$ rpki-client -vvf rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft File: U8Dn8GiqHvADoL7ipdUtvInc37g.mft (raw, json) Hash identifier: 8S4TR+6/S9IfhLT7mvnlVfBLf76Hhc51ABEOSgyyWhs= Subject key identifier: EC:37:13:DE:0F:63:47:41:FA:F3:AD:EB:F0:5E:96:4F:01:42:07:3F Authority key identifier: 53:C0:E7:F0:68:AA:1E:F0:03:A0:BE:E2:A5:D5:2D:BC:89:DC:DF:B8 Certificate issuer: /CN=A91109A3/serialNumber=53C0E7F068AA1EF003A0BEE2A5D52DBC89DCDFB8 Certificate serial: 0174 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8Dn8GiqHvADoL7ipdUtvInc37g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft Manifest number: 016E Signing time: Wed 05 Nov 2025 04:04:15 +0000 Manifest this update: Wed 05 Nov 2025 04:04:15 +0000 Manifest next update: Wed 12 Nov 2025 04:04:15 +0000 Files and hashes: 1: U8Dn8GiqHvADoL7ipdUtvInc37g.crl (hash: CabdzvSascMA3kTXzsWo7bJxDPZN/tt/idvAgPMh+ss=) 2: FEB0698C941C11EE89E27567C4F9AE02.roa (hash: L26fzptytT9bxS3tMFpfzEmv3OkfRWvu4Ly32GIlRg8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.crl rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8Dn8GiqHvADoL7ipdUtvInc37g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:04:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 372 (0x174) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91109A3, serialNumber=53C0E7F068AA1EF003A0BEE2A5D52DBC89DCDFB8 Validity Not Before: Nov 5 04:04:15 2025 GMT Not After : Nov 12 04:04:15 2025 GMT Subject: CN=690accbf-4231 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:29:d0:84:8f:69:58:45:d3:4c:88:49:6a:dd: 4f:92:75:99:bd:24:d6:7a:cb:e5:f9:72:df:25:f2: 06:f2:2f:7c:b3:4c:f7:fb:12:04:f8:07:2e:b2:c1: cd:02:1f:dc:86:84:f2:9d:4a:bb:9d:2e:c4:26:2c: e2:59:d1:b9:30:11:80:00:61:a4:bc:36:37:91:dc: b3:8d:27:8e:5f:2a:cd:5d:a3:55:5c:7a:47:3a:17: 09:82:80:a1:be:1b:4c:5e:b3:9d:df:e3:b5:c7:30: 6c:1f:1c:06:31:f5:59:73:8d:46:a3:76:83:98:dc: bc:52:fa:b7:9d:02:57:cd:a3:48:f1:8a:5e:e5:4b: 99:68:0e:06:82:85:4f:4e:fb:d0:aa:8f:3e:bc:64: a0:b7:11:68:c0:73:bc:17:16:bf:b4:80:3e:50:b7: 5b:8f:d5:ba:50:93:5b:43:e6:c3:31:83:0c:48:34: b8:6c:51:d8:8c:8e:21:b5:05:93:a3:7e:4d:3a:fc: 4f:6e:6b:4e:09:54:b2:bd:65:83:3c:7e:00:ee:53: b6:b7:ae:f7:d7:47:96:9e:25:87:2f:12:d4:88:9a: d5:e3:de:4e:cd:64:41:72:9d:d7:13:54:1f:0f:4b: 2f:05:fb:1e:a4:4d:3f:fe:21:5c:5c:32:d0:b7:9d: 73:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:37:13:DE:0F:63:47:41:FA:F3:AD:EB:F0:5E:96:4F:01:42:07:3F X509v3 Authority Key Identifier: keyid:53:C0:E7:F0:68:AA:1E:F0:03:A0:BE:E2:A5:D5:2D:BC:89:DC:DF:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8Dn8GiqHvADoL7ipdUtvInc37g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:0e:e6:02:76:95:16:0f:0b:8f:11:7f:ad:79:79:61:24:a4: 3d:d2:6b:7b:59:50:21:a0:22:70:9d:4c:8a:b1:c1:5a:05:d4: fd:1e:5d:30:dd:09:bf:44:12:1e:f2:1d:1b:4d:5b:6d:bf:68: d3:6e:cd:cb:03:0d:14:16:84:12:1e:d7:7f:26:79:f9:4e:19: 50:8f:de:22:a8:8d:97:c7:36:2b:80:de:7c:3a:78:9c:a5:1f: 4c:9b:e3:4a:3e:95:b3:b9:1f:07:64:51:2b:48:e6:23:73:48: dd:e8:17:8b:c6:ed:11:82:e1:6c:be:3b:5c:9b:11:c1:10:e9: 98:da:12:11:b4:53:be:be:aa:4f:b7:7e:f2:90:7d:d4:83:a1: 5c:34:8e:93:1a:4d:27:ec:3b:4f:60:46:de:8a:d8:df:d6:7e: 7e:7a:7a:89:73:5d:1e:4c:b4:69:49:c2:09:6d:13:e5:fc:b7: 02:70:85:75:02:33:3a:c8:74:03:3a:74:6c:49:c1:bb:8d:d3: 5d:fc:8d:10:19:93:8a:36:f9:0c:fb:e8:0c:d2:97:b4:01:6c: 20:3c:f6:90:69:40:62:be:5e:43:48:8e:3a:92:69:fd:9c:c5: 5e:c5:4f:99:e4:32:39:2e:6f:66:47:4a:7f:51:ab:6b:63:09: 6d:0d:71:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTA5QTMxMTAvBgNVBAUTKDUzQzBFN0YwNjhBQTFFRjAwM0EwQkVFMkE1RDUyREJD ODlEQ0RGQjgwHhcNMjUxMTA1MDQwNDE1WhcNMjUxMTEyMDQwNDE1WjAYMRYwFAYD VQQDEw02OTBhY2NiZi00MjMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwSnQhI9pWEXTTIhJat1PknWZvSTWesvl+XLfJfIG8i98s0z3+xIE+AcussHN Ah/choTynUq7nS7EJiziWdG5MBGAAGGkvDY3kdyzjSeOXyrNXaNVXHpHOhcJgoCh vhtMXrOd3+O1xzBsHxwGMfVZc41Go3aDmNy8Uvq3nQJXzaNI8Ype5UuZaA4GgoVP TvvQqo8+vGSgtxFowHO8Fxa/tIA+ULdbj9W6UJNbQ+bDMYMMSDS4bFHYjI4htQWT o35NOvxPbmtOCVSyvWWDPH4A7lO2t67310eWniWHLxLUiJrV495OzWRBcp3XE1Qf D0svBfsepE0//iFcXDLQt51zdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOw3E94P Y0dB+vOt6/Belk8BQgc/MB8GA1UdIwQYMBaAFFPA5/Boqh7wA6C+4qXVLbyJ3N+4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDlBMy80M0ZCNjJGQThG RTgxMUVFOTJGNUM3NkFDNEY5QUUwMi9VOERuOEdpcUh2QURvTDdpcGRVdHZJbmMz N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U4RG44R2lxSHZBRG9MN2lwZFV0dkluYzM3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDlBMy80M0ZCNjJGQThGRTgxMUVFOTJGNUM3NkFDNEY5QUUwMi9VOERuOEdpcUh2 QURvTDdpcGRVdHZJbmMzN2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDADuYCdpUWDwuPEX+teXlhJKQ90mt7WVAhoCJwnUyKscFaBdT9Hl0w 3Qm/RBIe8h0bTVttv2jTbs3LAw0UFoQSHtd/Jnn5ThlQj94iqI2XxzYrgN58Onic pR9Mm+NKPpWzuR8HZFErSOYjc0jd6BeLxu0RguFsvjtcmxHBEOmY2hIRtFO+vqpP t37ykH3Ug6FcNI6TGk0n7DtPYEbeitjf1n5+enqJc10eTLRpScIJbRPl/LcCcIV1 AjM6yHQDOnRsScG7jdNd/I0QGZOKNvkM++gM0pe0AWwgPPaQaUBivl5DSI46kmn9 nMVexU+Z5DI5Lm9mR0p/UatrYwltDXFk -----END CERTIFICATE-----Generated at Wed Nov 5 19:32:38 2025 by rpki-client