$ rpki-client -vvf rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.mft File: U2uRsXtuG7FjjINYoPpepdDr77c.mft (raw, json) Hash identifier: yUCgaQT7tu9rMv/xMJ+KgGYCHfJh7sa5LxI/dXMXMmU= Subject key identifier: 66:B8:9D:D3:FC:8A:1A:90:4D:23:63:61:5B:89:11:7A:74:9E:12:28 Authority key identifier: 53:6B:91:B1:7B:6E:1B:B1:63:8C:83:58:A0:FA:5E:A5:D0:EB:EF:B7 Certificate issuer: /CN=A9125C3D/serialNumber=536B91B17B6E1BB1638C8358A0FA5EA5D0EBEFB7 Certificate serial: 01CA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U2uRsXtuG7FjjINYoPpepdDr77c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.mft Manifest number: 01C6 Signing time: Sun 19 Oct 2025 02:38:07 +0000 Manifest this update: Sun 19 Oct 2025 02:38:07 +0000 Manifest next update: Sun 26 Oct 2025 02:38:07 +0000 Files and hashes: 1: U2uRsXtuG7FjjINYoPpepdDr77c.crl (hash: KCvN9qzslxZGG5qdhy2kVBjOboMuDatZWNTZLL0WivE=) 2: 234074FA00DD11EE95AF6F7CC4F9AE02.roa (hash: QkSv3Gc4gFnkTdv0FIFvYm4Nr0fb1nmO7PWxNtFWscE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.crl rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U2uRsXtuG7FjjINYoPpepdDr77c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:38:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 458 (0x1ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125C3D, serialNumber=536B91B17B6E1BB1638C8358A0FA5EA5D0EBEFB7 Validity Not Before: Oct 19 02:38:07 2025 GMT Not After : Oct 26 02:38:07 2025 GMT Subject: CN=68f44f0f-ed20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:51:3c:87:0c:02:26:ee:20:3c:7a:52:d5:28: 42:b5:55:21:5a:32:a8:b4:35:ed:d5:99:45:1e:84: 31:13:91:71:a5:b0:79:63:90:6a:c3:11:29:2d:24: 7a:58:4e:ad:67:2e:64:77:17:e7:a6:0b:81:9c:b6: f4:99:cf:9c:a2:a8:05:7f:b2:e7:24:c6:ab:c8:21: 2a:dc:c3:4a:50:d4:e1:65:bd:5f:39:db:51:2d:d8: 53:0f:7c:04:ac:51:da:18:18:4c:ab:a3:1e:10:cf: f3:0f:e8:79:2f:1b:5a:58:e5:b4:2b:24:fe:7a:09: d2:66:d3:9c:b3:2b:af:35:60:78:53:32:6a:c7:47: 2c:0f:e7:4e:9d:2f:f5:8f:a1:ae:9c:1b:29:5f:ed: 39:2b:ce:28:2f:08:2a:ca:7e:8b:30:19:29:0d:ac: 20:90:3f:f9:5c:7f:cf:c2:34:aa:69:d3:ce:ca:de: 10:e0:f4:d8:54:cd:ca:9d:c9:18:72:7c:ba:82:f2: 7b:15:5f:a6:c1:4b:ad:91:5c:1c:04:f3:4c:c2:15: 0f:cc:05:f8:57:60:26:f1:01:f0:16:50:9a:30:e2: 81:5f:56:32:2d:2c:e9:31:bf:fe:fc:38:c7:e7:4a: b3:e8:b3:71:7e:e8:f3:43:d1:e6:eb:9a:5a:e7:f5: 93:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:B8:9D:D3:FC:8A:1A:90:4D:23:63:61:5B:89:11:7A:74:9E:12:28 X509v3 Authority Key Identifier: keyid:53:6B:91:B1:7B:6E:1B:B1:63:8C:83:58:A0:FA:5E:A5:D0:EB:EF:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U2uRsXtuG7FjjINYoPpepdDr77c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:7e:0b:75:4b:83:ec:97:f6:de:35:af:a8:10:5e:ef:ef:3d: 9d:fc:7b:61:1d:36:f8:81:7a:42:f1:1e:03:18:45:a3:b0:84: fa:44:93:6f:6a:3b:4c:df:c5:49:55:63:08:d3:65:c8:3c:50: 23:6c:d0:24:c6:9d:d1:7c:c7:a0:31:68:39:f7:16:a0:af:dd: 63:05:96:df:eb:26:8a:09:f4:fe:7d:81:3a:26:16:da:c2:8d: 9c:c4:16:3a:13:eb:85:49:6c:52:2d:b7:2d:4d:0f:78:67:bc: d2:43:b3:31:ec:3a:44:52:0b:f8:94:fb:90:35:90:5c:d1:13: 4a:91:60:87:62:10:53:95:b3:ff:78:e2:66:d5:03:eb:5e:f9: 5f:c6:91:50:70:e8:e0:8a:d1:91:ec:ee:cc:6c:48:3e:d1:01: 46:1e:20:7e:d6:7b:c1:6a:f8:fc:5f:ca:1c:b9:48:8d:65:2b: 95:12:5c:d6:57:c6:2f:41:39:7d:3f:86:f3:c1:8b:34:78:fe: 63:08:d9:65:f9:ab:8e:f4:63:ca:01:1b:de:d4:86:6e:67:6e: 59:c6:c1:f0:e6:23:08:73:0f:93:32:da:5f:67:2e:b1:e8:76: f2:c7:28:3f:9f:01:c0:22:98:2c:b0:9b:be:09:65:c0:1d:a4: c6:1a:31:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVDM0QxMTAvBgNVBAUTKDUzNkI5MUIxN0I2RTFCQjE2MzhDODM1OEEwRkE1RUE1 RDBFQkVGQjcwHhcNMjUxMDE5MDIzODA3WhcNMjUxMDI2MDIzODA3WjAYMRYwFAYD VQQDEw02OGY0NGYwZi1lZDIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAulE8hwwCJu4gPHpS1ShCtVUhWjKotDXt1ZlFHoQxE5FxpbB5Y5BqwxEpLSR6 WE6tZy5kdxfnpguBnLb0mc+coqgFf7LnJMaryCEq3MNKUNThZb1fOdtRLdhTD3wE rFHaGBhMq6MeEM/zD+h5LxtaWOW0KyT+egnSZtOcsyuvNWB4UzJqx0csD+dOnS/1 j6GunBspX+05K84oLwgqyn6LMBkpDawgkD/5XH/PwjSqadPOyt4Q4PTYVM3KnckY cny6gvJ7FV+mwUutkVwcBPNMwhUPzAX4V2Am8QHwFlCaMOKBX1YyLSzpMb/+/DjH 50qz6LNxfujzQ9Hm65pa5/WTDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGa4ndP8 ihqQTSNjYVuJEXp0nhIoMB8GA1UdIwQYMBaAFFNrkbF7bhuxY4yDWKD6XqXQ6++3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUMzRC8yMzIzRkQ4MDAw RDcxMUVFOTNDQjBGN0VDNEY5QUUwMi9VMnVSc1h0dUc3RmpqSU5Zb1BwZXBkRHI3 N2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1UydVJzWHR1RzdGampJTllvUHBlcGREcjc3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUMzRC8yMzIzRkQ4MDAwRDcxMUVFOTNDQjBGN0VDNEY5QUUwMi9VMnVSc1h0dUc3 RmpqSU5Zb1BwZXBkRHI3N2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARfgt1S4Psl/beNa+oEF7v7z2d/HthHTb4gXpC8R4DGEWjsIT6RJNv ajtM38VJVWMI02XIPFAjbNAkxp3RfMegMWg59xagr91jBZbf6yaKCfT+fYE6Jhba wo2cxBY6E+uFSWxSLbctTQ94Z7zSQ7Mx7DpEUgv4lPuQNZBc0RNKkWCHYhBTlbP/ eOJm1QPrXvlfxpFQcOjgitGR7O7MbEg+0QFGHiB+1nvBavj8X8ocuUiNZSuVElzW V8YvQTl9P4bzwYs0eP5jCNll+auO9GPKARve1IZuZ25ZxsHw5iMIcw+TMtpfZy6x 6Hbyxyg/nwHAIpgssJu+CWXAHaTGGjGm -----END CERTIFICATE-----Generated at Tue Oct 21 02:25:58 2025 by rpki-client