$ rpki-client -vvf rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft File: cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft (raw, json) Hash identifier: W4jFGwvSFK1yKKp0TbZB2KGJN9fEa/omCyLjIj0yXbI= Subject key identifier: DD:31:F7:92:A2:D6:8B:24:BE:7D:DB:BA:98:5B:A1:A7:5C:F1:90:BF Authority key identifier: 71:05:37:24:46:A2:06:45:46:D9:62:9F:42:1C:37:6F:DC:EF:21:D6 Certificate issuer: /CN=A9125C31/serialNumber=7105372446A2064546D9629F421C376FDCEF21D6 Certificate serial: 0C3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cQU3JEaiBkVG2WKfQhw3b9zvIdY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft Manifest number: 0C35 Signing time: Sat 18 Oct 2025 19:27:38 +0000 Manifest this update: Sat 18 Oct 2025 19:27:38 +0000 Manifest next update: Sat 25 Oct 2025 19:27:38 +0000 Files and hashes: 1: cQU3JEaiBkVG2WKfQhw3b9zvIdY.crl (hash: OECQZdUp7ZwxCO9Oq3NLY392JKaheJkkERLqc273Vpw=) 2: 4697751815B111EA8277BA34C4F9AE02.roa (hash: dxDp9E0tHPQ++XAIde+nxMm3Ga/WWcWY96m0Hl+beDw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.crl rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cQU3JEaiBkVG2WKfQhw3b9zvIdY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:27:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3132 (0xc3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125C31, serialNumber=7105372446A2064546D9629F421C376FDCEF21D6 Validity Not Before: Oct 18 19:27:38 2025 GMT Not After : Oct 25 19:27:38 2025 GMT Subject: CN=68f3ea2a-46a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:fb:bd:b5:07:59:c2:94:9d:ef:d8:ce:eb:78: 9d:bb:71:3e:1a:01:fd:ca:b9:61:6f:52:db:17:2d: d3:37:aa:11:3b:6b:d2:78:89:77:cc:df:b0:43:af: e7:44:fd:05:5b:7b:12:30:41:5c:a2:33:d7:2d:d7: f8:70:c5:01:22:da:ed:ac:c1:ea:0b:8d:ba:b3:e6: 42:6a:b1:0e:a6:de:48:76:3f:f9:98:3e:22:8e:29: 55:e0:a3:1a:52:04:69:12:a1:12:a7:e2:82:f9:c9: bc:b7:35:17:f3:70:a8:38:21:9f:88:14:40:6e:4f: 6d:e0:41:68:bb:32:05:18:bf:03:be:a8:24:cb:96: 0e:9c:ea:d7:e7:f8:1e:aa:d0:88:17:93:5a:e5:49: d5:0c:a4:52:9f:5e:69:c4:46:54:45:d0:d2:16:0f: 16:04:7d:2c:58:2a:c5:cd:c0:27:51:6d:c5:62:b7: 57:9c:da:b7:fb:ed:26:a1:21:cb:c0:59:31:9f:b9: d8:23:2b:f9:fb:84:85:15:1c:6e:51:af:ce:e5:e9: db:0d:99:7d:e1:ce:c4:93:94:f3:cd:10:da:5d:58: 97:8f:8b:71:83:41:94:56:e9:b5:c7:03:5a:11:7b: 97:22:f3:cc:25:44:a3:e5:ec:61:e4:2a:3f:9a:f8: 2d:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:31:F7:92:A2:D6:8B:24:BE:7D:DB:BA:98:5B:A1:A7:5C:F1:90:BF X509v3 Authority Key Identifier: keyid:71:05:37:24:46:A2:06:45:46:D9:62:9F:42:1C:37:6F:DC:EF:21:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cQU3JEaiBkVG2WKfQhw3b9zvIdY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:dd:b9:e5:19:b9:98:5a:2f:8d:23:42:31:9e:2d:97:27:3d: 5c:ba:56:3f:dc:4c:ec:85:0e:2b:03:ae:2c:25:98:51:1b:12: ba:9b:a6:da:7c:17:50:89:66:ab:88:47:e2:1f:55:5e:e4:1a: c0:c4:23:76:6a:e7:23:06:4c:94:37:f8:5d:10:f0:0b:69:72: 80:17:27:bb:7c:f5:8a:48:70:4e:b5:7c:45:68:ac:0e:66:aa: 75:f1:9a:0c:3e:24:22:ec:36:04:52:45:45:46:6a:f1:89:b9: 9a:06:84:32:f7:85:fd:af:7e:47:98:d1:cd:e2:c0:2d:5d:80: 62:c8:9e:65:dd:d0:a3:ec:b9:f5:3b:64:b1:4c:bb:f8:50:39: 84:ca:c6:99:25:5d:ad:95:55:6f:5b:a4:25:fe:4f:38:92:29: 50:82:f7:f7:73:fd:62:0d:2e:c1:39:03:5d:ea:37:ab:77:a9: 41:d7:a2:16:0c:18:e0:c0:ea:49:db:f6:5a:49:2f:17:0b:2b: 13:83:7a:b0:9f:fa:02:d2:da:3d:ed:75:61:a0:9c:c7:44:b0: 19:19:b6:6f:ec:d1:74:23:b3:d9:a9:35:78:0a:fe:da:ae:f2: 9b:f7:c1:84:fd:52:0f:18:95:14:cc:94:c4:dc:e4:4d:01:30: a9:b2:4f:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDDwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVDMzExMTAvBgNVBAUTKDcxMDUzNzI0NDZBMjA2NDU0NkQ5NjI5RjQyMUMzNzZG RENFRjIxRDYwHhcNMjUxMDE4MTkyNzM4WhcNMjUxMDI1MTkyNzM4WjAYMRYwFAYD VQQDEw02OGYzZWEyYS00NmE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv/u9tQdZwpSd79jO63idu3E+GgH9yrlhb1LbFy3TN6oRO2vSeIl3zN+wQ6/n RP0FW3sSMEFcojPXLdf4cMUBItrtrMHqC426s+ZCarEOpt5Idj/5mD4ijilV4KMa UgRpEqESp+KC+cm8tzUX83CoOCGfiBRAbk9t4EFouzIFGL8Dvqgky5YOnOrX5/ge qtCIF5Na5UnVDKRSn15pxEZURdDSFg8WBH0sWCrFzcAnUW3FYrdXnNq3++0moSHL wFkxn7nYIyv5+4SFFRxuUa/O5enbDZl94c7Ek5TzzRDaXViXj4txg0GUVum1xwNa EXuXIvPMJUSj5exh5Co/mvgtowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN0x95Ki 1oskvn3buphboadc8ZC/MB8GA1UdIwQYMBaAFHEFNyRGogZFRtlin0IcN2/c7yHW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUMzMS8zOEJGNDA5QTE1 OTAxMUVBOUM0MTM2NTJDNEY5QUUwMi9jUVUzSkVhaUJrVkcyV0tmUWh3M2I5enZJ ZFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NRVTNKRWFpQmtWRzJXS2ZRaHczYjl6dklkWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUMzMS8zOEJGNDA5QTE1OTAxMUVBOUM0MTM2NTJDNEY5QUUwMi9jUVUzSkVhaUJr VkcyV0tmUWh3M2I5enZJZFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA53bnlGbmYWi+NI0Ixni2XJz1culY/3EzshQ4rA64sJZhRGxK6m6ba fBdQiWariEfiH1Ve5BrAxCN2aucjBkyUN/hdEPALaXKAFye7fPWKSHBOtXxFaKwO Zqp18ZoMPiQi7DYEUkVFRmrxibmaBoQy94X9r35HmNHN4sAtXYBiyJ5l3dCj7Ln1 O2SxTLv4UDmEysaZJV2tlVVvW6Ql/k84kilQgvf3c/1iDS7BOQNd6jerd6lB16IW DBjgwOpJ2/ZaSS8XCysTg3qwn/oC0to97XVhoJzHRLAZGbZv7NF0I7PZqTV4Cv7a rvKb98GE/VIPGJUUzJTE3ORNATCpsk8/ -----END CERTIFICATE-----Generated at Mon Oct 20 01:47:21 2025 by rpki-client