$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.mft File: DO-JBd1l6R5Qazs5nCCiIork_T8.mft (raw, json) Hash identifier: DyZt2aXkqDLuKkeudSJFmKG2ny3COmNT7cySoI90G88= Subject key identifier: 9E:7A:52:62:78:A4:D2:D6:75:71:04:C8:36:0C:D8:37:1B:B0:68:C2 Authority key identifier: 0C:EF:89:05:DD:65:E9:1E:50:6B:3B:39:9C:20:A2:22:8A:E4:FD:3F Certificate issuer: /CN=A91DB421/serialNumber=0CEF8905DD65E91E506B3B399C20A2228AE4FD3F Certificate serial: 097A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DO-JBd1l6R5Qazs5nCCiIork_T8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.mft Manifest number: 0974 Signing time: Sun 02 Nov 2025 20:03:37 +0000 Manifest this update: Sun 02 Nov 2025 20:03:37 +0000 Manifest next update: Sun 09 Nov 2025 20:03:37 +0000 Files and hashes: 1: DO-JBd1l6R5Qazs5nCCiIork_T8.crl (hash: 0PUrT3/krYSsgOvBBG3P4E5MaOCHhVVP2yJfc95rACk=) 2: A9511B7AA0B511EA94365A38C4F9AE02.roa (hash: 8rvezRlfEmng/UgYNLuDBBrL/AQ4sVZHRDguwah88WU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.crl rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DO-JBd1l6R5Qazs5nCCiIork_T8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 20:03:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2426 (0x97a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB421, serialNumber=0CEF8905DD65E91E506B3B399C20A2228AE4FD3F Validity Not Before: Nov 2 20:03:37 2025 GMT Not After : Nov 9 20:03:37 2025 GMT Subject: CN=6907b919-776a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:c3:ce:5b:8b:4e:12:a2:54:de:3d:ce:88:79: 1a:46:21:2d:0a:e4:08:ec:e4:5f:47:a5:5b:f6:f3: ba:a8:08:27:17:23:b6:18:2f:3e:fd:38:72:f2:2f: e8:8c:26:5d:d8:2c:d4:17:86:10:2b:12:aa:df:45: 47:15:87:6f:1a:bd:2b:50:1f:f2:b0:a4:df:31:25: dc:9b:d6:48:eb:bc:4f:54:ba:67:99:86:2d:b8:ff: 46:44:87:21:5e:18:20:31:e2:71:62:5f:2c:0a:28: 60:b4:53:58:3d:c3:19:a7:d3:7b:ec:0b:00:fb:97: 37:d1:68:62:65:ba:d0:01:d2:54:49:2f:06:2d:b2: 0e:7d:24:de:cd:fd:6a:61:8c:04:e1:2c:b7:fa:d3: f2:ee:78:2e:82:05:95:73:db:f8:01:2a:b2:09:ff: e3:74:61:72:b1:1d:dc:44:bc:fa:3f:a7:44:fc:1f: 1e:69:58:69:92:61:4a:e7:18:3d:13:56:0d:b2:96: b6:8b:62:f6:a3:46:e9:02:40:a6:e9:37:1e:0a:a5: 8b:05:c2:56:ac:c4:62:0b:cd:78:e9:a2:38:70:0e: 7a:18:f8:94:6f:e1:f6:a7:95:10:ae:da:b6:9f:6c: d8:39:37:54:57:a1:fc:9b:e2:83:38:64:48:5a:5a: 61:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:7A:52:62:78:A4:D2:D6:75:71:04:C8:36:0C:D8:37:1B:B0:68:C2 X509v3 Authority Key Identifier: keyid:0C:EF:89:05:DD:65:E9:1E:50:6B:3B:39:9C:20:A2:22:8A:E4:FD:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DO-JBd1l6R5Qazs5nCCiIork_T8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:76:91:3c:68:60:37:a7:b5:df:4b:00:8d:ab:52:80:da:70: b3:aa:38:1d:48:74:b6:de:d2:41:e2:92:75:98:a9:59:55:02: 7d:0f:e9:ac:11:f6:bf:10:e0:c2:cc:f2:fc:36:fc:35:5f:48: 12:ed:17:1e:86:50:c9:ed:f3:fc:58:66:1e:71:da:9f:90:b2: 0c:86:cc:d8:8c:27:15:22:2e:d1:7c:c4:f0:6b:54:ac:a3:c8: 25:6d:f5:ed:de:ce:47:6a:85:9b:68:60:f3:3e:e7:96:69:b9: 18:cc:9b:68:14:42:ff:9f:a0:01:fe:71:3e:fa:23:a8:a8:a8: b2:54:87:1e:af:bc:27:11:48:89:c8:d2:bf:86:3e:da:73:f6: bc:66:82:15:64:c1:4f:2a:f6:7b:93:2a:c8:24:26:80:a4:2e: 7d:d9:f8:6a:26:07:ad:ad:b8:d6:6d:23:40:50:73:6f:db:4f: de:cf:7d:c0:bf:f2:eb:30:cc:f8:cc:11:81:30:18:a5:45:20: 39:90:da:ea:b5:01:ed:76:73:a5:2b:92:52:10:d4:aa:a3:24: 3b:c1:67:74:59:74:ef:24:d8:96:4d:6f:35:76:44:8d:de:ac: db:1a:2d:cf:30:33:78:04:24:cb:9d:0a:ae:d1:58:05:dd:0a: fe:2c:01:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCXowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI0MjExMTAvBgNVBAUTKDBDRUY4OTA1REQ2NUU5MUU1MDZCM0IzOTlDMjBBMjIy OEFFNEZEM0YwHhcNMjUxMTAyMjAwMzM3WhcNMjUxMTA5MjAwMzM3WjAYMRYwFAYD VQQDEw02OTA3YjkxOS03NzZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAysPOW4tOEqJU3j3OiHkaRiEtCuQI7ORfR6Vb9vO6qAgnFyO2GC8+/Thy8i/o jCZd2CzUF4YQKxKq30VHFYdvGr0rUB/ysKTfMSXcm9ZI67xPVLpnmYYtuP9GRIch XhggMeJxYl8sCihgtFNYPcMZp9N77AsA+5c30WhiZbrQAdJUSS8GLbIOfSTezf1q YYwE4Sy3+tPy7nguggWVc9v4ASqyCf/jdGFysR3cRLz6P6dE/B8eaVhpkmFK5xg9 E1YNspa2i2L2o0bpAkCm6TceCqWLBcJWrMRiC8146aI4cA56GPiUb+H2p5UQrtq2 n2zYOTdUV6H8m+KDOGRIWlphoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ56UmJ4 pNLWdXEEyDYM2DcbsGjCMB8GA1UdIwQYMBaAFAzviQXdZekeUGs7OZwgoiKK5P0/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjQyMS8xMTk4MDYwQUEw QjQxMUVBOTc3MTlFMzVDNEY5QUUwMi9ETy1KQmQxbDZSNVFhenM1bkNDaUlvcmtf VDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RPLUpCZDFsNlI1UWF6czVuQ0NpSW9ya19UOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjQyMS8xMTk4MDYwQUEwQjQxMUVBOTc3MTlFMzVDNEY5QUUwMi9ETy1KQmQxbDZS NVFhenM1bkNDaUlvcmtfVDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5dpE8aGA3p7XfSwCNq1KA2nCzqjgdSHS23tJB4pJ1mKlZVQJ9D+ms Efa/EODCzPL8Nvw1X0gS7RcehlDJ7fP8WGYecdqfkLIMhszYjCcVIi7RfMTwa1Ss o8glbfXt3s5HaoWbaGDzPueWabkYzJtoFEL/n6AB/nE++iOoqKiyVIcer7wnEUiJ yNK/hj7ac/a8ZoIVZMFPKvZ7kyrIJCaApC592fhqJgetrbjWbSNAUHNv20/ez33A v/LrMMz4zBGBMBilRSA5kNrqtQHtdnOlK5JSENSqoyQ7wWd0WXTvJNiWTW81dkSN 3qzbGi3PMDN4BCTLnQqu0VgF3Qr+LAFM -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:29 2025 by rpki-client