$ rpki-client -vvf rpki.apnic.net/member_repository/A9160BD2/E7E904007D6F11EB86111147C4F9AE02/5ufguvNPIMPZye8md2gF84JGO4Y.mft File: 5ufguvNPIMPZye8md2gF84JGO4Y.mft (raw, json) Hash identifier: /iOsTaFQM6PXN1PIjjZvAHSf1wzrPdGlnbY0SzVhbyA= Subject key identifier: 68:9C:D4:20:76:63:19:EE:DD:97:21:CC:47:AC:9A:98:0B:55:93:68 Authority key identifier: E6:E7:E0:BA:F3:4F:20:C3:D9:C9:EF:26:77:68:05:F3:82:46:3B:86 Certificate issuer: /CN=A9160BD2/serialNumber=E6E7E0BAF34F20C3D9C9EF26776805F382463B86 Certificate serial: 06B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5ufguvNPIMPZye8md2gF84JGO4Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160BD2/E7E904007D6F11EB86111147C4F9AE02/5ufguvNPIMPZye8md2gF84JGO4Y.mft Manifest number: 06B3 Signing time: Sat 18 Oct 2025 23:37:35 +0000 Manifest this update: Sat 18 Oct 2025 23:37:35 +0000 Manifest next update: Sat 25 Oct 2025 23:37:35 +0000 Files and hashes: 1: 5ufguvNPIMPZye8md2gF84JGO4Y.crl (hash: Ds7dskPd7J95zB312ieJhf7jlH4u3lQPJoUr/CiRUiY=) 2: 159A3C967D7211EBA0A7FF60C4F9AE02.roa (hash: Zxo0mKrJYkISVsqHRZIlLeBZhk5GaXEPMnvmTBTNLew=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160BD2/E7E904007D6F11EB86111147C4F9AE02/5ufguvNPIMPZye8md2gF84JGO4Y.crl rsync://rpki.apnic.net/member_repository/A9160BD2/E7E904007D6F11EB86111147C4F9AE02/5ufguvNPIMPZye8md2gF84JGO4Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5ufguvNPIMPZye8md2gF84JGO4Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:37:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1720 (0x6b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160BD2, serialNumber=E6E7E0BAF34F20C3D9C9EF26776805F382463B86 Validity Not Before: Oct 18 23:37:35 2025 GMT Not After : Oct 25 23:37:35 2025 GMT Subject: CN=68f424bf-4514 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:9e:09:a1:51:d9:ab:7a:4e:f2:f3:86:21:14: 9e:6b:fd:50:31:90:80:65:16:bb:10:68:ec:b2:01: 1c:7c:11:37:ad:c2:27:7e:3f:e4:2f:b9:f8:71:02: 14:29:c7:c7:f1:71:be:74:a9:96:70:9c:e2:fc:3b: 64:1d:fb:cf:1d:81:2b:d9:1b:1c:e0:b3:87:21:a4: 69:ba:47:f5:6f:a9:6b:80:47:3c:9d:77:1d:e2:7c: 00:e7:6b:e4:71:84:df:e6:4a:e7:82:86:83:fd:a0: cb:cb:9b:c1:86:e5:51:c1:ea:ef:28:1d:27:e3:5c: 8a:a4:b0:b9:53:6b:79:d1:9d:af:35:5b:d5:41:86: fa:51:d1:12:43:64:ee:23:ad:ef:7e:49:c3:85:33: 02:dc:60:47:4b:2a:9f:a9:b3:b9:78:32:48:87:ed: b2:04:27:bc:82:00:0e:c7:68:37:24:34:29:3d:aa: de:0c:23:80:e5:63:73:64:98:3a:56:dd:70:81:6e: 53:15:44:f2:70:73:57:01:24:7b:00:59:5e:6b:61: f9:21:7a:85:40:0f:5f:2b:7a:4e:1d:8a:a1:e6:a3: 49:ab:04:d0:45:c0:a3:44:8a:63:ec:a4:d3:b8:93: d4:0b:f6:e1:8c:f3:43:8e:a3:d2:b4:13:6c:90:a3: 2e:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:9C:D4:20:76:63:19:EE:DD:97:21:CC:47:AC:9A:98:0B:55:93:68 X509v3 Authority Key Identifier: keyid:E6:E7:E0:BA:F3:4F:20:C3:D9:C9:EF:26:77:68:05:F3:82:46:3B:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160BD2/E7E904007D6F11EB86111147C4F9AE02/5ufguvNPIMPZye8md2gF84JGO4Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5ufguvNPIMPZye8md2gF84JGO4Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160BD2/E7E904007D6F11EB86111147C4F9AE02/5ufguvNPIMPZye8md2gF84JGO4Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:bd:59:8b:57:d7:6f:57:b5:d1:f3:a2:ec:f0:1e:16:24:8a: f0:f6:22:af:3d:31:72:31:2c:2d:f1:43:09:12:e2:c2:e1:e7: 89:6a:92:2f:11:dd:0b:26:a9:50:f0:dc:85:aa:bf:a3:7e:b6: db:aa:8e:9f:ab:ae:8d:60:13:40:1d:46:32:3a:3d:e1:fc:c7: 37:c3:e7:3b:45:cb:5f:02:48:67:bd:3f:93:c0:c5:fc:ba:7a: d7:80:be:12:fa:5d:99:f4:0e:60:a6:8c:34:0b:35:fc:dc:46: 6a:48:56:0e:0f:b3:fd:84:e9:da:71:59:f1:79:50:6e:07:97: 88:27:e1:eb:b9:9b:74:3b:51:e2:e7:8a:b5:2c:6f:b1:fc:38: e8:29:06:ff:72:ac:4e:99:30:98:12:2b:dd:9b:ea:a3:d7:9d: ba:28:c6:31:4d:d6:1f:dc:3d:77:26:04:1b:ef:34:0d:70:53: ee:38:8e:56:c9:c0:cd:d4:b9:47:27:4c:81:0f:61:97:b2:db: a4:9b:e6:6c:ec:de:78:d1:6f:2e:9e:d7:e7:37:75:f3:a2:f8: 7d:08:86:b6:a9:b6:d8:c5:94:fb:2a:97:44:8b:c0:68:52:05: 2a:58:fd:3a:ce:a7:08:61:54:d5:24:27:07:c1:66:66:a9:98: 3c:47:f2:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjBCRDIxMTAvBgNVBAUTKEU2RTdFMEJBRjM0RjIwQzNEOUM5RUYyNjc3NjgwNUYz ODI0NjNCODYwHhcNMjUxMDE4MjMzNzM1WhcNMjUxMDI1MjMzNzM1WjAYMRYwFAYD VQQDEw02OGY0MjRiZi00NTE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzJ4JoVHZq3pO8vOGIRSea/1QMZCAZRa7EGjssgEcfBE3rcInfj/kL7n4cQIU KcfH8XG+dKmWcJzi/DtkHfvPHYEr2Rsc4LOHIaRpukf1b6lrgEc8nXcd4nwA52vk cYTf5krngoaD/aDLy5vBhuVRwervKB0n41yKpLC5U2t50Z2vNVvVQYb6UdESQ2Tu I63vfknDhTMC3GBHSyqfqbO5eDJIh+2yBCe8ggAOx2g3JDQpPareDCOA5WNzZJg6 Vt1wgW5TFUTycHNXASR7AFlea2H5IXqFQA9fK3pOHYqh5qNJqwTQRcCjRIpj7KTT uJPUC/bhjPNDjqPStBNskKMuaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGic1CB2 Yxnu3ZchzEesmpgLVZNoMB8GA1UdIwQYMBaAFObn4LrzTyDD2cnvJndoBfOCRjuG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MEJEMi9FN0U5MDQwMDdE NkYxMUVCODYxMTExNDdDNEY5QUUwMi81dWZndXZOUElNUFp5ZThtZDJnRjg0SkdP NFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzV1Zmd1dk5QSU1QWnllOG1kMmdGODRKR080WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MEJEMi9FN0U5MDQwMDdENkYxMUVCODYxMTExNDdDNEY5QUUwMi81dWZndXZOUElN UFp5ZThtZDJnRjg0SkdPNFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtvVmLV9dvV7XR86Ls8B4WJIrw9iKvPTFyMSwt8UMJEuLC4eeJapIv Ed0LJqlQ8NyFqr+jfrbbqo6fq66NYBNAHUYyOj3h/Mc3w+c7RctfAkhnvT+TwMX8 unrXgL4S+l2Z9A5gpow0CzX83EZqSFYOD7P9hOnacVnxeVBuB5eIJ+HruZt0O1Hi 54q1LG+x/DjoKQb/cqxOmTCYEivdm+qj1526KMYxTdYf3D13JgQb7zQNcFPuOI5W ycDN1LlHJ0yBD2GXstukm+Zs7N540W8untfnN3Xzovh9CIa2qbbYxZT7KpdEi8Bo UgUqWP06zqcIYVTVJCcHwWZmqZg8R/Kh -----END CERTIFICATE-----Generated at Mon Oct 20 01:48:11 2025 by rpki-client