$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5849/DBAD384EF79E11EEA45AAE2CC4F9AE02/U2v43c6AJmc3j0e9SVSpC3xwCcE.mft File: U2v43c6AJmc3j0e9SVSpC3xwCcE.mft (raw, json) Hash identifier: 7v5xO3u9K9VY1D68kyvZ7/yfw5r/j95Kzd98dlF+DwI= Subject key identifier: 8D:C9:85:F7:F1:93:41:EA:9D:15:7D:9F:02:95:D3:B3:88:7F:A3:00 Authority key identifier: 53:6B:F8:DD:CE:80:26:67:37:8F:47:BD:49:54:A9:0B:7C:70:09:C1 Certificate issuer: /CN=A91A5849/serialNumber=536BF8DDCE802667378F47BD4954A90B7C7009C1 Certificate serial: 0122 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2v43c6AJmc3j0e9SVSpC3xwCcE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5849/DBAD384EF79E11EEA45AAE2CC4F9AE02/U2v43c6AJmc3j0e9SVSpC3xwCcE.mft Manifest number: 011D Signing time: Sun 19 Oct 2025 07:37:51 +0000 Manifest this update: Sun 19 Oct 2025 07:37:50 +0000 Manifest next update: Sun 26 Oct 2025 07:37:50 +0000 Files and hashes: 1: U2v43c6AJmc3j0e9SVSpC3xwCcE.crl (hash: uowtJ0eSNisPKNrRBxWsPim/YCmZjb6oSYtNyMhu7B8=) 2: D8346320F7A011EE8BE8843BC4F9AE02.roa (hash: w5ofhzUzRvCot65WQ4cidA6AcgZbPr0ZDlGiXy64td8=) 3: FA3B5DCAF7A011EEBAC1E03BC4F9AE02.roa (hash: G4iwG5XMEp5g2eV1gP3t6eKMuKxcRTnnbvUBF3nUwk4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5849/DBAD384EF79E11EEA45AAE2CC4F9AE02/U2v43c6AJmc3j0e9SVSpC3xwCcE.crl rsync://rpki.apnic.net/member_repository/A91A5849/DBAD384EF79E11EEA45AAE2CC4F9AE02/U2v43c6AJmc3j0e9SVSpC3xwCcE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2v43c6AJmc3j0e9SVSpC3xwCcE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:37:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 290 (0x122) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5849, serialNumber=536BF8DDCE802667378F47BD4954A90B7C7009C1 Validity Not Before: Oct 19 07:37:50 2025 GMT Not After : Oct 26 07:37:50 2025 GMT Subject: CN=68f4954e-d767 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:44:ea:3f:c8:83:d1:1f:54:93:05:52:2b:3a: bc:b2:00:07:f3:59:29:63:0f:2a:aa:cd:f4:d8:b1: 99:81:6b:2e:a0:7a:ca:65:fa:5e:9a:18:97:ff:fc: db:70:54:b1:97:d5:0f:b1:e7:cd:32:66:3f:a6:28: 5d:75:16:b1:fa:d8:f0:ad:4a:f5:32:87:2e:e0:df: f0:c8:d3:8f:98:d8:c8:06:cb:d2:a3:e3:42:92:88: 2b:75:44:c2:55:4b:5a:99:d3:46:58:01:0a:e0:f4: a7:a4:70:7a:8a:bb:18:6a:03:ca:88:52:81:e9:e6: eb:0f:9b:00:dc:ac:2e:ff:b0:d4:87:7b:1b:53:4e: 84:7f:4f:fc:e8:3d:b5:c1:60:35:a1:e0:29:bc:f4: 74:f1:63:10:60:34:74:df:35:8a:4f:81:0a:2d:42: a7:e2:ea:79:15:cf:f0:e0:0c:db:43:89:1c:31:22: 7b:4e:d1:37:d2:7d:69:41:8f:2b:fb:09:34:6e:1e: df:0b:76:53:10:da:86:04:8d:6f:dc:c1:29:20:60: 0f:b4:60:93:20:7d:19:04:41:cb:4d:b6:0d:ef:13: c6:f8:9c:5b:a3:4f:ab:37:6d:6d:42:48:60:2b:bd: ea:8d:f0:4f:33:af:f6:ad:2b:c8:31:b4:f9:8e:2d: fb:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:C9:85:F7:F1:93:41:EA:9D:15:7D:9F:02:95:D3:B3:88:7F:A3:00 X509v3 Authority Key Identifier: keyid:53:6B:F8:DD:CE:80:26:67:37:8F:47:BD:49:54:A9:0B:7C:70:09:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5849/DBAD384EF79E11EEA45AAE2CC4F9AE02/U2v43c6AJmc3j0e9SVSpC3xwCcE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2v43c6AJmc3j0e9SVSpC3xwCcE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5849/DBAD384EF79E11EEA45AAE2CC4F9AE02/U2v43c6AJmc3j0e9SVSpC3xwCcE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:d6:10:b5:0a:35:6a:33:30:52:69:40:ca:6f:d7:e9:c4:6d: bd:46:dc:cc:85:67:e0:2d:e6:7e:1f:db:a9:25:3e:41:15:46: e7:61:77:01:5e:45:1c:6a:b2:7e:4a:1e:2d:1d:98:9f:06:7e: 63:b9:52:7a:35:2e:91:21:47:37:2c:9e:df:cd:64:fe:2b:fa: 75:c9:e4:36:93:f6:78:50:49:3c:ef:d2:64:71:63:b9:74:95: 7b:69:4a:75:53:fb:4d:c4:85:20:60:5a:e9:10:6a:de:6d:ec: 7b:91:b2:64:a8:4f:ec:6c:c1:c5:9a:b6:d9:d0:ea:a5:2e:5a: d1:b4:5d:6f:b6:a9:28:46:a0:1f:bc:aa:62:96:c6:83:df:e5: 25:6f:7d:a6:fc:7f:fd:eb:72:b3:4a:b5:ff:b3:a0:8d:5b:3f: 3b:0b:46:78:73:78:de:0b:5e:c9:40:f1:39:27:65:5f:a2:f5: 94:ec:5f:b2:c7:19:3b:ed:a2:22:bc:a3:1b:55:7c:14:da:ce: 55:0a:f4:d4:27:b2:52:ce:a9:de:f4:4f:ea:5b:9b:24:96:4d: 7b:32:c7:e2:04:d7:5f:02:d6:38:9d:fb:a4:43:27:d1:ad:02: 66:a0:20:80:a2:18:d3:31:85:66:2f:b4:44:a4:95:e5:48:57: 5b:a8:5d:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU4NDkxMTAvBgNVBAUTKDUzNkJGOEREQ0U4MDI2NjczNzhGNDdCRDQ5NTRBOTBC N0M3MDA5QzEwHhcNMjUxMDE5MDczNzUwWhcNMjUxMDI2MDczNzUwWjAYMRYwFAYD VQQDEw02OGY0OTU0ZS1kNzY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxETqP8iD0R9UkwVSKzq8sgAH81kpYw8qqs302LGZgWsuoHrKZfpemhiX//zb cFSxl9UPsefNMmY/pihddRax+tjwrUr1Mocu4N/wyNOPmNjIBsvSo+NCkogrdUTC VUtamdNGWAEK4PSnpHB6irsYagPKiFKB6ebrD5sA3Kwu/7DUh3sbU06Ef0/86D21 wWA1oeApvPR08WMQYDR03zWKT4EKLUKn4up5Fc/w4AzbQ4kcMSJ7TtE30n1pQY8r +wk0bh7fC3ZTENqGBI1v3MEpIGAPtGCTIH0ZBEHLTbYN7xPG+Jxbo0+rN21tQkhg K73qjfBPM6/2rSvIMbT5ji37jQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI3Jhffx k0HqnRV9nwKV07OIf6MAMB8GA1UdIwQYMBaAFFNr+N3OgCZnN49HvUlUqQt8cAnB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTg0OS9EQkFEMzg0RUY3 OUUxMUVFQTQ1QUFFMkNDNEY5QUUwMi9VMnY0M2M2QUptYzNqMGU5U1ZTcEMzeHdD Y0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UydjQzYzZBSm1jM2owZTlTVlNwQzN4d0NjRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTg0OS9EQkFEMzg0RUY3OUUxMUVFQTQ1QUFFMkNDNEY5QUUwMi9VMnY0M2M2QUpt YzNqMGU5U1ZTcEMzeHdDY0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCt1hC1CjVqMzBSaUDKb9fpxG29RtzMhWfgLeZ+H9upJT5BFUbnYXcB XkUcarJ+Sh4tHZifBn5juVJ6NS6RIUc3LJ7fzWT+K/p1yeQ2k/Z4UEk879JkcWO5 dJV7aUp1U/tNxIUgYFrpEGrebex7kbJkqE/sbMHFmrbZ0OqlLlrRtF1vtqkoRqAf vKpilsaD3+Ulb32m/H/963KzSrX/s6CNWz87C0Z4c3jeC17JQPE5J2VfovWU7F+y xxk77aIivKMbVXwU2s5VCvTUJ7JSzqne9E/qW5sklk17MsfiBNdfAtY4nfukQyfR rQJmoCCAohjTMYVmL7REpJXlSFdbqF0U -----END CERTIFICATE-----Generated at Mon Oct 20 07:47:06 2025 by rpki-client