$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.mft File: DlRiWWwMbnfhibUb4m4lyRU4xVw.mft (raw, json) Hash identifier: xMOclV7RB7XCEo/korP8Fj3qqKQhVTAiuN4X2oTzQ7Y= Subject key identifier: F3:43:21:D4:DB:F2:42:2B:22:34:5D:AE:65:A7:BF:A2:08:CF:34:29 Authority key identifier: 0E:54:62:59:6C:0C:6E:77:E1:89:B5:1B:E2:6E:25:C9:15:38:C5:5C Certificate issuer: /CN=A91D2CDA/serialNumber=0E5462596C0C6E77E189B51BE26E25C91538C55C Certificate serial: EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DlRiWWwMbnfhibUb4m4lyRU4xVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.mft Manifest number: E6 Signing time: Mon 27 Oct 2025 07:34:23 +0000 Manifest this update: Mon 27 Oct 2025 07:34:23 +0000 Manifest next update: Mon 03 Nov 2025 07:34:23 +0000 Files and hashes: 1: DlRiWWwMbnfhibUb4m4lyRU4xVw.crl (hash: 9smFmy1iATHsJ/LEHvfLz3s6F2bhshckjK+pW0X2FF0=) 2: 750E873CABF211F0BF8FB00EC4F9AE02.roa (hash: 4AY5MxyHWXUHdZWUxSVO1Obzs2t8GWWXz1CJkuERlDc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.crl rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DlRiWWwMbnfhibUb4m4lyRU4xVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 07:34:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 234 (0xea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2CDA, serialNumber=0E5462596C0C6E77E189B51BE26E25C91538C55C Validity Not Before: Oct 27 07:34:23 2025 GMT Not After : Nov 3 07:34:23 2025 GMT Subject: CN=68ff207f-c499 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:e5:5e:c8:53:99:1c:7b:5f:af:82:ea:ae:85: f1:18:87:88:ff:17:d8:f1:8a:40:f5:30:59:42:8a: 8e:fa:5c:ba:b2:2e:e7:91:82:de:91:63:05:53:7a: df:8b:90:26:a5:42:d8:29:c9:c1:8f:07:2e:f9:26: 02:13:00:4c:63:d2:be:ee:e8:da:e9:e8:cf:c8:54: 26:2e:20:8d:76:16:0f:0d:41:91:33:83:c0:1c:14: 33:4f:1f:0d:93:f1:c3:7a:72:3f:c6:a7:3c:77:18: f6:7a:c1:8e:19:c8:63:71:f1:02:42:02:de:56:2e: 9b:09:06:e2:4e:0f:64:99:e7:7b:44:18:be:c8:4b: a8:37:a9:c3:96:6b:64:05:7c:8e:67:38:9b:9c:18: 79:1c:88:d4:a2:9f:23:18:66:b9:31:88:e0:5a:e0: fb:4f:d4:c0:21:bc:c8:25:73:e4:01:3f:b6:f8:af: 18:e4:99:0b:3a:c3:89:61:c4:ab:1a:8c:15:f6:49: c7:c0:d6:1e:e6:53:4d:46:f0:44:ab:29:a3:7d:30: 06:97:52:84:64:53:e9:f0:23:a6:90:33:66:98:bb: df:19:24:6d:d0:3d:1d:8b:da:bd:ce:80:2c:85:c3: d5:a1:da:2a:c1:fc:ac:57:85:e3:34:d1:9d:e0:88: 98:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:43:21:D4:DB:F2:42:2B:22:34:5D:AE:65:A7:BF:A2:08:CF:34:29 X509v3 Authority Key Identifier: keyid:0E:54:62:59:6C:0C:6E:77:E1:89:B5:1B:E2:6E:25:C9:15:38:C5:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DlRiWWwMbnfhibUb4m4lyRU4xVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:02:b3:77:5f:ec:00:7d:33:bf:0d:c3:a6:43:99:1a:a8:02: d7:96:19:c2:7f:e9:1a:b0:f6:13:99:64:88:8e:5f:42:5d:bf: 7b:f3:64:a6:e0:0b:ba:1d:88:84:12:32:a9:4c:a8:e4:58:a5: 9a:e0:b0:69:87:9c:64:0c:6e:69:8e:9b:04:24:f9:d5:6d:26: 64:66:8b:8e:a3:19:ea:ff:4e:aa:81:f4:ad:0a:11:48:30:2c: af:97:17:28:32:a6:8b:65:d4:01:6c:65:b1:54:d9:b4:d2:15: 60:e3:10:9f:3a:8c:64:ff:68:5a:a2:a0:61:24:16:88:e1:5e: 2a:a8:0a:10:06:0a:66:83:c3:08:6f:c6:30:99:f1:6c:f0:cc: 30:40:85:fc:f5:f9:67:0e:e2:5c:20:05:30:c6:ff:de:df:31: 9e:98:74:38:96:19:ce:12:8f:6f:78:0b:c8:2b:7f:f8:1b:6e: e6:ae:8c:4c:2f:43:4a:2d:d7:30:60:23:a3:4b:6b:d6:cf:c4: ba:a3:c4:63:42:95:fc:c5:31:ae:05:5d:14:17:23:79:ef:cd: 4a:4a:b0:eb:6f:e9:f0:29:66:70:0d:61:4d:64:64:9f:d2:b6: 11:21:11:fd:94:4d:10:e3:49:5a:58:c3:3f:f6:4f:6b:69:ca: f3:5e:09:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDJDREExMTAvBgNVBAUTKDBFNTQ2MjU5NkMwQzZFNzdFMTg5QjUxQkUyNkUyNUM5 MTUzOEM1NUMwHhcNMjUxMDI3MDczNDIzWhcNMjUxMTAzMDczNDIzWjAYMRYwFAYD VQQDEw02OGZmMjA3Zi1jNDk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3uVeyFOZHHtfr4LqroXxGIeI/xfY8YpA9TBZQoqO+ly6si7nkYLekWMFU3rf i5AmpULYKcnBjwcu+SYCEwBMY9K+7uja6ejPyFQmLiCNdhYPDUGRM4PAHBQzTx8N k/HDenI/xqc8dxj2esGOGchjcfECQgLeVi6bCQbiTg9kmed7RBi+yEuoN6nDlmtk BXyOZzibnBh5HIjUop8jGGa5MYjgWuD7T9TAIbzIJXPkAT+2+K8Y5JkLOsOJYcSr GowV9knHwNYe5lNNRvBEqymjfTAGl1KEZFPp8COmkDNmmLvfGSRt0D0di9q9zoAs hcPVodoqwfysV4XjNNGd4IiYLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPNDIdTb 8kIrIjRdrmWnv6IIzzQpMB8GA1UdIwQYMBaAFA5UYllsDG534Ym1G+JuJckVOMVc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMkNEQS8yQzdFNzJCODVB MTYxMUVGODJCNkQ5MTJDNEY5QUUwMi9EbFJpV1d3TWJuZmhpYlViNG00bHlSVTR4 VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RsUmlXV3dNYm5maGliVWI0bTRseVJVNHhWdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MkNEQS8yQzdFNzJCODVBMTYxMUVGODJCNkQ5MTJDNEY5QUUwMi9EbFJpV1d3TWJu ZmhpYlViNG00bHlSVTR4VncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKArN3X+wAfTO/DcOmQ5kaqALXlhnCf+kasPYTmWSIjl9CXb9782Sm 4Au6HYiEEjKpTKjkWKWa4LBph5xkDG5pjpsEJPnVbSZkZouOoxnq/06qgfStChFI MCyvlxcoMqaLZdQBbGWxVNm00hVg4xCfOoxk/2haoqBhJBaI4V4qqAoQBgpmg8MI b8YwmfFs8MwwQIX89flnDuJcIAUwxv/e3zGemHQ4lhnOEo9veAvIK3/4G27mroxM L0NKLdcwYCOjS2vWz8S6o8RjQpX8xTGuBV0UFyN5781KSrDrb+nwKWZwDWFNZGSf 0rYRIRH9lE0Q40laWMM/9k9racrzXgnz -----END CERTIFICATE-----Generated at Tue Oct 28 16:05:13 2025 by rpki-client