$ rpki-client -vvf rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft File: U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft (raw, json) Hash identifier: 7ttgQsnVuLsr0nnBu9Ks6E5Y3Qi/Txva2iNwnjAgY0c= Subject key identifier: 0F:92:CA:B1:04:5B:86:79:16:52:8E:6A:82:84:10:21:A8:C7:42:82 Authority key identifier: 53:9B:B7:6C:8A:43:79:A4:DE:39:9C:05:2D:38:C1:B4:53:A6:6F:1B Certificate issuer: /CN=A914E070/serialNumber=539BB76C8A4379A4DE399C052D38C1B453A66F1B Certificate serial: 014E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5u3bIpDeaTeOZwFLTjBtFOmbxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft Manifest number: 014A Signing time: Sun 19 Oct 2025 07:06:38 +0000 Manifest this update: Sun 19 Oct 2025 07:06:37 +0000 Manifest next update: Sun 26 Oct 2025 07:06:37 +0000 Files and hashes: 1: U5u3bIpDeaTeOZwFLTjBtFOmbxs.crl (hash: BzQPn5dsR/bc9Gm4iniXmZl58XL4UY46V3GkO+mu4DM=) 2: 3772F678BC1211EE8C54FD2EC4F9AE02.roa (hash: BVkUXHmaunafReC96ZYpGOgVThUwi3Y9iPZ+tZjaqqs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.crl rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5u3bIpDeaTeOZwFLTjBtFOmbxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:06:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 334 (0x14e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E070, serialNumber=539BB76C8A4379A4DE399C052D38C1B453A66F1B Validity Not Before: Oct 19 07:06:37 2025 GMT Not After : Oct 26 07:06:37 2025 GMT Subject: CN=68f48dfd-1d37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:a2:b0:fa:46:64:00:7f:e8:c2:64:3c:5f:2c: f1:71:97:90:21:ea:15:02:2c:d1:5e:e6:34:cc:a9: db:b7:5e:04:e4:dd:dd:b7:f6:ee:45:06:2b:06:3f: 03:0d:f9:40:b7:24:1e:b1:87:e1:15:5a:13:0f:43: d8:a8:01:b5:cf:66:77:29:be:8d:5a:8b:57:4e:0f: ea:e8:83:6d:3b:80:18:46:82:34:41:1b:57:72:05: 5c:f9:db:93:d5:bb:83:c0:1a:c3:9c:e8:3d:d6:84: cd:13:d4:f6:dc:f4:6d:43:64:f6:51:53:87:44:f7: ef:2c:9a:ae:24:6e:60:21:a9:4e:bb:f0:77:54:94: 0c:3e:9a:fa:eb:78:f0:89:7e:65:0e:2a:e6:0f:1f: 74:54:7a:26:63:f6:1c:5f:2b:74:5a:1a:ec:19:cb: da:f5:ae:e4:68:39:00:5f:ac:9a:2a:64:d4:9d:e0: 9b:b6:61:78:54:2e:b9:b1:da:d3:7e:2a:bc:7e:8a: e8:b9:b3:1e:07:33:46:01:1b:c7:fe:a0:a6:ca:88: 3e:36:06:d4:85:75:ea:ef:ef:11:0f:6a:08:2d:45: a8:32:8d:06:10:99:76:13:1e:bb:0c:34:c7:d8:cf: 22:51:03:8d:d6:15:b5:a6:de:f6:b8:e2:b7:87:85: 98:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:92:CA:B1:04:5B:86:79:16:52:8E:6A:82:84:10:21:A8:C7:42:82 X509v3 Authority Key Identifier: keyid:53:9B:B7:6C:8A:43:79:A4:DE:39:9C:05:2D:38:C1:B4:53:A6:6F:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5u3bIpDeaTeOZwFLTjBtFOmbxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:81:51:d6:79:2e:c9:f5:63:67:11:34:77:34:bc:13:0e:8e: 1d:c3:00:d8:26:29:a9:c2:76:90:e9:cd:a0:2d:2a:51:f8:c1: a8:b8:0b:dd:0c:d5:3b:3a:26:a8:10:0b:e0:2e:8c:21:35:29: 74:84:b7:3b:2a:41:53:76:75:8f:38:f9:29:ce:db:31:77:9c: 41:48:c6:fd:52:2e:60:37:30:e3:91:b7:d7:23:cc:67:63:8c: 28:fe:d5:1f:8d:0c:4d:68:1a:e0:62:d1:46:2e:83:6e:c0:b5: c4:7c:33:29:24:00:3c:25:73:46:00:0e:02:21:60:2e:17:d2: 3c:5b:d1:ca:c9:0a:44:5d:36:86:26:16:8b:04:2f:15:5b:f2: c0:55:20:10:2d:b6:4a:98:84:4b:18:fc:d1:cd:dd:c7:52:25: 5f:9e:d3:d9:37:77:0d:9f:fc:b6:e6:66:13:35:ec:16:a4:d8: bd:f4:cc:7f:a9:f9:48:79:86:cd:70:20:af:65:68:7b:6c:84: 13:be:2e:7f:b0:b1:07:7d:7f:c2:e8:0b:67:ba:c8:25:fb:4d: 52:0f:40:fc:eb:da:7c:b8:f8:82:21:ec:8e:cf:d7:d8:72:d4: 1b:b2:43:ab:17:97:bb:1e:0c:72:ae:c3:bd:8b:45:8a:f0:50: 87:ea:2b:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAU4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUwNzAxMTAvBgNVBAUTKDUzOUJCNzZDOEE0Mzc5QTRERTM5OUMwNTJEMzhDMUI0 NTNBNjZGMUIwHhcNMjUxMDE5MDcwNjM3WhcNMjUxMDI2MDcwNjM3WjAYMRYwFAYD VQQDEw02OGY0OGRmZC0xZDM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl6Kw+kZkAH/owmQ8XyzxcZeQIeoVAizRXuY0zKnbt14E5N3dt/buRQYrBj8D DflAtyQesYfhFVoTD0PYqAG1z2Z3Kb6NWotXTg/q6INtO4AYRoI0QRtXcgVc+duT 1buDwBrDnOg91oTNE9T23PRtQ2T2UVOHRPfvLJquJG5gIalOu/B3VJQMPpr663jw iX5lDirmDx90VHomY/YcXyt0WhrsGcva9a7kaDkAX6yaKmTUneCbtmF4VC65sdrT fiq8foroubMeBzNGARvH/qCmyog+NgbUhXXq7+8RD2oILUWoMo0GEJl2Ex67DDTH 2M8iUQON1hW1pt72uOK3h4WYIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA+SyrEE W4Z5FlKOaoKEECGox0KCMB8GA1UdIwQYMBaAFFObt2yKQ3mk3jmcBS04wbRTpm8b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTA3MC84OUM1NTk3Q0JD MTAxMUVFOEJFQjEzN0FDNEY5QUUwMi9VNXUzYklwRGVhVGVPWndGTFRqQnRGT21i eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U1dTNiSXBEZWFUZU9ad0ZMVGpCdEZPbWJ4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTA3MC84OUM1NTk3Q0JDMTAxMUVFOEJFQjEzN0FDNEY5QUUwMi9VNXUzYklwRGVh VGVPWndGTFRqQnRGT21ieHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvgVHWeS7J9WNnETR3NLwTDo4dwwDYJimpwnaQ6c2gLSpR+MGouAvd DNU7OiaoEAvgLowhNSl0hLc7KkFTdnWPOPkpztsxd5xBSMb9Ui5gNzDjkbfXI8xn Y4wo/tUfjQxNaBrgYtFGLoNuwLXEfDMpJAA8JXNGAA4CIWAuF9I8W9HKyQpEXTaG JhaLBC8VW/LAVSAQLbZKmIRLGPzRzd3HUiVfntPZN3cNn/y25mYTNewWpNi99Mx/ qflIeYbNcCCvZWh7bIQTvi5/sLEHfX/C6Atnusgl+01SD0D869p8uPiCIeyOz9fY ctQbskOrF5e7HgxyrsO9i0WK8FCH6isI -----END CERTIFICATE-----Generated at Mon Oct 20 10:16:08 2025 by rpki-client