$ rpki-client -vvf rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.mft File: UN4cYHM-ori3boQDYJGOHyXEbkM.mft (raw, json) Hash identifier: Slathe6mISfSfwpuvyZqtA2ATr9IQ7CJp7dkfFfOky0= Subject key identifier: 97:61:57:49:F9:77:CC:92:DF:ED:39:61:32:A5:73:AE:87:86:3E:92 Authority key identifier: 50:DE:1C:60:73:3E:A2:B8:B7:6E:84:03:60:91:8E:1F:25:C4:6E:43 Certificate issuer: /CN=A916701E/serialNumber=50DE1C60733EA2B8B76E840360918E1F25C46E43 Certificate serial: 0C37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UN4cYHM-ori3boQDYJGOHyXEbkM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.mft Manifest number: 0C25 Signing time: Mon 20 Oct 2025 19:23:13 +0000 Manifest this update: Mon 20 Oct 2025 19:23:13 +0000 Manifest next update: Mon 27 Oct 2025 19:23:13 +0000 Files and hashes: 1: UN4cYHM-ori3boQDYJGOHyXEbkM.crl (hash: y+WTvkaNscxQ1iTT4/Bm8U7JYgBTRTvkhOms9fcDTjM=) 2: 46C5452E0DD711EF85707821C4F9AE02.roa (hash: /U7W3kIJcREb7MGP1Cl2Wpd73rbaNoFSjTUo68eX8m0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.crl rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UN4cYHM-ori3boQDYJGOHyXEbkM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 19:23:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3127 (0xc37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916701E, serialNumber=50DE1C60733EA2B8B76E840360918E1F25C46E43 Validity Not Before: Oct 20 19:23:13 2025 GMT Not After : Oct 27 19:23:13 2025 GMT Subject: CN=68f68c21-7503 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:70:33:49:43:11:04:1f:c3:6b:16:5e:8e:65: d5:75:86:5b:97:e9:25:d2:b6:96:9a:90:04:1a:d5: aa:4f:d7:e9:3e:64:03:af:3f:dd:63:db:33:34:62: 18:69:4d:0f:1c:6d:ac:58:b5:bf:9f:c9:8d:fc:b5: 94:4a:c9:5b:85:23:8f:ee:b6:d7:fc:b9:49:34:37: a8:f8:2a:8e:73:af:78:f9:6b:fe:c9:1b:d3:30:bb: bc:21:a2:03:e5:be:23:4c:35:9c:e2:7a:74:9b:94: 2b:6b:86:69:75:07:ac:40:35:5b:74:6c:76:ad:83: 53:29:d7:f8:8c:16:1a:28:d1:9c:f5:a1:f9:23:39: fe:d6:7e:62:d1:8f:a7:34:1c:ee:b6:63:a1:c0:82: 02:eb:bd:d1:91:1e:12:08:69:9d:76:ad:38:6b:64: e7:c4:1b:ea:b8:45:b6:be:86:92:03:99:e6:70:40: 86:c2:64:1d:e5:68:81:f2:1d:a6:8d:20:ab:14:3c: 67:8d:51:15:0d:90:1c:78:44:4b:d9:58:7b:6c:32: a4:83:0a:e6:92:da:d4:73:26:99:cd:c6:e1:07:98: 5a:ee:9e:88:df:74:de:da:b3:a8:76:ed:27:38:8e: 3f:2e:5a:19:5e:81:9b:85:a6:90:93:85:3b:7a:60: 7e:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:61:57:49:F9:77:CC:92:DF:ED:39:61:32:A5:73:AE:87:86:3E:92 X509v3 Authority Key Identifier: keyid:50:DE:1C:60:73:3E:A2:B8:B7:6E:84:03:60:91:8E:1F:25:C4:6E:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UN4cYHM-ori3boQDYJGOHyXEbkM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:e9:12:79:13:7b:77:f7:eb:39:06:7a:ae:07:48:af:28:af: eb:6b:70:41:4d:49:1e:2b:32:3b:3b:36:6e:34:b0:5c:47:7c: 0f:f0:ad:77:7a:e8:c0:ba:df:74:38:10:3a:e9:d6:1c:b5:5f: 07:c3:eb:2a:09:d0:af:75:9d:5b:82:99:30:f1:4b:f3:b2:69: 62:16:f6:71:54:34:19:95:17:a4:58:09:3f:aa:38:c8:c2:69: 3c:1c:eb:2f:a6:b9:84:fa:9b:37:b3:48:58:02:59:af:2e:d4: de:e4:82:6c:dd:ef:28:ea:29:5a:74:63:23:e3:9c:07:08:02: bf:30:3b:48:30:19:2f:f9:1e:1b:12:e7:d6:db:b8:8d:0b:8b: 03:27:71:99:78:7b:51:92:ae:d5:49:7a:d7:e6:d7:9e:bc:80: 32:c1:64:e3:7a:9f:a8:79:38:d7:73:e4:ba:d3:84:94:dc:7b: 24:6e:e4:78:9c:00:1d:0a:fe:5e:68:4b:8c:30:86:db:f6:64: 1d:70:3c:e8:ef:f8:82:fe:a1:64:75:61:16:d3:db:24:3a:cd: b5:d7:6a:c7:c7:4d:0c:26:16:0e:09:51:db:6f:97:46:60:5a: af:61:15:f7:de:9d:9f:b4:28:4d:ae:6f:ec:8e:b5:5d:b5:30: f6:b9:12:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDDcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjcwMUUxMTAvBgNVBAUTKDUwREUxQzYwNzMzRUEyQjhCNzZFODQwMzYwOTE4RTFG MjVDNDZFNDMwHhcNMjUxMDIwMTkyMzEzWhcNMjUxMDI3MTkyMzEzWjAYMRYwFAYD VQQDEw02OGY2OGMyMS03NTAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4nAzSUMRBB/DaxZejmXVdYZbl+kl0raWmpAEGtWqT9fpPmQDrz/dY9szNGIY aU0PHG2sWLW/n8mN/LWUSslbhSOP7rbX/LlJNDeo+CqOc694+Wv+yRvTMLu8IaID 5b4jTDWc4np0m5Qra4ZpdQesQDVbdGx2rYNTKdf4jBYaKNGc9aH5Izn+1n5i0Y+n NBzutmOhwIIC673RkR4SCGmddq04a2TnxBvquEW2voaSA5nmcECGwmQd5WiB8h2m jSCrFDxnjVEVDZAceERL2Vh7bDKkgwrmktrUcyaZzcbhB5ha7p6I33Te2rOodu0n OI4/LloZXoGbhaaQk4U7emB+4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJdhV0n5 d8yS3+05YTKlc66Hhj6SMB8GA1UdIwQYMBaAFFDeHGBzPqK4t26EA2CRjh8lxG5D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NzAxRS83ODVEN0VEMjFD MDgxMUVBODU3NkIxNTFDNEY5QUUwMi9VTjRjWUhNLW9yaTNib1FEWUpHT0h5WEVi a00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VONGNZSE0tb3JpM2JvUURZSkdPSHlYRWJrTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NzAxRS83ODVEN0VEMjFDMDgxMUVBODU3NkIxNTFDNEY5QUUwMi9VTjRjWUhNLW9y aTNib1FEWUpHT0h5WEVia00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAB6RJ5E3t39+s5BnquB0ivKK/ra3BBTUkeKzI7OzZuNLBcR3wP8K13 eujAut90OBA66dYctV8Hw+sqCdCvdZ1bgpkw8UvzsmliFvZxVDQZlRekWAk/qjjI wmk8HOsvprmE+ps3s0hYAlmvLtTe5IJs3e8o6iladGMj45wHCAK/MDtIMBkv+R4b EufW27iNC4sDJ3GZeHtRkq7VSXrX5teevIAywWTjep+oeTjXc+S604SU3HskbuR4 nAAdCv5eaEuMMIbb9mQdcDzo7/iC/qFkdWEW09skOs2112rHx00MJhYOCVHbb5dG YFqvYRX33p2ftChNrm/sjrVdtTD2uRJE -----END CERTIFICATE-----Generated at Tue Oct 21 04:53:27 2025 by rpki-client