG5ZeO14cCPn2Cdqdp6v9DkwGN7HPWl4 bKeR4ceqBsKa2WmLjaXmtPjKvjc7m2DhCEh4n+Qb8fEi1DMlrQU96gUUDPN/nWD1 HEDJxQXYrJwUWV+bNflTd/ii1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNO51vZR AoNbJGSi3oCAdyQ92rHWMB8GA1UdIwQYMBaAFP3ZHdMOmx/qO7fhKu92IWYoEpsj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MkI4Ni84NkU5NzdDQUE4 N0QxMUVFOUZBNTVBNkRDNEY5QUUwMi9fZGtkMHc2Ykgtbzd0LUVxNzNZaFppZ1Nt eU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19ka2QwdzZiSC1vN3QtRXE3M1loWmlnU215TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MkI4Ni84NkU5NzdDQUE4N0QxMUVFOUZBNTVBNkRDNEY5QUUwMi9fZGtkMHc2Ykgt bzd0LUVxNzNZaFppZ1NteU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAD46A7dUAaVlxnRzTEGY9VrOs9SN1JBn7kMepYggMafzF/J0ysqJ8+ tf0l0MjbNIaXh2by5hno6gCgBkwpD4G8FVwhmIXxczRa3BKHF4fLvz1EvGYaOGr2 tq/BbeNxGzVuTWMeDFpA0jmK/LMjGjBSMv2xTR/8NBKEiUS8fzNWfT1R2LmMlGM1 Cfz3pjKp/DiFfGrC2q5sQt60nAEU/J9QP1p3lhpLy9RGdZ4SxVwD1DSxi9Jb8tuu HGopYZR8zXwWQzG+k12BJ3z+a/epW35ExqwCTKsi8UlLXZpkEwN3HMbLWZbg5MnO kEBu43uOyFYVUDL8WP5uTmLaTUaJS8eU -----END CERTIFICATE-----Generated at Wed Nov 5 07:55:02 2025 by rpki-client