$ rpki-client -vvf rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft File: uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft (raw, json) Hash identifier: y6Ip4n7bBX9ffofXrSkJwLqfa+hDBpdJbkHPfu3bHbU= Subject key identifier: E2:C8:8D:09:60:FE:3D:21:42:32:BF:FE:B0:B2:27:C1:18:35:95:93 Authority key identifier: B8:22:5F:1E:B8:67:66:47:C3:59:DB:C1:10:BF:EE:DE:B4:4F:D5:E8 Certificate issuer: /CN=A9195A3D/serialNumber=B8225F1EB8676647C359DBC110BFEEDEB44FD5E8 Certificate serial: 0459 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft Manifest number: 0454 Signing time: Sun 19 Oct 2025 02:04:57 +0000 Manifest this update: Sun 19 Oct 2025 02:04:56 +0000 Manifest next update: Sun 26 Oct 2025 02:04:56 +0000 Files and hashes: 1: uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl (hash: MS0TiohpNp+uf+9Sm6rBlrkrIDm8DuoSSy0p9IOdZls=) 2: 5AFB85086EC411ECB8E7492BC4F9AE02.roa (hash: Tec1GQXrCvVOwblaXBeRPQBIHEsrifUiDT/fZJx0nLQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:04:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1113 (0x459) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195A3D, serialNumber=B8225F1EB8676647C359DBC110BFEEDEB44FD5E8 Validity Not Before: Oct 19 02:04:56 2025 GMT Not After : Oct 26 02:04:56 2025 GMT Subject: CN=68f44748-3840 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:67:2b:70:61:93:d7:0c:95:e9:76:da:24:ff: 61:5e:7c:c5:22:7a:67:74:6a:cf:26:a4:78:97:dc: 21:7d:98:4a:c0:eb:d0:80:ce:2e:c3:73:0c:59:aa: 8e:f4:c0:08:13:79:ee:bf:0c:aa:a2:71:9a:9d:76: a0:ff:f4:a7:d6:9f:78:61:e5:46:66:3b:a2:38:d3: 63:7e:35:14:62:bf:a8:5f:67:a7:ba:e4:aa:be:01: af:db:66:db:6f:e4:6f:13:5f:8f:28:4d:73:e2:da: 2c:04:20:c4:e6:ae:a8:80:9f:96:e0:a2:1f:28:52: 04:6e:23:f4:76:6c:c0:23:37:de:8d:ff:bf:1b:cc: 5f:8d:c9:ad:d9:56:e2:a0:a1:61:0d:1f:b5:38:7e: df:cc:60:24:ab:dd:bc:dc:17:f9:04:5d:e7:10:8e: 5b:3b:c3:7c:3b:36:6e:49:83:dd:93:30:ad:ca:89: 7d:a5:8c:12:8e:a8:d2:d2:a2:d1:fc:0c:94:b9:fe: 4c:03:e3:5e:c1:3f:c0:30:63:83:b5:bf:04:6c:5a: 92:b8:c9:d2:23:f1:e7:e2:05:16:fa:c3:f1:c8:8e: bf:36:36:0e:16:e5:ea:45:73:8a:14:95:4e:ad:18: c2:df:80:87:c9:0f:2a:a4:95:d6:ca:c5:79:c8:ee: 52:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:C8:8D:09:60:FE:3D:21:42:32:BF:FE:B0:B2:27:C1:18:35:95:93 X509v3 Authority Key Identifier: keyid:B8:22:5F:1E:B8:67:66:47:C3:59:DB:C1:10:BF:EE:DE:B4:4F:D5:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:08:92:85:82:15:94:a0:e2:ac:23:9c:24:cd:30:f5:54:21: 87:0b:94:c3:10:b2:e4:5b:86:3d:f7:75:fc:2d:9a:c5:39:1b: 24:81:b0:c1:5e:f0:22:4f:3b:dd:56:60:9c:bc:41:49:9c:d4: 70:c8:86:64:f4:b7:95:2a:b7:c9:da:b9:ab:8b:10:b3:d2:4c: 4b:13:f3:98:ab:57:46:67:01:38:c9:3c:97:d7:b3:31:e8:d6: fd:dd:99:63:d4:22:24:a9:c7:39:29:93:7f:d0:36:ce:52:35: 16:83:53:90:1c:73:1f:39:73:26:94:2a:b4:15:1c:87:70:b0: be:66:1b:ce:a2:f1:c9:ab:12:62:41:3b:d2:f5:b8:66:eb:e0: 97:8f:04:90:64:35:3d:da:98:ad:4e:2d:16:7f:bf:06:79:11: d9:56:63:4b:5b:b0:50:ca:92:aa:6d:41:1a:a7:24:e0:5f:b8: f0:8a:2d:11:85:aa:9f:7d:32:26:01:31:9e:c8:69:9d:16:a6: d1:17:9d:13:29:5e:5c:a2:8e:23:64:4e:8d:7e:df:d8:43:78: aa:9a:b0:18:e0:45:15:93:2d:6a:9d:62:7e:0f:e6:3c:ac:c7: 1f:26:9c:63:76:1b:1b:fc:b6:fa:3e:47:db:1c:79:f6:73:ca: 82:76:e5:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVBM0QxMTAvBgNVBAUTKEI4MjI1RjFFQjg2NzY2NDdDMzU5REJDMTEwQkZFRURF QjQ0RkQ1RTgwHhcNMjUxMDE5MDIwNDU2WhcNMjUxMDI2MDIwNDU2WjAYMRYwFAYD VQQDEw02OGY0NDc0OC0zODQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzmcrcGGT1wyV6XbaJP9hXnzFInpndGrPJqR4l9whfZhKwOvQgM4uw3MMWaqO 9MAIE3nuvwyqonGanXag//Sn1p94YeVGZjuiONNjfjUUYr+oX2enuuSqvgGv22bb b+RvE1+PKE1z4tosBCDE5q6ogJ+W4KIfKFIEbiP0dmzAIzfejf+/G8xfjcmt2Vbi oKFhDR+1OH7fzGAkq9283Bf5BF3nEI5bO8N8OzZuSYPdkzCtyol9pYwSjqjS0qLR /AyUuf5MA+NewT/AMGODtb8EbFqSuMnSI/Hn4gUW+sPxyI6/NjYOFuXqRXOKFJVO rRjC34CHyQ8qpJXWysV5yO5S6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOLIjQlg /j0hQjK//rCyJ8EYNZWTMB8GA1UdIwQYMBaAFLgiXx64Z2ZHw1nbwRC/7t60T9Xo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUEzRC82OUVGQ0REMjZF QzIxMUVDODc4QTEwMkJDNEY5QUUwMi91Q0pmSHJoblprZkRXZHZCRUxfdTNyUlAx ZWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VDSmZIcmhuWmtmRFdkdkJFTF91M3JSUDFlZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUEzRC82OUVGQ0REMjZFQzIxMUVDODc4QTEwMkJDNEY5QUUwMi91Q0pmSHJoblpr ZkRXZHZCRUxfdTNyUlAxZWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqCJKFghWUoOKsI5wkzTD1VCGHC5TDELLkW4Y993X8LZrFORskgbDB XvAiTzvdVmCcvEFJnNRwyIZk9LeVKrfJ2rmrixCz0kxLE/OYq1dGZwE4yTyX17Mx 6Nb93Zlj1CIkqcc5KZN/0DbOUjUWg1OQHHMfOXMmlCq0FRyHcLC+ZhvOovHJqxJi QTvS9bhm6+CXjwSQZDU92pitTi0Wf78GeRHZVmNLW7BQypKqbUEapyTgX7jwii0R haqffTImATGeyGmdFqbRF50TKV5coo4jZE6Nft/YQ3iqmrAY4EUVky1qnWJ+D+Y8 rMcfJpxjdhsb/Lb6PkfbHHn2c8qCduXW -----END CERTIFICATE-----Generated at Mon Oct 20 18:27:01 2025 by rpki-client