$ rpki-client -vvf rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft File: DYtx2GteICkzvLAqW210CSpSoXw.mft (raw, json) Hash identifier: K3vsjYYrFpmKZjRDMzN4RFDYdeDkm/jpGmSA3cZheqE= Subject key identifier: CC:B0:7B:35:48:5E:A3:4A:92:6F:AB:25:46:EF:60:28:3B:6B:8D:AC Authority key identifier: 0D:8B:71:D8:6B:5E:20:29:33:BC:B0:2A:5B:6D:74:09:2A:52:A1:7C Certificate issuer: /CN=A91A395C/serialNumber=0D8B71D86B5E202933BCB02A5B6D74092A52A17C Certificate serial: 3521 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft Manifest number: 34F3 Signing time: Fri 24 Oct 2025 14:56:27 +0000 Manifest this update: Fri 24 Oct 2025 14:56:26 +0000 Manifest next update: Fri 31 Oct 2025 14:56:26 +0000 Files and hashes: 1: DYtx2GteICkzvLAqW210CSpSoXw.crl (hash: Jl1KTM+BwXmSa1HyR7aHzRcyyzqgypcGjQkWRUDcBug=) 2: 991EB004BE8511EE960E5082C4F9AE02.roa (hash: IR/fxoozFicSxIrUXHGZXGMAUroK6RP4wvdk7z4PV7A=) 3: 9B71FEB0593F11EA9F9FA238C4F9AE02.roa (hash: XQCwNi2PZQw3HwB0S22xbUukUjh1gRPdN0DptoUSl6Q=) 4: D56D9FD87E8711EC9A928B6AC4F9AE02.roa (hash: MzFm0njK9GauK3PVGzL0I/Klqbd6ft5wJ9/podujw/8=) 5: 9A2B0DE4593F11EA9F9FA238C4F9AE02.roa (hash: jv97nGJvaH0WKHe7n31vkT3MMMbNqFjpDhhexD6X6+Q=) 6: 65552C3AE8D411ED8D0FAD45C4F9AE02.roa (hash: ifJGYL5q49BedEWwURROMxMLmQuzo6sd4i9VU7gjPWk=) 7: 3DBC186C5AD611EF85A4557BC4F9AE02.roa (hash: crg/ljxSxvSurizJ6VoDNQFMCKyOAKHsQIWFOorvrvI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.crl rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 Oct 2025 14:56:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13601 (0x3521) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A395C, serialNumber=0D8B71D86B5E202933BCB02A5B6D74092A52A17C Validity Not Before: Oct 24 14:56:26 2025 GMT Not After : Oct 31 14:56:26 2025 GMT Subject: CN=68fb939b-e424 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:83:40:63:c7:20:e8:0e:ac:f9:b5:0a:08:aa: 14:d1:89:97:94:22:89:f8:f4:33:86:29:c5:bf:77: 0b:b1:71:09:ff:76:0e:1c:89:86:ed:27:d1:2a:c1: 2b:02:c7:07:f0:9c:c9:7e:dc:87:c6:d4:b3:00:11: 4a:04:c7:b6:90:fe:ea:b9:f7:b7:5a:5c:21:cc:69: 2f:3c:5e:47:97:8b:4d:b7:22:9b:d4:fa:5c:0b:e1: 58:92:1d:b6:d0:29:2b:ad:5e:86:40:b6:92:da:ff: d9:a1:09:9c:26:5c:50:cf:02:4b:a5:ca:d9:53:a2: b1:62:36:0b:0e:24:20:e0:0c:57:96:a4:8e:83:ac: 54:5b:68:c4:87:b9:3b:ee:98:52:d5:29:09:ce:96: 4e:70:8f:41:5c:6a:eb:c2:04:70:67:45:78:5d:da: e4:61:c6:4a:55:b3:5a:92:60:4c:b3:d7:18:01:ee: 70:fc:fc:35:44:5f:2f:b8:92:b2:53:56:aa:53:0d: b1:40:d3:36:bd:7b:e3:17:e7:8d:bf:90:ce:50:ba: f4:df:3d:3e:43:52:77:ee:90:37:de:71:28:1c:2d: 7c:7f:12:c1:95:06:24:ac:ca:72:32:94:33:c2:57: 27:55:bf:a9:2f:2a:8e:27:74:d9:d3:b7:35:40:43: d3:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:B0:7B:35:48:5E:A3:4A:92:6F:AB:25:46:EF:60:28:3B:6B:8D:AC X509v3 Authority Key Identifier: keyid:0D:8B:71:D8:6B:5E:20:29:33:BC:B0:2A:5B:6D:74:09:2A:52:A1:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:28:a9:0d:d9:0b:ac:be:60:af:45:c7:68:b8:cf:5e:be:51: 8f:70:d8:19:ea:99:42:4e:84:0b:4e:4a:ec:2c:16:49:06:6a: 32:4f:3a:25:d6:44:26:77:fd:f9:0b:95:94:af:cc:25:4f:65: 4e:6f:a9:c4:ba:3e:99:05:c4:38:f9:88:76:74:61:13:ba:1b: 27:22:6f:a8:0c:04:a9:3a:c3:dd:9a:39:c8:f7:ae:97:5e:1d: c5:ba:95:17:54:64:0a:41:6e:13:59:45:99:dd:01:59:45:de: 48:73:56:cd:66:f9:a6:39:64:60:fc:7c:d7:ae:ec:df:c3:0a: 4a:79:67:61:a0:ad:92:93:db:41:ee:a1:0f:4d:21:81:84:71: 8f:21:5f:22:ab:04:3a:90:df:47:0e:33:04:c3:97:66:2f:67: f6:00:d1:c1:87:8b:06:e2:dc:e2:72:be:dc:cb:e9:0c:30:63: 88:72:99:9f:5b:0e:05:07:19:ef:29:47:65:35:79:19:a8:57: 1c:0b:c6:b9:6c:00:3a:06:ee:1e:af:d5:4f:cc:75:80:a8:9a: 4b:11:b4:dd:c4:44:70:c7:e0:f2:54:be:71:50:2c:29:33:77: 3a:1d:9e:9b:86:f6:36:f7:67:a8:26:b0:1e:ca:7c:50:32:fc: ef:ac:bf:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNSEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM5NUMxMTAvBgNVBAUTKDBEOEI3MUQ4NkI1RTIwMjkzM0JDQjAyQTVCNkQ3NDA5 MkE1MkExN0MwHhcNMjUxMDI0MTQ1NjI2WhcNMjUxMDMxMTQ1NjI2WjAYMRYwFAYD VQQDEw02OGZiOTM5Yi1lNDI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA44NAY8cg6A6s+bUKCKoU0YmXlCKJ+PQzhinFv3cLsXEJ/3YOHImG7SfRKsEr AscH8JzJftyHxtSzABFKBMe2kP7qufe3WlwhzGkvPF5Hl4tNtyKb1PpcC+FYkh22 0CkrrV6GQLaS2v/ZoQmcJlxQzwJLpcrZU6KxYjYLDiQg4AxXlqSOg6xUW2jEh7k7 7phS1SkJzpZOcI9BXGrrwgRwZ0V4XdrkYcZKVbNakmBMs9cYAe5w/Pw1RF8vuJKy U1aqUw2xQNM2vXvjF+eNv5DOULr03z0+Q1J37pA33nEoHC18fxLBlQYkrMpyMpQz wlcnVb+pLyqOJ3TZ07c1QEPTxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMywezVI XqNKkm+rJUbvYCg7a42sMB8GA1UdIwQYMBaAFA2LcdhrXiApM7ywKlttdAkqUqF8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzk1Qy9CQjM0MTdDMDFE OTYxMUUyQjhCQjgyN0YwOEIwMkNEMi9EWXR4Mkd0ZUlDa3p2TEFxVzIxMENTcFNv WHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RZdHgyR3RlSUNrenZMQXFXMjEwQ1NwU29Ydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Mzk1Qy9CQjM0MTdDMDFEOTYxMUUyQjhCQjgyN0YwOEIwMkNEMi9EWXR4Mkd0ZUlD a3p2TEFxVzIxMENTcFNvWHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKKKkN2QusvmCvRcdouM9evlGPcNgZ6plCToQLTkrsLBZJBmoyTzol 1kQmd/35C5WUr8wlT2VOb6nEuj6ZBcQ4+Yh2dGETuhsnIm+oDASpOsPdmjnI966X Xh3FupUXVGQKQW4TWUWZ3QFZRd5Ic1bNZvmmOWRg/HzXruzfwwpKeWdhoK2Sk9tB 7qEPTSGBhHGPIV8iqwQ6kN9HDjMEw5dmL2f2ANHBh4sG4tzicr7cy+kMMGOIcpmf Ww4FBxnvKUdlNXkZqFccC8a5bAA6Bu4er9VPzHWAqJpLEbTdxERwx+DyVL5xUCwp M3c6HZ6bhvY292eoJrAeynxQMvzvrL+X -----END CERTIFICATE-----Generated at Sat Oct 25 12:18:25 2025 by rpki-client