$ rpki-client -vvf rpki.apnic.net/member_repository/A9157031/7A004F787EC911EC84EC4418C4F9AE02/UOUO2vZKLCW3MSOWc9kHD2GDAnk.mft File: UOUO2vZKLCW3MSOWc9kHD2GDAnk.mft (raw, json) Hash identifier: gy47wA7Wn+fJ2t4GHyGhnxoZAbW5og4h0MfCDDu3zaM= Subject key identifier: 5E:54:25:69:FF:5E:6D:B9:0B:F4:3F:DB:FC:57:2A:E5:93:F9:65:E5 Authority key identifier: 50:E5:0E:DA:F6:4A:2C:25:B7:31:23:96:73:D9:07:0F:61:83:02:79 Certificate issuer: /CN=A9157031/serialNumber=50E50EDAF64A2C25B731239673D9070F61830279 Certificate serial: 0434 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UOUO2vZKLCW3MSOWc9kHD2GDAnk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157031/7A004F787EC911EC84EC4418C4F9AE02/UOUO2vZKLCW3MSOWc9kHD2GDAnk.mft Manifest number: 042F Signing time: Sun 19 Oct 2025 02:12:30 +0000 Manifest this update: Sun 19 Oct 2025 02:12:29 +0000 Manifest next update: Sun 26 Oct 2025 02:12:29 +0000 Files and hashes: 1: UOUO2vZKLCW3MSOWc9kHD2GDAnk.crl (hash: oIQ3bwdl+PCCgESivAyhW3D5NY4m7R+Tb0kdvgW/Mqs=) 2: 32D8FF34C99E11ED98E9BE5BC4F9AE02.roa (hash: 75eZM/Pn5fV11WrvJUnUrFhvKQhEtrEs1POmskjBp6U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157031/7A004F787EC911EC84EC4418C4F9AE02/UOUO2vZKLCW3MSOWc9kHD2GDAnk.crl rsync://rpki.apnic.net/member_repository/A9157031/7A004F787EC911EC84EC4418C4F9AE02/UOUO2vZKLCW3MSOWc9kHD2GDAnk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UOUO2vZKLCW3MSOWc9kHD2GDAnk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:12:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1076 (0x434) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157031, serialNumber=50E50EDAF64A2C25B731239673D9070F61830279 Validity Not Before: Oct 19 02:12:29 2025 GMT Not After : Oct 26 02:12:29 2025 GMT Subject: CN=68f4490d-85b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:5d:ef:be:7f:99:b8:e4:a5:fa:12:c1:4b:7f: 10:cd:26:8c:07:67:8f:e5:e3:ee:a0:62:0e:d1:9b: 92:9b:94:dd:2a:0f:90:84:2a:21:45:7d:3c:68:fc: 18:3b:29:7b:96:fb:04:53:b1:a9:50:ee:0d:e9:83: 82:2a:b2:e7:e2:23:7a:59:9f:6b:3f:b7:81:6a:8d: 3b:04:cc:73:f7:6f:97:20:90:3a:23:93:74:30:81: de:6d:29:2c:4d:88:a9:a2:9d:6a:1b:53:8c:2c:23: 50:f0:55:2e:79:f1:63:4d:59:fb:fd:63:72:19:30: 27:15:92:95:08:57:d3:5b:6c:43:20:49:26:54:f7: 0c:76:e3:5f:33:b7:15:b4:6d:d8:79:49:16:7e:2e: 9d:84:47:df:ea:86:b1:82:17:5e:40:85:65:8d:46: 72:82:7f:94:6d:98:16:a8:56:33:2e:f3:9e:98:02: e9:d3:41:79:1b:95:f1:cd:5e:da:5c:13:5b:d8:53: f4:10:b2:85:eb:d5:7b:1c:25:bd:1a:0b:b8:f3:3f: e0:e1:93:ed:4f:bd:41:10:fa:21:45:6a:b3:f8:9d: 87:d4:d5:22:19:f3:d0:ef:e3:c0:6d:ff:5b:d8:b0: cd:a4:5b:ed:a1:9e:30:a6:11:fa:43:98:bc:b6:36: 9f:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:54:25:69:FF:5E:6D:B9:0B:F4:3F:DB:FC:57:2A:E5:93:F9:65:E5 X509v3 Authority Key Identifier: keyid:50:E5:0E:DA:F6:4A:2C:25:B7:31:23:96:73:D9:07:0F:61:83:02:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157031/7A004F787EC911EC84EC4418C4F9AE02/UOUO2vZKLCW3MSOWc9kHD2GDAnk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UOUO2vZKLCW3MSOWc9kHD2GDAnk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157031/7A004F787EC911EC84EC4418C4F9AE02/UOUO2vZKLCW3MSOWc9kHD2GDAnk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:8b:cf:62:20:5d:a4:4d:6c:2e:86:c1:bc:a5:c8:01:81:9c: 78:0e:98:03:a9:de:10:2f:55:52:bd:d8:95:fd:d7:eb:8b:4d: 0c:1b:87:27:1a:9f:6d:87:8f:4c:62:15:e7:ef:e2:43:4e:c5: 5b:86:c0:50:18:7e:67:e2:a4:6e:4f:ac:77:5e:07:3f:b4:62: a6:db:00:32:e3:11:ca:33:c6:37:78:de:f1:fb:5f:3f:02:15: 47:a2:e8:d3:35:18:94:cb:8b:0c:0f:93:a1:4b:dd:d4:70:fc: 03:c4:bc:fb:b9:16:d9:77:1a:73:00:d8:c9:50:15:15:a8:a8: ef:e6:89:d1:b1:4e:70:a9:1d:0a:68:96:5c:c5:87:dc:6e:87: bc:20:88:62:54:45:de:ab:7c:1f:2d:a2:77:f7:0a:78:44:5d: ee:82:82:47:b1:d7:43:6a:43:88:c0:17:06:ba:8e:d8:4a:74: 36:d6:ed:18:73:b3:f3:a8:77:fc:e4:1b:4e:66:00:0c:88:47: 52:3e:a0:87:07:34:e4:5b:0f:76:28:3e:9b:b7:5a:48:d5:f8: d6:85:3e:aa:73:c4:3b:24:38:3a:6e:c9:f3:ac:07:5f:9c:ed: f9:f2:30:20:f3:e5:ce:0a:ef:6e:bc:2b:b7:37:ce:68:65:d5: a5:43:51:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTcwMzExMTAvBgNVBAUTKDUwRTUwRURBRjY0QTJDMjVCNzMxMjM5NjczRDkwNzBG NjE4MzAyNzkwHhcNMjUxMDE5MDIxMjI5WhcNMjUxMDI2MDIxMjI5WjAYMRYwFAYD VQQDEw02OGY0NDkwZC04NWI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtV3vvn+ZuOSl+hLBS38QzSaMB2eP5ePuoGIO0ZuSm5TdKg+QhCohRX08aPwY Oyl7lvsEU7GpUO4N6YOCKrLn4iN6WZ9rP7eBao07BMxz92+XIJA6I5N0MIHebSks TYipop1qG1OMLCNQ8FUuefFjTVn7/WNyGTAnFZKVCFfTW2xDIEkmVPcMduNfM7cV tG3YeUkWfi6dhEff6oaxghdeQIVljUZygn+UbZgWqFYzLvOemALp00F5G5XxzV7a XBNb2FP0ELKF69V7HCW9Ggu48z/g4ZPtT71BEPohRWqz+J2H1NUiGfPQ7+PAbf9b 2LDNpFvtoZ4wphH6Q5i8tjafLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF5UJWn/ Xm25C/Q/2/xXKuWT+WXlMB8GA1UdIwQYMBaAFFDlDtr2SiwltzEjlnPZBw9hgwJ5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzAzMS83QTAwNEY3ODdF QzkxMUVDODRFQzQ0MThDNEY5QUUwMi9VT1VPMnZaS0xDVzNNU09XYzlrSEQyR0RB bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VPVU8ydlpLTENXM01TT1djOWtIRDJHREFuay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzAzMS83QTAwNEY3ODdFQzkxMUVDODRFQzQ0MThDNEY5QUUwMi9VT1VPMnZaS0xD VzNNU09XYzlrSEQyR0RBbmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8i89iIF2kTWwuhsG8pcgBgZx4DpgDqd4QL1VSvdiV/dfri00MG4cn Gp9th49MYhXn7+JDTsVbhsBQGH5n4qRuT6x3Xgc/tGKm2wAy4xHKM8Y3eN7x+18/ AhVHoujTNRiUy4sMD5OhS93UcPwDxLz7uRbZdxpzANjJUBUVqKjv5onRsU5wqR0K aJZcxYfcboe8IIhiVEXeq3wfLaJ39wp4RF3ugoJHsddDakOIwBcGuo7YSnQ21u0Y c7PzqHf85BtOZgAMiEdSPqCHBzTkWw92KD6bt1pI1fjWhT6qc8Q7JDg6bsnzrAdf nO358jAg8+XOCu9uvCu3N85oZdWlQ1Ei -----END CERTIFICATE-----Generated at Mon Oct 20 06:49:22 2025 by rpki-client