$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft File: tU-K0c7KwTb8r0eS6_0A5o6h02g.mft (raw, json) Hash identifier: ieiSlsr+IcjETwZpZ1c5Z1efqpR15LTqR3lwOl9CTWg= Subject key identifier: 27:36:00:A0:C4:DC:BF:0D:82:86:6A:0D:71:17:4B:2F:6D:BA:B5:08 Authority key identifier: B5:4F:8A:D1:CE:CA:C1:36:FC:AF:47:92:EB:FD:00:E6:8E:A1:D3:68 Certificate issuer: /CN=A91B7DCB/serialNumber=B54F8AD1CECAC136FCAF4792EBFD00E68EA1D368 Certificate serial: 56 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft Manifest number: 55 Signing time: Sun 19 Oct 2025 10:34:36 +0000 Manifest this update: Sun 19 Oct 2025 10:34:35 +0000 Manifest next update: Sun 26 Oct 2025 10:34:35 +0000 Files and hashes: 1: tU-K0c7KwTb8r0eS6_0A5o6h02g.crl (hash: ME6WjSzwV1lVLLfKhdgGUd5ThuEFhdXG1M01/r9nJVw=) 2: D470A60E294511F0B1412377C4F9AE02.roa (hash: R5e5Pbe0gCRILBx2wr55E5wPwG2ILhIOGtJI6e+r29g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.crl rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:34:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 86 (0x56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7DCB, serialNumber=B54F8AD1CECAC136FCAF4792EBFD00E68EA1D368 Validity Not Before: Oct 19 10:34:35 2025 GMT Not After : Oct 26 10:34:35 2025 GMT Subject: CN=68f4bebc-c3fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:ac:04:50:e3:2f:ca:7e:ba:c8:c0:df:5c:b4: 21:44:a5:5b:a7:75:58:fe:0e:18:ae:78:cb:ef:7b: c6:53:77:77:40:52:c8:18:69:be:1d:0d:8f:2b:d6: 2d:4a:a7:11:41:b7:01:38:68:ac:4f:c8:a6:e6:7e: be:84:be:92:50:92:26:1e:fa:3a:61:24:f5:9c:73: 35:dd:55:d0:7a:af:d6:15:41:e5:c1:63:3d:44:ea: a1:bb:3d:cf:ae:f2:92:43:b5:e0:b6:86:b6:46:3c: 63:96:13:6c:06:25:e5:52:99:b8:d0:50:52:01:d4: 72:40:10:e9:24:d6:72:60:74:02:de:3e:5f:fa:26: 1a:9f:e6:ad:b7:64:cf:89:dc:51:dc:3a:5c:aa:ad: 13:8a:5f:be:d5:c6:e5:b6:61:a0:28:73:30:63:c9: 79:49:14:c8:4f:0e:96:d0:c4:f2:30:59:d5:e6:2e: 03:87:c6:6d:42:09:02:37:b9:01:50:1a:51:e8:48: ea:4a:77:cd:16:69:41:61:45:66:6c:e4:ee:17:ae: e5:a0:1c:d0:e1:cd:1f:df:44:84:f4:5d:3e:d2:70: 6a:7b:99:cb:a9:9b:39:a8:10:f3:76:3d:16:f8:1e: e8:57:95:1b:69:d5:05:bf:ee:d8:55:ed:5a:df:6a: 47:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:36:00:A0:C4:DC:BF:0D:82:86:6A:0D:71:17:4B:2F:6D:BA:B5:08 X509v3 Authority Key Identifier: keyid:B5:4F:8A:D1:CE:CA:C1:36:FC:AF:47:92:EB:FD:00:E6:8E:A1:D3:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:d8:92:16:87:3c:dc:26:6b:c3:75:52:bb:ea:fe:d7:53:fe: 03:82:fa:51:9b:09:80:57:1a:7e:42:4a:5f:3c:5d:d8:1c:00: 82:da:42:f8:bd:b2:67:c5:34:33:00:a6:07:92:89:b4:ff:d0: c1:26:c3:06:7d:14:e7:84:14:b9:b0:48:27:1c:1e:af:04:72: 2e:29:08:9a:cf:81:10:44:d7:bf:eb:85:7d:3c:e4:43:69:e6: 91:f5:4d:1f:aa:b0:bf:2d:97:f9:ed:f9:83:c8:ce:e5:ae:13: a0:19:d6:28:91:f6:00:6e:2b:a4:68:e1:12:d0:76:5f:e3:b3: c0:52:a9:e5:b4:71:02:3d:74:60:c9:66:75:0b:7f:9c:50:2f: 4e:f6:64:f3:43:5f:a1:8c:b5:30:38:a4:2e:6c:90:3e:cd:32: bf:dc:95:fe:85:7c:46:c4:f8:21:e9:86:88:c1:4d:e9:e0:71: 6e:3e:b2:04:f9:9e:ef:88:e3:2f:4b:d2:a9:d2:f9:9b:fe:a8: c6:81:44:d1:1f:76:9b:3f:18:d5:95:27:e1:ab:81:c6:a6:0d: de:84:1e:9c:0c:01:3a:14:34:82:33:0e:3c:f9:37:a3:c3:ab: 8d:a0:e1:80:7b:d9:6f:79:6e:43:d3:07:d1:ee:eb:79:0d:bd: 84:b2:11:ea -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC N0RDQjExMC8GA1UEBRMoQjU0RjhBRDFDRUNBQzEzNkZDQUY0NzkyRUJGRDAwRTY4 RUExRDM2ODAeFw0yNTEwMTkxMDM0MzVaFw0yNTEwMjYxMDM0MzVaMBgxFjAUBgNV BAMTDTY4ZjRiZWJjLWMzZmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCjrARQ4y/KfrrIwN9ctCFEpVundVj+DhiueMvve8ZTd3dAUsgYab4dDY8r1i1K pxFBtwE4aKxPyKbmfr6EvpJQkiYe+jphJPWcczXdVdB6r9YVQeXBYz1E6qG7Pc+u 8pJDteC2hrZGPGOWE2wGJeVSmbjQUFIB1HJAEOkk1nJgdALePl/6Jhqf5q23ZM+J 3FHcOlyqrROKX77VxuW2YaAoczBjyXlJFMhPDpbQxPIwWdXmLgOHxm1CCQI3uQFQ GlHoSOpKd80WaUFhRWZs5O4XruWgHNDhzR/fRIT0XT7ScGp7mcupmzmoEPN2PRb4 HuhXlRtp1QW/7thV7VrfakcVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUJzYAoMTc vw2ChmoNcRdLL226tQgwHwYDVR0jBBgwFoAUtU+K0c7KwTb8r0eS6/0A5o6h02gw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3RENCL0Y4M0FDNDk0Mjk0 NDExRjBBRTFBQkM3NEM0RjlBRTAyL3RVLUswYzdLd1RiOHIwZVM2XzBBNW82aDAy Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdFUtSzBjN0t3VGI4cjBlUzZfMEE1bzZoMDJnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3 RENCL0Y4M0FDNDk0Mjk0NDExRjBBRTFBQkM3NEM0RjlBRTAyL3RVLUswYzdLd1Ri OHIwZVM2XzBBNW82aDAyZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKPYkhaHPNwma8N1Urvq/tdT/gOC+lGbCYBXGn5CSl88XdgcAILaQvi9 smfFNDMApgeSibT/0MEmwwZ9FOeEFLmwSCccHq8Eci4pCJrPgRBE17/rhX085ENp 5pH1TR+qsL8tl/nt+YPIzuWuE6AZ1iiR9gBuK6Ro4RLQdl/js8BSqeW0cQI9dGDJ ZnULf5xQL072ZPNDX6GMtTA4pC5skD7NMr/clf6FfEbE+CHphojBTengcW4+sgT5 nu+I4y9L0qnS+Zv+qMaBRNEfdps/GNWVJ+GrgcamDd6EHpwMAToUNIIzDjz5N6PD q42g4YB72W95bkPTB9Hu63kNvYSyEeo= -----END CERTIFICATE-----Generated at Tue Oct 21 02:10:39 2025 by rpki-client