$ rpki-client -vvf rpki.apnic.net/member_repository/A918E023/A654FEF0111C11F0B15AF970C4F9AE02/uc1X4v9PWLuVmpVBoxz99ml2GLI.mft File: uc1X4v9PWLuVmpVBoxz99ml2GLI.mft (raw, json) Hash identifier: FtEVGoFxdxenKiVRydnhY9oF4WA08qpAafivo+y2O+M= Subject key identifier: 2D:59:45:A9:BD:D3:16:F8:B6:37:A3:9B:7F:4D:A8:74:D9:06:C5:F3 Authority key identifier: B9:CD:57:E2:FF:4F:58:BB:95:9A:95:41:A3:1C:FD:F6:69:76:18:B2 Certificate issuer: /CN=A918E023/serialNumber=B9CD57E2FF4F58BB959A9541A31CFDF6697618B2 Certificate serial: 66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uc1X4v9PWLuVmpVBoxz99ml2GLI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E023/A654FEF0111C11F0B15AF970C4F9AE02/uc1X4v9PWLuVmpVBoxz99ml2GLI.mft Manifest number: 65 Signing time: Sun 19 Oct 2025 10:23:17 +0000 Manifest this update: Sun 19 Oct 2025 10:23:17 +0000 Manifest next update: Sun 26 Oct 2025 10:23:17 +0000 Files and hashes: 1: uc1X4v9PWLuVmpVBoxz99ml2GLI.crl (hash: OgL+BhJeAYkubLdqXQPFStKYD58ZKcIFF1XP2nKkzhc=) 2: C420B2B6111D11F0BE9ABA7AC4F9AE02.roa (hash: BmMWgtMQ3PCdQlZ5TlrzvWUUVUt35N0MZwh0nPjZPiY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E023/A654FEF0111C11F0B15AF970C4F9AE02/uc1X4v9PWLuVmpVBoxz99ml2GLI.crl rsync://rpki.apnic.net/member_repository/A918E023/A654FEF0111C11F0B15AF970C4F9AE02/uc1X4v9PWLuVmpVBoxz99ml2GLI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uc1X4v9PWLuVmpVBoxz99ml2GLI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:23:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 102 (0x66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E023, serialNumber=B9CD57E2FF4F58BB959A9541A31CFDF6697618B2 Validity Not Before: Oct 19 10:23:17 2025 GMT Not After : Oct 26 10:23:17 2025 GMT Subject: CN=68f4bc15-387f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:5c:94:a0:34:d2:b3:d6:41:fe:65:88:16:e6: 3d:22:6f:a0:24:19:52:b1:cd:7a:36:ad:51:75:ab: d0:cb:07:40:41:bf:32:fb:f0:13:91:5c:95:3b:df: 91:3a:bc:e8:ad:08:e1:6a:9e:c8:b3:b4:24:cf:fb: 27:5c:95:be:f9:23:9c:99:f5:ad:52:4b:03:ee:88: 42:b2:4e:87:b5:9e:d6:09:48:3a:c3:2a:f8:df:21: cd:a2:83:09:7d:e4:8a:66:56:03:a0:f4:43:4b:e1: 87:59:03:0b:8d:39:37:10:d8:39:31:ab:7d:3a:7f: 78:04:e8:84:8a:9f:12:14:1a:42:8e:4f:69:9c:e1: 2a:42:b2:2d:ed:8b:fe:3f:db:9e:91:09:f6:0e:1a: 96:78:c3:79:3a:80:f6:4b:9c:50:96:10:95:10:8c: 60:dc:90:5d:c6:d6:b4:2c:25:a0:cc:04:73:98:03: 8d:8f:e4:fe:a2:50:3e:48:31:70:dd:1d:f7:cd:be: 14:8c:da:4a:26:3c:0c:5d:49:d6:9d:b4:1a:c5:c0: 80:65:20:61:bb:87:ab:0b:9d:49:e7:8a:a1:0a:6b: 59:c0:bf:03:f6:eb:23:be:f0:fd:e5:a2:49:f1:ee: 48:31:db:87:f8:0f:b2:fc:63:83:6a:2c:25:e6:db: f6:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:59:45:A9:BD:D3:16:F8:B6:37:A3:9B:7F:4D:A8:74:D9:06:C5:F3 X509v3 Authority Key Identifier: keyid:B9:CD:57:E2:FF:4F:58:BB:95:9A:95:41:A3:1C:FD:F6:69:76:18:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E023/A654FEF0111C11F0B15AF970C4F9AE02/uc1X4v9PWLuVmpVBoxz99ml2GLI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uc1X4v9PWLuVmpVBoxz99ml2GLI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E023/A654FEF0111C11F0B15AF970C4F9AE02/uc1X4v9PWLuVmpVBoxz99ml2GLI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:79:7e:e6:73:01:95:1c:9a:1a:8a:f2:ff:55:8d:df:7d:9e: aa:c2:1c:2d:53:62:ba:d7:5e:95:66:10:c0:86:0f:a1:75:fd: 40:26:9b:2f:78:56:c0:4b:24:2f:80:0f:30:ff:41:d2:c6:a7: 1f:51:61:c6:c6:e0:2e:73:bf:a0:e2:d6:aa:c3:d0:d3:f6:ed: 0d:24:c1:97:52:45:fa:ba:2c:5c:f3:62:b2:94:41:d8:e6:c6: 9d:2c:5b:88:8a:1d:15:1b:50:0f:aa:4e:9c:81:14:8b:53:73: b8:10:7c:88:da:48:49:9b:b7:a7:59:f8:c2:5e:8c:8c:ce:f8: 15:97:ed:e6:f7:ba:d6:19:e3:20:f4:84:3b:9f:a5:b6:9d:09: 0c:2e:f1:d3:f7:01:dd:e5:16:be:7f:98:02:e2:c7:d3:32:09: 43:1e:51:0d:14:bc:d6:9a:e5:cd:25:63:1e:8b:ca:25:3c:d1: ab:e8:f4:99:31:b8:2a:23:15:b1:03:ce:e3:68:a1:6f:d4:12: 57:46:40:91:46:c7:86:25:e0:13:df:b4:b6:d6:2f:cc:ed:40: 3d:7c:c3:c1:b5:3c:13:54:85:9d:bf:bc:84:9b:2d:1c:5d:76: 0a:bd:8d:78:55:63:19:90:42:d0:99:86:d1:8e:ed:02:86:47: 55:d4:7a:61 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RTAyMzExMC8GA1UEBRMoQjlDRDU3RTJGRjRGNThCQjk1OUE5NTQxQTMxQ0ZERjY2 OTc2MThCMjAeFw0yNTEwMTkxMDIzMTdaFw0yNTEwMjYxMDIzMTdaMBgxFjAUBgNV BAMTDTY4ZjRiYzE1LTM4N2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDIXJSgNNKz1kH+ZYgW5j0ib6AkGVKxzXo2rVF1q9DLB0BBvzL78BORXJU735E6 vOitCOFqnsiztCTP+ydclb75I5yZ9a1SSwPuiEKyToe1ntYJSDrDKvjfIc2igwl9 5IpmVgOg9ENL4YdZAwuNOTcQ2Dkxq306f3gE6ISKnxIUGkKOT2mc4SpCsi3ti/4/ 256RCfYOGpZ4w3k6gPZLnFCWEJUQjGDckF3G1rQsJaDMBHOYA42P5P6iUD5IMXDd HffNvhSM2komPAxdSdadtBrFwIBlIGG7h6sLnUnniqEKa1nAvwP26yO+8P3loknx 7kgx24f4D7L8Y4NqLCXm2/ZVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQULVlFqb3T Fvi2N6Obf02odNkGxfMwHwYDVR0jBBgwFoAUuc1X4v9PWLuVmpVBoxz99ml2GLIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThFMDIzL0E2NTRGRUYwMTEx QzExRjBCMTVBRjk3MEM0RjlBRTAyL3VjMVg0djlQV0x1Vm1wVkJveHo5OW1sMkdM SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdWMxWDR2OVBXTHVWbXBWQm94ejk5bWwyR0xJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThF MDIzL0E2NTRGRUYwMTExQzExRjBCMTVBRjk3MEM0RjlBRTAyL3VjMVg0djlQV0x1 Vm1wVkJveHo5OW1sMkdMSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAI95fuZzAZUcmhqK8v9Vjd99nqrCHC1TYrrXXpVmEMCGD6F1/UAmmy94 VsBLJC+ADzD/QdLGpx9RYcbG4C5zv6Di1qrD0NP27Q0kwZdSRfq6LFzzYrKUQdjm xp0sW4iKHRUbUA+qTpyBFItTc7gQfIjaSEmbt6dZ+MJejIzO+BWX7eb3utYZ4yD0 hDufpbadCQwu8dP3Ad3lFr5/mALix9MyCUMeUQ0UvNaa5c0lYx6LyiU80avo9Jkx uCojFbEDzuNooW/UEldGQJFGx4Yl4BPftLbWL8ztQD18w8G1PBNUhZ2/vISbLRxd dgq9jXhVYxmQQtCZhtGO7QKGR1XUemE= -----END CERTIFICATE-----Generated at Mon Oct 20 08:58:30 2025 by rpki-client