$ rpki-client -vvf rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.mft File: UiKhYZ3_8Eywl7tRagdMzR2v_Hg.mft (raw, json) Hash identifier: IKQwNdiYXRK9LI28B7GXJM6TnCFG9upQD5MqhuyQKVk= Subject key identifier: 3C:01:0C:37:B6:BE:E4:13:EF:F1:ED:F4:11:ED:FE:46:CC:3F:06:A9 Authority key identifier: 52:22:A1:61:9D:FF:F0:4C:B0:97:BB:51:6A:07:4C:CD:1D:AF:FC:78 Certificate issuer: /CN=A9136D7D/serialNumber=5222A1619DFFF04CB097BB516A074CCD1DAFFC78 Certificate serial: 028F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.mft Manifest number: 0285 Signing time: Sun 19 Oct 2025 03:50:26 +0000 Manifest this update: Sun 19 Oct 2025 03:50:26 +0000 Manifest next update: Sun 26 Oct 2025 03:50:26 +0000 Files and hashes: 1: UiKhYZ3_8Eywl7tRagdMzR2v_Hg.crl (hash: 2SiB7IEVLmtRAAA2RZSPyxZQrkySZ5KTPPDEAbt1xAk=) 2: A9E3A5041C3411EFBF05095BC4F9AE02.roa (hash: GTqWZnZ/1TWcrA0Y2PGoMQfWIQwTnq/BPHj2RxJAW6Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.crl rsync://rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:50:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 655 (0x28f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136D7D, serialNumber=5222A1619DFFF04CB097BB516A074CCD1DAFFC78 Validity Not Before: Oct 19 03:50:26 2025 GMT Not After : Oct 26 03:50:26 2025 GMT Subject: CN=68f46002-baad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:51:0b:e8:26:d9:c9:0f:6b:fe:26:a1:fe:1e: ae:b7:f8:86:af:1a:71:66:75:85:4e:92:3c:af:c9: 92:70:3c:7e:fb:33:6b:72:07:43:07:d0:af:53:2b: 76:94:e2:bc:ff:af:4a:65:e9:30:43:f0:40:2c:12: f8:cd:ef:8b:35:89:aa:6b:39:30:e9:38:b8:ee:56: 76:1c:ef:ac:c0:4a:4f:c2:98:e5:4f:f6:52:48:2a: 6a:46:c9:a6:81:b3:cc:39:e2:d9:88:34:7d:ce:f7: 76:2b:37:03:7f:e3:40:63:4f:93:05:3b:a1:bc:81: 80:8e:84:93:d6:62:79:e9:b8:c3:6f:70:92:0b:78: df:5c:b2:b8:54:52:8a:ca:79:f2:06:99:62:77:03: f3:f0:6b:90:e8:32:af:b5:45:66:46:f4:bc:58:ec: a7:48:0d:ab:b8:ad:39:cc:40:88:6f:7c:05:5f:19: 50:e4:f2:3c:e0:dc:62:80:1d:ad:7b:29:ec:ce:1b: b9:55:f1:d8:7e:80:45:36:5c:95:52:57:66:5d:a3: 7e:84:c9:6c:65:eb:2d:a8:07:93:87:2a:d1:3d:49: 0c:b8:8c:9d:59:36:ad:e5:b2:36:f5:61:5a:d3:3e: 73:db:f6:b0:4b:3f:1d:5a:f0:0c:0b:32:a4:1b:1e: 3f:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:01:0C:37:B6:BE:E4:13:EF:F1:ED:F4:11:ED:FE:46:CC:3F:06:A9 X509v3 Authority Key Identifier: keyid:52:22:A1:61:9D:FF:F0:4C:B0:97:BB:51:6A:07:4C:CD:1D:AF:FC:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:0b:8d:a0:ee:4f:37:68:be:a2:28:d0:1b:c7:f6:48:e7:77: 2e:ff:d2:51:8d:66:32:6a:ef:20:d6:c7:1b:ce:25:2f:29:5d: c6:7a:ac:b5:2b:99:f1:ef:ac:ad:fc:2d:ed:81:cb:08:c2:5d: 4f:e0:1f:dd:08:0b:df:06:88:22:83:c4:60:0b:41:cb:14:78: f2:8e:27:cf:3c:1b:14:ea:4b:c0:ca:5a:27:a2:f5:2d:45:d8: a8:0a:df:06:65:97:27:44:f0:23:13:0d:9c:ca:c2:2c:43:e5: 4e:7a:e7:f9:79:4b:7f:59:ca:2d:57:30:38:e6:d1:7d:ec:c5: 07:8f:68:20:64:fe:fe:40:d3:f7:64:0d:f9:ea:e8:21:56:85: 42:6a:9c:7e:00:f5:95:8c:81:0f:a8:75:61:9c:7d:27:47:42: cc:30:e7:1c:41:02:43:7d:fd:fd:54:3e:1a:4b:b4:d0:e5:2c: b1:42:40:ac:17:66:b1:6f:9a:53:93:19:a6:fa:06:56:69:61: 74:e1:c8:b9:17:5a:33:6a:ba:0f:23:c6:7b:aa:5b:0e:f8:de: 71:af:36:ed:7a:e1:df:93:1e:0d:43:7f:e8:65:9a:d9:ca:1e: a6:b3:a8:e7:16:e5:66:3c:51:6b:78:c2:79:cb:5a:a2:43:d3: 3c:14:ff:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAo8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZEN0QxMTAvBgNVBAUTKDUyMjJBMTYxOURGRkYwNENCMDk3QkI1MTZBMDc0Q0NE MURBRkZDNzgwHhcNMjUxMDE5MDM1MDI2WhcNMjUxMDI2MDM1MDI2WjAYMRYwFAYD VQQDEw02OGY0NjAwMi1iYWFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7FEL6CbZyQ9r/iah/h6ut/iGrxpxZnWFTpI8r8mScDx++zNrcgdDB9CvUyt2 lOK8/69KZekwQ/BALBL4ze+LNYmqazkw6Ti47lZ2HO+swEpPwpjlT/ZSSCpqRsmm gbPMOeLZiDR9zvd2KzcDf+NAY0+TBTuhvIGAjoST1mJ56bjDb3CSC3jfXLK4VFKK ynnyBplidwPz8GuQ6DKvtUVmRvS8WOynSA2ruK05zECIb3wFXxlQ5PI84NxigB2t eynszhu5VfHYfoBFNlyVUldmXaN+hMlsZestqAeThyrRPUkMuIydWTat5bI29WFa 0z5z2/awSz8dWvAMCzKkGx4/+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDwBDDe2 vuQT7/Ht9BHt/kbMPwapMB8GA1UdIwQYMBaAFFIioWGd//BMsJe7UWoHTM0dr/x4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkQ3RC9BMzM5NjMwRTI3 NTAxMUVEOTE0N0IyNzNDNEY5QUUwMi9VaUtoWVozXzhFeXdsN3RSYWdkTXpSMnZf SGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VpS2hZWjNfOEV5d2w3dFJhZ2RNelIydl9IZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NkQ3RC9BMzM5NjMwRTI3NTAxMUVEOTE0N0IyNzNDNEY5QUUwMi9VaUtoWVozXzhF eXdsN3RSYWdkTXpSMnZfSGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8C42g7k83aL6iKNAbx/ZI53cu/9JRjWYyau8g1scbziUvKV3Geqy1 K5nx76yt/C3tgcsIwl1P4B/dCAvfBogig8RgC0HLFHjyjifPPBsU6kvAylonovUt RdioCt8GZZcnRPAjEw2cysIsQ+VOeuf5eUt/WcotVzA45tF97MUHj2ggZP7+QNP3 ZA356ughVoVCapx+APWVjIEPqHVhnH0nR0LMMOccQQJDff39VD4aS7TQ5SyxQkCs F2axb5pTkxmm+gZWaWF04ci5F1ozaroPI8Z7qlsO+N5xrzbteuHfkx4NQ3/oZZrZ yh6ms6jnFuVmPFFreMJ5y1qiQ9M8FP9w -----END CERTIFICATE-----Generated at Mon Oct 20 08:57:05 2025 by rpki-client