$ rpki-client -vvf rpki.apnic.net/member_repository/A9130138/59FBA2B2C47A11EC8B344964C4F9AE02/uDIFubLHQGPjdvNxFYOXBe277Ng.mft File: uDIFubLHQGPjdvNxFYOXBe277Ng.mft (raw, json) Hash identifier: UCZTw1vwkpi0yRuMakgRjk38uX8HkJuKZet16pTLgDU= Subject key identifier: 60:81:6D:A6:81:E9:C4:D2:BA:CB:41:4F:1A:F3:CE:A0:1B:03:6A:7A Authority key identifier: B8:32:05:B9:B2:C7:40:63:E3:76:F3:71:15:83:97:05:ED:BB:EC:D8 Certificate issuer: /CN=A9130138/serialNumber=B83205B9B2C74063E376F37115839705EDBBECD8 Certificate serial: 0382 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uDIFubLHQGPjdvNxFYOXBe277Ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130138/59FBA2B2C47A11EC8B344964C4F9AE02/uDIFubLHQGPjdvNxFYOXBe277Ng.mft Manifest number: 037D Signing time: Thu 23 Oct 2025 02:09:04 +0000 Manifest this update: Thu 23 Oct 2025 02:09:03 +0000 Manifest next update: Thu 30 Oct 2025 02:09:03 +0000 Files and hashes: 1: uDIFubLHQGPjdvNxFYOXBe277Ng.crl (hash: ZdFjVV7h5X7S7XUWrpSY2bChIu3EFZGoe1M28QcYAW8=) 2: A7DEA0DAC47D11ECB544A26DC4F9AE02.roa (hash: f9p5nsZx4jMNkGPcJOkOhsmegpIzdL9T3kUEUM+NbsU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130138/59FBA2B2C47A11EC8B344964C4F9AE02/uDIFubLHQGPjdvNxFYOXBe277Ng.crl rsync://rpki.apnic.net/member_repository/A9130138/59FBA2B2C47A11EC8B344964C4F9AE02/uDIFubLHQGPjdvNxFYOXBe277Ng.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uDIFubLHQGPjdvNxFYOXBe277Ng.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 02:09:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 898 (0x382) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130138, serialNumber=B83205B9B2C74063E376F37115839705EDBBECD8 Validity Not Before: Oct 23 02:09:03 2025 GMT Not After : Oct 30 02:09:03 2025 GMT Subject: CN=68f98e40-3e96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:4e:10:14:8f:a2:d7:39:3b:a1:00:3d:5c:1a: d6:47:8a:b6:9b:d8:ea:2c:23:40:88:75:d2:4c:55: aa:9e:56:1c:a2:d1:87:5b:f8:f2:42:d3:75:43:54: 0f:00:9c:45:15:9e:c6:78:43:93:34:ae:0b:f4:01: 77:57:f5:49:e2:f9:62:86:89:05:db:b8:17:d6:17: e0:2e:0d:ed:00:24:17:8b:bf:48:d8:9e:6e:1d:f5: 40:f8:8a:09:0f:33:cf:10:03:d1:6f:bb:5e:70:9e: 6a:bb:84:d1:0a:8a:5d:ec:6b:dd:c0:26:e9:a8:29: 9b:79:26:2d:c6:39:5b:fd:44:94:95:aa:68:35:7f: fa:8a:d2:37:98:6f:dd:af:d7:ba:07:0a:5e:95:23: 2c:60:d8:8f:ca:1f:1e:f7:7c:05:e9:6a:43:b8:3d: 39:dd:e5:82:f3:3f:08:ed:71:89:4a:39:1b:ab:ef: 74:05:98:d4:97:f9:e4:bb:af:28:b4:58:79:d4:0c: e2:d4:26:27:e3:a8:d9:93:6f:ff:4a:a7:6c:bc:7a: 38:e0:3f:ab:3f:0e:73:dc:35:e0:f9:fa:e4:ec:76: ff:fa:1e:3f:63:3d:10:c9:07:38:44:f5:d8:f7:d3: a3:9b:67:d4:64:c6:fe:11:d9:76:18:c9:52:5e:df: 53:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:81:6D:A6:81:E9:C4:D2:BA:CB:41:4F:1A:F3:CE:A0:1B:03:6A:7A X509v3 Authority Key Identifier: keyid:B8:32:05:B9:B2:C7:40:63:E3:76:F3:71:15:83:97:05:ED:BB:EC:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130138/59FBA2B2C47A11EC8B344964C4F9AE02/uDIFubLHQGPjdvNxFYOXBe277Ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uDIFubLHQGPjdvNxFYOXBe277Ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130138/59FBA2B2C47A11EC8B344964C4F9AE02/uDIFubLHQGPjdvNxFYOXBe277Ng.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:7a:a3:02:68:cc:e6:d0:29:3a:00:9d:8a:e4:5b:50:a2:16: a9:67:5c:a6:09:e9:ba:d5:eb:23:72:02:75:25:c7:af:7b:53: 68:0b:04:f7:ca:72:33:c6:39:9d:6c:93:07:23:58:53:43:57: 9a:07:b6:b2:34:82:35:83:f8:89:87:77:92:c2:96:b0:c9:9e: 58:e9:1f:cf:de:eb:dd:b0:c7:58:6c:a5:7d:da:a0:a5:b0:d7: 0e:f1:1e:e3:43:16:52:4b:d8:e5:7d:6e:52:f2:28:33:06:24: d7:11:0f:8a:f6:a2:b5:af:75:dd:e2:dc:e3:4e:9b:85:78:c8: eb:01:a9:bb:2c:9b:bd:3a:7c:57:06:c3:d2:7e:33:bf:87:38: 33:6a:43:00:6b:3e:3e:1e:7e:fa:a2:d7:cd:ca:e5:b9:15:22: d1:6e:ba:9b:18:c2:6b:5e:07:43:8c:11:fa:26:cb:be:c4:b4: 60:c2:27:00:4c:b1:90:6a:cf:75:61:7e:64:a9:73:91:93:54: 72:b2:7c:d2:8d:86:fd:4b:7a:eb:76:2d:11:43:7f:f7:ee:77: 18:98:c3:e0:c2:8f:72:7d:36:d1:24:e5:0f:74:1a:c4:b0:e9: e3:fa:85:4b:67:68:d8:79:18:d9:03:30:e3:2b:6a:ce:91:ed: 3e:ab:8f:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA4IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzAxMzgxMTAvBgNVBAUTKEI4MzIwNUI5QjJDNzQwNjNFMzc2RjM3MTE1ODM5NzA1 RURCQkVDRDgwHhcNMjUxMDIzMDIwOTAzWhcNMjUxMDMwMDIwOTAzWjAYMRYwFAYD VQQDEw02OGY5OGU0MC0zZTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsU4QFI+i1zk7oQA9XBrWR4q2m9jqLCNAiHXSTFWqnlYcotGHW/jyQtN1Q1QP AJxFFZ7GeEOTNK4L9AF3V/VJ4vlihokF27gX1hfgLg3tACQXi79I2J5uHfVA+IoJ DzPPEAPRb7tecJ5qu4TRCopd7GvdwCbpqCmbeSYtxjlb/USUlapoNX/6itI3mG/d r9e6BwpelSMsYNiPyh8e93wF6WpDuD053eWC8z8I7XGJSjkbq+90BZjUl/nku68o tFh51Azi1CYn46jZk2//SqdsvHo44D+rPw5z3DXg+frk7Hb/+h4/Yz0QyQc4RPXY 99Ojm2fUZMb+Edl2GMlSXt9TXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGCBbaaB 6cTSustBTxrzzqAbA2p6MB8GA1UdIwQYMBaAFLgyBbmyx0Bj43bzcRWDlwXtu+zY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDEzOC81OUZCQTJCMkM0 N0ExMUVDOEIzNDQ5NjRDNEY5QUUwMi91RElGdWJMSFFHUGpkdk54RllPWEJlMjc3 TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3VESUZ1YkxIUUdQamR2TnhGWU9YQmUyNzdOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDEzOC81OUZCQTJCMkM0N0ExMUVDOEIzNDQ5NjRDNEY5QUUwMi91RElGdWJMSFFH UGpkdk54RllPWEJlMjc3TmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDeqMCaMzm0Ck6AJ2K5FtQohapZ1ymCem61esjcgJ1Jceve1NoCwT3 ynIzxjmdbJMHI1hTQ1eaB7ayNII1g/iJh3eSwpawyZ5Y6R/P3uvdsMdYbKV92qCl sNcO8R7jQxZSS9jlfW5S8igzBiTXEQ+K9qK1r3Xd4tzjTpuFeMjrAam7LJu9OnxX BsPSfjO/hzgzakMAaz4+Hn76otfNyuW5FSLRbrqbGMJrXgdDjBH6Jsu+xLRgwicA TLGQas91YX5kqXORk1RysnzSjYb9S3rrdi0RQ3/37ncYmMPgwo9yfTbRJOUPdBrE sOnj+oVLZ2jYeRjZAzDjK2rOke0+q49T -----END CERTIFICATE-----Generated at Thu Oct 23 10:00:50 2025 by rpki-client