$ rpki-client -vvf rpki.apnic.net/member_repository/A911C3BB/C908879AAB4911ED9FB40B35C4F9AE02/c_u1j1Vx8_TGKmP99a_vnLcOdAM.mft File: c_u1j1Vx8_TGKmP99a_vnLcOdAM.mft (raw, json) Hash identifier: oKC2n52+1yKVeBS01Bj8uqnsY0zW1sygETKECiI1xSc= Subject key identifier: 78:B6:84:AE:CE:BB:6A:BA:C3:68:86:6E:E3:2E:C1:DE:A8:21:75:A9 Authority key identifier: 73:FB:B5:8F:55:71:F3:F4:C6:2A:63:FD:F5:AF:EF:9C:B7:0E:74:03 Certificate issuer: /CN=A911C3BB/serialNumber=73FBB58F5571F3F4C62A63FDF5AFEF9CB70E7403 Certificate serial: 0202 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c_u1j1Vx8_TGKmP99a_vnLcOdAM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C3BB/C908879AAB4911ED9FB40B35C4F9AE02/c_u1j1Vx8_TGKmP99a_vnLcOdAM.mft Manifest number: 01FE Signing time: Mon 03 Nov 2025 02:21:47 +0000 Manifest this update: Mon 03 Nov 2025 02:21:46 +0000 Manifest next update: Mon 10 Nov 2025 02:21:46 +0000 Files and hashes: 1: c_u1j1Vx8_TGKmP99a_vnLcOdAM.crl (hash: quqbWiD56HjQZCnCsWs+FWGAzD20efHpHHjGbH3grqo=) 2: CB2788CAAB4C11EDB3DC7336C4F9AE02.roa (hash: 5/W5EqvBYrwaBbNXisgVsa/BWjLPbFWwbLiAWCjCMGo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C3BB/C908879AAB4911ED9FB40B35C4F9AE02/c_u1j1Vx8_TGKmP99a_vnLcOdAM.crl rsync://rpki.apnic.net/member_repository/A911C3BB/C908879AAB4911ED9FB40B35C4F9AE02/c_u1j1Vx8_TGKmP99a_vnLcOdAM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c_u1j1Vx8_TGKmP99a_vnLcOdAM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:21:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 514 (0x202) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C3BB, serialNumber=73FBB58F5571F3F4C62A63FDF5AFEF9CB70E7403 Validity Not Before: Nov 3 02:21:46 2025 GMT Not After : Nov 10 02:21:46 2025 GMT Subject: CN=690811ba-7288 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:11:5f:a1:49:87:a7:5f:d0:2c:ce:2b:94:59: e1:48:fc:65:63:b6:90:87:48:67:96:5b:e7:29:42: 93:d9:f4:10:f7:d2:4d:1c:63:eb:a4:e8:d8:c9:5c: 5e:e6:51:f7:72:dd:3a:d4:64:14:0c:ed:31:b4:d7: 44:81:05:41:7f:0b:f0:81:bf:7f:79:ee:e2:5d:1a: 1c:0f:ab:49:5b:c7:c8:b3:4a:21:d8:58:b8:e5:63: 32:b3:29:9e:23:72:8d:1e:da:d1:97:2a:b4:59:3e: 12:1e:5f:9a:32:e2:d4:4e:f7:16:bb:b8:93:78:5f: cb:9d:03:02:be:06:07:32:ae:d9:4f:c0:95:27:74: 2e:4d:a4:be:36:6a:a7:be:7e:14:ea:ab:fa:10:92: a7:ea:7c:b4:52:c9:07:cc:8e:76:03:47:26:eb:ea: 00:4f:f2:5c:27:0f:78:f5:2c:5c:5e:d3:ab:2f:dc: cf:c8:f3:38:98:f8:60:64:cc:6b:46:f2:f0:53:ab: 5e:ca:6a:2d:dc:f3:8b:1c:07:43:c4:6c:b1:dc:6e: 05:91:5b:49:6b:5b:75:e1:f1:34:b3:70:bd:c9:93: 45:41:3f:de:0d:4a:23:74:4e:b6:50:b0:7e:1c:22: 5d:7c:bf:7a:c8:49:28:76:b2:3e:85:18:a3:f2:34: ed:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:B6:84:AE:CE:BB:6A:BA:C3:68:86:6E:E3:2E:C1:DE:A8:21:75:A9 X509v3 Authority Key Identifier: keyid:73:FB:B5:8F:55:71:F3:F4:C6:2A:63:FD:F5:AF:EF:9C:B7:0E:74:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C3BB/C908879AAB4911ED9FB40B35C4F9AE02/c_u1j1Vx8_TGKmP99a_vnLcOdAM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c_u1j1Vx8_TGKmP99a_vnLcOdAM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C3BB/C908879AAB4911ED9FB40B35C4F9AE02/c_u1j1Vx8_TGKmP99a_vnLcOdAM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:2d:27:b5:65:97:91:15:f9:80:4a:04:b9:c8:57:84:14:7d: b2:fa:13:24:dc:c4:1d:d2:f9:2e:07:56:2a:d4:a5:2b:0b:9c: c7:25:4b:db:29:91:3f:30:4d:7c:75:03:4f:c3:78:ea:68:95: 33:76:e6:f0:cf:3b:34:86:b4:5f:52:3d:4b:b9:27:34:35:0e: e4:2e:52:82:4c:a4:4b:a2:75:40:c8:8e:01:11:db:99:98:61: 25:0f:29:8f:f0:e6:ed:7a:42:dc:68:77:af:b1:ce:5a:eb:b8: ef:29:69:f2:09:cf:2c:9b:a2:4c:06:ce:93:c9:e3:3a:81:35: c1:7d:45:47:d2:6c:4e:99:a1:a6:d1:99:c4:ec:63:79:4a:b0: 34:76:c9:ab:b7:37:4d:a7:33:25:a2:89:3a:94:ee:48:23:06: 68:15:51:72:69:a8:39:44:dd:89:7c:8b:a6:2b:65:b6:4b:8b: 77:e4:33:03:d2:87:a2:8a:94:6d:df:f3:1e:1b:4e:45:24:a0: a8:b0:ab:fc:5c:8e:61:d0:80:3f:9b:77:55:c6:db:5a:57:ad: 6f:d3:f0:fe:74:c6:1d:7b:92:33:c7:04:87:28:e2:c5:87:88: e2:06:bc:8b:49:e5:1d:be:48:51:a8:91:13:7d:5e:51:53:74: ea:b7:6b:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMzQkIxMTAvBgNVBAUTKDczRkJCNThGNTU3MUYzRjRDNjJBNjNGREY1QUZFRjlD QjcwRTc0MDMwHhcNMjUxMTAzMDIyMTQ2WhcNMjUxMTEwMDIyMTQ2WjAYMRYwFAYD VQQDEw02OTA4MTFiYS03Mjg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6RFfoUmHp1/QLM4rlFnhSPxlY7aQh0hnllvnKUKT2fQQ99JNHGPrpOjYyVxe 5lH3ct061GQUDO0xtNdEgQVBfwvwgb9/ee7iXRocD6tJW8fIs0oh2Fi45WMysyme I3KNHtrRlyq0WT4SHl+aMuLUTvcWu7iTeF/LnQMCvgYHMq7ZT8CVJ3QuTaS+Nmqn vn4U6qv6EJKn6ny0UskHzI52A0cm6+oAT/JcJw949SxcXtOrL9zPyPM4mPhgZMxr RvLwU6teymot3POLHAdDxGyx3G4FkVtJa1t14fE0s3C9yZNFQT/eDUojdE62ULB+ HCJdfL96yEkodrI+hRij8jTt8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHi2hK7O u2q6w2iGbuMuwd6oIXWpMB8GA1UdIwQYMBaAFHP7tY9VcfP0xipj/fWv75y3DnQD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzNCQi9DOTA4ODc5QUFC NDkxMUVEOUZCNDBCMzVDNEY5QUUwMi9jX3UxajFWeDhfVEdLbVA5OWFfdm5MY09k QU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NfdTFqMVZ4OF9UR0ttUDk5YV92bkxjT2RBTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzNCQi9DOTA4ODc5QUFCNDkxMUVEOUZCNDBCMzVDNEY5QUUwMi9jX3UxajFWeDhf VEdLbVA5OWFfdm5MY09kQU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHLSe1ZZeRFfmASgS5yFeEFH2y+hMk3MQd0vkuB1Yq1KUrC5zHJUvb KZE/ME18dQNPw3jqaJUzdubwzzs0hrRfUj1LuSc0NQ7kLlKCTKRLonVAyI4BEduZ mGElDymP8ObtekLcaHevsc5a67jvKWnyCc8sm6JMBs6TyeM6gTXBfUVH0mxOmaGm 0ZnE7GN5SrA0dsmrtzdNpzMlook6lO5IIwZoFVFyaag5RN2JfIumK2W2S4t35DMD 0oeiipRt3/MeG05FJKCosKv8XI5h0IA/m3dVxttaV61v0/D+dMYde5IzxwSHKOLF h4jiBryLSeUdvkhRqJETfV5RU3Tqt2tV -----END CERTIFICATE-----Generated at Mon Nov 3 18:09:59 2025 by rpki-client