$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8161/670612B0FA6411E7A4C2693EC4F9AE02/DwvO4VrbbVfQLNBLRSI6uAZqVF0.mft File: DwvO4VrbbVfQLNBLRSI6uAZqVF0.mft (raw, json) Hash identifier: 2gd4rHJofw0vyLaOvEZiKOObTQirmz4yUZtqhZ2oygw= Subject key identifier: E3:B3:CB:77:20:80:54:C3:A0:7A:23:82:49:79:2F:B0:15:C4:87:09 Authority key identifier: 0F:0B:CE:E1:5A:DB:6D:57:D0:2C:D0:4B:45:22:3A:B8:06:6A:54:5D Certificate issuer: /CN=A91E8161/serialNumber=0F0BCEE15ADB6D57D02CD04B45223AB8066A545D Certificate serial: 1712 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DwvO4VrbbVfQLNBLRSI6uAZqVF0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8161/670612B0FA6411E7A4C2693EC4F9AE02/DwvO4VrbbVfQLNBLRSI6uAZqVF0.mft Manifest number: 1702 Signing time: Tue 28 Oct 2025 16:35:49 +0000 Manifest this update: Tue 28 Oct 2025 16:35:48 +0000 Manifest next update: Tue 04 Nov 2025 16:35:48 +0000 Files and hashes: 1: DwvO4VrbbVfQLNBLRSI6uAZqVF0.crl (hash: 2W8bDd8FMaHYQnXq9wwrpn7jJMDet7n4Qbh8pyz24Fc=) 2: C109FFF4FC0511E7BAFB3E48C4F9AE02.roa (hash: h+OprAj4V1ZkpAEr5nFzxG5bkNU3flbAc659nqXKwps=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8161/670612B0FA6411E7A4C2693EC4F9AE02/DwvO4VrbbVfQLNBLRSI6uAZqVF0.crl rsync://rpki.apnic.net/member_repository/A91E8161/670612B0FA6411E7A4C2693EC4F9AE02/DwvO4VrbbVfQLNBLRSI6uAZqVF0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DwvO4VrbbVfQLNBLRSI6uAZqVF0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Nov 2025 16:35:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5906 (0x1712) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8161, serialNumber=0F0BCEE15ADB6D57D02CD04B45223AB8066A545D Validity Not Before: Oct 28 16:35:48 2025 GMT Not After : Nov 4 16:35:48 2025 GMT Subject: CN=6900f0e5-fc62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:7f:62:c8:c2:3f:16:b7:1c:3e:c8:e1:0a:10: d9:59:1f:68:f3:18:85:b4:52:91:da:d8:8b:4d:b8: f0:31:1c:64:8c:e2:2b:bc:00:74:41:ce:1b:d4:6a: 3c:1f:dd:32:63:1f:69:8c:da:f5:94:56:16:09:08: 97:b1:3e:7e:35:11:b2:06:3c:66:0f:6c:5f:16:dd: dd:83:ce:d6:22:b4:2c:72:a8:90:ce:9e:54:a1:1f: cb:29:43:d0:91:b9:cd:67:ab:7c:a5:21:f9:67:02: 00:27:bb:1f:44:68:a7:a8:eb:fb:64:5e:18:59:86: 30:5a:30:a1:d3:b3:aa:dc:77:cb:3a:48:03:84:ad: 02:ae:d5:9a:53:48:1a:3d:a5:99:1e:e0:75:d6:55: 1f:26:91:d3:66:d3:68:cf:5c:45:9e:d4:1e:65:32: 0b:1a:ae:9f:0c:81:fe:89:7d:e9:74:a7:0f:1d:e8: 62:67:bd:5f:d6:50:7f:1c:5f:a1:5d:3a:0f:74:d0: 0e:7c:33:81:9e:75:c9:c3:f5:b7:90:30:b7:cd:8e: 81:b8:01:db:3a:d9:2d:ed:09:52:95:cb:f6:4b:21: e9:9f:32:89:92:79:8a:c0:7c:11:b7:2b:ec:28:7e: 56:1b:b2:11:93:e6:1d:56:fb:bb:d5:ae:b6:63:29: 9a:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:B3:CB:77:20:80:54:C3:A0:7A:23:82:49:79:2F:B0:15:C4:87:09 X509v3 Authority Key Identifier: keyid:0F:0B:CE:E1:5A:DB:6D:57:D0:2C:D0:4B:45:22:3A:B8:06:6A:54:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8161/670612B0FA6411E7A4C2693EC4F9AE02/DwvO4VrbbVfQLNBLRSI6uAZqVF0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DwvO4VrbbVfQLNBLRSI6uAZqVF0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8161/670612B0FA6411E7A4C2693EC4F9AE02/DwvO4VrbbVfQLNBLRSI6uAZqVF0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:b7:2d:ba:73:a7:bc:44:12:6d:55:dc:4d:62:1f:b8:92:13: 49:8c:1a:60:13:45:af:64:10:72:b0:d9:15:fd:d9:f3:9b:92: 94:ab:62:f9:bb:3e:64:e0:67:13:be:cb:f6:a3:0b:88:dd:a2: a9:95:64:71:c3:67:7c:96:f1:b0:dd:37:d4:06:b8:8f:28:b5: 75:da:40:ef:d7:45:89:56:0e:53:3c:05:b0:f4:2e:46:26:db: f7:f1:39:12:9c:46:bb:f7:ad:ae:c8:44:a2:ae:30:57:97:ff: ab:19:45:e2:c2:86:db:ca:4d:c5:cf:5a:e2:e4:98:6b:b2:37: 54:8b:53:7d:12:d9:91:2f:94:b3:70:95:6c:d1:1a:43:5f:46: b0:2a:89:21:e9:79:50:d1:13:a5:0b:ad:76:65:f6:31:a3:b3: 02:ed:e1:99:00:5c:ac:16:be:cb:17:77:7b:43:28:a0:be:1d: 80:90:5a:1f:af:f0:3e:01:ed:33:c8:03:19:cc:1d:a3:a1:d6: 8d:0b:34:03:c1:29:0c:5d:07:f3:1d:fa:b9:a4:bf:24:7d:54: 5c:ff:80:77:b1:79:01:1e:15:0e:a5:b1:9c:69:cb:21:58:73: 74:55:6a:cb:16:8d:d3:ae:b0:5f:02:f5:d8:54:d3:ad:11:93: 6c:44:d4:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFxIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTgxNjExMTAvBgNVBAUTKDBGMEJDRUUxNUFEQjZENTdEMDJDRDA0QjQ1MjIzQUI4 MDY2QTU0NUQwHhcNMjUxMDI4MTYzNTQ4WhcNMjUxMTA0MTYzNTQ4WjAYMRYwFAYD VQQDEw02OTAwZjBlNS1mYzYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1n9iyMI/FrccPsjhChDZWR9o8xiFtFKR2tiLTbjwMRxkjOIrvAB0Qc4b1Go8 H90yYx9pjNr1lFYWCQiXsT5+NRGyBjxmD2xfFt3dg87WIrQscqiQzp5UoR/LKUPQ kbnNZ6t8pSH5ZwIAJ7sfRGinqOv7ZF4YWYYwWjCh07Oq3HfLOkgDhK0CrtWaU0ga PaWZHuB11lUfJpHTZtNoz1xFntQeZTILGq6fDIH+iX3pdKcPHehiZ71f1lB/HF+h XToPdNAOfDOBnnXJw/W3kDC3zY6BuAHbOtkt7QlSlcv2SyHpnzKJknmKwHwRtyvs KH5WG7IRk+YdVvu71a62YymacwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOOzy3cg gFTDoHojgkl5L7AVxIcJMB8GA1UdIwQYMBaAFA8LzuFa221X0CzQS0UiOrgGalRd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODE2MS82NzA2MTJCMEZB NjQxMUU3QTRDMjY5M0VDNEY5QUUwMi9Ed3ZPNFZyYmJWZlFMTkJMUlNJNnVBWnFW RjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0R3dk80VnJiYlZmUUxOQkxSU0k2dUFacVZGMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODE2MS82NzA2MTJCMEZBNjQxMUU3QTRDMjY5M0VDNEY5QUUwMi9Ed3ZPNFZyYmJW ZlFMTkJMUlNJNnVBWnFWRjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmty26c6e8RBJtVdxNYh+4khNJjBpgE0WvZBBysNkV/dnzm5KUq2L5 uz5k4GcTvsv2owuI3aKplWRxw2d8lvGw3TfUBriPKLV12kDv10WJVg5TPAWw9C5G Jtv38TkSnEa7962uyESirjBXl/+rGUXiwobbyk3Fz1ri5JhrsjdUi1N9EtmRL5Sz cJVs0RpDX0awKokh6XlQ0ROlC612ZfYxo7MC7eGZAFysFr7LF3d7Qyigvh2AkFof r/A+Ae0zyAMZzB2jodaNCzQDwSkMXQfzHfq5pL8kfVRc/4B3sXkBHhUOpbGcacsh WHN0VWrLFo3TrrBfAvXYVNOtEZNsRNTQ -----END CERTIFICATE-----Generated at Tue Oct 28 20:19:06 2025 by rpki-client