$ rpki-client -vvf rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft File: U5TlfShXd_11FCjRXLD7L8WSx6Y.mft (raw, json) Hash identifier: rcSWR8Q1IWmryGCJt0cwFcyU8ZrVwGgrcu9xwU17OK8= Subject key identifier: 92:AD:1F:B8:7A:4F:E4:74:A0:C1:2E:88:F3:7B:40:94:D3:E1:A1:6C Authority key identifier: 53:94:E5:7D:28:57:77:FD:75:14:28:D1:5C:B0:FB:2F:C5:92:C7:A6 Certificate issuer: /CN=A91C17A9/serialNumber=5394E57D285777FD751428D15CB0FB2FC592C7A6 Certificate serial: 0595 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft Manifest number: 057F Signing time: Sun 19 Oct 2025 00:59:23 +0000 Manifest this update: Sun 19 Oct 2025 00:59:23 +0000 Manifest next update: Sun 26 Oct 2025 00:59:23 +0000 Files and hashes: 1: U5TlfShXd_11FCjRXLD7L8WSx6Y.crl (hash: jQEZByvvS63bTKIlz30DDjISyksru0gWA7bKNKiV3+E=) 2: E19B6AD6D5BE11ECA8BE4666C4F9AE02.roa (hash: k5X4by3Br8W/PYfkmb4iRMPeho37AmOnY5X1wBHf0bs=) 3: C2CAC16E5C9D11EC99F7D10BC4F9AE02.roa (hash: 0dj9Leao2hIOrNuzQzhTyOKvRe7wijLNctX+F2sNN6Y=) 4: C25659465C9D11EC99F7D10BC4F9AE02.roa (hash: gBnTTYjyqczZgDb3uD73c44S0Waa5svUhRxTsEIxWDk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.crl rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:59:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1429 (0x595) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C17A9, serialNumber=5394E57D285777FD751428D15CB0FB2FC592C7A6 Validity Not Before: Oct 19 00:59:23 2025 GMT Not After : Oct 26 00:59:23 2025 GMT Subject: CN=68f437eb-5b08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:8a:4f:58:b9:40:1c:cc:09:28:7f:2d:9e:37: d3:cc:e9:3d:1f:66:6c:cd:5f:a6:cf:5c:a6:4f:e2: ff:48:48:e3:31:14:24:d9:a4:c7:f8:8b:c0:10:06: 7b:a8:d9:c1:1f:fb:99:ec:bf:a6:5c:47:b7:0d:68: 37:53:64:51:a3:2f:e2:f6:16:dd:62:f7:5c:52:ae: 33:07:ed:b1:a7:fd:52:ad:80:ea:04:eb:ce:82:ac: d6:f8:f7:b6:2c:07:e7:b7:aa:d4:55:86:e4:41:95: 1b:e0:41:81:47:91:ac:87:b1:c9:91:95:c8:f0:4e: a5:ad:c1:b0:58:d2:df:33:46:d9:67:ed:1f:28:bc: 33:db:28:1a:78:96:cb:7f:b4:c4:37:88:ee:84:b5: 9d:28:26:44:05:d3:dc:b3:3b:59:69:27:bb:93:50: 3c:ff:ba:66:6f:80:4e:c4:b5:20:01:9e:5d:32:d1: 22:19:f6:1c:e4:79:13:88:21:d6:e7:ff:eb:f0:1d: 9d:4f:aa:2a:31:bc:4e:39:33:0c:b3:63:cc:c1:d0: 7a:c0:0a:5c:5f:22:3a:16:f1:3e:ba:83:6f:96:72: cc:27:3b:35:74:f6:cf:38:87:09:f1:fa:48:ef:da: e9:19:d3:6d:dc:87:50:d3:12:e0:9f:26:6c:1b:24: 9c:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:AD:1F:B8:7A:4F:E4:74:A0:C1:2E:88:F3:7B:40:94:D3:E1:A1:6C X509v3 Authority Key Identifier: keyid:53:94:E5:7D:28:57:77:FD:75:14:28:D1:5C:B0:FB:2F:C5:92:C7:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:34:e1:f1:4c:47:c1:b2:8d:e4:c5:37:ae:c4:f8:ad:75:79: f1:3b:7a:c6:41:b8:a9:98:32:61:0a:57:01:9f:74:00:42:85: 34:8a:4b:a5:2f:47:ad:a2:04:94:da:41:6a:f4:14:6d:14:c5: 87:73:51:d4:46:07:50:4b:9b:3b:b5:41:49:ab:24:70:75:40: 01:59:73:c0:49:f6:66:aa:f0:f6:07:06:ef:b8:10:1f:c1:aa: 8d:7c:05:bc:5a:7d:41:a2:fb:cf:d7:94:bd:bd:81:99:23:e2: ef:75:08:c1:5a:44:72:0a:72:11:50:95:15:7c:b8:0a:a2:e6: 3f:34:61:ba:5d:b6:ec:db:f3:45:24:2d:8b:61:6e:4c:33:63: 7b:67:16:0e:ed:9f:f0:fc:19:58:89:3c:7f:5d:32:06:b6:9f: 19:6c:f7:17:ce:ad:bc:bf:c9:b7:05:ef:39:b5:27:01:88:14: c3:96:81:67:82:83:4f:ee:29:86:c7:13:29:ae:ed:ff:aa:15: 3f:62:68:f6:53:b4:1d:af:a8:03:32:41:fa:45:a4:23:77:68: 9e:c4:71:a5:a4:45:38:45:7b:3a:1a:bf:92:6a:2d:8c:c3:19: 9a:f2:45:3a:43:48:c5:bc:25:05:03:45:7d:c6:e9:5d:9e:89: cc:37:ce:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE3QTkxMTAvBgNVBAUTKDUzOTRFNTdEMjg1Nzc3RkQ3NTE0MjhEMTVDQjBGQjJG QzU5MkM3QTYwHhcNMjUxMDE5MDA1OTIzWhcNMjUxMDI2MDA1OTIzWjAYMRYwFAYD VQQDEw02OGY0MzdlYi01YjA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7IpPWLlAHMwJKH8tnjfTzOk9H2ZszV+mz1ymT+L/SEjjMRQk2aTH+IvAEAZ7 qNnBH/uZ7L+mXEe3DWg3U2RRoy/i9hbdYvdcUq4zB+2xp/1SrYDqBOvOgqzW+Pe2 LAfnt6rUVYbkQZUb4EGBR5Gsh7HJkZXI8E6lrcGwWNLfM0bZZ+0fKLwz2ygaeJbL f7TEN4juhLWdKCZEBdPcsztZaSe7k1A8/7pmb4BOxLUgAZ5dMtEiGfYc5HkTiCHW 5//r8B2dT6oqMbxOOTMMs2PMwdB6wApcXyI6FvE+uoNvlnLMJzs1dPbPOIcJ8fpI 79rpGdNt3IdQ0xLgnyZsGyScmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJKtH7h6 T+R0oMEuiPN7QJTT4aFsMB8GA1UdIwQYMBaAFFOU5X0oV3f9dRQo0Vyw+y/Fksem MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTdBOS81Rjg5RjZFQ0ZC MzExMUVCOEZCRkE1NTlDNEY5QUUwMi9VNVRsZlNoWGRfMTFGQ2pSWExEN0w4V1N4 NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U1VGxmU2hYZF8xMUZDalJYTEQ3TDhXU3g2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTdBOS81Rjg5RjZFQ0ZCMzExMUVCOEZCRkE1NTlDNEY5QUUwMi9VNVRsZlNoWGRf MTFGQ2pSWExEN0w4V1N4NlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlNOHxTEfBso3kxTeuxPitdXnxO3rGQbipmDJhClcBn3QAQoU0ikul L0etogSU2kFq9BRtFMWHc1HURgdQS5s7tUFJqyRwdUABWXPASfZmqvD2BwbvuBAf waqNfAW8Wn1BovvP15S9vYGZI+LvdQjBWkRyCnIRUJUVfLgKouY/NGG6Xbbs2/NF JC2LYW5MM2N7ZxYO7Z/w/BlYiTx/XTIGtp8ZbPcXzq28v8m3Be85tScBiBTDloFn goNP7imGxxMpru3/qhU/Ymj2U7Qdr6gDMkH6RaQjd2iexHGlpEU4RXs6Gr+Sai2M wxma8kU6Q0jFvCUFA0V9xuldnonMN85T -----END CERTIFICATE-----Generated at Mon Oct 20 17:08:23 2025 by rpki-client