$ rpki-client -vvf rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.mft File: U2i4yNaWPq2DmQWkhvU8RLBBpe8.mft (raw, json) Hash identifier: u2tn5/j4ySWGF7QK8GLaL98MIH3OjAly9GWy2uJtlrs= Subject key identifier: 90:EB:A9:21:B4:FF:B2:45:63:C8:70:98:A2:E8:D6:F4:11:2B:4C:AE Authority key identifier: 53:68:B8:C8:D6:96:3E:AD:83:99:05:A4:86:F5:3C:44:B0:41:A5:EF Certificate issuer: /CN=A9130837/serialNumber=5368B8C8D6963EAD839905A486F53C44B041A5EF Certificate serial: 04F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2i4yNaWPq2DmQWkhvU8RLBBpe8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.mft Manifest number: 04E9 Signing time: Sun 19 Oct 2025 01:32:41 +0000 Manifest this update: Sun 19 Oct 2025 01:32:41 +0000 Manifest next update: Sun 26 Oct 2025 01:32:41 +0000 Files and hashes: 1: U2i4yNaWPq2DmQWkhvU8RLBBpe8.crl (hash: DNV93Mx9KZpEZ7Ue9TaErxy4rsnNNr1zBU/P2bRz7bE=) 2: 1C032F5A36E711EC9581EC54C4F9AE02.roa (hash: zuaM96z3jhp+fAEf2SKv65O5x2n5mX1/wYZc1QfKJIE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.crl rsync://rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2i4yNaWPq2DmQWkhvU8RLBBpe8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:32:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1264 (0x4f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130837, serialNumber=5368B8C8D6963EAD839905A486F53C44B041A5EF Validity Not Before: Oct 19 01:32:41 2025 GMT Not After : Oct 26 01:32:41 2025 GMT Subject: CN=68f43fb9-764a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b0:d9:c4:13:32:7a:76:3f:04:d2:12:ce:f1: ae:f8:0c:f1:5f:8d:e6:24:06:1c:4a:71:2e:a1:07: 97:88:8f:dd:06:4f:a1:7f:3c:3c:5c:f9:ae:5e:b5: f5:37:58:e2:5c:e5:e4:3c:2f:93:a0:67:36:5f:ca: 2b:8c:c0:2b:ba:d6:27:bf:3b:ef:9a:38:13:c3:34: f3:3a:45:1c:b5:c2:1c:7a:f1:fa:6a:50:e7:bc:ea: 54:42:8e:08:c0:24:bf:21:79:2f:e2:4d:47:02:a7: 05:91:10:c2:4e:5b:1d:f3:44:7d:e6:8e:b0:f5:65: 96:61:e8:40:d5:42:2c:71:dd:3e:7b:1d:d3:dc:4e: 7f:62:5f:36:61:a5:91:e1:85:bb:0d:ce:96:fd:b3: a0:63:ab:bd:b7:f2:ce:00:c4:2a:c8:1d:a4:80:45: fa:ad:38:bd:cd:73:4b:c9:6c:b1:09:29:2b:c0:ca: 92:b6:c9:d0:07:92:cf:0f:a0:c2:cd:83:3d:f5:d2: e0:f1:07:12:7e:16:b0:16:d2:39:80:4c:c2:d5:38: 2f:3a:62:a0:94:aa:6d:af:12:f8:5e:06:cf:11:0d: b8:79:7b:1f:af:91:e0:69:fa:c2:2f:6f:20:45:4a: ba:7d:59:cc:3f:2d:b2:e4:c1:bd:27:96:1a:33:9e: 94:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:EB:A9:21:B4:FF:B2:45:63:C8:70:98:A2:E8:D6:F4:11:2B:4C:AE X509v3 Authority Key Identifier: keyid:53:68:B8:C8:D6:96:3E:AD:83:99:05:A4:86:F5:3C:44:B0:41:A5:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2i4yNaWPq2DmQWkhvU8RLBBpe8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c8:13:b9:61:4b:13:4b:83:59:fb:8a:2b:05:af:60:4f:a0:8f: 75:e1:00:ae:5d:35:6e:02:a8:24:53:87:e9:11:a0:42:2f:e8: 75:7b:54:af:50:da:01:20:ac:8d:94:64:7e:38:09:7f:5c:38: 58:0f:07:f3:b0:87:06:fe:96:5f:a0:73:28:da:af:70:4e:5b: 07:99:11:62:5c:04:c4:15:f6:cc:c4:a2:59:44:09:86:4a:0d: f9:9b:fd:ca:37:44:76:e2:89:5d:ef:64:54:f5:83:d4:a9:d8: 6d:03:36:b2:27:9f:ad:b1:1f:6e:aa:34:ec:bf:fd:70:44:cf: 83:30:7e:b1:2e:85:bf:ab:4c:89:a0:a2:69:97:d5:b9:36:4a: d7:eb:b9:66:4c:af:f5:a9:2a:97:d4:f7:3b:ae:e5:90:9e:f5: f5:d9:49:b2:2f:5e:c9:e4:52:30:bc:65:93:fc:bf:ca:4e:dc: 0e:b4:33:fa:92:2a:95:8e:6c:73:66:ff:2d:9b:ce:66:3c:a9: f2:81:7e:c4:c7:a2:02:04:7a:82:66:fb:e1:ca:b2:4a:b7:0c: 2c:cc:fa:ea:be:fa:1d:bb:0d:36:9e:0a:a9:59:d2:4a:41:86: ea:2f:32:4f:59:ce:f4:f0:45:13:45:d1:4f:2b:e0:d1:1d:dc: f0:0f:88:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzA4MzcxMTAvBgNVBAUTKDUzNjhCOEM4RDY5NjNFQUQ4Mzk5MDVBNDg2RjUzQzQ0 QjA0MUE1RUYwHhcNMjUxMDE5MDEzMjQxWhcNMjUxMDI2MDEzMjQxWjAYMRYwFAYD VQQDEw02OGY0M2ZiOS03NjRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvbDZxBMyenY/BNISzvGu+AzxX43mJAYcSnEuoQeXiI/dBk+hfzw8XPmuXrX1 N1jiXOXkPC+ToGc2X8orjMArutYnvzvvmjgTwzTzOkUctcIcevH6alDnvOpUQo4I wCS/IXkv4k1HAqcFkRDCTlsd80R95o6w9WWWYehA1UIscd0+ex3T3E5/Yl82YaWR 4YW7Dc6W/bOgY6u9t/LOAMQqyB2kgEX6rTi9zXNLyWyxCSkrwMqStsnQB5LPD6DC zYM99dLg8QcSfhawFtI5gEzC1TgvOmKglKptrxL4XgbPEQ24eXsfr5HgafrCL28g RUq6fVnMPy2y5MG9J5YaM56ULwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJDrqSG0 /7JFY8hwmKLo1vQRK0yuMB8GA1UdIwQYMBaAFFNouMjWlj6tg5kFpIb1PESwQaXv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDgzNy9FM0Y4N0NCMjM2 RTMxMUVDQkM4Q0MyNTBDNEY5QUUwMi9VMmk0eU5hV1BxMkRtUVdraHZVOFJMQkJw ZTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UyaTR5TmFXUHEyRG1RV2todlU4UkxCQnBlOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDgzNy9FM0Y4N0NCMjM2RTMxMUVDQkM4Q0MyNTBDNEY5QUUwMi9VMmk0eU5hV1Bx MkRtUVdraHZVOFJMQkJwZTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDIE7lhSxNLg1n7iisFr2BPoI914QCuXTVuAqgkU4fpEaBCL+h1e1Sv UNoBIKyNlGR+OAl/XDhYDwfzsIcG/pZfoHMo2q9wTlsHmRFiXATEFfbMxKJZRAmG Sg35m/3KN0R24old72RU9YPUqdhtAzayJ5+tsR9uqjTsv/1wRM+DMH6xLoW/q0yJ oKJpl9W5NkrX67lmTK/1qSqX1Pc7ruWQnvX12UmyL17J5FIwvGWT/L/KTtwOtDP6 kiqVjmxzZv8tm85mPKnygX7Ex6ICBHqCZvvhyrJKtwwszPrqvvoduw02ngqpWdJK QYbqLzJPWc708EUTRdFPK+DRHdzwD4iC -----END CERTIFICATE-----Generated at Mon Oct 20 09:37:08 2025 by rpki-client