$ rpki-client -vvf rpki.apnic.net/member_repository/A9199836/2936FFB2362E11EC8909E86FC4F9AE02/xUMJ3BErZYYnvTagMHLnXQYDZNM.mft File: xUMJ3BErZYYnvTagMHLnXQYDZNM.mft (raw, json) Hash identifier: Zn2VdoeBCvUzGrmiimS0qVVaJhU9n5Y3Op2eHgczU5E= Subject key identifier: 11:90:43:CB:72:AF:52:2E:89:F8:D0:29:BF:F8:26:6E:C4:D9:34:BF Authority key identifier: C5:43:09:DC:11:2B:65:86:27:BD:36:A0:30:72:E7:5D:06:03:64:D3 Certificate issuer: /CN=A9199836/serialNumber=C54309DC112B658627BD36A03072E75D060364D3 Certificate serial: 04EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xUMJ3BErZYYnvTagMHLnXQYDZNM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199836/2936FFB2362E11EC8909E86FC4F9AE02/xUMJ3BErZYYnvTagMHLnXQYDZNM.mft Manifest number: 04E6 Signing time: Sun 19 Oct 2025 01:32:13 +0000 Manifest this update: Sun 19 Oct 2025 01:32:12 +0000 Manifest next update: Sun 26 Oct 2025 01:32:12 +0000 Files and hashes: 1: xUMJ3BErZYYnvTagMHLnXQYDZNM.crl (hash: tDlht5CwHl+kkp2552NIAD405aOjtNx3vZ3S3QNqb5M=) 2: 029F318A366F11ECA773E263C4F9AE02.roa (hash: XUaIWvSjvHJx2WjE0nq5LCjXyTsCoEUciSF2lpWLzf8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199836/2936FFB2362E11EC8909E86FC4F9AE02/xUMJ3BErZYYnvTagMHLnXQYDZNM.crl rsync://rpki.apnic.net/member_repository/A9199836/2936FFB2362E11EC8909E86FC4F9AE02/xUMJ3BErZYYnvTagMHLnXQYDZNM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xUMJ3BErZYYnvTagMHLnXQYDZNM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:32:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1259 (0x4eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199836, serialNumber=C54309DC112B658627BD36A03072E75D060364D3 Validity Not Before: Oct 19 01:32:12 2025 GMT Not After : Oct 26 01:32:12 2025 GMT Subject: CN=68f43f9c-acb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:6b:43:19:21:a0:fa:a2:0c:09:2f:93:87:e8: e6:ba:4c:93:26:6c:ef:d7:5b:ef:df:dc:3a:a8:9d: 30:75:d5:54:ca:58:68:1c:ff:3d:9a:3b:01:97:fc: dd:09:2c:54:ca:20:61:fe:62:10:82:42:c8:59:22: 4a:8e:83:6d:96:56:b1:98:7d:e9:8b:03:1d:9b:aa: 95:af:60:29:b6:1a:be:98:f8:b2:4f:54:9b:40:68: 3d:0d:cb:fb:ea:ce:68:35:ac:0e:fa:91:77:7e:71: 81:c7:f0:1d:d0:5f:6c:80:b9:66:2e:c3:2b:d2:53: 53:26:8a:22:ea:41:ee:aa:5b:0b:66:79:5d:b6:56: 05:43:09:3e:b4:eb:1a:21:4f:13:5d:fd:8c:09:ad: f3:82:e8:f7:c3:32:c4:e1:90:c3:f9:05:b6:91:bb: e8:d4:71:c0:61:a5:11:e8:d9:1b:7a:42:4a:a1:57: b8:56:88:d0:dd:01:28:89:bd:af:32:33:44:59:d7: f8:e3:5e:b9:9f:d4:ea:9d:a1:77:77:85:e4:ed:e3: 10:2f:2e:0c:06:b9:17:cf:56:50:11:c2:59:3e:a1: 80:54:05:71:63:06:0e:4b:07:84:76:9d:23:f9:3c: cb:1f:a9:6d:79:b2:ab:da:c1:be:72:55:2f:2d:65: 1d:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:90:43:CB:72:AF:52:2E:89:F8:D0:29:BF:F8:26:6E:C4:D9:34:BF X509v3 Authority Key Identifier: keyid:C5:43:09:DC:11:2B:65:86:27:BD:36:A0:30:72:E7:5D:06:03:64:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199836/2936FFB2362E11EC8909E86FC4F9AE02/xUMJ3BErZYYnvTagMHLnXQYDZNM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xUMJ3BErZYYnvTagMHLnXQYDZNM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199836/2936FFB2362E11EC8909E86FC4F9AE02/xUMJ3BErZYYnvTagMHLnXQYDZNM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:23:92:6b:59:d6:67:59:fb:f8:e5:b8:7d:8f:34:0e:cb:0f: d3:59:c6:e5:52:83:3f:41:62:ae:0c:04:54:d6:e8:e3:a7:9b: 31:31:23:f9:65:45:35:2d:7e:fc:92:57:19:f0:0f:ee:ef:4f: eb:69:66:f2:69:d4:fd:44:e1:ea:62:26:85:3c:e2:37:71:60: b9:c0:0d:f5:33:d1:c2:45:99:66:4c:24:49:e5:ab:55:07:7e: 6f:95:f6:12:13:78:ba:ae:16:11:29:72:0b:ee:67:e0:90:81: cb:05:03:d1:f4:77:ae:fc:a6:36:82:39:cf:90:d2:14:b2:38: 04:a3:9e:1a:62:71:a2:90:40:81:c0:12:fe:a0:91:f8:d3:9e: 87:de:af:b5:e4:5a:e4:1c:70:ff:7c:2f:1f:49:8c:d3:a2:41: a4:80:17:86:01:33:8e:6e:e7:d6:77:1d:02:26:b4:26:c1:73: c1:66:c5:de:d7:7f:e8:7a:fb:fa:94:f0:37:b8:7e:dd:15:c7: c9:24:b7:be:f3:4b:c7:d4:e8:6d:21:5d:88:11:31:cd:c6:4e: 2f:a3:50:34:12:68:20:14:53:51:60:6c:c4:a2:16:45:89:02: cd:4d:28:3e:b0:87:11:48:da:17:d2:e6:63:13:eb:32:aa:eb: 2a:0a:2c:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk4MzYxMTAvBgNVBAUTKEM1NDMwOURDMTEyQjY1ODYyN0JEMzZBMDMwNzJFNzVE MDYwMzY0RDMwHhcNMjUxMDE5MDEzMjEyWhcNMjUxMDI2MDEzMjEyWjAYMRYwFAYD VQQDEw02OGY0M2Y5Yy1hY2I3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6mtDGSGg+qIMCS+Th+jmukyTJmzv11vv39w6qJ0wddVUylhoHP89mjsBl/zd CSxUyiBh/mIQgkLIWSJKjoNtllaxmH3piwMdm6qVr2Apthq+mPiyT1SbQGg9Dcv7 6s5oNawO+pF3fnGBx/Ad0F9sgLlmLsMr0lNTJooi6kHuqlsLZnldtlYFQwk+tOsa IU8TXf2MCa3zguj3wzLE4ZDD+QW2kbvo1HHAYaUR6NkbekJKoVe4VojQ3QEoib2v MjNEWdf44165n9TqnaF3d4Xk7eMQLy4MBrkXz1ZQEcJZPqGAVAVxYwYOSweEdp0j +TzLH6ltebKr2sG+clUvLWUdBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBGQQ8ty r1IuifjQKb/4Jm7E2TS/MB8GA1UdIwQYMBaAFMVDCdwRK2WGJ702oDBy510GA2TT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTgzNi8yOTM2RkZCMjM2 MkUxMUVDODkwOUU4NkZDNEY5QUUwMi94VU1KM0JFclpZWW52VGFnTUhMblhRWURa Tk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hVTUozQkVyWllZbnZUYWdNSExuWFFZRFpOTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTgzNi8yOTM2RkZCMjM2MkUxMUVDODkwOUU4NkZDNEY5QUUwMi94VU1KM0JFclpZ WW52VGFnTUhMblhRWURaTk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2I5JrWdZnWfv45bh9jzQOyw/TWcblUoM/QWKuDARU1ujjp5sxMSP5 ZUU1LX78klcZ8A/u70/raWbyadT9ROHqYiaFPOI3cWC5wA31M9HCRZlmTCRJ5atV B35vlfYSE3i6rhYRKXIL7mfgkIHLBQPR9Heu/KY2gjnPkNIUsjgEo54aYnGikECB wBL+oJH4056H3q+15FrkHHD/fC8fSYzTokGkgBeGATOObufWdx0CJrQmwXPBZsXe 13/oevv6lPA3uH7dFcfJJLe+80vH1OhtIV2IETHNxk4vo1A0EmggFFNRYGzEohZF iQLNTSg+sIcRSNoX0uZjE+syqusqCiwY -----END CERTIFICATE-----Generated at Mon Oct 20 04:47:23 2025 by rpki-client