$ rpki-client -vvf rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft File: U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft (raw, json) Hash identifier: VgyPeRhqSC0HEWFXqFzcxRzCxJNH60y3As0xOZYKxNM= Subject key identifier: 8F:8A:32:0E:A4:75:46:DC:08:29:75:B4:93:ED:10:0E:27:BA:B1:DE Authority key identifier: 53:E2:E1:34:52:45:7D:F2:1E:F2:5C:BA:3B:26:10:D0:12:A9:06:D2 Certificate issuer: /CN=A91736BD/serialNumber=53E2E13452457DF21EF25CBA3B2610D012A906D2 Certificate serial: 0221 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-LhNFJFffIe8ly6OyYQ0BKpBtI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft Manifest number: 021D Signing time: Sun 19 Oct 2025 04:22:32 +0000 Manifest this update: Sun 19 Oct 2025 04:22:31 +0000 Manifest next update: Sun 26 Oct 2025 04:22:31 +0000 Files and hashes: 1: U-LhNFJFffIe8ly6OyYQ0BKpBtI.crl (hash: vRF5zOL3m46XuA42VELFDjTQPT4LYv28IuyzlSkDnKs=) 2: EB8C9B546EE911ED8F07B022C4F9AE02.roa (hash: aHr48jg9C6XT7m5IpFV6+gOg/wu3/75OLv4ksFQsrBE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.crl rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-LhNFJFffIe8ly6OyYQ0BKpBtI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:22:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 545 (0x221) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91736BD, serialNumber=53E2E13452457DF21EF25CBA3B2610D012A906D2 Validity Not Before: Oct 19 04:22:31 2025 GMT Not After : Oct 26 04:22:31 2025 GMT Subject: CN=68f46787-9c65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:d9:4a:93:4f:35:dc:9a:a1:25:2f:82:c3:ee: 03:50:55:d4:ff:fc:10:35:67:63:ce:39:18:3e:4c: 23:60:f7:03:22:01:c3:4e:a7:87:23:88:22:66:9f: 02:8c:c9:cc:47:a1:81:2f:41:d8:57:fa:0c:db:c7: e4:06:c9:c3:16:b3:ec:31:e4:30:70:92:21:25:78: 19:cc:6b:0f:cd:c6:ce:76:d6:da:1a:ed:38:0b:14: 9c:1c:36:12:5f:3e:d8:d2:b6:c6:98:0c:c9:dc:85: c5:1a:ee:11:15:f1:3a:6d:de:e2:78:81:57:00:e5: 8e:19:64:85:5b:13:8f:dc:7d:8b:64:e9:a0:07:31: 91:24:0e:46:70:06:56:53:0a:9e:91:a9:8d:de:77: 53:77:40:6b:16:78:67:ec:b0:fc:9c:f9:19:ce:ac: 3d:20:69:c8:e6:22:84:56:8f:a8:cd:d4:38:33:58: c0:51:ca:43:24:80:5a:bb:a4:93:9a:73:de:57:e1: a8:75:b0:80:b1:05:ed:5b:99:c8:de:36:1c:c2:fb: fb:64:d8:8d:0b:0c:dd:fd:ec:75:07:cf:d3:8a:8d: 24:26:93:fe:00:4e:1d:94:be:a3:2b:f8:a7:58:1a: 24:e6:e3:cb:7b:b0:cb:64:88:41:7e:a1:39:8a:4a: 59:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:8A:32:0E:A4:75:46:DC:08:29:75:B4:93:ED:10:0E:27:BA:B1:DE X509v3 Authority Key Identifier: keyid:53:E2:E1:34:52:45:7D:F2:1E:F2:5C:BA:3B:26:10:D0:12:A9:06:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-LhNFJFffIe8ly6OyYQ0BKpBtI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:d2:d3:03:d1:cc:ae:32:d2:8a:ef:a8:1e:94:58:8a:d9:86: 2a:af:fb:74:2c:09:76:fa:28:a0:6e:9c:ce:57:36:5d:a2:43: 05:20:05:85:57:d3:2b:4c:51:9b:f4:92:01:cc:2f:4c:94:ca: dd:5e:ba:99:5b:aa:29:83:02:a8:b4:d1:0d:c9:3a:48:79:d6: f3:90:20:f5:4e:20:eb:cf:6c:38:0d:80:21:3b:7d:8f:8f:d7: 9e:4c:94:95:94:8e:9e:11:7a:e0:3f:69:e9:78:23:3f:8e:cc: 15:10:27:4c:19:84:7b:9b:07:a6:16:4a:e2:26:47:58:57:5a: 57:6a:16:fb:f7:44:fd:ca:70:51:9e:3c:13:86:6a:65:a5:0b: 49:cd:20:bf:4c:4b:c8:c4:8a:35:6a:32:f4:d6:50:a2:9a:30: e8:57:f1:d3:d0:06:12:00:a6:09:32:a6:c7:19:59:b9:c4:1d: d4:cc:a8:9f:0b:66:c0:ce:2c:9b:d8:64:fb:98:ce:2b:af:93: ba:ec:12:3a:f8:10:a0:aa:b5:c5:b1:1b:5a:55:99:92:e7:77: f5:f5:3d:8a:14:45:7c:84:91:05:a9:4a:15:d5:3b:50:c9:04: e2:05:da:c0:87:29:f3:b1:cb:65:36:33:63:9c:28:33:e2:f1: 2c:5d:9d:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM2QkQxMTAvBgNVBAUTKDUzRTJFMTM0NTI0NTdERjIxRUYyNUNCQTNCMjYxMEQw MTJBOTA2RDIwHhcNMjUxMDE5MDQyMjMxWhcNMjUxMDI2MDQyMjMxWjAYMRYwFAYD VQQDEw02OGY0Njc4Ny05YzY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwdlKk0813JqhJS+Cw+4DUFXU//wQNWdjzjkYPkwjYPcDIgHDTqeHI4giZp8C jMnMR6GBL0HYV/oM28fkBsnDFrPsMeQwcJIhJXgZzGsPzcbOdtbaGu04CxScHDYS Xz7Y0rbGmAzJ3IXFGu4RFfE6bd7ieIFXAOWOGWSFWxOP3H2LZOmgBzGRJA5GcAZW UwqekamN3ndTd0BrFnhn7LD8nPkZzqw9IGnI5iKEVo+ozdQ4M1jAUcpDJIBau6ST mnPeV+GodbCAsQXtW5nI3jYcwvv7ZNiNCwzd/ex1B8/Tio0kJpP+AE4dlL6jK/in WBok5uPLe7DLZIhBfqE5ikpZRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI+KMg6k dUbcCCl1tJPtEA4nurHeMB8GA1UdIwQYMBaAFFPi4TRSRX3yHvJcujsmENASqQbS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzZCRC8yMkM2MjFBODZF RTUxMUVEQjlDNDUzODVDNEY5QUUwMi9VLUxoTkZKRmZmSWU4bHk2T3lZUTBCS3BC dEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UtTGhORkpGZmZJZThseTZPeVlRMEJLcEJ0SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzZCRC8yMkM2MjFBODZFRTUxMUVEQjlDNDUzODVDNEY5QUUwMi9VLUxoTkZKRmZm SWU4bHk2T3lZUTBCS3BCdEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBv0tMD0cyuMtKK76gelFiK2YYqr/t0LAl2+iigbpzOVzZdokMFIAWF V9MrTFGb9JIBzC9MlMrdXrqZW6opgwKotNENyTpIedbzkCD1TiDrz2w4DYAhO32P j9eeTJSVlI6eEXrgP2npeCM/jswVECdMGYR7mwemFkriJkdYV1pXahb790T9ynBR njwThmplpQtJzSC/TEvIxIo1ajL01lCimjDoV/HT0AYSAKYJMqbHGVm5xB3UzKif C2bAziyb2GT7mM4rr5O67BI6+BCgqrXFsRtaVZmS53f19T2KFEV8hJEFqUoV1TtQ yQTiBdrAhynzsctlNjNjnCgz4vEsXZ0v -----END CERTIFICATE-----Generated at Mon Oct 20 13:50:19 2025 by rpki-client