$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft File: U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft (raw, json) Hash identifier: 9/YAooy9d9HPcBihs602YcwsRZFY1tNq+h9nbvCJ9Rk= Subject key identifier: 92:F6:41:B0:6A:7D:1B:9A:66:69:0A:D0:53:1E:55:E6:D5:3E:F7:40 Authority key identifier: 53:8B:07:6E:0A:AD:D8:FA:E2:97:0C:95:43:E8:49:A9:0F:E7:37:52 Certificate issuer: /CN=A91B6F47/serialNumber=538B076E0AADD8FAE2970C9543E849A90FE73752 Certificate serial: 35A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft Manifest number: 352D Signing time: Sat 18 Oct 2025 14:26:18 +0000 Manifest this update: Sat 18 Oct 2025 14:26:17 +0000 Manifest next update: Sat 25 Oct 2025 14:26:17 +0000 Files and hashes: 1: U4sHbgqt2PrilwyVQ-hJqQ_nN1I.crl (hash: rxWAQpnCiD80ffOSI3naQCk7D5yKCRL9m6mI++xsxI8=) 2: DF8602D05E5B11ED994E491CC4F9AE02.roa (hash: KKCg2NooRoQGuF3KYpzz51c9C/45UUPObnLo2e5njhU=) 3: D0886954188811EC8E86754FC4F9AE02.roa (hash: yPv2xJqSMbxdqO3CUxzFvtSmE89AHilhOo/061TH8FU=) 4: AB9889725E5E11EDB5361D3BC4F9AE02.roa (hash: nfNjfg1IXDDhMM0k16fT6xDTUZvLHRQ/C+xvVXQFUFE=) 5: 99CF729E221011ED980A6F47C4F9AE02.roa (hash: iSQxLeiRN1fYoIns2yWqQhKW9w0d7Bh4Hi7g+FcoiAo=) 6: 491E49AECDCA11ED8F57D386C4F9AE02.roa (hash: GOobL3IcAmOzxEXI8Av9eECmrglVLT+e8Yk36aU9ns8=) 7: 9F3A919468D811EFB2FE405FC4F9AE02.roa (hash: ZaxlSh3XWBv2fOJrVopMAyhJjHEvnP8TGG96c6iuXcg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.crl rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 14:26:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13737 (0x35a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6F47, serialNumber=538B076E0AADD8FAE2970C9543E849A90FE73752 Validity Not Before: Oct 18 14:26:17 2025 GMT Not After : Oct 25 14:26:17 2025 GMT Subject: CN=68f3a38a-432b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:18:a0:4c:25:14:12:49:19:ea:c3:0b:4e:97: 19:82:b0:f3:26:da:96:9d:be:64:f0:3d:13:88:b3: be:07:5f:49:e1:d2:75:73:6e:ba:2b:fb:a8:df:1b: cb:59:89:d6:fe:0f:2a:58:71:8d:a0:30:f1:6b:af: df:83:9b:18:6d:60:d1:ab:95:ad:6d:7e:f7:bc:d7: 37:0a:cc:ae:ef:0f:d1:fc:e3:c4:c2:88:33:3b:cc: 11:b2:9a:7c:65:31:c1:e6:76:9b:d3:1f:8d:f7:fe: b4:29:ba:52:11:c8:d6:bd:9b:c2:a8:2f:b2:9d:8c: 34:de:be:ef:c3:a4:e3:db:f4:6c:ac:a4:4d:53:84: f9:e4:c7:30:d4:b4:d8:c9:fd:fe:cb:32:f6:0e:b7: 43:38:a1:75:9f:f3:ce:e2:31:94:f1:ce:16:10:71: 0a:20:c5:90:8c:02:f9:12:e6:f1:ef:2d:45:ac:7f: dc:aa:8c:dd:64:f1:12:51:f0:da:af:6a:4d:3f:d0: 52:4c:4c:73:7f:74:e9:6d:94:ed:2d:46:16:5d:22: b5:7d:fe:dd:a9:7a:37:59:f8:e9:73:05:e4:62:64: 05:d8:b2:00:86:f5:18:4e:18:4a:4d:76:60:b5:65: b9:1b:e4:52:1d:64:af:e8:e9:2d:50:f0:d3:68:e7: 61:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:F6:41:B0:6A:7D:1B:9A:66:69:0A:D0:53:1E:55:E6:D5:3E:F7:40 X509v3 Authority Key Identifier: keyid:53:8B:07:6E:0A:AD:D8:FA:E2:97:0C:95:43:E8:49:A9:0F:E7:37:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:fb:6c:a2:f9:3f:a1:5d:38:44:e0:7b:29:1f:54:d6:66:87: bb:67:6d:49:98:11:0e:41:9a:9c:52:0e:03:c9:ce:03:04:44: f0:68:63:24:15:79:f3:af:8f:df:68:5e:62:18:c4:e3:51:e7: 11:d3:38:f6:94:8f:c2:e0:5e:d4:58:d6:02:be:d1:00:c0:04: cd:ba:8e:d8:73:4f:ea:1d:72:6e:90:25:b0:d0:55:a7:f1:e8: cd:4b:5f:43:8d:56:74:8e:7a:7d:1a:de:5b:09:4a:fe:85:fd: 03:c4:78:dd:84:85:19:ce:74:65:c6:28:b9:bd:26:82:e3:86: 58:72:57:b3:21:45:6b:1b:59:d1:d6:68:16:8b:65:0d:9e:74: a5:87:c6:28:4a:cd:2b:87:0e:4f:02:7b:97:f8:0d:8b:87:ae: ae:02:d7:91:a8:d4:7d:df:30:70:dd:59:2d:ff:b3:07:fa:37: a6:e1:ce:d2:6d:2e:8a:a6:32:08:76:b4:0c:fc:3a:37:87:11: 4a:5f:70:f1:45:ef:c1:a4:31:0f:4b:e0:61:79:77:76:8d:6a: 36:e3:d6:c1:f4:27:d9:f6:0a:bb:e7:b6:6d:fa:12:77:21:91: a5:98:1d:48:f3:2c:2d:bb:61:db:93:83:1c:f7:f5:c4:16:19: 58:d2:c8:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNakwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjZGNDcxMTAvBgNVBAUTKDUzOEIwNzZFMEFBREQ4RkFFMjk3MEM5NTQzRTg0OUE5 MEZFNzM3NTIwHhcNMjUxMDE4MTQyNjE3WhcNMjUxMDI1MTQyNjE3WjAYMRYwFAYD VQQDEw02OGYzYTM4YS00MzJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzBigTCUUEkkZ6sMLTpcZgrDzJtqWnb5k8D0TiLO+B19J4dJ1c266K/uo3xvL WYnW/g8qWHGNoDDxa6/fg5sYbWDRq5WtbX73vNc3Csyu7w/R/OPEwogzO8wRspp8 ZTHB5nab0x+N9/60KbpSEcjWvZvCqC+ynYw03r7vw6Tj2/RsrKRNU4T55Mcw1LTY yf3+yzL2DrdDOKF1n/PO4jGU8c4WEHEKIMWQjAL5Eubx7y1FrH/cqozdZPESUfDa r2pNP9BSTExzf3TpbZTtLUYWXSK1ff7dqXo3WfjpcwXkYmQF2LIAhvUYThhKTXZg tWW5G+RSHWSv6OktUPDTaOdhBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJL2QbBq fRuaZmkK0FMeVebVPvdAMB8GA1UdIwQYMBaAFFOLB24Krdj64pcMlUPoSakP5zdS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNkY0Ny9CNEE4NkMzODFE ODQxMUUyOTY5RkM1REEwOEIwMkNEMi9VNHNIYmdxdDJQcmlsd3lWUS1oSnFRX25O MUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U0c0hiZ3F0MlByaWx3eVZRLWhKcVFfbk4xSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NkY0Ny9CNEE4NkMzODFEODQxMUUyOTY5RkM1REEwOEIwMkNEMi9VNHNIYmdxdDJQ cmlsd3lWUS1oSnFRX25OMUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAi+2yi+T+hXThE4HspH1TWZoe7Z21JmBEOQZqcUg4Dyc4DBETwaGMk FXnzr4/faF5iGMTjUecR0zj2lI/C4F7UWNYCvtEAwATNuo7Yc0/qHXJukCWw0FWn 8ejNS19DjVZ0jnp9Gt5bCUr+hf0DxHjdhIUZznRlxii5vSaC44ZYclezIUVrG1nR 1mgWi2UNnnSlh8YoSs0rhw5PAnuX+A2Lh66uAteRqNR93zBw3Vkt/7MH+jem4c7S bS6KpjIIdrQM/Do3hxFKX3DxRe/BpDEPS+BheXd2jWo249bB9CfZ9gq757Zt+hJ3 IZGlmB1I8ywtu2Hbk4Mc9/XEFhlY0shv -----END CERTIFICATE-----Generated at Mon Oct 20 01:49:42 2025 by rpki-client