$ rpki-client -vvf rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.mft File: U_b3klO824sdFxgs5PGdOf1JnfU.mft (raw, json) Hash identifier: QIyFcBh9mAda18ivdnnyGR8HUjCBzVYv2yQEHVV4tF8= Subject key identifier: 1B:57:DA:40:05:88:F2:A4:C2:EE:49:10:16:FE:58:79:01:74:69:5D Authority key identifier: 53:F6:F7:92:53:BC:DB:8B:1D:17:18:2C:E4:F1:9D:39:FD:49:9D:F5 Certificate issuer: /CN=A9154340/serialNumber=53F6F79253BCDB8B1D17182CE4F19D39FD499DF5 Certificate serial: 0689 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U_b3klO824sdFxgs5PGdOf1JnfU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.mft Manifest number: 0684 Signing time: Sat 18 Oct 2025 23:58:09 +0000 Manifest this update: Sat 18 Oct 2025 23:58:08 +0000 Manifest next update: Sat 25 Oct 2025 23:58:08 +0000 Files and hashes: 1: U_b3klO824sdFxgs5PGdOf1JnfU.crl (hash: /KT/Di9s+qV51eBiPC6nLrQ20jQd0P0SWHrB4KSQhsY=) 2: 28D1785891E311EBA138E330C4F9AE02.roa (hash: jZlWStDyUEA5NOntBzhPKNNSuOk9+V2s5MhuAGQtCUc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.crl rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U_b3klO824sdFxgs5PGdOf1JnfU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:58:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1673 (0x689) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154340, serialNumber=53F6F79253BCDB8B1D17182CE4F19D39FD499DF5 Validity Not Before: Oct 18 23:58:08 2025 GMT Not After : Oct 25 23:58:08 2025 GMT Subject: CN=68f42991-d1f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:0b:d3:77:e7:1d:18:6d:bf:dc:b4:6f:26:3a: 1f:41:63:93:dc:85:a9:78:09:9b:8d:72:e1:9b:a9: 33:78:be:f0:22:aa:9a:f1:aa:23:c5:9e:57:c6:72: 24:1f:95:d4:7f:55:91:9f:10:36:42:bb:f8:df:bc: 5b:49:75:2d:c0:38:16:18:4b:44:2a:a7:ca:17:a9: 54:31:e3:d2:ed:b4:87:17:fa:92:b8:c1:3c:11:e2: f3:d4:94:76:e6:98:4e:f7:ea:2d:9f:33:bb:bd:8a: 42:37:c4:ac:19:ce:b2:ad:41:51:82:cf:bd:05:ca: 0f:11:7e:38:03:46:02:8d:da:ee:e5:1a:66:ff:1b: 0a:bf:3f:df:1e:ba:e5:db:4e:da:b8:53:bf:55:07: 44:0a:3b:34:11:5a:31:fc:ed:1a:71:76:1f:47:fd: c1:e8:2a:01:e6:95:86:ad:f8:34:ea:38:c8:63:00: 8b:99:44:de:15:96:3d:b4:de:55:b5:8b:20:cd:12: 21:de:04:c7:3d:44:33:92:7f:5c:6f:65:bb:d5:98: 16:fb:b3:c4:43:2d:56:c3:ba:af:34:0f:7b:38:90: 36:0b:8d:76:97:27:09:ac:b3:56:0b:e3:60:95:d6: 3e:fa:cc:17:a9:dc:06:c4:bc:9a:2b:b6:ed:8c:63: 1e:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:57:DA:40:05:88:F2:A4:C2:EE:49:10:16:FE:58:79:01:74:69:5D X509v3 Authority Key Identifier: keyid:53:F6:F7:92:53:BC:DB:8B:1D:17:18:2C:E4:F1:9D:39:FD:49:9D:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U_b3klO824sdFxgs5PGdOf1JnfU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:74:dd:3d:e0:d4:8b:e7:95:08:36:2d:2c:5f:74:56:54:71: 28:6a:ee:18:48:85:8e:e0:8d:c2:a1:18:20:68:49:ac:08:d0: 6e:1e:77:af:76:8a:26:e3:49:9e:84:e9:1a:68:d7:f1:c7:22: 30:72:70:13:c6:bc:74:46:a5:9a:66:4f:c6:f3:14:8c:5e:5f: 15:93:4b:66:72:f0:3a:19:b0:e9:84:a4:f5:58:e5:1e:02:72: 7d:91:a1:a8:eb:6a:0c:79:93:a1:89:96:05:2b:32:43:e8:a2: 80:da:49:e7:48:b6:1b:f8:84:9c:f9:f8:65:01:93:33:3d:5e: 8a:9b:69:c2:68:14:f5:dc:5e:91:86:a4:8a:3e:22:2d:20:35: 5a:ee:88:fa:8b:4b:76:02:30:d3:b0:fd:03:e1:96:0c:55:05: b0:f2:b3:b5:51:48:b2:12:38:68:ec:f3:4b:31:e0:97:20:de: c1:44:f8:6c:a1:ff:60:2c:6f:90:34:63:ac:75:6f:d6:9e:c8: 19:bf:1c:db:b6:f8:ff:11:5a:7b:98:cb:46:95:ae:e6:17:08: b5:a4:bd:71:bd:36:30:4d:ba:39:78:6c:7a:31:ce:9d:4c:26: ab:11:e7:62:e5:9c:8d:10:c6:32:e5:be:0a:56:b9:76:35:44: 10:5e:1d:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBokwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQzNDAxMTAvBgNVBAUTKDUzRjZGNzkyNTNCQ0RCOEIxRDE3MTgyQ0U0RjE5RDM5 RkQ0OTlERjUwHhcNMjUxMDE4MjM1ODA4WhcNMjUxMDI1MjM1ODA4WjAYMRYwFAYD VQQDEw02OGY0Mjk5MS1kMWY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0wvTd+cdGG2/3LRvJjofQWOT3IWpeAmbjXLhm6kzeL7wIqqa8aojxZ5XxnIk H5XUf1WRnxA2Qrv437xbSXUtwDgWGEtEKqfKF6lUMePS7bSHF/qSuME8EeLz1JR2 5phO9+otnzO7vYpCN8SsGc6yrUFRgs+9BcoPEX44A0YCjdru5Rpm/xsKvz/fHrrl 207auFO/VQdECjs0EVox/O0acXYfR/3B6CoB5pWGrfg06jjIYwCLmUTeFZY9tN5V tYsgzRIh3gTHPUQzkn9cb2W71ZgW+7PEQy1Ww7qvNA97OJA2C412lycJrLNWC+Ng ldY++swXqdwGxLyaK7btjGMeXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBtX2kAF iPKkwu5JEBb+WHkBdGldMB8GA1UdIwQYMBaAFFP295JTvNuLHRcYLOTxnTn9SZ31 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDM0MC83QzFGRDFEMjkx RTExMUVCQjY4NzhDMkVDNEY5QUUwMi9VX2Iza2xPODI0c2RGeGdzNVBHZE9mMUpu ZlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VfYjNrbE84MjRzZEZ4Z3M1UEdkT2YxSm5mVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDM0MC83QzFGRDFEMjkxRTExMUVCQjY4NzhDMkVDNEY5QUUwMi9VX2Iza2xPODI0 c2RGeGdzNVBHZE9mMUpuZlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBdN094NSL55UINi0sX3RWVHEoau4YSIWO4I3CoRggaEmsCNBuHnev doom40mehOkaaNfxxyIwcnATxrx0RqWaZk/G8xSMXl8Vk0tmcvA6GbDphKT1WOUe AnJ9kaGo62oMeZOhiZYFKzJD6KKA2knnSLYb+ISc+fhlAZMzPV6Km2nCaBT13F6R hqSKPiItIDVa7oj6i0t2AjDTsP0D4ZYMVQWw8rO1UUiyEjho7PNLMeCXIN7BRPhs of9gLG+QNGOsdW/WnsgZvxzbtvj/EVp7mMtGla7mFwi1pL1xvTYwTbo5eGx6Mc6d TCarEedi5ZyNEMYy5b4KVrl2NUQQXh2U -----END CERTIFICATE-----Generated at Mon Oct 20 21:43:47 2025 by rpki-client