$ rpki-client -vvf rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft File: cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft (raw, json) Hash identifier: s8PkdXz9LksuPFJHLdVY3ELhqP63PVDf229V8+FWQnE= Subject key identifier: 91:85:E9:94:46:9C:37:E8:8F:A8:33:BB:0C:12:47:FC:CF:F0:E7:82 Authority key identifier: 71:4B:A2:8D:D8:35:A7:D4:19:70:1F:AD:37:2A:34:B7:C6:6C:FA:A0 Certificate issuer: /CN=A91238D6/serialNumber=714BA28DD835A7D419701FAD372A34B7C66CFAA0 Certificate serial: 22B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUuijdg1p9QZcB-tNyo0t8Zs-qA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft Manifest number: 2281 Signing time: Fri 24 Oct 2025 16:08:07 +0000 Manifest this update: Fri 24 Oct 2025 16:08:06 +0000 Manifest next update: Fri 31 Oct 2025 16:08:06 +0000 Files and hashes: 1: cUuijdg1p9QZcB-tNyo0t8Zs-qA.crl (hash: 2bjQCyTovWp/5AJxDYXm0UNozxmAi6/u+oKQtQYvFRs=) 2: BB62FBD82AEC11EA972CB627C4F9AE02.roa (hash: KdmEZEpKoLyIMn6+XZO0IZiKVzRjxKxZXmexqgggUFU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.crl rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUuijdg1p9QZcB-tNyo0t8Zs-qA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 Oct 2025 16:08:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8883 (0x22b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91238D6, serialNumber=714BA28DD835A7D419701FAD372A34B7C66CFAA0 Validity Not Before: Oct 24 16:08:06 2025 GMT Not After : Oct 31 16:08:06 2025 GMT Subject: CN=68fba467-fcb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:93:fd:e6:7b:68:b1:9b:76:db:56:96:ab:eb: 96:8f:6a:71:fd:50:e8:94:f6:6a:07:21:a9:e5:54: bb:c0:1b:6d:43:63:02:ff:95:31:7e:0f:ed:17:50: 6b:62:8d:8d:0e:01:73:f9:17:d2:b8:61:fa:6c:60: 3a:7a:0c:9b:16:db:d6:cf:66:d7:c8:a9:9f:41:23: 1f:75:37:b5:a6:48:7b:c7:dd:2f:50:a2:c2:60:24: ce:f6:6b:15:ac:91:57:8e:20:5c:44:07:64:f6:3f: 97:66:1a:9c:f5:75:cd:5c:4c:bd:85:5a:3c:8c:5d: e3:b5:8d:ad:86:7f:8e:b9:6c:bd:30:ad:b6:02:46: f6:35:1a:4c:c8:c3:ef:58:59:4b:77:e5:1c:fe:09: f4:e6:4e:e8:42:c9:f2:4f:aa:00:13:a3:9d:b9:71: 67:72:33:b8:93:72:e0:bd:a8:c5:72:29:a6:2c:20: c4:99:3c:48:67:0b:11:d6:78:07:5d:ea:a2:c9:47: 6b:da:9f:e3:fe:0c:26:3c:01:96:d8:44:29:63:50: 8f:be:35:ec:0c:b9:7b:e0:2d:07:f8:c9:d3:ba:3a: 25:56:1e:38:ea:4d:3c:80:41:96:2d:62:7f:07:b2: 9a:0f:ab:56:d1:24:99:17:08:28:ad:f4:3a:bd:79: be:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:85:E9:94:46:9C:37:E8:8F:A8:33:BB:0C:12:47:FC:CF:F0:E7:82 X509v3 Authority Key Identifier: keyid:71:4B:A2:8D:D8:35:A7:D4:19:70:1F:AD:37:2A:34:B7:C6:6C:FA:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUuijdg1p9QZcB-tNyo0t8Zs-qA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:38:6b:61:7d:35:41:60:ab:d2:59:2e:79:0a:97:0e:f1:be: b4:cb:5d:bd:67:8e:d7:87:11:e5:a9:88:30:d5:16:ab:fc:46: 29:95:2b:46:99:9b:1c:88:87:bf:87:67:48:c0:e5:1d:5f:01: 45:ab:c4:26:01:ae:be:2f:7a:12:2a:c8:22:a1:e8:58:91:92: 58:c5:cd:83:f9:3b:08:41:fb:cf:79:a3:5d:32:c2:f4:da:39: c6:49:ab:aa:93:38:3e:eb:8e:09:ff:49:3d:67:40:55:3a:3f: d5:64:d7:06:3c:51:ae:00:1f:58:43:2e:8d:01:ae:05:3d:2d: 4b:5d:18:6b:78:08:5b:2b:d0:85:99:bc:83:a3:77:81:7a:35: 76:d2:b5:58:9d:69:2c:3e:ba:62:55:12:b9:79:b6:4d:23:b6: ad:45:dd:d3:3c:b7:de:af:20:16:be:d7:52:0e:f1:ba:78:f7: 44:d0:15:8a:5c:ec:c8:a0:dd:b8:e5:41:cd:a2:55:86:f8:f2: 65:b2:66:22:52:dd:86:13:47:7e:16:16:f0:d7:a6:f3:28:38: e0:45:f8:e8:4d:34:72:c4:a4:89:25:28:41:4e:a9:06:a8:ca: 0b:b4:42:09:72:09:94:15:ea:d2:ff:15:8d:d8:3f:1b:49:2f: de:db:b7:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIrMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4RDYxMTAvBgNVBAUTKDcxNEJBMjhERDgzNUE3RDQxOTcwMUZBRDM3MkEzNEI3 QzY2Q0ZBQTAwHhcNMjUxMDI0MTYwODA2WhcNMjUxMDMxMTYwODA2WjAYMRYwFAYD VQQDEw02OGZiYTQ2Ny1mY2I0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw5P95ntosZt221aWq+uWj2px/VDolPZqByGp5VS7wBttQ2MC/5Uxfg/tF1Br Yo2NDgFz+RfSuGH6bGA6egybFtvWz2bXyKmfQSMfdTe1pkh7x90vUKLCYCTO9msV rJFXjiBcRAdk9j+XZhqc9XXNXEy9hVo8jF3jtY2thn+OuWy9MK22Akb2NRpMyMPv WFlLd+Uc/gn05k7oQsnyT6oAE6OduXFncjO4k3LgvajFcimmLCDEmTxIZwsR1ngH XeqiyUdr2p/j/gwmPAGW2EQpY1CPvjXsDLl74C0H+MnTujolVh446k08gEGWLWJ/ B7KaD6tW0SSZFwgorfQ6vXm+SQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJGF6ZRG nDfoj6gzuwwSR/zP8OeCMB8GA1UdIwQYMBaAFHFLoo3YNafUGXAfrTcqNLfGbPqg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzhENi8yODk5MDUzMEJF NTQxMUU1OERDQzQzNTdDNEY5QUUwMi9jVXVpamRnMXA5UVpjQi10TnlvMHQ4WnMt cUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NVdWlqZGcxcDlRWmNCLXROeW8wdDhacy1xQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzhENi8yODk5MDUzMEJFNTQxMUU1OERDQzQzNTdDNEY5QUUwMi9jVXVpamRnMXA5 UVpjQi10TnlvMHQ4WnMtcUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDOGthfTVBYKvSWS55CpcO8b60y129Z47XhxHlqYgw1Rar/EYplStG mZsciIe/h2dIwOUdXwFFq8QmAa6+L3oSKsgioehYkZJYxc2D+TsIQfvPeaNdMsL0 2jnGSauqkzg+644J/0k9Z0BVOj/VZNcGPFGuAB9YQy6NAa4FPS1LXRhreAhbK9CF mbyDo3eBejV20rVYnWksPrpiVRK5ebZNI7atRd3TPLferyAWvtdSDvG6ePdE0BWK XOzIoN245UHNolWG+PJlsmYiUt2GE0d+Fhbw16bzKDjgRfjoTTRyxKSJJShBTqkG qMoLtEIJcgmUFerS/xWN2D8bSS/e27fO -----END CERTIFICATE-----Generated at Sat Oct 25 09:39:06 2025 by rpki-client