$ rpki-client -vvf rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/UrIZlUKcRPin9OyZ5TBAhw1tOFs.mft File: UrIZlUKcRPin9OyZ5TBAhw1tOFs.mft (raw, json) Hash identifier: dNzXgvF/KwW8cC98HEjYJJnGUZ5ebp7iUlWCioju0Lw= Subject key identifier: 34:68:7A:C5:C2:8B:9A:19:58:0F:51:62:B3:10:3C:E0:9D:60:37:33 Authority key identifier: 52:B2:19:95:42:9C:44:F8:A7:F4:EC:99:E5:30:40:87:0D:6D:38:5B Certificate issuer: /CN=A91A459D/serialNumber=52B21995429C44F8A7F4EC99E53040870D6D385B Certificate serial: 0A22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UrIZlUKcRPin9OyZ5TBAhw1tOFs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/UrIZlUKcRPin9OyZ5TBAhw1tOFs.mft Manifest number: 0A1B Signing time: Mon 20 Oct 2025 20:34:21 +0000 Manifest this update: Mon 20 Oct 2025 20:34:21 +0000 Manifest next update: Mon 27 Oct 2025 20:34:21 +0000 Files and hashes: 1: UrIZlUKcRPin9OyZ5TBAhw1tOFs.crl (hash: /CnoLC3Jafj1GNysgjwRVxnAeLsjP5/wtM5DU8vO+do=) 2: 21028CF67EF811EAAD47CD30C4F9AE02.roa (hash: +gB8ZHO5MMKVGP2yT3GNNhFPo53EwfTpImIrJ+ySljI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/UrIZlUKcRPin9OyZ5TBAhw1tOFs.crl rsync://rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/UrIZlUKcRPin9OyZ5TBAhw1tOFs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UrIZlUKcRPin9OyZ5TBAhw1tOFs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 20:34:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2594 (0xa22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A459D, serialNumber=52B21995429C44F8A7F4EC99E53040870D6D385B Validity Not Before: Oct 20 20:34:21 2025 GMT Not After : Oct 27 20:34:21 2025 GMT Subject: CN=68f69ccd-e88e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:cb:e6:db:1a:2e:26:ed:3e:52:88:a1:a0:37: b8:4a:ad:04:a5:b8:f8:de:4d:aa:2d:4e:85:85:69: 09:ad:e0:58:aa:d4:0f:94:12:99:23:21:1f:b0:2e: 78:92:0a:18:e6:24:a4:95:c8:b4:81:e4:48:40:b2: 76:dc:37:50:23:b0:1d:99:1e:6a:9e:2f:f2:aa:6e: c9:6a:a8:b5:28:7d:1b:11:0a:24:81:e2:04:49:42: 6a:64:07:90:c9:61:04:43:69:85:0c:f6:3d:66:21: ce:6c:c1:39:60:7f:b3:51:b9:c2:60:ac:1c:a9:e0: 06:15:87:74:82:8c:32:6d:ab:4c:c0:22:09:2e:24: 9c:af:68:a9:74:4a:9c:89:2c:a4:fc:cd:77:05:9f: c2:14:7f:ee:12:7f:3a:f3:4d:76:dd:dd:6b:85:ac: de:90:17:41:17:e7:81:4d:e4:d9:65:a5:b8:dd:56: 9e:42:0a:8d:ac:1e:27:9e:46:91:7f:a9:b2:1f:29: 65:63:73:ef:e0:86:27:77:47:44:12:d3:3b:0a:62: d6:00:77:43:f3:d6:7a:76:c1:bb:7b:78:fa:98:87: fd:7f:00:80:41:c5:f5:32:39:f2:d1:c9:76:39:58: c6:b8:ba:73:26:3a:8a:6d:ae:89:ad:fc:84:0e:79: 9e:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:68:7A:C5:C2:8B:9A:19:58:0F:51:62:B3:10:3C:E0:9D:60:37:33 X509v3 Authority Key Identifier: keyid:52:B2:19:95:42:9C:44:F8:A7:F4:EC:99:E5:30:40:87:0D:6D:38:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/UrIZlUKcRPin9OyZ5TBAhw1tOFs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UrIZlUKcRPin9OyZ5TBAhw1tOFs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/UrIZlUKcRPin9OyZ5TBAhw1tOFs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:37:c2:db:dd:a5:d8:0e:0d:7e:19:34:b4:7e:62:a4:4c:ac: 65:e5:98:4f:12:95:03:43:40:0b:1d:f7:77:dc:87:d8:55:d4: 94:c8:26:72:7f:dc:ad:03:92:44:85:54:24:aa:0f:c4:c5:8d: 06:42:b7:c4:66:b0:8e:8c:87:4c:a7:ef:62:9d:9b:25:86:d5: 07:f1:44:d2:8a:d7:64:0c:da:33:6b:c9:67:90:6f:6f:7c:e6: 50:40:ae:67:d0:bf:3f:37:1f:39:46:1b:e9:ae:20:68:44:53: cf:2c:f3:13:cf:b5:56:57:e8:82:0f:24:d6:db:11:6a:8c:af: 96:11:e8:6d:7a:27:a8:43:42:30:76:43:a9:f3:8e:62:95:07: 96:42:b3:f6:46:62:cd:08:7d:09:a9:fa:92:5d:48:e9:3e:0f: b2:2c:dc:9e:07:52:c5:c5:62:aa:15:43:ca:8f:b7:c8:e0:cc: 56:a0:76:be:a4:e6:98:ff:a8:41:5f:63:f0:fc:5c:b5:04:7d: 57:00:62:48:c6:71:be:19:e7:2f:e5:83:c5:f8:83:63:0e:a3: 4a:05:f1:87:f6:84:0f:0b:8b:51:88:75:dd:45:88:1d:58:d3: ff:dc:95:03:0b:bf:ac:ef:1a:b8:62:7b:61:31:b5:0e:c7:d3: 43:37:f9:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCiIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ1OUQxMTAvBgNVBAUTKDUyQjIxOTk1NDI5QzQ0RjhBN0Y0RUM5OUU1MzA0MDg3 MEQ2RDM4NUIwHhcNMjUxMDIwMjAzNDIxWhcNMjUxMDI3MjAzNDIxWjAYMRYwFAYD VQQDEw02OGY2OWNjZC1lODhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Mvm2xouJu0+UoihoDe4Sq0Epbj43k2qLU6FhWkJreBYqtQPlBKZIyEfsC54 kgoY5iSklci0geRIQLJ23DdQI7AdmR5qni/yqm7Jaqi1KH0bEQokgeIESUJqZAeQ yWEEQ2mFDPY9ZiHObME5YH+zUbnCYKwcqeAGFYd0gowybatMwCIJLiScr2ipdEqc iSyk/M13BZ/CFH/uEn8680123d1rhazekBdBF+eBTeTZZaW43VaeQgqNrB4nnkaR f6myHyllY3Pv4IYnd0dEEtM7CmLWAHdD89Z6dsG7e3j6mIf9fwCAQcX1Mjny0cl2 OVjGuLpzJjqKba6JrfyEDnme8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDRoesXC i5oZWA9RYrMQPOCdYDczMB8GA1UdIwQYMBaAFFKyGZVCnET4p/TsmeUwQIcNbThb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDU5RC81RkFCOTcyRTdF RjYxMUVBQTk3OUEzMkRDNEY5QUUwMi9VcklabFVLY1JQaW45T3laNVRCQWh3MXRP RnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VySVpsVUtjUlBpbjlPeVo1VEJBaHcxdE9Gcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDU5RC81RkFCOTcyRTdFRjYxMUVBQTk3OUEzMkRDNEY5QUUwMi9VcklabFVLY1JQ aW45T3laNVRCQWh3MXRPRnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkN8Lb3aXYDg1+GTS0fmKkTKxl5ZhPEpUDQ0ALHfd33IfYVdSUyCZy f9ytA5JEhVQkqg/ExY0GQrfEZrCOjIdMp+9inZslhtUH8UTSitdkDNoza8lnkG9v fOZQQK5n0L8/Nx85RhvpriBoRFPPLPMTz7VWV+iCDyTW2xFqjK+WEehteieoQ0Iw dkOp845ilQeWQrP2RmLNCH0JqfqSXUjpPg+yLNyeB1LFxWKqFUPKj7fI4MxWoHa+ pOaY/6hBX2Pw/Fy1BH1XAGJIxnG+Gecv5YPF+INjDqNKBfGH9oQPC4tRiHXdRYgd WNP/3JUDC7+s7xq4YnthMbUOx9NDN/nG -----END CERTIFICATE-----Generated at Tue Oct 21 03:20:52 2025 by rpki-client