$ rpki-client -vvf rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft File: sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft (raw, json) Hash identifier: 5sjBtVI/7f6xhf7rB8tjypp+J5LES0tl1nRalZNxyl0= Subject key identifier: 98:FE:06:80:A4:BB:32:97:6B:D5:D2:C0:12:3D:CC:51:DA:71:AE:44 Authority key identifier: B1:4B:2E:E5:C5:ED:73:6A:B7:36:B2:55:35:86:75:9A:FC:DE:C3:E2 Certificate issuer: /CN=A913BF1E/serialNumber=B14B2EE5C5ED736AB736B2553586759AFCDEC3E2 Certificate serial: 0FB8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sUsu5cXtc2q3NrJVNYZ1mvzew-I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft Manifest number: 0FA2 Signing time: Sat 18 Oct 2025 18:08:10 +0000 Manifest this update: Sat 18 Oct 2025 18:08:10 +0000 Manifest next update: Sat 25 Oct 2025 18:08:10 +0000 Files and hashes: 1: sUsu5cXtc2q3NrJVNYZ1mvzew-I.crl (hash: MwwwLraxb3hrnHK93uC4UfsYZyGEHdhvBuWXoPErVqs=) 2: 164B42E2414111F0A098A82DC4F9AE02.roa (hash: tvN8EtS+iS2pn0JRehFrlQmdvXAZ8RTeiP4cegXS6xo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.crl rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sUsu5cXtc2q3NrJVNYZ1mvzew-I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:08:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4024 (0xfb8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913BF1E, serialNumber=B14B2EE5C5ED736AB736B2553586759AFCDEC3E2 Validity Not Before: Oct 18 18:08:10 2025 GMT Not After : Oct 25 18:08:10 2025 GMT Subject: CN=68f3d78a-9d3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:77:24:e0:25:b0:c0:41:d5:0a:d7:16:ba:18: 6e:c8:9f:e5:4e:13:7d:28:1f:09:34:c3:c4:9c:dd: d8:97:c6:69:e0:5a:0e:98:2a:39:a1:66:81:6c:42: ba:1f:e5:df:ff:29:29:34:9b:fb:d9:52:57:65:da: da:74:91:4f:1e:07:4a:73:a3:e7:75:53:ad:a1:07: 74:c8:19:81:2f:9a:7e:c9:ad:90:d1:08:88:f5:10: b2:f9:69:39:20:c2:5c:49:af:ad:8d:72:18:89:c6: 3c:de:00:4d:c3:94:89:05:f5:c8:61:44:25:1f:e9: 30:84:97:e4:d8:7a:30:e7:f8:7c:6d:d9:c3:d4:86: 06:30:e0:1b:5a:08:3e:ae:0a:99:83:47:b2:1d:77: b1:f6:ee:d0:0e:74:1d:59:cb:14:48:9c:f9:9f:3d: d6:28:39:99:38:0d:1b:3f:84:1d:a0:4f:86:b9:30: 54:21:72:dc:a1:cf:7c:57:63:cc:24:df:45:eb:7f: c4:6a:32:cd:91:c1:65:66:26:a2:6d:14:80:30:90: 29:40:16:97:ed:14:36:d3:7f:25:d5:c5:a3:bd:af: c9:9a:d4:a2:51:f4:48:52:b3:bf:5b:10:14:88:bb: 7e:a1:64:72:bf:20:0e:50:c4:6f:c2:3c:ce:94:9e: 96:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:FE:06:80:A4:BB:32:97:6B:D5:D2:C0:12:3D:CC:51:DA:71:AE:44 X509v3 Authority Key Identifier: keyid:B1:4B:2E:E5:C5:ED:73:6A:B7:36:B2:55:35:86:75:9A:FC:DE:C3:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sUsu5cXtc2q3NrJVNYZ1mvzew-I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:56:70:d8:e1:46:62:a0:fd:b2:00:95:c6:6a:c0:a9:4e:9b: 52:9d:fd:1f:b8:11:00:97:6b:c1:8a:52:5f:4b:07:66:38:c9: cc:47:79:43:3f:28:ac:73:95:c2:85:d4:3d:d1:41:b5:6b:f7: 89:a0:49:8c:96:f8:8c:2c:f2:57:f8:88:0d:01:31:ba:f6:73: c0:1f:9e:95:7f:d4:dd:a4:6e:6c:d4:93:85:c5:0a:d2:81:ff: d5:80:49:d8:e7:ee:04:f4:b7:77:af:d4:64:93:ff:e6:7c:35: a2:69:5d:29:92:65:54:ba:43:a3:03:e1:a5:af:e5:71:d5:ae: e9:00:1d:dc:2e:a2:d5:9f:26:60:81:45:76:36:8b:f2:22:5a: b6:e6:14:8d:33:29:25:de:77:09:3f:fe:99:88:49:13:f3:f1: 97:f2:5d:9e:69:2e:7b:dc:cb:3b:22:47:60:7f:07:59:38:07: 1a:b0:79:eb:0d:f3:05:b4:6c:3e:e8:6f:8e:81:2d:e1:ef:d4: cd:aa:c9:b0:81:b2:ec:a5:35:44:9f:4a:f3:76:d7:ea:6f:53: 88:d5:88:d5:4e:20:01:fa:9d:7e:98:8e:18:be:47:78:ae:5b: 37:0c:36:98:73:a1:60:05:3a:43:c2:f5:a1:90:99:a3:ab:c5: ce:a5:89:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD7gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0JGMUUxMTAvBgNVBAUTKEIxNEIyRUU1QzVFRDczNkFCNzM2QjI1NTM1ODY3NTlB RkNERUMzRTIwHhcNMjUxMDE4MTgwODEwWhcNMjUxMDI1MTgwODEwWjAYMRYwFAYD VQQDEw02OGYzZDc4YS05ZDNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxXck4CWwwEHVCtcWuhhuyJ/lThN9KB8JNMPEnN3Yl8Zp4FoOmCo5oWaBbEK6 H+Xf/ykpNJv72VJXZdradJFPHgdKc6PndVOtoQd0yBmBL5p+ya2Q0QiI9RCy+Wk5 IMJcSa+tjXIYicY83gBNw5SJBfXIYUQlH+kwhJfk2How5/h8bdnD1IYGMOAbWgg+ rgqZg0eyHXex9u7QDnQdWcsUSJz5nz3WKDmZOA0bP4QdoE+GuTBUIXLcoc98V2PM JN9F63/EajLNkcFlZiaibRSAMJApQBaX7RQ2038l1cWjva/JmtSiUfRIUrO/WxAU iLt+oWRyvyAOUMRvwjzOlJ6WnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJj+BoCk uzKXa9XSwBI9zFHaca5EMB8GA1UdIwQYMBaAFLFLLuXF7XNqtzayVTWGdZr83sPi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQkYxRS9EQkIyQkY2NjZF NkYxMUU5QUEwMTdDMzNDNEY5QUUwMi9zVXN1NWNYdGMycTNOckpWTllaMW12emV3 LUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NVc3U1Y1h0YzJxM05ySlZOWVoxbXZ6ZXctSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QkYxRS9EQkIyQkY2NjZFNkYxMUU5QUEwMTdDMzNDNEY5QUUwMi9zVXN1NWNYdGMy cTNOckpWTllaMW12emV3LUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEVnDY4UZioP2yAJXGasCpTptSnf0fuBEAl2vBilJfSwdmOMnMR3lD Pyisc5XChdQ90UG1a/eJoEmMlviMLPJX+IgNATG69nPAH56Vf9TdpG5s1JOFxQrS gf/VgEnY5+4E9Ld3r9Rkk//mfDWiaV0pkmVUukOjA+Glr+Vx1a7pAB3cLqLVnyZg gUV2NovyIlq25hSNMykl3ncJP/6ZiEkT8/GX8l2eaS573Ms7IkdgfwdZOAcasHnr DfMFtGw+6G+OgS3h79TNqsmwgbLspTVEn0rzdtfqb1OI1YjVTiAB+p1+mI4Yvkd4 rls3DDaYc6FgBTpDwvWhkJmjq8XOpYkU -----END CERTIFICATE-----Generated at Mon Oct 20 01:45:07 2025 by rpki-client