$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF84F/DD487A5C981411EBA4B32150C4F9AE02/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.mft File: cUHDGbtEv7zeM4Kzu2kSZfldMJ8.mft (raw, json) Hash identifier: ep1sAxABI/M9s4qbwKtiJKpLzlSBU7pb+fwuC3heMMI= Subject key identifier: 62:DD:49:76:45:69:16:2C:C9:47:60:0C:EC:AD:72:6A:F5:8D:E2:BA Authority key identifier: 71:41:C3:19:BB:44:BF:BC:DE:33:82:B3:BB:69:12:65:F9:5D:30:9F Certificate issuer: /CN=A91FF84F/serialNumber=7141C319BB44BFBCDE3382B3BB691265F95D309F Certificate serial: 0678 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF84F/DD487A5C981411EBA4B32150C4F9AE02/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.mft Manifest number: 0672 Signing time: Sun 19 Oct 2025 00:03:10 +0000 Manifest this update: Sun 19 Oct 2025 00:03:10 +0000 Manifest next update: Sun 26 Oct 2025 00:03:10 +0000 Files and hashes: 1: cUHDGbtEv7zeM4Kzu2kSZfldMJ8.crl (hash: +HI6dS9ET3X4AMZt9k86t+KaU2wqvNV3MHCIe+02jUo=) 2: 2F320256981611EB904AF150C4F9AE02.roa (hash: zydBQ6+XzPsP0D5XfuooCO12kFS+89HKhQ6kY0lGz0g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF84F/DD487A5C981411EBA4B32150C4F9AE02/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.crl rsync://rpki.apnic.net/member_repository/A91FF84F/DD487A5C981411EBA4B32150C4F9AE02/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:03:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1656 (0x678) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF84F, serialNumber=7141C319BB44BFBCDE3382B3BB691265F95D309F Validity Not Before: Oct 19 00:03:10 2025 GMT Not After : Oct 26 00:03:10 2025 GMT Subject: CN=68f42abe-3558 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:88:8e:57:25:3a:0f:aa:31:8c:73:5c:96:8f: 5c:5f:95:ca:47:99:a5:1c:71:b7:07:31:44:f4:7b: 06:ad:8b:31:85:e0:d4:2e:3c:84:eb:c3:eb:24:b4: 00:71:9e:34:06:fd:71:95:8a:f0:7a:b8:ad:df:8d: 36:af:64:a0:08:1a:12:63:aa:ec:ab:7f:36:eb:68: a8:b4:c2:8d:40:8a:97:d7:2d:74:09:7b:12:c0:13: 54:e3:6e:1d:c4:36:cc:05:8a:18:88:5a:1b:ac:6c: 0d:f2:ab:b1:56:62:0f:7a:2a:06:fe:48:b6:db:32: 25:c0:72:b3:a0:00:3e:f7:08:f4:8a:70:a6:f3:ea: 47:b3:3a:21:25:04:db:3f:c9:e7:2d:37:99:0c:f8: 63:18:01:83:ed:af:35:0d:f4:18:77:12:26:42:b7: 38:7a:c3:12:ad:94:a6:ec:35:12:23:6f:e3:78:0b: 2d:4f:62:ba:fc:0a:61:26:73:c7:32:23:47:f7:58: a0:34:cf:d9:40:42:d0:47:bf:10:d1:fc:63:72:4b: 8e:19:de:fc:d0:2b:85:a9:9f:06:f9:f9:1c:09:cf: 2e:73:ae:fb:65:e9:96:7e:91:11:df:4b:61:d7:f2: fd:a2:0c:a8:2e:93:e0:5a:67:f4:7c:c4:d6:58:08: 25:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:DD:49:76:45:69:16:2C:C9:47:60:0C:EC:AD:72:6A:F5:8D:E2:BA X509v3 Authority Key Identifier: keyid:71:41:C3:19:BB:44:BF:BC:DE:33:82:B3:BB:69:12:65:F9:5D:30:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF84F/DD487A5C981411EBA4B32150C4F9AE02/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF84F/DD487A5C981411EBA4B32150C4F9AE02/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:27:90:f5:72:f9:3a:25:48:75:1f:a3:b6:c7:3a:a6:cc:ee: d4:c7:49:db:cc:da:42:6f:db:fa:d9:ed:d0:8a:d4:1e:1f:ce: e3:6e:f0:1d:8b:a8:91:ea:6b:df:93:76:dc:8b:7d:4f:bf:e7: d1:c5:5f:fc:e8:1a:2d:d2:96:c7:b0:07:5c:cd:58:05:9e:dd: 55:ee:34:6e:57:9d:d5:6e:8c:9b:46:3d:e9:0c:f0:34:f5:8c: 75:ba:89:41:3d:e7:dc:da:7b:c1:77:1a:ab:d2:77:c7:e8:d4: 2c:e9:f4:7f:4d:b4:5d:5c:a0:88:c0:71:0a:4d:58:01:28:82: 45:be:ee:45:63:34:b1:56:5e:a1:fe:f1:49:51:b6:7d:f0:65: 03:fc:5d:a2:b6:6a:9a:72:20:21:95:da:c0:13:ee:13:ca:b5: 63:a1:c7:03:dd:01:b4:70:51:47:39:29:ee:a1:5f:5b:4a:c8: 2c:32:cf:71:b1:5f:af:2f:67:b7:1d:a0:46:c9:fe:1d:25:5b: da:e4:d8:e0:21:f0:f9:0d:a7:2e:5a:7d:0d:bb:6c:90:22:6b: 45:f7:6e:88:12:83:1c:08:e6:9c:f9:2d:54:28:ae:e1:5a:64: cf:4f:e1:28:70:71:7e:85:b2:1b:c1:b4:1e:77:ed:10:6d:3d: 80:77:ae:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBngwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY4NEYxMTAvBgNVBAUTKDcxNDFDMzE5QkI0NEJGQkNERTMzODJCM0JCNjkxMjY1 Rjk1RDMwOUYwHhcNMjUxMDE5MDAwMzEwWhcNMjUxMDI2MDAwMzEwWjAYMRYwFAYD VQQDEw02OGY0MmFiZS0zNTU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyIiOVyU6D6oxjHNclo9cX5XKR5mlHHG3BzFE9HsGrYsxheDULjyE68PrJLQA cZ40Bv1xlYrwerit3402r2SgCBoSY6rsq38262iotMKNQIqX1y10CXsSwBNU424d xDbMBYoYiFobrGwN8quxVmIPeioG/ki22zIlwHKzoAA+9wj0inCm8+pHszohJQTb P8nnLTeZDPhjGAGD7a81DfQYdxImQrc4esMSrZSm7DUSI2/jeAstT2K6/AphJnPH MiNH91igNM/ZQELQR78Q0fxjckuOGd780CuFqZ8G+fkcCc8uc677ZemWfpER30th 1/L9ogyoLpPgWmf0fMTWWAglLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGLdSXZF aRYsyUdgDOytcmr1jeK6MB8GA1UdIwQYMBaAFHFBwxm7RL+83jOCs7tpEmX5XTCf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjg0Ri9ERDQ4N0E1Qzk4 MTQxMUVCQTRCMzIxNTBDNEY5QUUwMi9jVUhER2J0RXY3emVNNEt6dTJrU1pmbGRN SjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NVSERHYnRFdjd6ZU00S3p1MmtTWmZsZE1KOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Rjg0Ri9ERDQ4N0E1Qzk4MTQxMUVCQTRCMzIxNTBDNEY5QUUwMi9jVUhER2J0RXY3 emVNNEt6dTJrU1pmbGRNSjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUJ5D1cvk6JUh1H6O2xzqmzO7Ux0nbzNpCb9v62e3QitQeH87jbvAd i6iR6mvfk3bci31Pv+fRxV/86Bot0pbHsAdczVgFnt1V7jRuV53VboybRj3pDPA0 9Yx1uolBPefc2nvBdxqr0nfH6NQs6fR/TbRdXKCIwHEKTVgBKIJFvu5FYzSxVl6h /vFJUbZ98GUD/F2itmqaciAhldrAE+4TyrVjoccD3QG0cFFHOSnuoV9bSsgsMs9x sV+vL2e3HaBGyf4dJVva5NjgIfD5DacuWn0Nu2yQImtF926IEoMcCOac+S1UKK7h WmTPT+EocHF+hbIbwbQed+0QbT2Ad67M -----END CERTIFICATE-----Generated at Mon Oct 20 14:00:16 2025 by rpki-client