$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft File: -W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft (raw, json) Hash identifier: ZuYBjmahxLmLw8QNUdvGvgmDtjSA2MnoX7JxFgvT8lk= Subject key identifier: 56:81:66:DD:88:0C:96:E3:49:2B:5A:CC:BB:B0:07:84:EA:29:CF:FE Authority key identifier: F9:6F:AE:28:8A:64:30:AD:CC:F9:5E:0E:A8:9F:08:5B:B6:E8:29:D4 Certificate issuer: /CN=A91E5490/serialNumber=F96FAE288A6430ADCCF95E0EA89F085BB6E829D4 Certificate serial: 0549 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft Manifest number: 053F Signing time: Sun 19 Oct 2025 01:13:40 +0000 Manifest this update: Sun 19 Oct 2025 01:13:39 +0000 Manifest next update: Sun 26 Oct 2025 01:13:39 +0000 Files and hashes: 1: -W-uKIpkMK3M-V4OqJ8IW7boKdQ.crl (hash: ZKhrLz+Nn1b21CLng7daGHSwIJSmxA6BblclUo6QEDs=) 2: 8608449A356511EC9715F015C4F9AE02.roa (hash: clmx/oQr73cJ/dvXJjULbQlKZ0MXrmzLfgGRONsfwYo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.crl rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:13:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1353 (0x549) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5490, serialNumber=F96FAE288A6430ADCCF95E0EA89F085BB6E829D4 Validity Not Before: Oct 19 01:13:39 2025 GMT Not After : Oct 26 01:13:39 2025 GMT Subject: CN=68f43b43-50b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:b2:7a:60:25:44:3c:33:19:26:1d:51:e8:7d: c8:ad:7d:7a:33:d0:fb:b5:4b:08:9c:f2:bd:ae:a3: e9:d1:00:e7:7f:6b:1f:58:68:30:e3:ba:24:88:bd: 83:33:af:a0:15:b4:89:ac:63:41:af:bd:52:38:b3: 06:b7:19:9d:3a:23:b2:e8:40:05:83:79:8b:b0:a2: 82:5e:53:18:be:e0:83:69:97:99:09:9f:2f:c3:71: d7:07:4d:c7:a3:10:a9:5f:c8:03:5e:c9:7c:c7:88: 51:bb:ea:41:90:0c:14:74:b2:4d:3d:98:55:a2:59: bc:8c:76:48:22:01:b1:58:31:b0:97:af:c1:25:7d: f6:03:7d:7e:75:d2:32:c0:24:15:5a:7b:15:db:1e: 6f:bf:1f:2a:7b:7c:85:d9:9f:b3:83:57:bc:0c:82: e0:a9:b1:a3:31:c2:0e:06:21:a0:75:4e:8a:c3:5f: 8f:97:02:8c:5d:d4:38:39:50:80:ed:ca:9b:c8:54: 19:0c:34:f7:7c:82:6b:e9:4f:fd:50:38:73:1c:4d: d7:90:e0:8e:d0:7b:26:7d:7c:da:15:e0:42:a2:7f: 77:23:69:ce:6c:fe:e8:10:0e:91:83:0b:f5:1b:b6: cb:af:0c:d1:24:0b:5a:7c:a0:c9:98:24:15:cb:d4: d9:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:81:66:DD:88:0C:96:E3:49:2B:5A:CC:BB:B0:07:84:EA:29:CF:FE X509v3 Authority Key Identifier: keyid:F9:6F:AE:28:8A:64:30:AD:CC:F9:5E:0E:A8:9F:08:5B:B6:E8:29:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:a1:ce:b9:cd:85:ec:72:d1:af:69:61:7a:e1:64:4b:47:b7: 43:2c:f4:ad:d9:15:a2:41:96:c5:21:ef:10:91:74:9c:f9:34: 4c:92:22:82:a0:99:d9:a2:f9:c2:c6:60:cf:4e:a4:50:64:88: 94:34:17:59:68:9c:da:e3:06:67:6e:a6:b1:6b:e5:89:fe:6a: 52:cd:b0:29:ac:5c:b8:a2:aa:61:a3:bb:43:52:ac:b9:bf:ae: e3:be:d4:bd:5c:3c:26:a5:de:3e:79:84:70:15:64:63:7a:09: 49:f8:af:4a:70:3d:ec:4c:03:48:09:09:f7:f9:6b:3a:3e:be: ea:70:b7:ea:98:f3:2b:21:b5:a3:53:ef:20:d0:64:19:e7:55: 9f:53:7f:50:4a:3c:2c:3c:32:ae:12:78:51:26:84:9e:72:78: 48:3d:9a:b8:bf:9a:cc:a2:cb:74:e7:85:57:a7:1b:35:b2:e0: 58:53:bb:77:bc:f0:bd:e6:6c:10:86:1c:4b:05:4d:19:3b:c2: 2f:89:52:c6:95:bd:e7:0b:5a:d1:18:91:5b:fc:4c:bf:cf:de: f6:7c:fe:18:e5:13:13:4d:03:b1:52:f0:87:64:9c:cf:87:70: 20:2b:69:3a:4a:a0:31:61:95:0f:a6:e8:8a:1b:56:ba:55:08: 23:f0:73:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBUkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU0OTAxMTAvBgNVBAUTKEY5NkZBRTI4OEE2NDMwQURDQ0Y5NUUwRUE4OUYwODVC QjZFODI5RDQwHhcNMjUxMDE5MDExMzM5WhcNMjUxMDI2MDExMzM5WjAYMRYwFAYD VQQDEw02OGY0M2I0My01MGI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA37J6YCVEPDMZJh1R6H3IrX16M9D7tUsInPK9rqPp0QDnf2sfWGgw47okiL2D M6+gFbSJrGNBr71SOLMGtxmdOiOy6EAFg3mLsKKCXlMYvuCDaZeZCZ8vw3HXB03H oxCpX8gDXsl8x4hRu+pBkAwUdLJNPZhVolm8jHZIIgGxWDGwl6/BJX32A31+ddIy wCQVWnsV2x5vvx8qe3yF2Z+zg1e8DILgqbGjMcIOBiGgdU6Kw1+PlwKMXdQ4OVCA 7cqbyFQZDDT3fIJr6U/9UDhzHE3XkOCO0HsmfXzaFeBCon93I2nObP7oEA6Rgwv1 G7bLrwzRJAtafKDJmCQVy9TZ2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFaBZt2I DJbjSStazLuwB4TqKc/+MB8GA1UdIwQYMBaAFPlvriiKZDCtzPleDqifCFu26CnU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTQ5MC8zMjFGNTkxRTE0 NjIxMUVDOTg2OEMyNDZDNEY5QUUwMi8tVy11S0lwa01LM00tVjRPcUo4SVc3Ym9L ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1XLXVLSXBrTUszTS1WNE9xSjhJVzdib0tkUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTQ5MC8zMjFGNTkxRTE0NjIxMUVDOTg2OEMyNDZDNEY5QUUwMi8tVy11S0lwa01L M00tVjRPcUo4SVc3Ym9LZFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZoc65zYXsctGvaWF64WRLR7dDLPSt2RWiQZbFIe8QkXSc+TRMkiKC oJnZovnCxmDPTqRQZIiUNBdZaJza4wZnbqaxa+WJ/mpSzbAprFy4oqpho7tDUqy5 v67jvtS9XDwmpd4+eYRwFWRjeglJ+K9KcD3sTANICQn3+Ws6Pr7qcLfqmPMrIbWj U+8g0GQZ51WfU39QSjwsPDKuEnhRJoSecnhIPZq4v5rMost054VXpxs1suBYU7t3 vPC95mwQhhxLBU0ZO8IviVLGlb3nC1rRGJFb/Ey/z972fP4Y5RMTTQOxUvCHZJzP h3AgK2k6SqAxYZUPpuiKG1a6VQgj8HP4 -----END CERTIFICATE-----Generated at Mon Oct 20 09:36:54 2025 by rpki-client