$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/umn8tA4zSXV_ok-OM1eRxfAEXVg.mft File: umn8tA4zSXV_ok-OM1eRxfAEXVg.mft (raw, json) Hash identifier: wXIJiPcosMeADq9mtOePW/epo8ImoZkZM9ypvZnUrKY= Subject key identifier: 3B:30:0C:48:B7:0C:99:50:92:C1:E4:2B:47:F2:79:11:C6:C5:80:0B Authority key identifier: BA:69:FC:B4:0E:33:49:75:7F:A2:4F:8E:33:57:91:C5:F0:04:5D:58 Certificate issuer: /CN=A91EBA81/serialNumber=BA69FCB40E3349757FA24F8E335791C5F0045D58 Certificate serial: 0462 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/umn8tA4zSXV_ok-OM1eRxfAEXVg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/umn8tA4zSXV_ok-OM1eRxfAEXVg.mft Manifest number: 0457 Signing time: Sun 19 Oct 2025 02:07:30 +0000 Manifest this update: Sun 19 Oct 2025 02:07:30 +0000 Manifest next update: Sun 26 Oct 2025 02:07:30 +0000 Files and hashes: 1: umn8tA4zSXV_ok-OM1eRxfAEXVg.crl (hash: N8ttuZiO5SN7kJdB8BHBJKlUQGBKRHXQ0qxEEGyD1gk=) 2: 159DA092E9B711EFB8454123C4F9AE02.roa (hash: tjoX2rKURmmp0SIpilUWla3AD/nRXhfocceVz0iL1og=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/umn8tA4zSXV_ok-OM1eRxfAEXVg.crl rsync://rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/umn8tA4zSXV_ok-OM1eRxfAEXVg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/umn8tA4zSXV_ok-OM1eRxfAEXVg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:07:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1122 (0x462) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBA81, serialNumber=BA69FCB40E3349757FA24F8E335791C5F0045D58 Validity Not Before: Oct 19 02:07:30 2025 GMT Not After : Oct 26 02:07:30 2025 GMT Subject: CN=68f447e2-432a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:df:67:54:29:f9:fa:6b:c0:14:62:27:9e:8b: b6:9f:d0:14:99:39:49:9d:f4:29:37:0f:eb:60:41: 7e:83:d3:77:e7:a4:ab:92:81:bc:fa:55:15:4e:c5: 08:f8:34:fb:83:b5:21:69:ad:e7:a8:3d:24:d9:9b: 39:68:ca:06:b1:73:7a:34:0e:72:07:4d:1c:bb:8b: a7:a0:3f:eb:2a:dd:5e:35:eb:ba:d7:fc:30:72:ea: 2a:11:99:92:d6:2c:8f:33:fd:ea:73:b1:c0:e2:20: 87:88:61:14:b0:75:15:b5:8a:28:89:63:eb:31:f7: 8d:00:86:39:78:1d:c4:c3:c1:97:a8:68:ed:e9:15: c4:19:05:2d:d1:75:bf:79:2a:10:d6:f1:4b:41:9b: f2:1a:e8:6d:8a:9a:06:99:07:0c:1e:5c:40:58:a4: 92:f2:84:f3:1a:14:4b:ca:62:3d:ee:4e:11:1c:ef: ac:d9:12:ec:b7:93:d7:ed:92:73:45:4a:bd:b0:ca: fb:c3:b6:2c:bd:25:73:5f:ec:8b:a4:ca:4f:85:75: db:50:80:49:9f:af:ea:9e:48:08:93:67:5b:a1:5d: 89:9f:ee:8a:b0:a0:a4:28:78:dd:ed:d7:5d:50:26: 6b:b7:9d:1b:5a:e5:6f:f1:f4:3e:a3:bc:cb:01:81: da:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:30:0C:48:B7:0C:99:50:92:C1:E4:2B:47:F2:79:11:C6:C5:80:0B X509v3 Authority Key Identifier: keyid:BA:69:FC:B4:0E:33:49:75:7F:A2:4F:8E:33:57:91:C5:F0:04:5D:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/umn8tA4zSXV_ok-OM1eRxfAEXVg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/umn8tA4zSXV_ok-OM1eRxfAEXVg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/umn8tA4zSXV_ok-OM1eRxfAEXVg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:db:83:e8:f6:cb:15:1e:98:82:b7:57:db:66:54:7a:6d:fc: 6d:35:d3:bb:1e:27:77:c4:bf:90:2c:1c:ca:d9:7b:4f:7b:ea: 7c:c4:80:10:75:2b:dd:f0:04:ca:49:e4:2a:f0:5f:8f:ce:fe: 14:80:17:15:b2:f9:2a:b5:61:9b:78:36:e4:74:9f:a6:c2:58: cb:11:de:89:ab:aa:a9:cb:aa:db:99:64:6a:de:29:7a:22:bf: 4f:4c:5e:34:b9:33:f9:3e:58:fe:1e:11:57:d3:fb:b1:b0:5a: e5:c6:ee:dc:87:8d:85:dc:0b:20:19:95:fb:82:46:7a:52:bb: 96:7c:5a:99:e9:8e:cd:06:2b:be:cc:90:fe:1f:a8:4c:b5:f1: b5:3f:ae:33:7c:fc:3f:92:0d:12:30:29:83:de:00:8d:16:fa: f3:ab:69:29:b3:8b:ad:81:43:e6:db:db:bb:3e:87:bb:3a:04: 4a:6d:db:74:d6:9c:5d:15:f5:a1:ba:4b:45:5d:7d:6a:0e:09: 3a:65:05:dd:a8:40:1c:65:ba:81:26:13:1c:40:87:8a:ea:9e: 4c:21:d8:ce:51:28:9a:72:fd:14:e2:38:f1:46:4d:2b:b7:8b: bf:f1:d2:8e:1f:4c:cc:9a:5e:34:15:ed:c4:44:12:b8:56:ef: 86:94:fa:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBGIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJBODExMTAvBgNVBAUTKEJBNjlGQ0I0MEUzMzQ5NzU3RkEyNEY4RTMzNTc5MUM1 RjAwNDVENTgwHhcNMjUxMDE5MDIwNzMwWhcNMjUxMDI2MDIwNzMwWjAYMRYwFAYD VQQDEw02OGY0NDdlMi00MzJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtd9nVCn5+mvAFGInnou2n9AUmTlJnfQpNw/rYEF+g9N356SrkoG8+lUVTsUI +DT7g7Uhaa3nqD0k2Zs5aMoGsXN6NA5yB00cu4unoD/rKt1eNeu61/wwcuoqEZmS 1iyPM/3qc7HA4iCHiGEUsHUVtYooiWPrMfeNAIY5eB3Ew8GXqGjt6RXEGQUt0XW/ eSoQ1vFLQZvyGuhtipoGmQcMHlxAWKSS8oTzGhRLymI97k4RHO+s2RLst5PX7ZJz RUq9sMr7w7YsvSVzX+yLpMpPhXXbUIBJn6/qnkgIk2dboV2Jn+6KsKCkKHjd7ddd UCZrt50bWuVv8fQ+o7zLAYHafwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDswDEi3 DJlQksHkK0fyeRHGxYALMB8GA1UdIwQYMBaAFLpp/LQOM0l1f6JPjjNXkcXwBF1Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkE4MS9DRTEzNkJEMDc0 NTcxMUVDQjM5ODc1MThDNEY5QUUwMi91bW44dEE0elNYVl9vay1PTTFlUnhmQUVY VmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Vtbjh0QTR6U1hWX29rLU9NMWVSeGZBRVhWZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkE4MS9DRTEzNkJEMDc0NTcxMUVDQjM5ODc1MThDNEY5QUUwMi91bW44dEE0elNY Vl9vay1PTTFlUnhmQUVYVmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAU24Po9ssVHpiCt1fbZlR6bfxtNdO7Hid3xL+QLBzK2XtPe+p8xIAQ dSvd8ATKSeQq8F+Pzv4UgBcVsvkqtWGbeDbkdJ+mwljLEd6Jq6qpy6rbmWRq3il6 Ir9PTF40uTP5Plj+HhFX0/uxsFrlxu7ch42F3AsgGZX7gkZ6UruWfFqZ6Y7NBiu+ zJD+H6hMtfG1P64zfPw/kg0SMCmD3gCNFvrzq2kps4utgUPm29u7Poe7OgRKbdt0 1pxdFfWhuktFXX1qDgk6ZQXdqEAcZbqBJhMcQIeK6p5MIdjOUSiacv0U4jjxRk0r t4u/8dKOH0zMml40Fe3ERBK4Vu+GlPpV -----END CERTIFICATE-----Generated at Mon Oct 20 13:51:19 2025 by rpki-client