$ rpki-client -vvf rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.mft File: uK2NkWzZSCttpV0wfOlcB6lbL3Q.mft (raw, json) Hash identifier: pKdEJAJLJx7faMwFJvZhB2/po526ezBB0G1MJePHgFU= Subject key identifier: CD:20:98:E8:2E:99:DC:C2:F4:E0:5F:61:1F:11:0C:41:D7:1E:FB:F4 Authority key identifier: B8:AD:8D:91:6C:D9:48:2B:6D:A5:5D:30:7C:E9:5C:07:A9:5B:2F:74 Certificate issuer: /CN=A91103CF/serialNumber=B8AD8D916CD9482B6DA55D307CE95C07A95B2F74 Certificate serial: 03DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uK2NkWzZSCttpV0wfOlcB6lbL3Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.mft Manifest number: 03D2 Signing time: Sun 19 Oct 2025 02:38:34 +0000 Manifest this update: Sun 19 Oct 2025 02:38:33 +0000 Manifest next update: Sun 26 Oct 2025 02:38:33 +0000 Files and hashes: 1: uK2NkWzZSCttpV0wfOlcB6lbL3Q.crl (hash: 7XxUqAp31fx1J6zWjR0fGrwE6SmPGTaWz2cLNbWnqFA=) 2: 931A51C07F5811EE82ECE456C4F9AE02.roa (hash: WWLeH3632fyjkdTa5V1Kbc7nqGm176NLqMwGAoiNN0g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.crl rsync://rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uK2NkWzZSCttpV0wfOlcB6lbL3Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:38:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 987 (0x3db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91103CF, serialNumber=B8AD8D916CD9482B6DA55D307CE95C07A95B2F74 Validity Not Before: Oct 19 02:38:33 2025 GMT Not After : Oct 26 02:38:33 2025 GMT Subject: CN=68f44f29-35c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:34:7a:c0:e4:9e:0e:77:d7:2c:ce:81:c9:30: 01:22:cc:11:46:0d:1a:79:eb:29:8d:b5:27:dd:2c: 85:cf:c1:54:33:53:76:41:00:d5:0d:ca:18:b5:d9: 1a:8d:21:33:1a:7e:74:13:9f:1d:87:32:83:11:f4: 02:76:67:e8:82:09:96:24:93:10:17:80:bb:3e:91: a7:82:8b:87:fe:cb:ce:36:74:42:87:fc:41:d4:19: 02:aa:7c:c8:dc:ec:99:80:1e:66:01:84:5e:97:88: cf:45:92:09:88:b2:f1:ad:19:7e:da:dc:c2:fc:fd: dd:7c:6d:e6:05:04:9e:5d:72:7c:0d:33:af:a3:9c: 7c:f9:47:c2:8c:7e:fc:fa:be:4f:86:f5:18:69:d1: 06:cd:91:a0:e4:9c:1a:e6:fc:50:fb:db:66:ac:5d: 4c:e8:1e:87:ca:28:20:0b:1c:3f:5a:f5:cf:c2:64: 1b:5d:3b:d1:5b:0d:78:65:eb:fb:fe:60:e9:f1:0a: 94:36:5c:0f:bd:d8:98:87:a4:f3:34:90:01:75:a4: 41:b5:72:90:96:1f:23:f9:26:3b:c4:84:b3:2b:e2: 76:bc:bd:a6:26:4e:48:09:c7:db:f9:ae:61:66:d6: 95:07:57:8e:ce:f5:05:43:10:1a:9a:d3:f6:e3:37: 22:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:20:98:E8:2E:99:DC:C2:F4:E0:5F:61:1F:11:0C:41:D7:1E:FB:F4 X509v3 Authority Key Identifier: keyid:B8:AD:8D:91:6C:D9:48:2B:6D:A5:5D:30:7C:E9:5C:07:A9:5B:2F:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uK2NkWzZSCttpV0wfOlcB6lbL3Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:76:ea:10:49:9c:95:f2:0d:fa:d1:29:a0:9a:ba:a7:30:30: ea:9f:5a:80:58:31:f0:ba:03:ef:3f:1e:e2:e1:4d:42:cb:ce: 07:14:f6:83:9f:76:7f:84:40:49:78:f0:a3:38:05:9a:de:f3: 1b:22:d5:ca:ba:6c:74:8c:39:63:04:94:da:cc:6c:fc:b8:59: c1:f6:79:12:64:40:38:f5:3a:0b:f5:8d:71:da:bf:17:10:7e: bf:b9:0c:c6:ed:7f:79:e4:e8:63:21:bd:17:8c:83:a9:66:ed: 4e:5f:1e:75:eb:82:5f:02:7d:67:9e:ae:26:77:cf:8a:4d:59: ce:b3:1f:d6:2b:48:00:b3:0c:4b:f2:12:5e:da:3b:2b:43:65: bc:c8:f5:36:31:4a:4e:36:fb:3c:9d:ed:be:51:63:67:c6:e2: 6f:be:28:c2:d2:ee:2e:f7:9e:94:70:02:55:c6:b6:ef:a0:9a: 00:af:28:b4:21:8d:f8:2a:ed:5e:bb:64:af:ab:fa:82:d9:22: 6a:ca:7a:fd:5d:b5:fa:99:d9:83:78:f3:54:ba:61:bd:26:60: 83:45:02:45:8f:58:dd:93:07:e1:7e:8d:fb:1f:11:75:21:a6: 32:97:ed:ae:83:34:cd:58:a8:7b:a5:b0:9a:a4:82:81:d3:51: 9f:ec:06:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTAzQ0YxMTAvBgNVBAUTKEI4QUQ4RDkxNkNEOTQ4MkI2REE1NUQzMDdDRTk1QzA3 QTk1QjJGNzQwHhcNMjUxMDE5MDIzODMzWhcNMjUxMDI2MDIzODMzWjAYMRYwFAYD VQQDEw02OGY0NGYyOS0zNWM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3TR6wOSeDnfXLM6ByTABIswRRg0aeespjbUn3SyFz8FUM1N2QQDVDcoYtdka jSEzGn50E58dhzKDEfQCdmfoggmWJJMQF4C7PpGngouH/svONnRCh/xB1BkCqnzI 3OyZgB5mAYRel4jPRZIJiLLxrRl+2tzC/P3dfG3mBQSeXXJ8DTOvo5x8+UfCjH78 +r5PhvUYadEGzZGg5Jwa5vxQ+9tmrF1M6B6HyiggCxw/WvXPwmQbXTvRWw14Zev7 /mDp8QqUNlwPvdiYh6TzNJABdaRBtXKQlh8j+SY7xISzK+J2vL2mJk5ICcfb+a5h ZtaVB1eOzvUFQxAamtP24zciqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM0gmOgu mdzC9OBfYR8RDEHXHvv0MB8GA1UdIwQYMBaAFLitjZFs2UgrbaVdMHzpXAepWy90 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDNDRi8xN0Q2RTRDMkE2 OEExMUVDQTlBNjM1NTFDNEY5QUUwMi91SzJOa1d6WlNDdHRwVjB3Zk9sY0I2bGJM M1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VLMk5rV3paU0N0dHBWMHdmT2xjQjZsYkwzUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDNDRi8xN0Q2RTRDMkE2OEExMUVDQTlBNjM1NTFDNEY5QUUwMi91SzJOa1d6WlND dHRwVjB3Zk9sY0I2bGJMM1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBduoQSZyV8g360SmgmrqnMDDqn1qAWDHwugPvPx7i4U1Cy84HFPaD n3Z/hEBJePCjOAWa3vMbItXKumx0jDljBJTazGz8uFnB9nkSZEA49ToL9Y1x2r8X EH6/uQzG7X955OhjIb0XjIOpZu1OXx5164JfAn1nnq4md8+KTVnOsx/WK0gAswxL 8hJe2jsrQ2W8yPU2MUpONvs8ne2+UWNnxuJvvijC0u4u956UcAJVxrbvoJoAryi0 IY34Ku1eu2Svq/qC2SJqynr9XbX6mdmDePNUumG9JmCDRQJFj1jdkwfhfo37HxF1 IaYyl+2ugzTNWKh7pbCapIKB01Gf7AaZ -----END CERTIFICATE-----Generated at Mon Oct 20 16:13:19 2025 by rpki-client