$ rpki-client -vvf rpki.apnic.net/member_repository/A912CDCB/8A82094420EC11EC9D5D313BC4F9AE02/uhYFabkV4kxq5sJIlNBPnUo5FpI.mft File: uhYFabkV4kxq5sJIlNBPnUo5FpI.mft (raw, json) Hash identifier: t2hWQPzaDkkqkMpAPLgQqaHen+vsI86Ad5hlnhfgSEk= Subject key identifier: 0C:84:02:DA:9C:99:69:9B:A0:6F:46:11:18:DE:DB:FD:D3:15:1E:55 Authority key identifier: BA:16:05:69:B9:15:E2:4C:6A:E6:C2:48:94:D0:4F:9D:4A:39:16:92 Certificate issuer: /CN=A912CDCB/serialNumber=BA160569B915E24C6AE6C24894D04F9D4A391692 Certificate serial: 0525 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uhYFabkV4kxq5sJIlNBPnUo5FpI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912CDCB/8A82094420EC11EC9D5D313BC4F9AE02/uhYFabkV4kxq5sJIlNBPnUo5FpI.mft Manifest number: 0520 Signing time: Tue 04 Nov 2025 23:37:36 +0000 Manifest this update: Tue 04 Nov 2025 23:37:35 +0000 Manifest next update: Tue 11 Nov 2025 23:37:35 +0000 Files and hashes: 1: uhYFabkV4kxq5sJIlNBPnUo5FpI.crl (hash: 1cH6Pod8LkkxBG+bx3rbTP6JnphfX2ndtbOXvefNMB0=) 2: DAF98AAA20F111EC89E7D668C4F9AE02.roa (hash: RIj5d7qyUoWph1Jio4J8GkYeyIP1U8prnBb8m/i4EDY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912CDCB/8A82094420EC11EC9D5D313BC4F9AE02/uhYFabkV4kxq5sJIlNBPnUo5FpI.crl rsync://rpki.apnic.net/member_repository/A912CDCB/8A82094420EC11EC9D5D313BC4F9AE02/uhYFabkV4kxq5sJIlNBPnUo5FpI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uhYFabkV4kxq5sJIlNBPnUo5FpI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:37:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1317 (0x525) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912CDCB, serialNumber=BA160569B915E24C6AE6C24894D04F9D4A391692 Validity Not Before: Nov 4 23:37:35 2025 GMT Not After : Nov 11 23:37:35 2025 GMT Subject: CN=690a8e3f-9715 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:51:bc:8f:67:c2:49:6c:45:5c:3b:bd:b3:e3: 3e:2c:26:7d:ea:99:fa:57:70:9f:35:9c:6a:0d:33: cc:e5:ed:e2:25:9f:f7:4e:22:07:2b:88:89:5d:a7: 78:be:7e:8c:34:f6:1e:89:22:f5:39:17:6a:74:47: 62:4e:35:7a:e9:94:64:30:02:25:57:cd:19:78:86: f5:32:f9:c2:d2:81:b9:8e:1b:29:fa:1f:7b:5f:db: 53:8b:1c:7d:60:f2:f6:d9:08:82:45:27:ec:f5:68: f7:28:30:ac:09:29:95:a1:be:8d:25:4e:f9:53:a3: 6a:7c:aa:ad:79:65:a1:a5:61:c6:89:13:c7:65:b8: 00:84:44:bb:f8:c7:d8:4c:79:75:cc:3d:95:e2:c7: fd:db:9e:ab:27:35:da:7e:0f:c8:20:de:44:d1:eb: af:94:69:cd:19:45:57:7d:d9:31:c1:02:d0:96:62: 30:da:c2:8e:0d:2d:50:66:58:81:74:93:fd:2e:86: 02:26:b1:64:63:01:5a:53:2f:38:e7:51:64:3e:f4: eb:0c:55:bb:7b:3a:3b:36:15:f9:79:67:a5:a1:af: eb:1d:c8:00:2f:8f:62:c4:e0:e2:b4:cd:af:3f:a5: 1a:68:cb:72:e8:05:43:14:6c:35:56:1a:50:85:7c: 5b:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:84:02:DA:9C:99:69:9B:A0:6F:46:11:18:DE:DB:FD:D3:15:1E:55 X509v3 Authority Key Identifier: keyid:BA:16:05:69:B9:15:E2:4C:6A:E6:C2:48:94:D0:4F:9D:4A:39:16:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912CDCB/8A82094420EC11EC9D5D313BC4F9AE02/uhYFabkV4kxq5sJIlNBPnUo5FpI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uhYFabkV4kxq5sJIlNBPnUo5FpI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912CDCB/8A82094420EC11EC9D5D313BC4F9AE02/uhYFabkV4kxq5sJIlNBPnUo5FpI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:9a:8e:2c:06:ca:7b:0d:e0:11:f0:34:34:41:b1:62:f6:76: 6d:55:f4:44:1b:40:ec:3c:c8:a7:6b:0b:51:f2:f9:de:01:65: c0:de:0d:02:9a:68:8a:18:fc:f6:50:35:72:75:3c:db:81:ba: 1a:c2:a3:92:49:b8:49:c1:9f:fc:81:04:d3:ab:74:b6:8e:82: 87:c3:ab:8b:58:ab:13:9c:b0:f7:0f:0e:f1:2b:f2:99:5a:42: 78:c7:00:2c:19:af:f6:9e:8c:ea:cb:f1:1a:4b:df:4f:96:50: 5a:0c:55:1c:18:38:3d:54:20:05:a4:8c:c1:f0:13:dd:e4:df: da:d9:db:7d:15:9f:df:e8:6b:53:8e:bf:67:ed:e0:25:90:e4: 75:4b:64:4e:c2:0f:9d:3d:79:d3:3e:b4:ca:79:fb:43:99:10: f5:19:c1:c9:f6:88:3c:35:99:8a:25:34:b3:d6:e5:d4:79:56: e8:ae:dc:26:ea:dd:3c:54:38:d0:f6:0d:89:53:ff:22:69:5b: 34:02:f8:9e:86:50:df:8a:50:39:8b:41:b3:f6:bf:e3:fc:08: 9a:bf:88:b0:c0:ec:20:e1:b7:72:17:6b:98:dd:be:81:5b:34: df:c6:91:9f:11:3a:dc:03:19:0b:12:b7:1c:ec:d8:e5:17:74: 57:a4:cf:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBSUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkNEQ0IxMTAvBgNVBAUTKEJBMTYwNTY5QjkxNUUyNEM2QUU2QzI0ODk0RDA0RjlE NEEzOTE2OTIwHhcNMjUxMTA0MjMzNzM1WhcNMjUxMTExMjMzNzM1WjAYMRYwFAYD VQQDEw02OTBhOGUzZi05NzE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5lG8j2fCSWxFXDu9s+M+LCZ96pn6V3CfNZxqDTPM5e3iJZ/3TiIHK4iJXad4 vn6MNPYeiSL1ORdqdEdiTjV66ZRkMAIlV80ZeIb1MvnC0oG5jhsp+h97X9tTixx9 YPL22QiCRSfs9Wj3KDCsCSmVob6NJU75U6NqfKqteWWhpWHGiRPHZbgAhES7+MfY THl1zD2V4sf9256rJzXafg/IIN5E0euvlGnNGUVXfdkxwQLQlmIw2sKODS1QZliB dJP9LoYCJrFkYwFaUy8451FkPvTrDFW7ezo7NhX5eWeloa/rHcgAL49ixODitM2v P6UaaMty6AVDFGw1VhpQhXxbbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAyEAtqc mWmboG9GERje2/3TFR5VMB8GA1UdIwQYMBaAFLoWBWm5FeJMaubCSJTQT51KORaS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQ0RDQi84QTgyMDk0NDIw RUMxMUVDOUQ1RDMxM0JDNEY5QUUwMi91aFlGYWJrVjRreHE1c0pJbE5CUG5VbzVG cEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VoWUZhYmtWNGt4cTVzSklsTkJQblVvNUZwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy Q0RDQi84QTgyMDk0NDIwRUMxMUVDOUQ1RDMxM0JDNEY5QUUwMi91aFlGYWJrVjRr eHE1c0pJbE5CUG5VbzVGcEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZmo4sBsp7DeAR8DQ0QbFi9nZtVfREG0DsPMinawtR8vneAWXA3g0C mmiKGPz2UDVydTzbgboawqOSSbhJwZ/8gQTTq3S2joKHw6uLWKsTnLD3Dw7xK/KZ WkJ4xwAsGa/2nozqy/EaS99PllBaDFUcGDg9VCAFpIzB8BPd5N/a2dt9FZ/f6GtT jr9n7eAlkOR1S2ROwg+dPXnTPrTKeftDmRD1GcHJ9og8NZmKJTSz1uXUeVbortwm 6t08VDjQ9g2JU/8iaVs0AviehlDfilA5i0Gz9r/j/Aiav4iwwOwg4bdyF2uY3b6B WzTfxpGfETrcAxkLErcc7NjlF3RXpM9R -----END CERTIFICATE-----Generated at Wed Nov 5 05:26:34 2025 by rpki-client