$ rpki-client -vvf rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.mft File: rU1lO4NcTh3pjsZjdoiamoN2SwI.mft (raw, json) Hash identifier: bNioOUHnSkR2aNmz2pGHHZeyYGM6zDDYADIWZoYwGaM= Subject key identifier: D3:17:9B:AE:BA:D6:BA:62:3E:D0:D2:25:C2:52:64:12:65:24:A8:79 Authority key identifier: AD:4D:65:3B:83:5C:4E:1D:E9:8E:C6:63:76:88:9A:9A:83:76:4B:02 Certificate issuer: /CN=A914B669/serialNumber=AD4D653B835C4E1DE98EC66376889A9A83764B02 Certificate serial: 34CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rU1lO4NcTh3pjsZjdoiamoN2SwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.mft Manifest number: 34CA Signing time: Sat 18 Oct 2025 14:49:30 +0000 Manifest this update: Sat 18 Oct 2025 14:49:29 +0000 Manifest next update: Sat 25 Oct 2025 14:49:29 +0000 Files and hashes: 1: rU1lO4NcTh3pjsZjdoiamoN2SwI.crl (hash: ZizYEKCGhjrrhTjBhHdqiwi1YDJ+GkBzZbWkHMpW9Y0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.crl rsync://rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rU1lO4NcTh3pjsZjdoiamoN2SwI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 14:49:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13514 (0x34ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B669, serialNumber=AD4D653B835C4E1DE98EC66376889A9A83764B02 Validity Not Before: Oct 18 14:49:29 2025 GMT Not After : Oct 25 14:49:29 2025 GMT Subject: CN=68f3a8f9-6973 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:cd:07:e8:97:9c:ae:28:ef:e5:5c:c3:dd:12: bc:98:48:20:01:34:e0:74:5d:ac:50:6e:79:db:57: 4b:a5:9b:07:c5:29:3f:64:9a:83:ac:9a:28:dd:0a: 41:c8:88:df:fc:b1:22:2e:79:fc:e1:16:b9:13:b0: e3:82:04:bf:2c:19:e9:b1:ed:3b:8a:42:38:56:38: 1f:4a:29:b5:f6:84:86:7a:5a:d9:d4:ec:df:7a:ce: d3:a0:46:f1:7b:70:54:15:01:65:da:0f:ed:d7:51: 18:9b:e1:3c:16:3a:ee:09:0c:ea:f0:73:48:0a:47: 8d:b5:f1:1a:02:66:c1:ba:c2:7a:ab:8d:8c:e5:06: 3d:a9:63:19:96:9c:eb:c0:a8:79:3e:85:4e:46:49: 99:a1:46:18:58:fa:2e:c3:ff:b0:b7:dc:b2:cf:c9: df:ac:b4:48:d4:5f:02:49:a2:e6:2d:22:f6:0c:cf: e4:2a:95:65:3a:40:f3:3f:42:c3:ed:a9:f9:5d:58: 6f:63:04:87:ec:0d:5e:0f:ab:ea:d4:2a:20:2f:7d: 11:37:87:76:b4:ed:cb:f1:e3:f9:a1:6d:51:cc:14: 34:57:5d:b7:53:39:bd:6e:c8:bf:af:de:68:8e:59: 46:cd:c9:9b:8b:82:6d:3d:6d:db:6b:67:fe:bb:d5: 41:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:17:9B:AE:BA:D6:BA:62:3E:D0:D2:25:C2:52:64:12:65:24:A8:79 X509v3 Authority Key Identifier: keyid:AD:4D:65:3B:83:5C:4E:1D:E9:8E:C6:63:76:88:9A:9A:83:76:4B:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rU1lO4NcTh3pjsZjdoiamoN2SwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:9d:ae:04:5b:5e:c3:20:ba:c7:65:ec:16:14:57:d5:8e:df: 91:98:f3:35:3e:3e:21:14:3c:82:0d:2d:6f:a1:bb:c0:59:29: ae:6d:8a:ea:f2:a3:88:22:2f:c9:f1:f6:71:59:15:f3:a9:fd: cc:8d:4b:c4:cf:18:44:2b:61:b5:8a:ac:7b:ff:e3:de:97:77: c0:14:a0:e2:02:9f:4d:32:db:1a:05:b7:62:90:e3:3c:52:05: 16:9f:7d:02:3d:96:ec:6d:23:cf:af:1f:c8:02:29:08:25:a6: c1:0e:dc:af:81:54:8c:40:3e:ac:91:78:71:ec:26:fc:13:14: f8:fe:3a:76:ac:32:65:5b:f3:9c:9d:05:13:b3:20:a6:aa:c0: 30:bc:d2:b5:5b:db:d0:3c:03:8b:70:5e:c1:5a:14:9e:2d:ef: c6:d1:68:cd:0e:a8:45:26:48:84:d9:ae:34:dc:3d:85:f3:71: 70:99:20:86:64:46:67:c8:48:f2:ef:fb:cf:08:ff:1d:9f:a3: 56:c0:a4:54:e4:38:87:c3:ec:c2:33:2a:23:5f:52:75:6d:dc: 8a:dd:3c:23:9a:bc:30:c4:42:ee:4f:97:34:8a:71:44:20:2e: 3e:3e:b3:29:1a:bb:2f:48:0e:8f:63:56:0d:ee:bb:ca:52:a6: f3:2a:94:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEI2NjkxMTAvBgNVBAUTKEFENEQ2NTNCODM1QzRFMURFOThFQzY2Mzc2ODg5QTlB ODM3NjRCMDIwHhcNMjUxMDE4MTQ0OTI5WhcNMjUxMDI1MTQ0OTI5WjAYMRYwFAYD VQQDEw02OGYzYThmOS02OTczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxM0H6Jecrijv5VzD3RK8mEggATTgdF2sUG5521dLpZsHxSk/ZJqDrJoo3QpB yIjf/LEiLnn84Ra5E7DjggS/LBnpse07ikI4VjgfSim19oSGelrZ1Ozfes7ToEbx e3BUFQFl2g/t11EYm+E8FjruCQzq8HNICkeNtfEaAmbBusJ6q42M5QY9qWMZlpzr wKh5PoVORkmZoUYYWPouw/+wt9yyz8nfrLRI1F8CSaLmLSL2DM/kKpVlOkDzP0LD 7an5XVhvYwSH7A1eD6vq1CogL30RN4d2tO3L8eP5oW1RzBQ0V123Uzm9bsi/r95o jllGzcmbi4JtPW3ba2f+u9VBdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNMXm666 1rpiPtDSJcJSZBJlJKh5MB8GA1UdIwQYMBaAFK1NZTuDXE4d6Y7GY3aImpqDdksC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjY2OS85RDVCRjZGRTFE OTIxMUUyODg2RUFBRjUwOEIwMkNEMi9yVTFsTzROY1RoM3Bqc1pqZG9pYW1vTjJT d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JVMWxPNE5jVGgzcGpzWmpkb2lhbW9OMlN3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjY2OS85RDVCRjZGRTFEOTIxMUUyODg2RUFBRjUwOEIwMkNEMi9yVTFsTzROY1Ro M3Bqc1pqZG9pYW1vTjJTd0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6na4EW17DILrHZewWFFfVjt+RmPM1Pj4hFDyCDS1vobvAWSmubYrq 8qOIIi/J8fZxWRXzqf3MjUvEzxhEK2G1iqx7/+Pel3fAFKDiAp9NMtsaBbdikOM8 UgUWn30CPZbsbSPPrx/IAikIJabBDtyvgVSMQD6skXhx7Cb8ExT4/jp2rDJlW/Oc nQUTsyCmqsAwvNK1W9vQPAOLcF7BWhSeLe/G0WjNDqhFJkiE2a403D2F83FwmSCG ZEZnyEjy7/vPCP8dn6NWwKRU5DiHw+zCMyojX1J1bdyK3TwjmrwwxELuT5c0inFE IC4+PrMpGrsvSA6PY1YN7rvKUqbzKpTW -----END CERTIFICATE-----Generated at Mon Oct 20 10:15:54 2025 by rpki-client