$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/dmH1l-po7_TJKXNjm7Z11_A5CXE.mft File: dmH1l-po7_TJKXNjm7Z11_A5CXE.mft (raw, json) Hash identifier: iU3/4zUKX5B7MeXe0beEvQ1+1zyz8z22LDiBrTYRPGI= Subject key identifier: 91:DC:AF:5C:7B:D0:64:04:0F:31:58:FD:25:C9:27:9B:0B:AE:9D:63 Authority key identifier: 76:61:F5:97:EA:68:EF:F4:C9:29:73:63:9B:B6:75:D7:F0:39:09:71 Certificate issuer: /CN=A91EA176/serialNumber=7661F597EA68EFF4C92973639BB675D7F0390971 Certificate serial: 0651 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmH1l-po7_TJKXNjm7Z11_A5CXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/dmH1l-po7_TJKXNjm7Z11_A5CXE.mft Manifest number: 0640 Signing time: Sat 25 Oct 2025 00:32:42 +0000 Manifest this update: Sat 25 Oct 2025 00:32:41 +0000 Manifest next update: Sat 01 Nov 2025 00:32:41 +0000 Files and hashes: 1: dmH1l-po7_TJKXNjm7Z11_A5CXE.crl (hash: WyRdpLG+ojkt2p11UDsfuI7U1eVrWOGnQ3A5Hj6wh5U=) 2: 10123D12E34E11ECB9CB283EC4F9AE02.roa (hash: 79HGgLT4UvpWXoWIU4dQI1xmx9s6FLe8XfJ4mBLvcew=) 3: 6595CE9CB29011EBBBF4F548C4F9AE02.roa (hash: ncmb5q9rR1siQY10NSuWDQXTtyorRNilXo5iuSRTX3w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/dmH1l-po7_TJKXNjm7Z11_A5CXE.crl rsync://rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/dmH1l-po7_TJKXNjm7Z11_A5CXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmH1l-po7_TJKXNjm7Z11_A5CXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Nov 2025 00:32:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1617 (0x651) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA176, serialNumber=7661F597EA68EFF4C92973639BB675D7F0390971 Validity Not Before: Oct 25 00:32:41 2025 GMT Not After : Nov 1 00:32:41 2025 GMT Subject: CN=68fc1aaa-b349 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:ce:b1:64:c6:1b:3e:08:4c:17:7e:27:f7:0c: f9:19:2a:71:e7:5a:b0:49:98:e0:29:a8:e3:9c:c3: 89:99:95:62:7a:43:2f:4a:96:88:31:5a:43:e0:42: ca:c8:23:a0:85:3f:55:a8:50:14:31:1d:ea:46:79: 5c:34:0f:bb:b5:ee:93:87:04:e4:4c:b5:94:f3:59: 2c:46:ed:f0:ad:fd:61:6f:ff:6f:b3:eb:2c:de:36: 89:cd:b3:5c:15:02:37:4f:47:19:8b:25:15:2c:e3: cb:99:12:4e:43:43:ce:d3:d8:82:5e:ad:4e:8c:83: d8:02:10:d1:99:fa:31:de:75:51:4b:3d:dd:15:f2: bb:97:49:e4:2d:33:86:ef:62:68:e8:0f:1a:1d:62: a3:fb:c7:31:35:86:9a:9b:d2:d1:07:cb:5a:5a:a5: a0:2b:20:b8:ca:cb:4e:36:dc:48:b7:04:2e:77:a9: 34:1a:85:75:9f:e5:bf:11:9b:d5:86:4c:4f:49:dc: 64:79:60:6e:e0:63:1d:fa:4a:c5:e5:51:1d:b3:7b: 24:f0:80:a4:d8:c9:9c:67:f1:9b:6e:90:f4:40:10: 0f:89:1e:e1:4d:8b:55:47:c0:4d:0f:12:d9:2c:ac: c6:50:3f:72:6e:2a:db:95:8c:8c:59:b5:3c:39:83: 0d:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:DC:AF:5C:7B:D0:64:04:0F:31:58:FD:25:C9:27:9B:0B:AE:9D:63 X509v3 Authority Key Identifier: keyid:76:61:F5:97:EA:68:EF:F4:C9:29:73:63:9B:B6:75:D7:F0:39:09:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/dmH1l-po7_TJKXNjm7Z11_A5CXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmH1l-po7_TJKXNjm7Z11_A5CXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/dmH1l-po7_TJKXNjm7Z11_A5CXE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:de:07:8a:e2:a1:97:7b:f6:bc:7e:ce:c8:ec:45:67:f3:ef: 0d:2b:7c:4a:e0:ac:96:04:e3:37:13:15:f9:23:61:e4:35:0b: 82:2c:cc:2a:6e:8b:a9:c1:9f:a6:59:67:cf:0f:03:2c:03:f6: a1:21:45:db:da:f5:be:b7:f6:53:c1:29:35:c3:38:fa:6e:45: 03:da:f1:ae:44:67:7c:21:c0:1f:d8:90:70:fc:67:87:66:a7: 81:67:f9:fa:b0:87:da:93:05:0f:28:a1:81:27:82:ae:84:f7: 92:43:4f:28:fc:62:7d:01:d5:59:39:f1:c4:be:51:c5:a2:9b: 71:2c:31:38:3f:76:2f:a4:01:80:7a:23:d7:80:ef:84:1c:42: a4:09:3d:d6:59:89:56:ad:3c:a9:2f:9b:2c:0f:6f:c6:fa:f6: bd:c3:56:fa:bb:9a:39:7a:40:ef:ec:e6:28:78:10:4b:c9:72: d2:63:0a:86:ce:94:d2:2e:a1:65:65:42:a5:97:ab:1e:37:2f: b4:d1:cb:41:ea:59:ae:7b:6d:2b:b4:ed:f3:fa:02:17:7b:21: c9:85:f5:26:f9:b8:50:c1:4b:a1:2e:4b:fb:e3:5c:93:08:21: ef:d1:80:1a:7e:c3:01:b1:f3:94:c3:34:e6:4f:a8:78:2a:8a: 02:39:00:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUExNzYxMTAvBgNVBAUTKDc2NjFGNTk3RUE2OEVGRjRDOTI5NzM2MzlCQjY3NUQ3 RjAzOTA5NzEwHhcNMjUxMDI1MDAzMjQxWhcNMjUxMTAxMDAzMjQxWjAYMRYwFAYD VQQDEw02OGZjMWFhYS1iMzQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArM6xZMYbPghMF34n9wz5GSpx51qwSZjgKajjnMOJmZViekMvSpaIMVpD4ELK yCOghT9VqFAUMR3qRnlcNA+7te6ThwTkTLWU81ksRu3wrf1hb/9vs+ss3jaJzbNc FQI3T0cZiyUVLOPLmRJOQ0PO09iCXq1OjIPYAhDRmfox3nVRSz3dFfK7l0nkLTOG 72Jo6A8aHWKj+8cxNYaam9LRB8taWqWgKyC4ystONtxItwQud6k0GoV1n+W/EZvV hkxPSdxkeWBu4GMd+krF5VEds3sk8ICk2MmcZ/GbbpD0QBAPiR7hTYtVR8BNDxLZ LKzGUD9ybirblYyMWbU8OYMNUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJHcr1x7 0GQEDzFY/SXJJ5sLrp1jMB8GA1UdIwQYMBaAFHZh9ZfqaO/0ySlzY5u2ddfwOQlx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTE3Ni9BREQzQUVDRUIy OEUxMUVCOTREMjE4NDdDNEY5QUUwMi9kbUgxbC1wbzdfVEpLWE5qbTdaMTFfQTVD WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RtSDFsLXBvN19USktYTmptN1oxMV9BNUNYRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTE3Ni9BREQzQUVDRUIyOEUxMUVCOTREMjE4NDdDNEY5QUUwMi9kbUgxbC1wbzdf VEpLWE5qbTdaMTFfQTVDWEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCi3geK4qGXe/a8fs7I7EVn8+8NK3xK4KyWBOM3ExX5I2HkNQuCLMwq boupwZ+mWWfPDwMsA/ahIUXb2vW+t/ZTwSk1wzj6bkUD2vGuRGd8IcAf2JBw/GeH ZqeBZ/n6sIfakwUPKKGBJ4KuhPeSQ08o/GJ9AdVZOfHEvlHFoptxLDE4P3YvpAGA eiPXgO+EHEKkCT3WWYlWrTypL5ssD2/G+va9w1b6u5o5ekDv7OYoeBBLyXLSYwqG zpTSLqFlZUKll6seNy+00ctB6lmue20rtO3z+gIXeyHJhfUm+bhQwUuhLkv741yT CCHv0YAafsMBsfOUwzTmT6h4KooCOQDz -----END CERTIFICATE-----Generated at Sat Oct 25 05:37:44 2025 by rpki-client