$ rpki-client -vvf rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.mft File: U78N14DbA47OFNQEWbq5xo9phTs.mft (raw, json) Hash identifier: QP4armLIFlgS3DXyyAzaQ2PhoXhwj/pDkb4NSZRRyWY= Subject key identifier: C8:11:99:6F:74:BB:8E:01:19:5A:AD:89:28:95:11:2A:8E:3E:27:E8 Authority key identifier: 53:BF:0D:D7:80:DB:03:8E:CE:14:D4:04:59:BA:B9:C6:8F:69:85:3B Certificate issuer: /CN=A912FCD6/serialNumber=53BF0DD780DB038ECE14D40459BAB9C68F69853B Certificate serial: 22D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.mft Manifest number: 2275 Signing time: Sun 02 Nov 2025 15:53:21 +0000 Manifest this update: Sun 02 Nov 2025 15:53:21 +0000 Manifest next update: Sun 09 Nov 2025 15:53:21 +0000 Files and hashes: 1: U78N14DbA47OFNQEWbq5xo9phTs.crl (hash: 8nJlg7EUxy/yp4TTAsUrKflO1fVNRhxS9ngt8u3ax7I=) 2: 848CD92660A611F0806EB31DC4F9AE02.roa (hash: E2krETd7neWC8d4xIatDnIbAfqIHXkBF6iProCmPjFo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.crl rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 15:53:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8920 (0x22d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FCD6, serialNumber=53BF0DD780DB038ECE14D40459BAB9C68F69853B Validity Not Before: Nov 2 15:53:21 2025 GMT Not After : Nov 9 15:53:21 2025 GMT Subject: CN=69077e71-ec67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:79:4a:77:e8:f7:46:9d:de:71:e0:bd:73:db: b4:f1:b4:51:9f:b7:77:02:99:f8:89:b8:f7:60:43: 8c:67:a3:55:c9:0c:e0:2c:93:77:96:f2:de:16:8c: dc:65:0f:3c:69:b2:25:d2:7c:df:1e:20:b0:b2:6e: dc:08:78:e2:0f:83:67:60:24:03:36:0c:88:2e:e4: 7b:1e:a7:c9:53:15:d7:f7:f7:a4:56:ef:61:da:0f: af:76:02:b8:8e:de:ae:12:11:2f:bb:37:82:a9:96: cf:46:bb:ab:de:bb:b0:c5:5c:ab:a0:85:b7:42:b0: f2:a5:7c:04:b3:7c:b4:ad:8d:23:db:11:cd:16:22: 89:7a:28:f8:2f:f7:7f:2f:68:4c:8c:91:11:f9:1c: 3b:96:96:b1:9e:86:5a:1d:60:8b:d9:e8:b8:ac:c6: 7c:6b:b2:a6:d0:56:8e:5a:e7:84:e0:8c:ca:7f:af: 23:af:60:b5:c8:85:77:74:84:d0:92:7d:e2:02:58: 23:76:7d:c5:4c:8d:98:3b:d9:6c:1c:8d:05:9f:2e: 01:2e:3b:aa:fe:a0:81:b4:f0:c7:53:d6:48:e8:f9: 01:63:28:e8:76:ea:11:5e:3c:47:0c:d0:00:c3:5b: aa:70:9a:e6:ec:ff:43:aa:ca:68:94:f5:4c:f7:26: 68:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:11:99:6F:74:BB:8E:01:19:5A:AD:89:28:95:11:2A:8E:3E:27:E8 X509v3 Authority Key Identifier: keyid:53:BF:0D:D7:80:DB:03:8E:CE:14:D4:04:59:BA:B9:C6:8F:69:85:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:20:bf:1c:a3:ef:6e:5d:82:90:4a:7b:b5:7e:a2:73:0e:7b: 54:c9:59:ed:55:4d:11:05:d6:50:e5:3d:0a:41:86:88:db:fc: dd:d5:e0:3d:c0:5d:e6:73:c5:7b:01:f1:1c:a5:41:bc:e5:1a: 76:5d:d5:28:eb:0e:fc:a4:b5:b5:ce:80:fb:ce:27:21:a6:13: 03:9e:70:62:00:83:e1:4e:59:7f:43:d4:e5:e2:b1:7b:b0:c8: 15:bb:d5:51:30:b2:f1:b1:59:91:e8:78:ea:f2:94:72:53:ab: 06:48:8c:ea:b6:ce:dd:49:30:a1:8e:ee:b1:1b:4d:d9:54:6f: 5e:6e:63:87:85:ba:35:54:02:a1:25:39:ca:88:09:2c:9b:db: 14:5e:f4:bc:35:aa:b3:d1:d5:05:47:dd:38:f7:c1:05:f4:31: 2c:67:95:1e:07:4a:67:79:df:b9:0f:b8:23:9b:52:13:5f:91: 17:4e:b4:00:3e:ae:e3:3d:59:3d:5b:16:48:91:4d:9f:e7:83: 3e:36:26:f2:13:67:e5:2b:7e:b2:b3:85:d5:9e:2a:cd:43:fc: c5:3c:f9:c3:04:c0:34:50:89:5b:a8:62:e6:bc:fc:95:09:e9: 6b:45:9c:9a:8f:91:71:83:43:9d:50:d3:d0:28:42:93:3a:5c: 2f:32:0b:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICItgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZDRDYxMTAvBgNVBAUTKDUzQkYwREQ3ODBEQjAzOEVDRTE0RDQwNDU5QkFCOUM2 OEY2OTg1M0IwHhcNMjUxMTAyMTU1MzIxWhcNMjUxMTA5MTU1MzIxWjAYMRYwFAYD VQQDEw02OTA3N2U3MS1lYzY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1XlKd+j3Rp3eceC9c9u08bRRn7d3Apn4ibj3YEOMZ6NVyQzgLJN3lvLeFozc ZQ88abIl0nzfHiCwsm7cCHjiD4NnYCQDNgyILuR7HqfJUxXX9/ekVu9h2g+vdgK4 jt6uEhEvuzeCqZbPRrur3ruwxVyroIW3QrDypXwEs3y0rY0j2xHNFiKJeij4L/d/ L2hMjJER+Rw7lpaxnoZaHWCL2ei4rMZ8a7Km0FaOWueE4IzKf68jr2C1yIV3dITQ kn3iAlgjdn3FTI2YO9lsHI0Fny4BLjuq/qCBtPDHU9ZI6PkBYyjoduoRXjxHDNAA w1uqcJrm7P9DqspolPVM9yZoYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMgRmW90 u44BGVqtiSiVESqOPifoMB8GA1UdIwQYMBaAFFO/DdeA2wOOzhTUBFm6ucaPaYU7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkNENi8xRTlFMUFBQ0Qy RUExMUU1QUZCMUUyNENDNEY5QUUwMi9VNzhOMTREYkE0N09GTlFFV2JxNXhvOXBo VHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U3OE4xNERiQTQ3T0ZOUUVXYnE1eG85cGhUcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RkNENi8xRTlFMUFBQ0QyRUExMUU1QUZCMUUyNENDNEY5QUUwMi9VNzhOMTREYkE0 N09GTlFFV2JxNXhvOXBoVHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaIL8co+9uXYKQSnu1fqJzDntUyVntVU0RBdZQ5T0KQYaI2/zd1eA9 wF3mc8V7AfEcpUG85Rp2XdUo6w78pLW1zoD7zichphMDnnBiAIPhTll/Q9Tl4rF7 sMgVu9VRMLLxsVmR6Hjq8pRyU6sGSIzqts7dSTChju6xG03ZVG9ebmOHhbo1VAKh JTnKiAksm9sUXvS8Naqz0dUFR90498EF9DEsZ5UeB0pned+5D7gjm1ITX5EXTrQA Pq7jPVk9WxZIkU2f54M+NibyE2flK36ys4XVnirNQ/zFPPnDBMA0UIlbqGLmvPyV CelrRZyaj5Fxg0OdUNPQKEKTOlwvMgvV -----END CERTIFICATE-----Generated at Mon Nov 3 18:19:26 2025 by rpki-client