$ rpki-client -vvf rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft File: xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft (raw, json) Hash identifier: 7XEdNnGnqaI6bKHlEr1qRyVujoJLkvRLCxZilb6l7yQ= Subject key identifier: 01:58:7C:8A:9C:06:B2:7A:2C:26:F8:21:F3:E6:DF:ED:5D:A7:31:75 Authority key identifier: C5:45:25:E9:70:5B:D6:9D:61:42:4D:BE:E7:B0:49:3F:5F:D6:F0:A4 Certificate issuer: /CN=A912D1D5/serialNumber=C54525E9705BD69D61424DBEE7B0493F5FD6F0A4 Certificate serial: 01F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xUUl6XBb1p1hQk2-57BJP1_W8KQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft Manifest number: 01EA Signing time: Sun 19 Oct 2025 05:06:41 +0000 Manifest this update: Sun 19 Oct 2025 05:06:41 +0000 Manifest next update: Sun 26 Oct 2025 05:06:41 +0000 Files and hashes: 1: xUUl6XBb1p1hQk2-57BJP1_W8KQ.crl (hash: Qi9SdvgeiHg8e2YzOc60ZdkGM6yujPaHs9g2grMUUA0=) 2: 19E19DA0E5CE11EDB697BC74C4F9AE02.roa (hash: 8oKi9g3FW28uCT296akypss1lnTC3S8VPwt27zeBIKU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.crl rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xUUl6XBb1p1hQk2-57BJP1_W8KQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:06:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 500 (0x1f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D1D5, serialNumber=C54525E9705BD69D61424DBEE7B0493F5FD6F0A4 Validity Not Before: Oct 19 05:06:41 2025 GMT Not After : Oct 26 05:06:41 2025 GMT Subject: CN=68f471e1-0f4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c3:8b:20:87:04:fb:20:22:01:32:66:f3:1d: 2d:7f:62:ed:78:3c:67:a0:dc:84:44:40:9e:b8:85: c4:fc:b0:9e:fe:52:72:a5:8f:3e:c8:62:88:43:de: ea:d2:21:70:e7:55:94:34:0a:32:f4:9b:c8:7d:66: e6:f1:8b:3e:7e:ce:af:1e:76:91:50:d0:af:62:71: 3b:61:5b:a7:24:12:c9:8f:97:26:07:99:80:77:f6: 12:e6:c9:1f:0b:02:2d:af:7f:4c:66:85:ab:20:d7: b3:25:48:a3:69:fb:6b:91:7d:bd:f4:cf:56:f8:0d: 25:32:06:16:29:56:f3:57:db:fb:0a:aa:ba:28:0a: 13:89:b0:79:6a:54:da:18:29:46:4d:62:98:c9:e9: 8e:4a:a2:08:5f:65:45:b3:84:75:79:26:31:ea:d2: dd:b1:0e:ce:d0:3e:29:15:0a:34:d0:1f:da:8e:9d: df:98:69:03:3f:ec:82:55:b3:a1:52:fc:98:11:5e: e3:c3:8f:9f:19:e8:48:80:1a:e1:f9:86:7c:fb:51: 3a:cf:e1:f3:e2:d3:68:07:e2:0e:67:53:ff:cb:2a: 31:32:8b:42:a6:5a:c8:42:24:4b:ec:26:5f:5c:af: 74:6b:b5:70:e7:22:fe:9d:a2:3f:a4:ce:5b:b8:eb: 4f:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:58:7C:8A:9C:06:B2:7A:2C:26:F8:21:F3:E6:DF:ED:5D:A7:31:75 X509v3 Authority Key Identifier: keyid:C5:45:25:E9:70:5B:D6:9D:61:42:4D:BE:E7:B0:49:3F:5F:D6:F0:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xUUl6XBb1p1hQk2-57BJP1_W8KQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:c8:df:a6:3c:56:5d:af:5b:a8:99:5a:d8:49:89:a8:9a:40: 23:a2:30:45:0b:d0:5a:d0:a9:97:73:1b:81:4f:b8:17:0c:16: d1:70:9b:ed:2c:64:d3:31:5e:9c:17:47:2c:cc:55:99:15:b7: 60:51:5f:2b:26:fe:3e:ac:c2:0d:81:87:af:d2:13:0b:04:97: db:88:1f:35:5c:a5:94:2a:e4:5f:9c:bc:84:3f:de:17:c6:8b: 23:aa:d2:e0:5b:79:96:93:10:df:73:05:02:b0:16:4e:15:43: 5e:b7:03:80:83:0c:e0:92:3c:d0:e4:d5:19:1a:14:19:f0:f7: 6d:ba:56:04:1c:cd:3f:89:a6:9e:e6:ea:37:f6:1f:49:14:db: d2:f8:aa:dd:98:75:b6:42:5f:b4:0c:ba:c6:75:3c:82:16:99: ad:12:fe:0a:3c:ad:56:88:fb:20:31:75:30:7e:0b:10:42:40: 4f:1c:6d:0d:52:21:2b:dd:84:f9:91:ad:86:9b:c6:d1:ce:86: 18:0a:b3:bd:b2:76:e6:88:5c:40:fd:c6:36:19:f4:b5:9e:73: f1:51:30:d4:27:12:91:31:b6:c5:99:0b:3c:e2:69:01:b5:a2: c1:7d:02:ee:8b:1a:9f:b8:b5:55:3a:65:b9:74:c8:4a:85:e0: 12:4c:61:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQxRDUxMTAvBgNVBAUTKEM1NDUyNUU5NzA1QkQ2OUQ2MTQyNERCRUU3QjA0OTNG NUZENkYwQTQwHhcNMjUxMDE5MDUwNjQxWhcNMjUxMDI2MDUwNjQxWjAYMRYwFAYD VQQDEw02OGY0NzFlMS0wZjRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvMOLIIcE+yAiATJm8x0tf2LteDxnoNyERECeuIXE/LCe/lJypY8+yGKIQ97q 0iFw51WUNAoy9JvIfWbm8Ys+fs6vHnaRUNCvYnE7YVunJBLJj5cmB5mAd/YS5skf CwItr39MZoWrINezJUijaftrkX299M9W+A0lMgYWKVbzV9v7Cqq6KAoTibB5alTa GClGTWKYyemOSqIIX2VFs4R1eSYx6tLdsQ7O0D4pFQo00B/ajp3fmGkDP+yCVbOh UvyYEV7jw4+fGehIgBrh+YZ8+1E6z+Hz4tNoB+IOZ1P/yyoxMotCplrIQiRL7CZf XK90a7Vw5yL+naI/pM5buOtPJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAFYfIqc BrJ6LCb4IfPm3+1dpzF1MB8GA1UdIwQYMBaAFMVFJelwW9adYUJNvuewST9f1vCk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDFENS8zNDMzNjFFRUND OEMxMUVEQTRDMUExNDNDNEY5QUUwMi94VVVsNlhCYjFwMWhRazItNTdCSlAxX1c4 S1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hVVWw2WEJiMXAxaFFrMi01N0JKUDFfVzhLUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDFENS8zNDMzNjFFRUNDOEMxMUVEQTRDMUExNDNDNEY5QUUwMi94VVVsNlhCYjFw MWhRazItNTdCSlAxX1c4S1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfyN+mPFZdr1uomVrYSYmomkAjojBFC9Ba0KmXcxuBT7gXDBbRcJvt LGTTMV6cF0cszFWZFbdgUV8rJv4+rMINgYev0hMLBJfbiB81XKWUKuRfnLyEP94X xosjqtLgW3mWkxDfcwUCsBZOFUNetwOAgwzgkjzQ5NUZGhQZ8PdtulYEHM0/iaae 5uo39h9JFNvS+KrdmHW2Ql+0DLrGdTyCFpmtEv4KPK1WiPsgMXUwfgsQQkBPHG0N UiEr3YT5ka2Gm8bRzoYYCrO9snbmiFxA/cY2GfS1nnPxUTDUJxKRMbbFmQs84mkB taLBfQLuixqfuLVVOmW5dMhKheASTGED -----END CERTIFICATE-----Generated at Mon Oct 20 09:37:47 2025 by rpki-client