$ rpki-client -vvf rpki.apnic.net/member_repository/A918B418/AD0DC4801C4F11EDAAD31386C4F9AE02/rUk9yaPSQDSDYoWHBR93lRWJFnk.mft File: rUk9yaPSQDSDYoWHBR93lRWJFnk.mft (raw, json) Hash identifier: YHED9T2m7rtjw4KPoJS1FY9V/bS2lgClCIoXSiUnTa8= Subject key identifier: E6:B0:D1:8A:62:EE:2B:DE:D7:76:7C:E9:E5:1A:E5:AD:D2:FB:30:B4 Authority key identifier: AD:49:3D:C9:A3:D2:40:34:83:62:85:87:05:1F:77:95:15:89:16:79 Certificate issuer: /CN=A918B418/serialNumber=AD493DC9A3D2403483628587051F779515891679 Certificate serial: 029E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rUk9yaPSQDSDYoWHBR93lRWJFnk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B418/AD0DC4801C4F11EDAAD31386C4F9AE02/rUk9yaPSQDSDYoWHBR93lRWJFnk.mft Manifest number: 029A Signing time: Sun 19 Oct 2025 03:46:17 +0000 Manifest this update: Sun 19 Oct 2025 03:46:17 +0000 Manifest next update: Sun 26 Oct 2025 03:46:17 +0000 Files and hashes: 1: rUk9yaPSQDSDYoWHBR93lRWJFnk.crl (hash: Lg2cbvDltAyWcFOogSU4cKnZcHHPE95RBgAsV4//PXI=) 2: 8275E1721C5311EDA75CF137C4F9AE02.roa (hash: QBccf8qiB/fg1E5oo2BszC0tBdDW5Z5O97MgPa2rWD0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B418/AD0DC4801C4F11EDAAD31386C4F9AE02/rUk9yaPSQDSDYoWHBR93lRWJFnk.crl rsync://rpki.apnic.net/member_repository/A918B418/AD0DC4801C4F11EDAAD31386C4F9AE02/rUk9yaPSQDSDYoWHBR93lRWJFnk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rUk9yaPSQDSDYoWHBR93lRWJFnk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:46:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 670 (0x29e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B418, serialNumber=AD493DC9A3D2403483628587051F779515891679 Validity Not Before: Oct 19 03:46:17 2025 GMT Not After : Oct 26 03:46:17 2025 GMT Subject: CN=68f45f09-4592 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:69:28:a7:ec:61:4f:58:d5:98:7d:df:4e:9c: f5:30:27:7f:c4:24:66:10:3e:79:d1:f6:96:a5:65: 6b:38:02:05:14:88:22:15:28:fe:40:82:b5:19:44: ce:7d:9f:82:cf:a1:96:a7:8a:2c:de:1e:14:4b:2d: 32:bd:82:59:09:93:17:33:fd:04:87:01:01:aa:56: 7a:d0:ca:2a:0f:77:11:e9:90:07:dc:ff:0d:e7:b9: df:b1:5e:d7:02:1e:b6:95:eb:65:ea:85:59:8b:fe: 44:92:a0:93:97:7b:9e:a6:02:f1:02:80:d1:ee:b6: ff:d7:1d:8b:f7:c6:9b:83:33:6e:d1:b1:c3:7a:50: 1c:79:58:98:5b:38:e9:a1:27:2d:b8:02:bc:ba:d6: da:d6:2c:3b:28:d8:5d:89:5a:28:e9:61:77:59:9d: fc:fb:84:87:9e:4b:41:a8:51:ce:e4:7c:81:96:51: c4:7b:51:39:c5:83:2a:22:72:e3:5d:20:31:ba:de: 13:34:22:72:76:3d:a9:92:da:9b:83:b4:7d:c1:91: 25:9c:a2:9a:0a:46:aa:c1:e7:5b:05:ad:23:24:4e: 1d:b0:18:ab:62:18:33:90:db:d2:41:a9:3b:7c:34: 91:be:f3:32:3e:25:c1:b2:72:55:b7:1f:7e:6d:55: e3:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:B0:D1:8A:62:EE:2B:DE:D7:76:7C:E9:E5:1A:E5:AD:D2:FB:30:B4 X509v3 Authority Key Identifier: keyid:AD:49:3D:C9:A3:D2:40:34:83:62:85:87:05:1F:77:95:15:89:16:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B418/AD0DC4801C4F11EDAAD31386C4F9AE02/rUk9yaPSQDSDYoWHBR93lRWJFnk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rUk9yaPSQDSDYoWHBR93lRWJFnk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B418/AD0DC4801C4F11EDAAD31386C4F9AE02/rUk9yaPSQDSDYoWHBR93lRWJFnk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:c8:93:79:7e:bb:7b:23:7b:54:bc:0f:b8:07:bb:b3:4d:96: cb:8f:9f:cf:90:96:ac:11:bb:2a:9f:da:58:96:10:27:3e:76: 89:da:11:51:2d:1c:8d:fb:e5:9e:ec:7f:5e:51:2d:f0:4b:d9: 3b:9f:4a:29:7e:ff:ed:38:66:6e:0d:1b:b6:34:85:cf:7f:1c: 5c:8a:0a:af:7b:25:54:fb:36:c7:ac:68:e3:22:1c:b9:07:ba: 3b:fe:3e:f9:36:6a:2c:9b:47:77:ab:c0:79:4e:3c:40:34:40: c4:75:b8:8d:5d:e8:cb:b2:cd:6d:f7:2e:a9:3b:c2:b3:8c:e0: f5:21:5c:08:f7:4f:7c:ae:32:2c:50:23:3b:2c:6b:2f:41:a8: 80:de:d7:0d:11:31:e0:20:37:06:ec:37:e7:98:66:75:02:d9: 88:55:ce:e4:34:87:aa:0a:69:bc:a0:4a:1e:60:de:68:b7:6b: c2:f8:a9:3b:f8:63:7a:82:8e:0c:0f:eb:72:f1:11:98:92:7b: 30:54:31:bf:b2:be:d9:e0:4f:f1:55:1b:7b:68:a2:77:5f:31: 55:03:89:01:fa:4b:bd:9b:db:11:a8:12:fb:96:db:3c:63:5d: 8e:67:b0:80:e3:1a:e7:86:2f:68:c5:cb:da:2e:28:d0:ce:6f: 20:01:d9:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAp4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEI0MTgxMTAvBgNVBAUTKEFENDkzREM5QTNEMjQwMzQ4MzYyODU4NzA1MUY3Nzk1 MTU4OTE2NzkwHhcNMjUxMDE5MDM0NjE3WhcNMjUxMDI2MDM0NjE3WjAYMRYwFAYD VQQDEw02OGY0NWYwOS00NTkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoGkop+xhT1jVmH3fTpz1MCd/xCRmED550faWpWVrOAIFFIgiFSj+QIK1GUTO fZ+Cz6GWp4os3h4USy0yvYJZCZMXM/0EhwEBqlZ60MoqD3cR6ZAH3P8N57nfsV7X Ah62letl6oVZi/5EkqCTl3uepgLxAoDR7rb/1x2L98abgzNu0bHDelAceViYWzjp oSctuAK8utba1iw7KNhdiVoo6WF3WZ38+4SHnktBqFHO5HyBllHEe1E5xYMqInLj XSAxut4TNCJydj2pktqbg7R9wZElnKKaCkaqwedbBa0jJE4dsBirYhgzkNvSQak7 fDSRvvMyPiXBsnJVtx9+bVXj1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOaw0Ypi 7ive13Z86eUa5a3S+zC0MB8GA1UdIwQYMBaAFK1JPcmj0kA0g2KFhwUfd5UViRZ5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjQxOC9BRDBEQzQ4MDFD NEYxMUVEQUFEMzEzODZDNEY5QUUwMi9yVWs5eWFQU1FEU0RZb1dIQlI5M2xSV0pG bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JVazl5YVBTUURTRFlvV0hCUjkzbFJXSkZuay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QjQxOC9BRDBEQzQ4MDFDNEYxMUVEQUFEMzEzODZDNEY5QUUwMi9yVWs5eWFQU1FE U0RZb1dIQlI5M2xSV0pGbmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdyJN5frt7I3tUvA+4B7uzTZbLj5/PkJasEbsqn9pYlhAnPnaJ2hFR LRyN++We7H9eUS3wS9k7n0opfv/tOGZuDRu2NIXPfxxcigqveyVU+zbHrGjjIhy5 B7o7/j75Nmosm0d3q8B5TjxANEDEdbiNXejLss1t9y6pO8KzjOD1IVwI9098rjIs UCM7LGsvQaiA3tcNETHgIDcG7DfnmGZ1AtmIVc7kNIeqCmm8oEoeYN5ot2vC+Kk7 +GN6go4MD+ty8RGYknswVDG/sr7Z4E/xVRt7aKJ3XzFVA4kB+ku9m9sRqBL7lts8 Y12OZ7CA4xrnhi9oxcvaLijQzm8gAdlR -----END CERTIFICATE-----Generated at Mon Oct 20 01:49:27 2025 by rpki-client