$ rpki-client -vvf rpki.apnic.net/member_repository/A91847A0/0E4AD128BC4F11E6BAF1C24AC4F9AE02/UyhhbneUVH65zpK0qPBF5LLMwPw.mft File: UyhhbneUVH65zpK0qPBF5LLMwPw.mft (raw, json) Hash identifier: bR84LTzxzKTpXZ8gWUg5XMvr2XdB4ZhbOie/oo7dHXM= Subject key identifier: DB:BC:5D:CF:88:0E:AA:0B:9E:11:B2:0D:FF:65:40:AA:FF:3B:DB:D3 Authority key identifier: 53:28:61:6E:77:94:54:7E:B9:CE:92:B4:A8:F0:45:E4:B2:CC:C0:FC Certificate issuer: /CN=A91847A0/serialNumber=5328616E7794547EB9CE92B4A8F045E4B2CCC0FC Certificate serial: 1D57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UyhhbneUVH65zpK0qPBF5LLMwPw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91847A0/0E4AD128BC4F11E6BAF1C24AC4F9AE02/UyhhbneUVH65zpK0qPBF5LLMwPw.mft Manifest number: 1D4B Signing time: Sat 18 Oct 2025 16:27:12 +0000 Manifest this update: Sat 18 Oct 2025 16:27:11 +0000 Manifest next update: Sat 25 Oct 2025 16:27:11 +0000 Files and hashes: 1: UyhhbneUVH65zpK0qPBF5LLMwPw.crl (hash: QfRGYGookv/nDmXN2skljbe0Rd3UtzAyYUxso8lzmOo=) 2: 82E0D450BC5011E6B01A8D4CC4F9AE02.roa (hash: 0pFtdAh/nKnP5eoxsGxODsFcMEqhXHUTJ4P3f5IMFhU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91847A0/0E4AD128BC4F11E6BAF1C24AC4F9AE02/UyhhbneUVH65zpK0qPBF5LLMwPw.crl rsync://rpki.apnic.net/member_repository/A91847A0/0E4AD128BC4F11E6BAF1C24AC4F9AE02/UyhhbneUVH65zpK0qPBF5LLMwPw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UyhhbneUVH65zpK0qPBF5LLMwPw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 16:27:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7511 (0x1d57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91847A0, serialNumber=5328616E7794547EB9CE92B4A8F045E4B2CCC0FC Validity Not Before: Oct 18 16:27:11 2025 GMT Not After : Oct 25 16:27:11 2025 GMT Subject: CN=68f3bfe0-20bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:58:15:db:f8:64:80:96:e3:ef:8d:58:4a:0a: 8c:5f:66:07:1a:b9:3c:26:70:ca:3f:b2:75:fe:89: 0f:a4:0a:00:df:60:ad:c5:a3:6e:92:5a:eb:4a:32: 63:10:60:15:69:1d:9f:2b:ff:8f:d4:dc:83:c3:4b: f3:b6:d9:79:1e:d3:c8:84:49:69:3a:3c:6e:b7:24: 24:ee:07:96:7a:71:58:ce:72:a9:4a:1f:85:a4:9e: 38:40:e7:c7:cc:fa:c3:d8:2f:c4:e8:7e:6e:3d:a5: 7c:17:34:20:6a:ce:5d:61:f0:dc:4a:86:0b:08:08: d4:60:d5:14:ac:20:41:df:53:29:61:c8:67:9e:9f: ca:73:5d:09:ae:07:6c:a4:ce:66:5b:63:13:70:b5: 4e:ab:60:d4:86:05:37:7a:7f:11:3c:2c:41:96:84: 65:67:df:4a:72:1b:3d:24:97:09:af:db:40:15:70: 2a:55:03:1e:27:85:2c:ea:1c:5d:90:38:83:95:f5: e4:48:b4:db:ac:73:7b:9e:10:83:af:40:d6:3f:d4: 94:b5:6b:d0:ea:24:96:8d:cc:d3:89:e2:7d:92:d3: 95:c8:0d:08:07:f8:69:79:08:d7:2c:5b:2e:6f:f9: d3:42:08:ac:e9:d4:63:0a:fe:bf:ef:a0:ef:0c:c4: bb:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:BC:5D:CF:88:0E:AA:0B:9E:11:B2:0D:FF:65:40:AA:FF:3B:DB:D3 X509v3 Authority Key Identifier: keyid:53:28:61:6E:77:94:54:7E:B9:CE:92:B4:A8:F0:45:E4:B2:CC:C0:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91847A0/0E4AD128BC4F11E6BAF1C24AC4F9AE02/UyhhbneUVH65zpK0qPBF5LLMwPw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UyhhbneUVH65zpK0qPBF5LLMwPw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91847A0/0E4AD128BC4F11E6BAF1C24AC4F9AE02/UyhhbneUVH65zpK0qPBF5LLMwPw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:ff:58:0a:cd:e6:fb:c0:40:48:10:7c:9b:17:4d:7d:0f:02: 70:78:9f:d0:66:a3:bf:d9:9b:85:a1:a9:67:2f:91:6d:5e:bd: 38:cc:f4:9a:a9:a8:33:71:46:82:ea:52:51:a3:bc:e2:bc:74: 58:b5:7b:c9:4d:31:63:8e:48:f1:b4:34:f7:7d:6a:78:c1:d8: 4a:f7:e3:38:46:76:96:ba:47:92:ab:e0:25:b1:78:d0:98:9c: 93:3d:0b:91:72:e2:eb:5c:ec:9b:bf:44:0f:7c:dc:a0:da:09: f1:8c:48:e2:20:cc:d7:e1:88:5b:49:0a:76:b3:5b:ac:fb:f6: ba:d9:40:1a:ea:63:6c:92:4a:08:06:46:cd:81:be:8d:87:fc: ab:3a:45:13:dc:ac:26:9c:0e:69:c8:ad:ff:97:a2:17:f2:ca: e9:c8:de:d2:53:6b:22:d2:aa:ad:7b:a2:38:e4:b2:bc:08:37: 7f:ef:f1:30:83:2e:c2:94:4d:12:2e:09:71:0c:84:a8:33:6e: 2e:67:18:12:8d:36:24:ad:30:bd:6b:a7:5a:bf:5d:c0:b3:27: c0:2a:91:cc:ad:d2:dc:36:58:1e:0e:47:b7:e7:c3:19:34:5b: 0a:54:7d:36:77:da:0b:1a:e0:ba:67:ab:57:c3:8c:7d:af:a7: 34:ca:ba:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHVcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQ3QTAxMTAvBgNVBAUTKDUzMjg2MTZFNzc5NDU0N0VCOUNFOTJCNEE4RjA0NUU0 QjJDQ0MwRkMwHhcNMjUxMDE4MTYyNzExWhcNMjUxMDI1MTYyNzExWjAYMRYwFAYD VQQDEw02OGYzYmZlMC0yMGJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzVgV2/hkgJbj741YSgqMX2YHGrk8JnDKP7J1/okPpAoA32CtxaNuklrrSjJj EGAVaR2fK/+P1NyDw0vzttl5HtPIhElpOjxutyQk7geWenFYznKpSh+FpJ44QOfH zPrD2C/E6H5uPaV8FzQgas5dYfDcSoYLCAjUYNUUrCBB31MpYchnnp/Kc10Jrgds pM5mW2MTcLVOq2DUhgU3en8RPCxBloRlZ99Kchs9JJcJr9tAFXAqVQMeJ4Us6hxd kDiDlfXkSLTbrHN7nhCDr0DWP9SUtWvQ6iSWjczTieJ9ktOVyA0IB/hpeQjXLFsu b/nTQgis6dRjCv6/76DvDMS71wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNu8Xc+I DqoLnhGyDf9lQKr/O9vTMB8GA1UdIwQYMBaAFFMoYW53lFR+uc6StKjwReSyzMD8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDdBMC8wRTRBRDEyOEJD NEYxMUU2QkFGMUMyNEFDNEY5QUUwMi9VeWhoYm5lVVZINjV6cEswcVBCRjVMTE13 UHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V5aGhibmVVVkg2NXpwSzBxUEJGNUxMTXdQdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDdBMC8wRTRBRDEyOEJDNEYxMUU2QkFGMUMyNEFDNEY5QUUwMi9VeWhoYm5lVVZI NjV6cEswcVBCRjVMTE13UHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCc/1gKzeb7wEBIEHybF019DwJweJ/QZqO/2ZuFoalnL5FtXr04zPSa qagzcUaC6lJRo7zivHRYtXvJTTFjjkjxtDT3fWp4wdhK9+M4RnaWukeSq+AlsXjQ mJyTPQuRcuLrXOybv0QPfNyg2gnxjEjiIMzX4YhbSQp2s1us+/a62UAa6mNskkoI BkbNgb6Nh/yrOkUT3KwmnA5pyK3/l6IX8srpyN7SU2si0qqte6I45LK8CDd/7/Ew gy7ClE0SLglxDISoM24uZxgSjTYkrTC9a6dav13AsyfAKpHMrdLcNlgeDke358MZ NFsKVH02d9oLGuC6Z6tXw4x9r6c0yro5 -----END CERTIFICATE-----Generated at Mon Oct 20 14:35:13 2025 by rpki-client