$ rpki-client -vvf rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.mft File: U-fOlDUz-NPAVknylGgqJvgU8V8.mft (raw, json) Hash identifier: Jpq2dBI2aX7RxYN82JPWYgNqgQ378QCjmt3Q0fYmnzM= Subject key identifier: DA:3A:65:C9:36:87:0E:EA:EF:78:0D:07:37:6A:88:F7:10:83:37:AA Authority key identifier: 53:E7:CE:94:35:33:F8:D3:C0:56:49:F2:94:68:2A:26:F8:14:F1:5F Certificate issuer: /CN=A9144391/serialNumber=53E7CE943533F8D3C05649F294682A26F814F15F Certificate serial: D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-fOlDUz-NPAVknylGgqJvgU8V8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.mft Manifest number: D2 Signing time: Sun 19 Oct 2025 08:47:04 +0000 Manifest this update: Sun 19 Oct 2025 08:47:04 +0000 Manifest next update: Sun 26 Oct 2025 08:47:03 +0000 Files and hashes: 1: U-fOlDUz-NPAVknylGgqJvgU8V8.crl (hash: e0HANi/QbAx1LiZZ/1kz/EF6WmQUdRtzrzKYql5uN50=) 2: BC213E3C70AF11EF9C9B2C0EC4F9AE02.roa (hash: 3YeMlkcKDR/G7e8HpdLpzhvB3RsMdGgeM4Qv8rsxSYk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.crl rsync://rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-fOlDUz-NPAVknylGgqJvgU8V8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:47:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 213 (0xd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144391, serialNumber=53E7CE943533F8D3C05649F294682A26F814F15F Validity Not Before: Oct 19 08:47:04 2025 GMT Not After : Oct 26 08:47:03 2025 GMT Subject: CN=68f4a588-055d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:a0:9d:d9:01:e4:61:c6:6d:7d:91:e5:17:d2: 28:d5:2a:36:e3:c4:b1:42:40:59:cf:a7:f2:3c:83: d4:d7:a3:7a:d1:7c:bb:8d:83:95:d3:ed:3b:e7:0d: 6e:4d:3c:45:c8:81:28:02:cb:52:19:21:21:d3:78: 79:97:86:dc:68:58:f3:94:62:ae:33:9c:09:45:12: ca:71:b1:26:ba:0b:42:83:c1:21:43:13:6f:7b:81: 86:42:c0:c5:c5:e8:3c:e3:12:de:76:52:38:7a:a9: 68:d7:da:79:84:8f:5a:ac:ae:fd:da:eb:1f:58:4f: f7:7a:c7:6f:84:e5:11:74:9b:63:8d:70:27:ff:6a: 19:1f:d5:88:81:d3:ce:1c:e1:ba:27:56:bc:cf:99: b6:b6:8b:00:b3:f5:34:1e:85:dc:e9:d8:20:5e:01: 03:4b:b0:fd:42:3f:e0:59:47:da:07:9f:c8:e5:7f: ab:46:af:22:35:72:82:5c:ac:fe:90:dc:c9:5b:52: 2a:d2:8b:80:e5:89:72:34:95:4e:f7:6c:2e:e9:fc: d7:40:96:ab:6d:2b:81:f4:46:7d:f0:87:ac:11:a7: 8f:6b:80:2d:ad:48:8a:85:ba:9e:54:c2:8b:58:21: 1f:f9:52:b3:44:92:e3:08:be:37:ea:df:8a:92:cb: 41:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:3A:65:C9:36:87:0E:EA:EF:78:0D:07:37:6A:88:F7:10:83:37:AA X509v3 Authority Key Identifier: keyid:53:E7:CE:94:35:33:F8:D3:C0:56:49:F2:94:68:2A:26:F8:14:F1:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-fOlDUz-NPAVknylGgqJvgU8V8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:d1:b4:bc:bb:57:ea:d3:52:6c:a5:15:18:4e:54:b0:ac:01: 7b:98:53:9b:b7:b8:8c:4d:a3:e6:3c:83:38:92:2f:cc:00:0b: 35:57:ff:46:a4:21:95:66:2e:97:ee:1a:96:b9:31:dd:1b:bf: fc:0e:32:fd:9f:86:c2:dd:3e:01:eb:67:37:22:1e:89:b1:92: 6f:d8:46:a4:cd:69:d4:1d:8f:df:41:21:9f:8b:23:6a:16:88: fa:58:b7:4d:69:1d:80:51:28:1f:fd:68:f3:5d:0f:4e:b4:e5: 63:ed:d8:d3:67:7d:07:70:f3:a3:da:1c:1d:a1:b3:9a:2c:0c: f7:1e:c7:c9:2b:96:f3:c5:3f:cf:d5:a1:eb:39:a8:fd:71:2e: 13:b2:60:c0:47:30:84:38:d7:ba:eb:f8:af:6b:16:9d:40:ad: 7c:45:09:d0:52:24:30:74:38:6d:17:1f:38:26:a3:b3:20:01: 09:99:5b:1e:d4:3d:b0:26:63:57:45:88:09:fa:54:b9:b0:40: 94:20:a7:79:eb:27:f2:b3:52:50:d4:3a:14:e1:0f:fc:97:2c: 1e:09:f2:47:ae:ca:81:83:4f:e1:7b:ea:a3:da:8c:a2:92:c9: 91:7c:de:01:08:a0:ec:81:71:6c:af:c2:8e:4f:4d:82:67:9e: 30:35:52:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQzOTExMTAvBgNVBAUTKDUzRTdDRTk0MzUzM0Y4RDNDMDU2NDlGMjk0NjgyQTI2 RjgxNEYxNUYwHhcNMjUxMDE5MDg0NzA0WhcNMjUxMDI2MDg0NzAzWjAYMRYwFAYD VQQDEw02OGY0YTU4OC0wNTVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq6Cd2QHkYcZtfZHlF9Io1So248SxQkBZz6fyPIPU16N60Xy7jYOV0+075w1u TTxFyIEoAstSGSEh03h5l4bcaFjzlGKuM5wJRRLKcbEmugtCg8EhQxNve4GGQsDF xeg84xLedlI4eqlo19p5hI9arK792usfWE/3esdvhOURdJtjjXAn/2oZH9WIgdPO HOG6J1a8z5m2tosAs/U0HoXc6dggXgEDS7D9Qj/gWUfaB5/I5X+rRq8iNXKCXKz+ kNzJW1Iq0ouA5YlyNJVO92wu6fzXQJarbSuB9EZ98IesEaePa4AtrUiKhbqeVMKL WCEf+VKzRJLjCL436t+KkstBKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNo6Zck2 hw7q73gNBzdqiPcQgzeqMB8GA1UdIwQYMBaAFFPnzpQ1M/jTwFZJ8pRoKib4FPFf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDM5MS8wMTlGRjE0RTcw QUUxMUVGQTg0OEIwNjhDNEY5QUUwMi9VLWZPbERVei1OUEFWa255bEdncUp2Z1U4 VjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UtZk9sRFV6LU5QQVZrbnlsR2dxSnZnVThWOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDM5MS8wMTlGRjE0RTcwQUUxMUVGQTg0OEIwNjhDNEY5QUUwMi9VLWZPbERVei1O UEFWa255bEdncUp2Z1U4VjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAP0bS8u1fq01JspRUYTlSwrAF7mFObt7iMTaPmPIM4ki/MAAs1V/9G pCGVZi6X7hqWuTHdG7/8DjL9n4bC3T4B62c3Ih6JsZJv2EakzWnUHY/fQSGfiyNq Foj6WLdNaR2AUSgf/WjzXQ9OtOVj7djTZ30HcPOj2hwdobOaLAz3HsfJK5bzxT/P 1aHrOaj9cS4TsmDARzCEONe66/ivaxadQK18RQnQUiQwdDhtFx84JqOzIAEJmVse 1D2wJmNXRYgJ+lS5sECUIKd56yfys1JQ1DoU4Q/8lyweCfJHrsqBg0/he+qj2oyi ksmRfN4BCKDsgXFsr8KOT02CZ54wNVL3 -----END CERTIFICATE-----Generated at Mon Oct 20 19:47:52 2025 by rpki-client