$ rpki-client -vvf rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.mft File: lUWdXR6wQJX9Fj8NhNHzpGwV5PA.mft (raw, json) Hash identifier: D6eH1rpPrK0UTgZ1h/hFb6xXuEJyf+yoQxcOnqdkbgM= Subject key identifier: 54:84:77:2C:43:D7:98:A1:7C:DA:4A:06:A0:60:59:F6:8B:B5:60:EC Authority key identifier: 95:45:9D:5D:1E:B0:40:95:FD:16:3F:0D:84:D1:F3:A4:6C:15:E4:F0 Certificate issuer: /CN=A9118749/serialNumber=95459D5D1EB04095FD163F0D84D1F3A46C15E4F0 Certificate serial: 95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.mft Manifest number: 90 Signing time: Sun 19 Oct 2025 09:51:26 +0000 Manifest this update: Sun 19 Oct 2025 09:51:26 +0000 Manifest next update: Sun 26 Oct 2025 09:51:26 +0000 Files and hashes: 1: lUWdXR6wQJX9Fj8NhNHzpGwV5PA.crl (hash: PhOHwMIlco6n46KhYYqrstWBosvgJCpJzLIt6hun53E=) 2: 0D9D8C8CDC2311EFAEB2F679C4F9AE02.roa (hash: 03QUr5ZAl3/ykq0wAZ+dvJyS4Q+1vw+rUu54WRSVzn8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.crl rsync://rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:51:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 149 (0x95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118749, serialNumber=95459D5D1EB04095FD163F0D84D1F3A46C15E4F0 Validity Not Before: Oct 19 09:51:26 2025 GMT Not After : Oct 26 09:51:26 2025 GMT Subject: CN=68f4b49e-4279 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:d8:a1:83:58:17:c8:0e:69:ba:cc:7c:b0:5a: f7:9e:95:93:1c:2e:a2:eb:5d:5b:ed:f3:2d:38:e8: 32:1a:3f:5c:be:28:16:b7:2f:cf:be:0e:2e:7d:fd: b0:d9:e7:1f:74:16:6b:1a:1c:c0:14:0b:3d:7f:42: 90:ef:27:af:7e:11:15:66:5c:59:e6:95:1d:07:85: 33:35:86:80:c2:8e:3b:a6:c8:8a:37:3c:dc:be:51: 69:f3:99:10:7f:9a:42:c7:31:0a:85:a5:90:09:0a: 16:ad:ac:bd:9c:45:35:d4:7e:42:bb:fd:16:05:4b: d4:d3:ce:73:92:97:34:d0:df:43:bf:ca:2b:5f:01: 5c:11:98:c0:74:e2:90:2c:63:cb:ff:46:45:35:78: ad:68:b5:0e:90:95:d1:65:34:1e:a6:a1:c1:26:4a: ef:09:84:bd:f5:69:f8:31:ca:62:5f:fd:e4:be:09: 78:e0:34:5a:d5:92:4a:9e:19:b5:e0:18:5a:eb:4a: da:8f:88:7c:74:b7:73:81:71:74:fa:d5:61:49:93: 94:9a:65:f7:d9:6f:89:30:5a:89:26:b5:5b:ce:df: 93:42:58:34:53:46:7d:1a:f2:16:bd:e5:e7:e6:20: 7f:50:65:6e:6f:ba:35:1c:30:61:ae:39:a2:4f:7e: 87:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:84:77:2C:43:D7:98:A1:7C:DA:4A:06:A0:60:59:F6:8B:B5:60:EC X509v3 Authority Key Identifier: keyid:95:45:9D:5D:1E:B0:40:95:FD:16:3F:0D:84:D1:F3:A4:6C:15:E4:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:3b:d4:c2:02:80:74:89:3b:49:96:99:0d:51:4f:dc:36:0d: 1c:58:39:d1:fc:9f:d4:96:36:dc:64:a6:57:23:2d:f1:aa:88: dd:46:4f:5a:a6:c0:d2:b9:8d:d7:c8:0d:ff:12:bb:19:06:fd: ca:46:c5:b9:a9:7b:72:ee:71:40:22:8a:60:26:79:a9:bc:b4: c2:dc:0e:2c:2b:9c:96:1f:24:c3:15:43:e2:a3:46:3a:90:e6: cb:4c:00:16:02:a3:81:cf:c8:71:2d:03:7e:3e:60:f8:48:b6: ae:e4:d7:73:47:d8:d6:86:41:18:e4:79:82:cd:53:f1:2f:c6: e3:97:e5:6d:4e:9c:0e:db:6c:b4:70:92:0e:55:bc:12:5e:0d: 22:83:fd:3a:c4:30:f0:a8:90:50:59:b2:81:d2:ab:92:c6:9e: 66:ac:e9:9c:5d:9a:d4:3c:24:b9:f7:60:01:09:58:ff:7a:2f: 4e:e6:71:ba:dc:8f:fd:15:8e:f4:62:ac:a8:fd:53:9d:1b:de: 06:e4:ae:43:d0:41:b3:81:49:bf:68:9f:6e:9a:cf:49:2c:6a: f3:b7:9f:36:d7:22:43:4e:d5:87:f8:00:e5:df:69:b9:d1:bb: d8:67:08:40:b9:0c:54:32:a1:0b:8c:e2:8b:13:5c:44:96:7d: e7:ef:50:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg3NDkxMTAvBgNVBAUTKDk1NDU5RDVEMUVCMDQwOTVGRDE2M0YwRDg0RDFGM0E0 NkMxNUU0RjAwHhcNMjUxMDE5MDk1MTI2WhcNMjUxMDI2MDk1MTI2WjAYMRYwFAYD VQQDEw02OGY0YjQ5ZS00Mjc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzNihg1gXyA5pusx8sFr3npWTHC6i611b7fMtOOgyGj9cvigWty/Pvg4uff2w 2ecfdBZrGhzAFAs9f0KQ7yevfhEVZlxZ5pUdB4UzNYaAwo47psiKNzzcvlFp85kQ f5pCxzEKhaWQCQoWray9nEU11H5Cu/0WBUvU085zkpc00N9Dv8orXwFcEZjAdOKQ LGPL/0ZFNXitaLUOkJXRZTQepqHBJkrvCYS99Wn4McpiX/3kvgl44DRa1ZJKnhm1 4Bha60raj4h8dLdzgXF0+tVhSZOUmmX32W+JMFqJJrVbzt+TQlg0U0Z9GvIWveXn 5iB/UGVub7o1HDBhrjmiT36HNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFSEdyxD 15ihfNpKBqBgWfaLtWDsMB8GA1UdIwQYMBaAFJVFnV0esECV/RY/DYTR86RsFeTw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODc0OS9CQTU3REJBNkRD MjAxMUVGOTFCNTQwMUVDNEY5QUUwMi9sVVdkWFI2d1FKWDlGajhOaE5IenBHd1Y1 UEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xVV2RYUjZ3UUpYOUZqOE5oTkh6cEd3VjVQQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODc0OS9CQTU3REJBNkRDMjAxMUVGOTFCNTQwMUVDNEY5QUUwMi9sVVdkWFI2d1FK WDlGajhOaE5IenBHd1Y1UEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUO9TCAoB0iTtJlpkNUU/cNg0cWDnR/J/UljbcZKZXIy3xqojdRk9a psDSuY3XyA3/ErsZBv3KRsW5qXty7nFAIopgJnmpvLTC3A4sK5yWHyTDFUPio0Y6 kObLTAAWAqOBz8hxLQN+PmD4SLau5NdzR9jWhkEY5HmCzVPxL8bjl+VtTpwO22y0 cJIOVbwSXg0ig/06xDDwqJBQWbKB0quSxp5mrOmcXZrUPCS592ABCVj/ei9O5nG6 3I/9FY70Yqyo/VOdG94G5K5D0EGzgUm/aJ9ums9JLGrzt5821yJDTtWH+ADl32m5 0bvYZwhAuQxUMqELjOKLE1xEln3n71D4 -----END CERTIFICATE-----Generated at Sun Oct 19 23:23:36 2025 by rpki-client