$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.mft File: U05nXomsmsMC9TCid1KM-Bo8UwY.mft (raw, json) Hash identifier: A1K2mLnZAoCIr2enZunUjmnMjYmL/CdAxT2Sw1E+jjI= Subject key identifier: 24:5D:A6:A4:E0:26:C0:89:68:30:D0:6B:77:EA:D4:95:7C:86:86:B9 Authority key identifier: 53:4E:67:5E:89:AC:9A:C3:02:F5:30:A2:77:52:8C:F8:1A:3C:53:06 Certificate issuer: /CN=A91CC1EB/serialNumber=534E675E89AC9AC302F530A277528CF81A3C5306 Certificate serial: 05F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U05nXomsmsMC9TCid1KM-Bo8UwY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.mft Manifest number: 05DD Signing time: Sun 19 Oct 2025 00:44:42 +0000 Manifest this update: Sun 19 Oct 2025 00:44:41 +0000 Manifest next update: Sun 26 Oct 2025 00:44:41 +0000 Files and hashes: 1: U05nXomsmsMC9TCid1KM-Bo8UwY.crl (hash: 3Hzttucc+u/6LIra42ehLfTn4XLCFn0uMjNznVwTtsk=) 2: 5C0006B4E1B711EEA6D7F740C4F9AE02.roa (hash: 4jfL7SNWxDFOPvyEexB/Au04m937KqyBQLuHPsEG/BI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.crl rsync://rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U05nXomsmsMC9TCid1KM-Bo8UwY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:44:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1520 (0x5f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC1EB, serialNumber=534E675E89AC9AC302F530A277528CF81A3C5306 Validity Not Before: Oct 19 00:44:41 2025 GMT Not After : Oct 26 00:44:41 2025 GMT Subject: CN=68f43479-5648 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:05:7a:f5:d5:57:9c:91:8a:ea:2e:93:37:71: ab:df:ac:8c:19:b9:86:93:89:f3:ae:1c:4d:ec:45: ec:df:0e:3b:c6:22:fd:dc:69:db:44:8a:b2:b5:c8: 4c:8a:e9:06:27:01:d8:26:0f:16:e3:e4:89:b8:d0: ba:51:5e:ee:88:a7:3b:a8:b1:8e:19:3f:c5:fd:de: d6:e6:68:8e:a0:94:27:39:7f:e6:00:df:7f:b2:8a: f8:72:65:04:c6:ff:75:0c:1c:76:2d:6e:3b:fe:e7: f3:b9:0d:4c:5c:41:34:70:12:ec:c1:d0:97:ad:ba: 8a:49:db:2b:f2:03:90:9f:ff:84:0e:f7:a3:00:22: f4:03:56:eb:1d:14:ef:56:b6:03:5b:0b:62:85:b2: 4a:41:76:c8:68:35:e5:6d:47:2d:5a:e6:4d:c0:df: ae:f6:7e:cf:73:86:1a:47:e5:a6:24:18:28:89:b8: 14:d1:55:43:0f:29:f1:57:96:08:32:ec:d0:d0:d0: ce:d0:eb:f4:47:b3:25:21:e0:73:d2:1a:e7:81:2a: 61:b7:f2:73:a7:6e:0d:a2:18:9f:d6:74:38:e8:49: 10:c9:a7:e7:f8:ca:58:85:f6:0b:f7:6e:86:39:e8: 67:1c:b6:e7:1a:c5:39:3b:79:f1:b4:16:06:3d:a0: 3a:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:5D:A6:A4:E0:26:C0:89:68:30:D0:6B:77:EA:D4:95:7C:86:86:B9 X509v3 Authority Key Identifier: keyid:53:4E:67:5E:89:AC:9A:C3:02:F5:30:A2:77:52:8C:F8:1A:3C:53:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U05nXomsmsMC9TCid1KM-Bo8UwY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:86:b1:97:e6:cb:62:52:9c:57:89:ef:2e:d2:ee:92:81:20: ea:c9:6f:58:6b:43:6f:72:74:3c:ca:de:dc:b4:31:aa:f1:c9: f2:8c:3d:19:66:ba:89:f5:da:ab:14:c0:12:d8:3e:b9:7d:ce: 52:f9:d7:7c:68:f1:24:0e:23:fa:aa:ba:f8:fe:13:cd:ee:22: ee:dd:8b:17:b0:2c:92:48:04:e3:bb:47:3a:d9:be:30:fa:f6: 19:bd:bd:23:70:7b:4b:f0:01:b0:33:83:fd:c3:c2:37:96:99: b4:ac:e0:09:17:2c:b4:1c:3e:64:98:7c:51:f4:23:de:fb:fe: 19:b5:74:86:e2:5f:7e:02:54:63:f3:33:1b:26:f1:2d:19:89: 5c:87:3c:b6:01:7d:07:2b:7c:f7:51:2c:8f:e1:c3:8e:8b:66: 11:ed:bb:d5:86:86:5f:cd:e6:41:62:77:a9:25:35:3a:ce:a3: 2d:f9:12:ac:a1:75:e7:08:a7:ea:1d:8b:40:e7:8f:d6:62:8d: 72:fb:82:1a:27:5c:da:e6:0e:d2:3d:48:fe:3d:e0:15:bd:54: 13:ce:0a:96:ea:fa:d8:4b:a3:ba:ab:70:c5:e0:97:d3:ed:9a: 2c:76:a0:5f:ca:56:75:82:32:17:f5:78:52:56:b2:2d:c3:25: f0:f9:fb:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0MxRUIxMTAvBgNVBAUTKDUzNEU2NzVFODlBQzlBQzMwMkY1MzBBMjc3NTI4Q0Y4 MUEzQzUzMDYwHhcNMjUxMDE5MDA0NDQxWhcNMjUxMDI2MDA0NDQxWjAYMRYwFAYD VQQDEw02OGY0MzQ3OS01NjQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0AV69dVXnJGK6i6TN3Gr36yMGbmGk4nzrhxN7EXs3w47xiL93GnbRIqytchM iukGJwHYJg8W4+SJuNC6UV7uiKc7qLGOGT/F/d7W5miOoJQnOX/mAN9/sor4cmUE xv91DBx2LW47/ufzuQ1MXEE0cBLswdCXrbqKSdsr8gOQn/+EDvejACL0A1brHRTv VrYDWwtihbJKQXbIaDXlbUctWuZNwN+u9n7Pc4YaR+WmJBgoibgU0VVDDynxV5YI MuzQ0NDO0Ov0R7MlIeBz0hrngSpht/Jzp24Nohif1nQ46EkQyafn+MpYhfYL926G OehnHLbnGsU5O3nxtBYGPaA6UwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCRdpqTg JsCJaDDQa3fq1JV8hoa5MB8GA1UdIwQYMBaAFFNOZ16JrJrDAvUwondSjPgaPFMG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzFFQi9BQzM4NEFBNkRE ODIxMUVCOTU4RDFDMzBDNEY5QUUwMi9VMDVuWG9tc21zTUM5VENpZDFLTS1CbzhV d1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UwNW5Yb21zbXNNQzlUQ2lkMUtNLUJvOFV3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QzFFQi9BQzM4NEFBNkREODIxMUVCOTU4RDFDMzBDNEY5QUUwMi9VMDVuWG9tc21z TUM5VENpZDFLTS1CbzhVd1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/hrGX5stiUpxXie8u0u6SgSDqyW9Ya0NvcnQ8yt7ctDGq8cnyjD0Z ZrqJ9dqrFMAS2D65fc5S+dd8aPEkDiP6qrr4/hPN7iLu3YsXsCySSATju0c62b4w +vYZvb0jcHtL8AGwM4P9w8I3lpm0rOAJFyy0HD5kmHxR9CPe+/4ZtXSG4l9+AlRj 8zMbJvEtGYlchzy2AX0HK3z3USyP4cOOi2YR7bvVhoZfzeZBYnepJTU6zqMt+RKs oXXnCKfqHYtA54/WYo1y+4IaJ1za5g7SPUj+PeAVvVQTzgqW6vrYS6O6q3DF4JfT 7ZosdqBfylZ1gjIX9XhSVrItwyXw+fsO -----END CERTIFICATE-----Generated at Mon Oct 20 17:54:30 2025 by rpki-client