$ rpki-client -vvf rpki.apnic.net/member_repository/A9155725/801BCAA6083A11F09FF1D074C4F9AE02/uH-tZU7EIXxlANDwaxm-MZ09rfc.mft File: uH-tZU7EIXxlANDwaxm-MZ09rfc.mft (raw, json) Hash identifier: T8ITldY8jb2hlMWvHwErx1Y7JhCT3G1qj2SDK5QTmFI= Subject key identifier: E3:A8:4C:49:8C:41:90:34:83:5B:FA:1F:D2:FF:00:08:CE:F6:09:18 Authority key identifier: B8:7F:AD:65:4E:C4:21:7C:65:00:D0:F0:6B:19:BE:31:9D:3D:AD:F7 Certificate issuer: /CN=A9155725/serialNumber=B87FAD654EC4217C6500D0F06B19BE319D3DADF7 Certificate serial: 70 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uH-tZU7EIXxlANDwaxm-MZ09rfc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155725/801BCAA6083A11F09FF1D074C4F9AE02/uH-tZU7EIXxlANDwaxm-MZ09rfc.mft Manifest number: 6D Signing time: Sun 19 Oct 2025 10:18:11 +0000 Manifest this update: Sun 19 Oct 2025 10:18:11 +0000 Manifest next update: Sun 26 Oct 2025 10:18:11 +0000 Files and hashes: 1: uH-tZU7EIXxlANDwaxm-MZ09rfc.crl (hash: umoiJ/p7j8qEBW6wwsg1hCWnxP67Ql8LTQ9CX9tEPEo=) 2: 7621BEA0084611F08BEB2E2DC4F9AE02.roa (hash: aySEvRngppKs/Lyekhtc0uzM27zK/l0cRA6UmOeIzlU=) 3: 753F0588084611F08BEB2E2DC4F9AE02.roa (hash: v1ibDjxmzIv2LQG97YVedEX5wevRpNJDRuNHyDfGpBg=) 4: 75A4B2D4084611F08BEB2E2DC4F9AE02.roa (hash: JronbENc2C4chw8Lr5GoQXHOGuejfoIjiKRSNDdiR4Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155725/801BCAA6083A11F09FF1D074C4F9AE02/uH-tZU7EIXxlANDwaxm-MZ09rfc.crl rsync://rpki.apnic.net/member_repository/A9155725/801BCAA6083A11F09FF1D074C4F9AE02/uH-tZU7EIXxlANDwaxm-MZ09rfc.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uH-tZU7EIXxlANDwaxm-MZ09rfc.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 112 (0x70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155725, serialNumber=B87FAD654EC4217C6500D0F06B19BE319D3DADF7 Validity Not Before: Oct 19 10:18:11 2025 GMT Not After : Oct 26 10:18:11 2025 GMT Subject: CN=68f4bae3-c59d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:91:8f:c5:84:41:b4:bd:ec:01:8d:24:6d:63: e7:0e:09:31:29:e5:45:6e:cd:1b:cc:2a:9f:39:cb: 3b:8c:e3:b8:6d:61:67:cc:30:b2:f6:eb:d7:98:b8: 42:77:bd:a5:79:ad:11:aa:c3:ab:e0:f7:ac:b9:e9: e8:97:22:6c:e8:ea:a9:7a:42:44:93:c0:fe:27:41: e0:e0:f0:76:e3:b4:dd:aa:4a:3c:31:2c:4b:48:f6: 3a:8a:06:63:e7:26:29:79:33:e1:ee:f2:09:26:6d: 95:ef:e0:ac:7b:b6:b1:15:9d:13:7d:ec:f4:4b:d6: 14:21:72:4d:78:92:7a:ca:b9:cd:ac:44:5a:b6:2b: ee:d2:3b:47:3d:6b:04:a5:12:7f:c5:2a:d3:43:23: 8f:86:6d:f4:92:d7:fb:ec:95:9a:90:06:6e:a9:60: 40:29:e6:62:bb:9e:30:77:20:4b:91:8e:a3:ad:98: 97:b2:46:96:24:2e:4b:e1:f1:4a:13:e7:4e:3c:d5: c2:38:c4:26:c8:cc:e9:34:85:a6:cd:81:cd:86:a2: bf:26:a2:2d:4b:71:1d:83:3b:53:2d:7a:fa:d0:b0: c9:32:ee:c2:ea:c4:89:0b:50:37:41:a8:50:b5:f0: 04:18:8e:ec:af:a3:4d:dc:17:97:c5:a3:73:15:33: 83:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:A8:4C:49:8C:41:90:34:83:5B:FA:1F:D2:FF:00:08:CE:F6:09:18 X509v3 Authority Key Identifier: keyid:B8:7F:AD:65:4E:C4:21:7C:65:00:D0:F0:6B:19:BE:31:9D:3D:AD:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155725/801BCAA6083A11F09FF1D074C4F9AE02/uH-tZU7EIXxlANDwaxm-MZ09rfc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uH-tZU7EIXxlANDwaxm-MZ09rfc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155725/801BCAA6083A11F09FF1D074C4F9AE02/uH-tZU7EIXxlANDwaxm-MZ09rfc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:74:ac:91:8a:93:ec:22:1f:42:34:26:a0:cc:a4:04:7b:88: 80:37:13:0f:4b:52:1e:84:17:b5:2d:48:a8:54:78:78:10:f7: 0b:44:67:e4:9d:08:dc:6c:68:64:79:9e:9f:af:67:67:0a:a1: c5:dc:a4:7b:2d:b5:4f:f2:16:45:5f:6c:e7:74:cd:9f:f7:ca: 09:7c:5d:1d:12:55:f2:97:b2:74:dc:0e:48:b8:01:3d:6e:01: 3c:2e:91:49:e8:1d:d3:f4:f2:94:e8:91:66:66:81:35:13:e3: fb:2e:e7:ed:ee:af:4c:c0:bf:3b:47:32:d6:6a:82:c8:e2:9f: 41:f2:f0:2c:e2:35:57:48:99:d1:f9:59:52:58:e9:e0:b6:b2: d6:d4:39:c0:65:3c:7a:ad:8d:c8:11:06:e4:52:09:a7:c2:60: 44:6b:ce:03:0a:6a:a0:a8:65:37:de:86:b8:f1:2f:ff:1f:e0: 8a:1d:9e:6d:ca:25:44:37:66:60:da:29:91:d2:28:c9:f2:8b: 9b:f3:86:f1:60:70:f4:e0:f1:b1:ee:77:7a:26:c8:20:df:11: c6:ff:a1:3a:46:aa:af:e8:ad:b8:d9:8d:f6:23:e3:04:c3:06: 41:c6:82:bf:9d:8a:c7:36:02:7f:70:4a:23:a7:de:5d:ad:22: e4:aa:5b:50 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NTcyNTExMC8GA1UEBRMoQjg3RkFENjU0RUM0MjE3QzY1MDBEMEYwNkIxOUJFMzE5 RDNEQURGNzAeFw0yNTEwMTkxMDE4MTFaFw0yNTEwMjYxMDE4MTFaMBgxFjAUBgNV BAMTDTY4ZjRiYWUzLWM1OWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1kY/FhEG0vewBjSRtY+cOCTEp5UVuzRvMKp85yzuM47htYWfMMLL269eYuEJ3 vaV5rRGqw6vg96y56eiXImzo6ql6QkSTwP4nQeDg8HbjtN2qSjwxLEtI9jqKBmPn Jil5M+Hu8gkmbZXv4Kx7trEVnRN97PRL1hQhck14knrKuc2sRFq2K+7SO0c9awSl En/FKtNDI4+GbfSS1/vslZqQBm6pYEAp5mK7njB3IEuRjqOtmJeyRpYkLkvh8UoT 50481cI4xCbIzOk0habNgc2Gor8moi1LcR2DO1MtevrQsMky7sLqxIkLUDdBqFC1 8AQYjuyvo03cF5fFo3MVM4PvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU46hMSYxB kDSDW/of0v8ACM72CRgwHwYDVR0jBBgwFoAUuH+tZU7EIXxlANDwaxm+MZ09rfcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1NzI1LzgwMUJDQUE2MDgz QTExRjA5RkYxRDA3NEM0RjlBRTAyL3VILXRaVTdFSVh4bEFORHdheG0tTVowOXJm Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvdUgtdFpVN0VJWHhsQU5Ed2F4bS1NWjA5cmZjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1 NzI1LzgwMUJDQUE2MDgzQTExRjA5RkYxRDA3NEM0RjlBRTAyL3VILXRaVTdFSVh4 bEFORHdheG0tTVowOXJmYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJ90rJGKk+wiH0I0JqDMpAR7iIA3Ew9LUh6EF7UtSKhUeHgQ9wtEZ+Sd CNxsaGR5np+vZ2cKocXcpHsttU/yFkVfbOd0zZ/3ygl8XR0SVfKXsnTcDki4AT1u ATwukUnoHdP08pTokWZmgTUT4/su5+3ur0zAvztHMtZqgsjin0Hy8CziNVdImdH5 WVJY6eC2stbUOcBlPHqtjcgRBuRSCafCYERrzgMKaqCoZTfehrjxL/8f4Iodnm3K JUQ3ZmDaKZHSKMnyi5vzhvFgcPTg8bHud3omyCDfEcb/oTpGqq/orbjZjfYj4wTD BkHGgr+disc2An9wSiOn3l2tIuSqW1A= -----END CERTIFICATE-----Generated at Mon Oct 20 09:37:21 2025 by rpki-client