$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.mft File: U4XhOhtYRftEzutr7Y3rTomvOCk.mft (raw, json) Hash identifier: YjvxaEmg5mYO/QJw8w5t2pmGKvUIy35m2K2pSQCAXns= Subject key identifier: C8:CC:66:99:48:67:67:12:5C:1E:5A:A2:DC:6B:9D:3B:3C:AA:8A:26 Authority key identifier: 53:85:E1:3A:1B:58:45:FB:44:CE:EB:6B:ED:8D:EB:4E:89:AF:38:29 Certificate issuer: /CN=A91ACFEB/serialNumber=5385E13A1B5845FB44CEEB6BED8DEB4E89AF3829 Certificate serial: 09C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4XhOhtYRftEzutr7Y3rTomvOCk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.mft Manifest number: 09B4 Signing time: Sat 18 Oct 2025 21:03:28 +0000 Manifest this update: Sat 18 Oct 2025 21:03:27 +0000 Manifest next update: Sat 25 Oct 2025 21:03:27 +0000 Files and hashes: 1: U4XhOhtYRftEzutr7Y3rTomvOCk.crl (hash: 3ZtX91NOpwmFEL4GZbZhl8D1WivTxb7W/lew68YI2Lw=) 2: 3636BCD2937011EA8A795583C4F9AE02.roa (hash: Xd/9pByFb2cbZ9xoUnmDVjNmjmus87X0lFOERhfsZNI=) 3: 35831FCE937011EA8A795583C4F9AE02.roa (hash: N79J5/addSjvuTRJUjHpGEDoonJ5OZtfdl2v8Aonsr8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.crl rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4XhOhtYRftEzutr7Y3rTomvOCk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:03:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2500 (0x9c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACFEB, serialNumber=5385E13A1B5845FB44CEEB6BED8DEB4E89AF3829 Validity Not Before: Oct 18 21:03:27 2025 GMT Not After : Oct 25 21:03:27 2025 GMT Subject: CN=68f4009f-a8c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:de:fe:67:7c:50:30:98:da:07:82:54:e0:c0: 3b:5f:e6:47:79:ec:f4:a4:62:9e:3e:38:28:39:8f: 02:c8:4c:79:05:c0:7c:0d:46:68:fa:5f:a5:1c:86: 56:01:1c:ec:d6:c0:86:16:07:44:4a:d5:c6:97:8a: e6:f0:d0:41:73:2d:ad:b2:2f:d0:0d:a5:23:77:ee: 89:0c:46:1c:46:6c:4c:50:44:75:c7:23:73:8f:f4: 89:52:c7:3a:ab:f6:13:85:49:e7:de:ca:4e:b7:df: be:0b:23:55:6f:fb:6f:13:52:3b:e4:d6:c3:43:36: c6:4c:03:94:69:ad:42:e9:d5:7b:76:e4:fa:e3:6d: d9:35:db:40:28:8e:22:1c:3f:b7:ca:54:61:4e:8b: 96:a3:b6:03:9c:44:6e:9f:47:6c:eb:21:00:2b:fb: cb:28:72:49:75:a7:66:b0:8e:de:3a:51:c2:ff:f1: 0a:72:06:2e:18:98:a6:69:6a:ee:fd:35:17:eb:7e: 52:f6:47:52:0f:43:d0:e1:80:43:99:4a:9b:b0:09: 9d:c4:96:e8:9f:1a:cf:00:67:b2:5e:e1:e6:bd:62: a1:70:a0:ae:2c:f8:ca:9d:db:8d:a5:a4:ee:61:2d: fa:f6:96:f3:eb:56:4c:c0:ce:c8:ca:d3:38:09:21: 61:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:CC:66:99:48:67:67:12:5C:1E:5A:A2:DC:6B:9D:3B:3C:AA:8A:26 X509v3 Authority Key Identifier: keyid:53:85:E1:3A:1B:58:45:FB:44:CE:EB:6B:ED:8D:EB:4E:89:AF:38:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4XhOhtYRftEzutr7Y3rTomvOCk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:78:61:18:1a:5c:70:68:26:09:b5:e4:a3:2c:72:44:cb:6a: d8:fc:4c:2e:cd:c9:81:43:c9:a7:86:b7:94:14:95:9c:75:25: 96:a5:52:64:ab:09:c0:4d:08:95:e1:5b:6a:fb:33:cd:3b:fc: d7:8e:3b:7e:60:e4:75:ae:c4:38:7b:75:32:ea:1b:d7:6e:ae: 18:4e:22:10:15:b3:63:d6:a0:fc:56:6f:ba:2c:9b:c5:df:89: bc:b6:2f:7c:ab:23:8e:20:52:fd:ad:27:bf:74:91:d6:0e:0e: 3f:d7:63:6f:6b:85:20:06:87:2b:22:53:70:b3:1c:3f:4a:79: bb:84:58:e5:59:6b:e6:c9:2d:ce:7f:c2:9a:26:1b:17:5e:89: c4:26:fc:ce:d2:01:4c:2b:29:e7:dd:a2:28:09:19:f4:01:52: db:f8:2b:f6:4a:66:36:de:00:f2:14:1e:bb:4a:4c:cb:2c:cd: 02:41:81:96:72:b1:62:1b:e3:2d:ef:b0:06:0e:c0:cc:e3:5e: c1:e4:c9:82:da:ef:7e:97:49:11:ea:d4:f4:c6:28:b8:ab:bf: 7a:4e:ff:a2:1c:b5:99:cd:a8:ea:40:88:49:b3:3a:71:ae:b8: f5:cc:18:cb:d7:52:f9:74:5f:8b:30:7f:86:75:ed:47:26:72: fb:c3:f4:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCcQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNGRUIxMTAvBgNVBAUTKDUzODVFMTNBMUI1ODQ1RkI0NENFRUI2QkVEOERFQjRF ODlBRjM4MjkwHhcNMjUxMDE4MjEwMzI3WhcNMjUxMDI1MjEwMzI3WjAYMRYwFAYD VQQDEw02OGY0MDA5Zi1hOGM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlN7+Z3xQMJjaB4JU4MA7X+ZHeez0pGKePjgoOY8CyEx5BcB8DUZo+l+lHIZW ARzs1sCGFgdEStXGl4rm8NBBcy2tsi/QDaUjd+6JDEYcRmxMUER1xyNzj/SJUsc6 q/YThUnn3spOt9++CyNVb/tvE1I75NbDQzbGTAOUaa1C6dV7duT6423ZNdtAKI4i HD+3ylRhTouWo7YDnERun0ds6yEAK/vLKHJJdadmsI7eOlHC//EKcgYuGJimaWru /TUX635S9kdSD0PQ4YBDmUqbsAmdxJbonxrPAGeyXuHmvWKhcKCuLPjKnduNpaTu YS369pbz61ZMwM7IytM4CSFhzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMjMZplI Z2cSXB5aotxrnTs8qoomMB8GA1UdIwQYMBaAFFOF4TobWEX7RM7ra+2N606Jrzgp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0ZFQi9DQjJDMzNFNjkz NkUxMUVBQTVFNTZCN0VDNEY5QUUwMi9VNFhoT2h0WVJmdEV6dXRyN1kzclRvbXZP Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U0WGhPaHRZUmZ0RXp1dHI3WTNyVG9tdk9Day5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Q0ZFQi9DQjJDMzNFNjkzNkUxMUVBQTVFNTZCN0VDNEY5QUUwMi9VNFhoT2h0WVJm dEV6dXRyN1kzclRvbXZPQ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpeGEYGlxwaCYJteSjLHJEy2rY/EwuzcmBQ8mnhreUFJWcdSWWpVJk qwnATQiV4Vtq+zPNO/zXjjt+YOR1rsQ4e3Uy6hvXbq4YTiIQFbNj1qD8Vm+6LJvF 34m8ti98qyOOIFL9rSe/dJHWDg4/12Nva4UgBocrIlNwsxw/Snm7hFjlWWvmyS3O f8KaJhsXXonEJvzO0gFMKynn3aIoCRn0AVLb+Cv2SmY23gDyFB67SkzLLM0CQYGW crFiG+Mt77AGDsDM417B5MmC2u9+l0kR6tT0xii4q796Tv+iHLWZzajqQIhJszpx rrj1zBjL11L5dF+LMH+Gde1HJnL7w/Rs -----END CERTIFICATE-----Generated at Mon Oct 20 12:45:38 2025 by rpki-client