$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9509/274ED15E601A11EDB7416B6CC4F9AE02/Ub6jYJQp2RscTkAi2mi9ZDwzw_s.mft File: Ub6jYJQp2RscTkAi2mi9ZDwzw_s.mft (raw, json) Hash identifier: w9CK/sS6fAKiRDbvXOEewASu1pkt5JOL8PdsX3d3PcY= Subject key identifier: A8:4D:E9:EA:84:B3:B5:89:B0:B8:7C:63:A5:DF:9F:49:EA:24:48:7E Authority key identifier: 51:BE:A3:60:94:29:D9:1B:1C:4E:40:22:DA:68:BD:64:3C:33:C3:FB Certificate issuer: /CN=A91E9509/serialNumber=51BEA3609429D91B1C4E4022DA68BD643C33C3FB Certificate serial: 0234 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ub6jYJQp2RscTkAi2mi9ZDwzw_s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9509/274ED15E601A11EDB7416B6CC4F9AE02/Ub6jYJQp2RscTkAi2mi9ZDwzw_s.mft Manifest number: 022C Signing time: Sun 19 Oct 2025 04:14:00 +0000 Manifest this update: Sun 19 Oct 2025 04:14:00 +0000 Manifest next update: Sun 26 Oct 2025 04:14:00 +0000 Files and hashes: 1: Ub6jYJQp2RscTkAi2mi9ZDwzw_s.crl (hash: HW7N/4tMiVcuYj1Opmg4LOXr/nC26E02DXuN5T4OuN0=) 2: F23AE0AE632D11ED8C102087C4F9AE02.roa (hash: Bi2+TUUi9KjDZhYC/bMb0EhL81rd7MZoY9SFjv5WPeY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9509/274ED15E601A11EDB7416B6CC4F9AE02/Ub6jYJQp2RscTkAi2mi9ZDwzw_s.crl rsync://rpki.apnic.net/member_repository/A91E9509/274ED15E601A11EDB7416B6CC4F9AE02/Ub6jYJQp2RscTkAi2mi9ZDwzw_s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ub6jYJQp2RscTkAi2mi9ZDwzw_s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:13:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 564 (0x234) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9509, serialNumber=51BEA3609429D91B1C4E4022DA68BD643C33C3FB Validity Not Before: Oct 19 04:14:00 2025 GMT Not After : Oct 26 04:14:00 2025 GMT Subject: CN=68f46588-94fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:92:02:8f:cb:da:0e:b2:fd:4a:c1:92:3a:91: ec:e8:f8:8e:31:62:94:76:71:c2:c4:fd:dd:50:09: 5b:bc:99:63:b5:06:2c:39:b2:20:47:05:d2:57:cf: 13:86:e5:15:27:15:be:91:80:39:17:cc:5b:f0:6f: 16:4c:63:a0:6c:28:95:32:03:17:0b:88:7f:ff:df: 43:df:69:d6:20:c6:9e:60:3a:8d:6a:7f:37:d4:6a: bd:71:0e:5d:32:0d:d7:5a:cf:57:b2:67:02:0f:1b: a9:56:f2:94:8a:c3:61:04:78:de:75:b3:0d:80:20: 35:f0:c5:ac:00:2b:ce:1b:04:cb:6e:46:ca:65:34: ff:2e:54:cc:61:6d:14:57:02:18:b7:42:1b:26:e5: 15:93:cc:48:ec:1a:4c:48:82:df:9d:7c:0e:2a:d4: 52:da:1d:53:b5:fe:5f:3d:d8:c5:7f:00:7f:b7:43: c4:6d:10:0f:73:ef:5f:70:61:03:ed:7f:7c:0a:11: 0d:75:45:f0:b4:ff:00:ad:a3:99:08:4f:a1:8f:61: d5:e3:ee:45:0c:6d:02:e1:0b:e1:ad:80:8d:eb:45: 05:5e:02:72:90:b1:32:c6:70:a0:87:c6:09:ac:bf: ab:f0:06:0b:87:30:3b:6e:e6:9d:ad:e9:9b:f5:ff: d5:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:4D:E9:EA:84:B3:B5:89:B0:B8:7C:63:A5:DF:9F:49:EA:24:48:7E X509v3 Authority Key Identifier: keyid:51:BE:A3:60:94:29:D9:1B:1C:4E:40:22:DA:68:BD:64:3C:33:C3:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9509/274ED15E601A11EDB7416B6CC4F9AE02/Ub6jYJQp2RscTkAi2mi9ZDwzw_s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ub6jYJQp2RscTkAi2mi9ZDwzw_s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9509/274ED15E601A11EDB7416B6CC4F9AE02/Ub6jYJQp2RscTkAi2mi9ZDwzw_s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:03:1a:51:25:77:ad:16:cd:73:da:0d:19:ad:08:20:89:d0: 90:e3:5b:58:41:25:df:33:9a:74:1f:3b:4c:eb:82:c9:ec:69: 93:6e:ce:5b:b6:8f:2b:28:60:a2:a2:34:03:2a:f5:be:13:6d: a9:d8:da:1e:9b:6e:33:1e:09:22:60:b9:12:7a:7b:d0:e0:cf: b2:d1:f5:0d:f6:d0:7b:e8:57:45:10:b0:4b:7b:c4:b8:ed:87: ea:a8:c9:df:f8:b0:80:cb:7a:fd:9f:4e:23:6b:1c:f4:4f:a8: ee:14:33:82:bf:5a:ed:12:06:3d:1e:ef:0e:a9:db:6e:c5:87: 3b:0b:cc:e7:f0:59:18:be:5d:7c:56:36:b8:63:77:dd:00:b8: 68:f4:39:87:20:ac:5f:22:49:3e:37:cd:4b:4a:52:c8:c6:f7: 51:5c:b1:c6:e0:97:dd:a5:1f:c2:8f:33:79:9c:c4:34:94:8c: b7:2f:b9:27:5e:36:74:ef:58:0d:e5:4e:6b:de:87:87:71:4b: f3:16:a8:7f:0c:aa:01:11:87:76:9b:94:da:c8:6c:db:ad:bf: 68:85:a0:a3:59:96:9a:23:f9:2b:86:7c:45:07:f2:76:a4:c9: 79:73:6a:87:8a:46:b2:2e:f9:d1:8a:6e:60:70:46:33:19:04: a5:fc:96:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk1MDkxMTAvBgNVBAUTKDUxQkVBMzYwOTQyOUQ5MUIxQzRFNDAyMkRBNjhCRDY0 M0MzM0MzRkIwHhcNMjUxMDE5MDQxNDAwWhcNMjUxMDI2MDQxNDAwWjAYMRYwFAYD VQQDEw02OGY0NjU4OC05NGZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxpICj8vaDrL9SsGSOpHs6PiOMWKUdnHCxP3dUAlbvJljtQYsObIgRwXSV88T huUVJxW+kYA5F8xb8G8WTGOgbCiVMgMXC4h//99D32nWIMaeYDqNan831Gq9cQ5d Mg3XWs9XsmcCDxupVvKUisNhBHjedbMNgCA18MWsACvOGwTLbkbKZTT/LlTMYW0U VwIYt0IbJuUVk8xI7BpMSILfnXwOKtRS2h1Ttf5fPdjFfwB/t0PEbRAPc+9fcGED 7X98ChENdUXwtP8AraOZCE+hj2HV4+5FDG0C4QvhrYCN60UFXgJykLEyxnCgh8YJ rL+r8AYLhzA7buadremb9f/VBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKhN6eqE s7WJsLh8Y6Xfn0nqJEh+MB8GA1UdIwQYMBaAFFG+o2CUKdkbHE5AItpovWQ8M8P7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTUwOS8yNzRFRDE1RTYw MUExMUVEQjc0MTZCNkNDNEY5QUUwMi9VYjZqWUpRcDJSc2NUa0FpMm1pOVpEd3p3 X3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ViNmpZSlFwMlJzY1RrQWkybWk5WkR3endfcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTUwOS8yNzRFRDE1RTYwMUExMUVEQjc0MTZCNkNDNEY5QUUwMi9VYjZqWUpRcDJS c2NUa0FpMm1pOVpEd3p3X3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDAxpRJXetFs1z2g0ZrQggidCQ41tYQSXfM5p0HztM64LJ7GmTbs5b to8rKGCiojQDKvW+E22p2Noem24zHgkiYLkSenvQ4M+y0fUN9tB76FdFELBLe8S4 7YfqqMnf+LCAy3r9n04jaxz0T6juFDOCv1rtEgY9Hu8OqdtuxYc7C8zn8FkYvl18 Vja4Y3fdALho9DmHIKxfIkk+N81LSlLIxvdRXLHG4JfdpR/CjzN5nMQ0lIy3L7kn XjZ071gN5U5r3oeHcUvzFqh/DKoBEYd2m5TayGzbrb9ohaCjWZaaI/krhnxFB/J2 pMl5c2qHikayLvnRim5gcEYzGQSl/Ja3 -----END CERTIFICATE-----Generated at Sun Oct 19 23:29:52 2025 by rpki-client