$ rpki-client -vvf rpki.apnic.net/member_repository/A919E4C6/EAB947A81E1811ED9479365DC4F9AE02/uRm6CzrV4m_DHTlL4TK7yof8yFI.mft File: uRm6CzrV4m_DHTlL4TK7yof8yFI.mft (raw, json) Hash identifier: CNkJbb47qFEWHgRbIphvi19ogkOmSbesF4pA+7yrhEQ= Subject key identifier: 9D:49:B9:41:0C:93:2E:16:CB:22:2F:BC:B6:85:93:7D:88:17:13:78 Authority key identifier: B9:19:BA:0B:3A:D5:E2:6F:C3:1D:39:4B:E1:32:BB:CA:87:FC:C8:52 Certificate issuer: /CN=A919E4C6/serialNumber=B919BA0B3AD5E26FC31D394BE132BBCA87FCC852 Certificate serial: 02A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uRm6CzrV4m_DHTlL4TK7yof8yFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E4C6/EAB947A81E1811ED9479365DC4F9AE02/uRm6CzrV4m_DHTlL4TK7yof8yFI.mft Manifest number: 029A Signing time: Sun 19 Oct 2025 03:47:14 +0000 Manifest this update: Sun 19 Oct 2025 03:47:13 +0000 Manifest next update: Sun 26 Oct 2025 03:47:13 +0000 Files and hashes: 1: uRm6CzrV4m_DHTlL4TK7yof8yFI.crl (hash: 0XLYiVaoJaorD3z5EWT2TMnF8Bg3jyBeDkLNU9l+QDc=) 2: 4C0F405E1E1C11EDA19CF560C4F9AE02.roa (hash: gIwDWIDp8+Uz5STSFrQB1zJpip3RVo/LQNwdpuz8o1g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E4C6/EAB947A81E1811ED9479365DC4F9AE02/uRm6CzrV4m_DHTlL4TK7yof8yFI.crl rsync://rpki.apnic.net/member_repository/A919E4C6/EAB947A81E1811ED9479365DC4F9AE02/uRm6CzrV4m_DHTlL4TK7yof8yFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uRm6CzrV4m_DHTlL4TK7yof8yFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:47:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 672 (0x2a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E4C6, serialNumber=B919BA0B3AD5E26FC31D394BE132BBCA87FCC852 Validity Not Before: Oct 19 03:47:13 2025 GMT Not After : Oct 26 03:47:13 2025 GMT Subject: CN=68f45f41-a71c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:cc:d6:c4:35:83:fb:8e:88:93:43:e5:2a:97: 81:cf:dc:68:5e:fa:27:18:bd:00:1a:ec:b0:4d:72: cb:28:09:4c:6c:c5:9f:4c:b2:40:0a:ef:1f:66:0a: a8:71:4b:c0:ce:a9:5d:b8:21:a3:9b:ea:57:c8:ac: 9e:ed:43:20:34:74:f4:28:31:77:0a:db:88:2c:c8: dc:6d:f2:3e:e5:1b:44:91:0a:41:f8:02:f0:24:3d: e7:b8:c7:f8:ba:9a:30:3e:8c:7d:f6:b8:a0:40:c3: 55:f2:6d:eb:3c:5f:c3:8d:60:3e:cb:57:a1:ed:80: 87:09:26:f7:7f:d6:44:29:9d:ab:51:bb:1c:c7:12: 5c:d8:68:1b:bc:71:6e:75:55:df:e6:75:c7:bf:49: 7c:96:62:dd:44:71:28:86:9a:5d:59:de:86:5d:ff: 47:12:89:2d:f3:aa:0d:dc:37:ef:72:9f:95:d3:29: e3:59:8f:47:dd:6b:b1:29:4b:f4:41:a3:20:5f:6f: 6a:7f:ac:33:f4:a8:d0:e0:01:bf:70:59:5f:84:42: 8a:10:00:a1:f0:dd:db:fd:08:8d:b6:42:1e:9e:e9: b0:3c:14:29:17:87:d6:a3:78:b9:a1:ba:55:56:ab: 16:60:1d:53:7d:d1:35:ec:36:4c:e9:47:55:90:b6: b6:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:49:B9:41:0C:93:2E:16:CB:22:2F:BC:B6:85:93:7D:88:17:13:78 X509v3 Authority Key Identifier: keyid:B9:19:BA:0B:3A:D5:E2:6F:C3:1D:39:4B:E1:32:BB:CA:87:FC:C8:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E4C6/EAB947A81E1811ED9479365DC4F9AE02/uRm6CzrV4m_DHTlL4TK7yof8yFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uRm6CzrV4m_DHTlL4TK7yof8yFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E4C6/EAB947A81E1811ED9479365DC4F9AE02/uRm6CzrV4m_DHTlL4TK7yof8yFI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:37:d7:c8:2c:ca:cf:57:c9:20:c4:13:07:b8:d2:0b:92:40: d7:82:d7:62:ac:50:b3:67:74:d7:39:7c:52:60:90:35:71:0b: e7:c5:53:7d:b6:e8:63:18:01:d7:0c:e0:59:6c:20:0f:13:52: 75:a9:f8:d3:26:d0:2f:0d:91:76:0a:c0:60:ab:0a:27:80:58: 50:34:16:71:63:ce:4b:36:5c:41:8e:94:4b:aa:33:ad:28:f1: 80:41:41:fb:a8:6e:42:ff:6e:ed:55:7a:52:b1:fe:0f:51:83: ed:4e:81:16:5b:91:74:79:02:a9:30:be:84:a7:f7:0b:1f:1f: 33:d8:2f:f8:38:08:92:89:74:48:98:ec:6b:d7:5e:9b:95:39: fd:e2:6e:ba:55:b2:3f:a6:85:12:13:d3:02:e7:3f:56:9b:8d: 3f:e0:63:7c:91:00:74:f9:9f:d9:08:f4:f3:3c:c8:14:b1:41: ad:86:1b:6e:01:56:77:7e:c7:80:b7:4c:c9:e0:a4:0b:50:64: 37:b1:87:59:30:fa:e9:22:56:46:e3:69:78:78:cb:4e:53:31: f1:e9:ff:a4:fa:87:95:1e:31:58:a5:4e:dc:5b:64:4b:10:ed: 55:26:b8:65:63:11:e6:f2:7b:1d:23:18:aa:9c:12:9b:c1:10: a1:71:7e:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUU0QzYxMTAvBgNVBAUTKEI5MTlCQTBCM0FENUUyNkZDMzFEMzk0QkUxMzJCQkNB ODdGQ0M4NTIwHhcNMjUxMDE5MDM0NzEzWhcNMjUxMDI2MDM0NzEzWjAYMRYwFAYD VQQDEw02OGY0NWY0MS1hNzFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwszWxDWD+46Ik0PlKpeBz9xoXvonGL0AGuywTXLLKAlMbMWfTLJACu8fZgqo cUvAzqlduCGjm+pXyKye7UMgNHT0KDF3CtuILMjcbfI+5RtEkQpB+ALwJD3nuMf4 upowPox99rigQMNV8m3rPF/DjWA+y1eh7YCHCSb3f9ZEKZ2rUbscxxJc2GgbvHFu dVXf5nXHv0l8lmLdRHEohppdWd6GXf9HEokt86oN3Dfvcp+V0ynjWY9H3WuxKUv0 QaMgX29qf6wz9KjQ4AG/cFlfhEKKEACh8N3b/QiNtkIenumwPBQpF4fWo3i5obpV VqsWYB1TfdE17DZM6UdVkLa2lQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ1JuUEM ky4WyyIvvLaFk32IFxN4MB8GA1UdIwQYMBaAFLkZugs61eJvwx05S+Eyu8qH/MhS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RTRDNi9FQUI5NDdBODFF MTgxMUVEOTQ3OTM2NURDNEY5QUUwMi91Um02Q3pyVjRtX0RIVGxMNFRLN3lvZjh5 RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VSbTZDenJWNG1fREhUbEw0VEs3eW9mOHlGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RTRDNi9FQUI5NDdBODFFMTgxMUVEOTQ3OTM2NURDNEY5QUUwMi91Um02Q3pyVjRt X0RIVGxMNFRLN3lvZjh5RkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtN9fILMrPV8kgxBMHuNILkkDXgtdirFCzZ3TXOXxSYJA1cQvnxVN9 tuhjGAHXDOBZbCAPE1J1qfjTJtAvDZF2CsBgqwongFhQNBZxY85LNlxBjpRLqjOt KPGAQUH7qG5C/27tVXpSsf4PUYPtToEWW5F0eQKpML6Ep/cLHx8z2C/4OAiSiXRI mOxr116blTn94m66VbI/poUSE9MC5z9Wm40/4GN8kQB0+Z/ZCPTzPMgUsUGthhtu AVZ3fseAt0zJ4KQLUGQ3sYdZMPrpIlZG42l4eMtOUzHx6f+k+oeVHjFYpU7cW2RL EO1VJrhlYxHm8nsdIxiqnBKbwRChcX5V -----END CERTIFICATE-----Generated at Sun Oct 19 23:29:27 2025 by rpki-client