$ rpki-client -vvf rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.mft File: DfoUcOPJ6yHxewN7BM9O1UJO88k.mft (raw, json) Hash identifier: 1EvSo33uANfrGAu3wMh4d5Bo0Ht7Ca0959WhI55YCgM= Subject key identifier: 30:E8:6C:5D:51:2B:37:55:B4:CE:2F:98:B9:0B:7A:F9:7B:AC:82:69 Authority key identifier: 0D:FA:14:70:E3:C9:EB:21:F1:7B:03:7B:04:CF:4E:D5:42:4E:F3:C9 Certificate issuer: /CN=A91B588F/serialNumber=0DFA1470E3C9EB21F17B037B04CF4ED5424EF3C9 Certificate serial: 1D7D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfoUcOPJ6yHxewN7BM9O1UJO88k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.mft Manifest number: 1D6E Signing time: Sun 02 Nov 2025 16:08:21 +0000 Manifest this update: Sun 02 Nov 2025 16:08:21 +0000 Manifest next update: Sun 09 Nov 2025 16:08:21 +0000 Files and hashes: 1: DfoUcOPJ6yHxewN7BM9O1UJO88k.crl (hash: x88k1wYbsjVj/4KCM9TRrzRZuSFQgyVqUF2F+lt1HZI=) 2: 234A77E28D2111ECB33BB01AC4F9AE02.roa (hash: k8TIUAQe/uhiGTZr6cgQAthXD90vdh6WA7DCNugyFL0=) 3: 09DBF798B76311E6AF11523EC4F9AE02.roa (hash: KJtFM/La7mL3fu5dlcMqDcraRcAtERap2FuVwdqAgkc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.crl rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfoUcOPJ6yHxewN7BM9O1UJO88k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 16:08:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7549 (0x1d7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B588F, serialNumber=0DFA1470E3C9EB21F17B037B04CF4ED5424EF3C9 Validity Not Before: Nov 2 16:08:21 2025 GMT Not After : Nov 9 16:08:21 2025 GMT Subject: CN=690781f5-2e76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:c9:48:c7:cf:55:e1:0b:67:48:3d:95:7f:e3: fb:24:7e:a3:6b:4b:5f:87:54:88:14:e9:a5:5d:b6: 64:ef:21:32:b4:26:a3:c8:ef:7f:cc:64:86:1a:eb: 4f:66:82:56:a3:59:25:8f:9a:98:ff:33:87:2c:e3: e2:01:d5:ef:6d:20:49:93:67:9d:47:ec:81:3d:e8: ca:6e:30:28:c0:b6:56:f1:a6:b4:ba:f9:5f:1b:91: 9e:38:cc:62:04:a5:3b:f3:7a:df:a1:4e:48:b4:64: 50:8e:b1:69:ac:75:e9:66:30:40:de:06:6b:5e:d6: 86:6c:2c:84:4f:54:09:29:e2:b5:f8:f5:76:c4:1d: 4d:34:50:21:69:d6:aa:e0:18:c2:a2:d3:10:e3:62: 58:4c:9b:ba:2f:db:e6:49:fb:14:2f:12:63:87:7d: 6a:bf:d1:71:2a:f2:fd:bf:7b:b9:02:b3:96:ff:bc: 0c:36:e0:c7:40:4d:14:89:36:45:f0:38:1c:cb:46: c3:75:4f:e0:7e:f3:57:f9:6d:48:3b:be:9e:95:69: 34:e4:77:f3:0d:3c:5c:9f:9f:b5:de:97:ae:3f:0c: f4:8a:6f:d0:5c:58:8f:9f:7f:20:6e:ca:8b:60:28: 7b:ae:51:00:dd:69:5c:8e:dd:fe:69:6f:e1:40:36: 64:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:E8:6C:5D:51:2B:37:55:B4:CE:2F:98:B9:0B:7A:F9:7B:AC:82:69 X509v3 Authority Key Identifier: keyid:0D:FA:14:70:E3:C9:EB:21:F1:7B:03:7B:04:CF:4E:D5:42:4E:F3:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfoUcOPJ6yHxewN7BM9O1UJO88k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:8b:dc:e7:98:aa:32:06:54:dc:8f:bb:10:a5:6c:6a:50:27: 0e:3f:83:fe:62:1b:cb:4b:08:5f:f5:69:fe:02:52:91:0a:30: 94:4f:f7:f6:64:c0:59:58:1d:92:fc:30:7b:66:4e:45:ff:59: 32:9e:18:e0:a3:34:18:64:e9:0a:6d:5e:f6:bb:ca:af:67:06: 44:c6:c3:07:e8:82:51:35:e2:bb:0f:f9:b5:cd:fd:c1:dc:d5: d6:2b:e3:a6:e6:bf:3f:b9:45:4d:cc:41:4f:b5:68:53:5a:4a: 0c:4b:a3:ab:93:fd:20:2f:1a:e0:76:d1:03:22:e5:de:b7:c1: 9d:84:9d:30:69:ca:e6:25:e5:a3:6a:bf:cd:53:00:25:ca:1e: 1d:99:89:7e:06:ce:37:1b:55:47:e4:8f:1c:2c:ea:fb:c4:7e: d0:2d:b1:5f:73:f2:31:dd:fc:7c:96:05:3d:e3:fa:da:7e:1c: de:9c:97:b8:c0:3d:f3:79:ca:8b:d9:c7:ee:d3:df:4f:22:f7: 87:8d:12:8b:39:19:b5:f5:3b:0e:3e:86:9c:02:dd:5d:04:96: 37:35:78:14:71:7f:03:c1:33:56:d5:f9:d6:47:bc:ec:0a:d2: 59:d8:f1:10:f0:6f:16:b3:4c:d2:bc:28:10:70:34:83:6f:dd: 26:7a:cd:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHX0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU4OEYxMTAvBgNVBAUTKDBERkExNDcwRTNDOUVCMjFGMTdCMDM3QjA0Q0Y0RUQ1 NDI0RUYzQzkwHhcNMjUxMTAyMTYwODIxWhcNMjUxMTA5MTYwODIxWjAYMRYwFAYD VQQDEw02OTA3ODFmNS0yZTc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwMlIx89V4QtnSD2Vf+P7JH6ja0tfh1SIFOmlXbZk7yEytCajyO9/zGSGGutP ZoJWo1klj5qY/zOHLOPiAdXvbSBJk2edR+yBPejKbjAowLZW8aa0uvlfG5GeOMxi BKU783rfoU5ItGRQjrFprHXpZjBA3gZrXtaGbCyET1QJKeK1+PV2xB1NNFAhadaq 4BjCotMQ42JYTJu6L9vmSfsULxJjh31qv9FxKvL9v3u5ArOW/7wMNuDHQE0UiTZF 8Dgcy0bDdU/gfvNX+W1IO76elWk05HfzDTxcn5+13peuPwz0im/QXFiPn38gbsqL YCh7rlEA3Wlcjt3+aW/hQDZk8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDDobF1R KzdVtM4vmLkLevl7rIJpMB8GA1UdIwQYMBaAFA36FHDjyesh8XsDewTPTtVCTvPJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTg4Ri83ODREOTRCOEI3 NjExMUU2QjExNzVBM0NDNEY5QUUwMi9EZm9VY09QSjZ5SHhld043Qk05TzFVSk84 OGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Rmb1VjT1BKNnlIeGV3TjdCTTlPMVVKTzg4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTg4Ri83ODREOTRCOEI3NjExMUU2QjExNzVBM0NDNEY5QUUwMi9EZm9VY09QSjZ5 SHhld043Qk05TzFVSk84OGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2i9znmKoyBlTcj7sQpWxqUCcOP4P+YhvLSwhf9Wn+AlKRCjCUT/f2 ZMBZWB2S/DB7Zk5F/1kynhjgozQYZOkKbV72u8qvZwZExsMH6IJRNeK7D/m1zf3B 3NXWK+Om5r8/uUVNzEFPtWhTWkoMS6Ork/0gLxrgdtEDIuXet8GdhJ0wacrmJeWj ar/NUwAlyh4dmYl+Bs43G1VH5I8cLOr7xH7QLbFfc/Ix3fx8lgU94/rafhzenJe4 wD3zecqL2cfu099PIveHjRKLORm19TsOPoacAt1dBJY3NXgUcX8DwTNW1fnWR7zs CtJZ2PEQ8G8Ws0zSvCgQcDSDb90mes2A -----END CERTIFICATE-----Generated at Tue Nov 4 01:10:35 2025 by rpki-client