$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft File: U8lIF-sTZfHejDwrRAIjmIHBlD0.mft (raw, json) Hash identifier: Croznl6hYZodvsWtqWBLTJUOiswLy6qurj4e5CfrT1M= Subject key identifier: E4:07:6C:0D:53:34:8B:EF:76:23:D2:B1:B1:CB:B9:4F:35:B5:64:A7 Authority key identifier: 53:C9:48:17:EB:13:65:F1:DE:8C:3C:2B:44:02:23:98:81:C1:94:3D Certificate issuer: /CN=A91D3307/serialNumber=53C94817EB1365F1DE8C3C2B4402239881C1943D Certificate serial: 04F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8lIF-sTZfHejDwrRAIjmIHBlD0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft Manifest number: 04DE Signing time: Sun 19 Oct 2025 01:40:17 +0000 Manifest this update: Sun 19 Oct 2025 01:40:16 +0000 Manifest next update: Sun 26 Oct 2025 01:40:16 +0000 Files and hashes: 1: U8lIF-sTZfHejDwrRAIjmIHBlD0.crl (hash: vYoiD1YASVIF55nFlCLjNAzGDMqpiqWFb+JObGMe2M4=) 2: C908B72A696F11EFA4DA475FC4F9AE02.roa (hash: tXoHtibATlzSAFpYW8FXeLBuzqLRo++NJ/KLRuKUVS4=) 3: C9C70AEA696F11EFA4DA475FC4F9AE02.roa (hash: 8/T20piCaEKmwex2vfHli1eA2pf6jywQnHESOXqs7Kg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.crl rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8lIF-sTZfHejDwrRAIjmIHBlD0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:40:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1271 (0x4f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3307, serialNumber=53C94817EB1365F1DE8C3C2B4402239881C1943D Validity Not Before: Oct 19 01:40:16 2025 GMT Not After : Oct 26 01:40:16 2025 GMT Subject: CN=68f44181-10fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:67:7f:42:dc:03:cf:bc:e0:78:f3:e0:2e:9c: 1b:f5:59:16:8e:00:91:07:ae:c1:8e:16:14:31:3e: 45:65:4f:c8:ed:92:94:4c:d9:85:b3:10:95:3a:86: 18:8c:d4:73:b6:f1:87:c0:d8:c1:db:47:d1:a0:d7: 65:d5:83:ed:71:40:d2:b8:90:b7:17:2c:4f:cf:ec: f7:23:f7:70:84:d2:47:5c:3d:70:6c:97:51:6e:9f: 9e:3e:46:54:70:a5:d3:35:98:d3:c7:f4:0c:3e:3f: 85:db:08:63:93:eb:9a:80:18:ec:e2:4b:21:0e:7e: fd:08:78:2a:38:74:f6:a0:8a:ef:17:70:0e:ff:be: b5:01:2b:9c:da:36:b9:f6:4c:16:5f:a7:7f:e7:4c: f3:87:01:cf:3f:cd:ca:2a:04:0d:b3:2e:4c:f0:56: 42:90:da:5d:85:26:0a:20:ac:1a:55:0f:d3:04:b9: 7a:a6:64:16:0c:81:b5:46:d9:e7:27:af:a1:ac:d3: 0e:90:f1:78:81:aa:8c:31:58:32:c2:2b:41:0c:e7: fd:fa:45:2d:fd:9d:8f:97:6e:1c:79:37:e6:61:21: 9c:13:5a:a5:86:8c:aa:67:47:ac:a6:90:e5:fd:80: 2c:56:f2:66:64:75:f7:00:ba:9b:57:a6:0e:28:06: 11:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:07:6C:0D:53:34:8B:EF:76:23:D2:B1:B1:CB:B9:4F:35:B5:64:A7 X509v3 Authority Key Identifier: keyid:53:C9:48:17:EB:13:65:F1:DE:8C:3C:2B:44:02:23:98:81:C1:94:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8lIF-sTZfHejDwrRAIjmIHBlD0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:24:40:d3:65:c4:6b:2d:5e:f1:67:7b:dc:d1:7d:58:bf:33: dd:d9:f0:2f:80:4c:4a:a8:50:f9:e8:4e:86:63:a6:b2:0f:cd: 93:07:b9:4f:40:f3:19:2f:02:11:59:37:f0:59:77:58:09:08: 8e:9c:e0:30:ee:b0:08:6c:f5:a0:a5:e7:d4:09:74:35:c2:c7: 13:c8:8d:cb:b4:07:db:dc:c3:48:51:da:82:51:cb:18:6f:37: 0c:ec:98:71:74:07:48:d0:b0:36:75:9c:02:f3:74:3b:39:34: ae:34:70:c9:67:fe:09:64:87:e6:41:ab:88:ab:bf:ba:e7:34: 0b:57:02:19:60:bc:cc:9b:46:e3:45:85:34:53:5e:90:75:0f: 8c:20:12:0d:a3:ef:a0:97:b0:3d:2e:b7:98:82:9a:de:c1:6d: 7c:8f:49:ec:ca:8f:76:8b:8b:ec:cd:cf:dc:b7:63:e9:d0:70: b6:46:8b:4f:77:b8:ec:ec:06:b5:0c:59:6b:75:1c:13:96:96: 64:b1:97:bb:e5:fa:ea:04:67:47:49:44:92:cb:32:6e:5a:48: dc:b4:70:f5:c9:99:06:10:b2:87:5c:77:cb:31:f8:3e:b0:ec: 7f:4c:63:45:57:76:f0:51:da:eb:5c:2a:f9:0b:d9:f2:f7:2a: f9:69:0f:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMzMDcxMTAvBgNVBAUTKDUzQzk0ODE3RUIxMzY1RjFERThDM0MyQjQ0MDIyMzk4 ODFDMTk0M0QwHhcNMjUxMDE5MDE0MDE2WhcNMjUxMDI2MDE0MDE2WjAYMRYwFAYD VQQDEw02OGY0NDE4MS0xMGZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Wd/QtwDz7zgePPgLpwb9VkWjgCRB67BjhYUMT5FZU/I7ZKUTNmFsxCVOoYY jNRztvGHwNjB20fRoNdl1YPtcUDSuJC3FyxPz+z3I/dwhNJHXD1wbJdRbp+ePkZU cKXTNZjTx/QMPj+F2whjk+uagBjs4kshDn79CHgqOHT2oIrvF3AO/761ASuc2ja5 9kwWX6d/50zzhwHPP83KKgQNsy5M8FZCkNpdhSYKIKwaVQ/TBLl6pmQWDIG1Rtnn J6+hrNMOkPF4gaqMMVgywitBDOf9+kUt/Z2Pl24ceTfmYSGcE1qlhoyqZ0esppDl /YAsVvJmZHX3ALqbV6YOKAYRHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOQHbA1T NIvvdiPSsbHLuU81tWSnMB8GA1UdIwQYMBaAFFPJSBfrE2Xx3ow8K0QCI5iBwZQ9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzMwNy8zNDJEODMyODQy Q0MxMUVDOEYxMzMyMERDNEY5QUUwMi9VOGxJRi1zVFpmSGVqRHdyUkFJam1JSEJs RDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U4bElGLXNUWmZIZWpEd3JSQUlqbUlIQmxEMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzMwNy8zNDJEODMyODQyQ0MxMUVDOEYxMzMyMERDNEY5QUUwMi9VOGxJRi1zVFpm SGVqRHdyUkFJam1JSEJsRDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIJEDTZcRrLV7xZ3vc0X1YvzPd2fAvgExKqFD56E6GY6ayD82TB7lP QPMZLwIRWTfwWXdYCQiOnOAw7rAIbPWgpefUCXQ1wscTyI3LtAfb3MNIUdqCUcsY bzcM7JhxdAdI0LA2dZwC83Q7OTSuNHDJZ/4JZIfmQauIq7+65zQLVwIZYLzMm0bj RYU0U16QdQ+MIBINo++gl7A9LreYgprewW18j0nsyo92i4vszc/ct2Pp0HC2RotP d7js7Aa1DFlrdRwTlpZksZe75frqBGdHSUSSyzJuWkjctHD1yZkGELKHXHfLMfg+ sOx/TGNFV3bwUdrrXCr5C9ny9yr5aQ/D -----END CERTIFICATE-----Generated at Sun Oct 19 23:21:41 2025 by rpki-client