$ rpki-client -vvf rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.mft File: U2i4yNaWPq2DmQWkhvU8RLBBpe8.mft (raw, json) Hash identifier: cTABVOHk6Nwe0tPCJnA/D+oO5y2tPOW966SucxyTZUM= Subject key identifier: 0D:E6:1A:40:C8:FB:51:33:E8:54:C2:3F:74:A9:67:C7:42:D7:AC:A5 Authority key identifier: 53:68:B8:C8:D6:96:3E:AD:83:99:05:A4:86:F5:3C:44:B0:41:A5:EF Certificate issuer: /CN=A9130837/serialNumber=5368B8C8D6963EAD839905A486F53C44B041A5EF Certificate serial: 04F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2i4yNaWPq2DmQWkhvU8RLBBpe8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.mft Manifest number: 04EB Signing time: Sat 25 Oct 2025 02:35:06 +0000 Manifest this update: Sat 25 Oct 2025 02:35:05 +0000 Manifest next update: Sat 01 Nov 2025 02:35:05 +0000 Files and hashes: 1: U2i4yNaWPq2DmQWkhvU8RLBBpe8.crl (hash: is8VOUL/XCUVS6PTHOIAreXf/aHSga/M64TgGih9NGo=) 2: 1C032F5A36E711EC9581EC54C4F9AE02.roa (hash: zuaM96z3jhp+fAEf2SKv65O5x2n5mX1/wYZc1QfKJIE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.crl rsync://rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2i4yNaWPq2DmQWkhvU8RLBBpe8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Nov 2025 02:35:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1266 (0x4f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130837, serialNumber=5368B8C8D6963EAD839905A486F53C44B041A5EF Validity Not Before: Oct 25 02:35:05 2025 GMT Not After : Nov 1 02:35:05 2025 GMT Subject: CN=68fc375a-9ace Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:0c:e7:41:d8:67:c1:34:76:5f:73:ce:a2:e8: 6c:be:ce:b6:18:06:d8:aa:01:93:b9:2b:1f:ab:e1: 18:8a:bf:00:d2:4f:19:78:de:d1:02:f4:40:54:3a: 9e:7e:2b:1e:00:c1:0c:ff:6a:88:f7:eb:45:60:c0: 7a:74:c3:72:d1:96:f9:fe:3b:61:64:aa:ba:1e:f1: 5e:b4:fd:94:0a:b2:6d:0b:bb:a7:4e:f7:28:fd:b4: 22:f8:dd:bf:16:31:52:aa:53:3b:c3:8c:7c:77:05: 0d:65:10:02:f8:77:11:57:e4:e9:69:3e:40:97:cb: 3e:9b:a7:e9:24:4f:f3:60:d7:51:56:aa:a8:d8:1c: 8f:97:12:4b:55:8c:cc:aa:fc:5e:99:51:2f:18:59: b1:bf:3b:19:c1:81:91:e1:bd:bf:46:55:2b:ba:1b: e1:73:53:ef:aa:21:c6:af:09:9a:5f:44:ed:0e:f5: bd:a4:79:d7:f9:73:87:26:f4:2c:65:17:a0:27:1b: b4:a8:06:c3:ca:0b:16:20:0b:6f:1f:8e:59:3d:e8: b5:93:72:86:23:dc:59:56:78:c8:1e:5f:f3:88:41: df:ab:49:47:e4:27:44:2a:be:8a:61:96:77:db:ea: 5a:f4:fb:86:25:d2:a6:4f:2f:05:02:2d:72:c9:28: 95:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:E6:1A:40:C8:FB:51:33:E8:54:C2:3F:74:A9:67:C7:42:D7:AC:A5 X509v3 Authority Key Identifier: keyid:53:68:B8:C8:D6:96:3E:AD:83:99:05:A4:86:F5:3C:44:B0:41:A5:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2i4yNaWPq2DmQWkhvU8RLBBpe8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:1b:1b:e7:c9:c0:23:47:e7:47:08:5f:d4:d1:61:f2:eb:c2: 09:c7:06:81:67:4c:76:e4:20:66:db:bb:46:e6:d8:40:c5:8c: 82:11:66:24:7b:8b:73:96:32:3e:33:53:88:89:d4:71:14:2b: ff:a0:e1:ec:09:7f:a6:53:1a:cb:c6:9e:1a:a6:32:a3:30:8e: 01:71:85:b3:ed:cf:d9:f5:31:f6:52:5a:40:3b:43:c4:63:54: 50:6e:c4:fa:65:a9:38:24:3d:4f:38:94:e6:d6:8e:3f:c2:fe: 77:60:e7:42:cd:48:d1:ea:ad:fa:5b:d6:29:16:1d:76:cf:6a: 26:f5:71:23:82:68:f8:8f:d4:1b:1b:5d:20:9a:15:b1:8c:94: 29:60:51:f8:7a:d6:f9:d3:be:35:11:ed:05:bd:82:8e:e2:f7: 65:1a:e8:43:a0:5c:08:78:d2:b0:f6:46:57:de:90:9b:88:c2: 16:22:05:38:c6:58:06:3e:d7:37:e9:d4:a5:93:62:e9:10:eb: f8:2c:2c:46:b1:5a:e9:55:5f:d5:e6:17:73:2a:31:bd:54:f6: bc:ad:72:74:12:8e:21:e3:33:67:da:77:e3:50:3b:6e:cb:b6: f2:f0:1f:bd:a3:58:c6:67:59:e5:e8:04:17:e2:2b:e8:af:93: 17:b6:45:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzA4MzcxMTAvBgNVBAUTKDUzNjhCOEM4RDY5NjNFQUQ4Mzk5MDVBNDg2RjUzQzQ0 QjA0MUE1RUYwHhcNMjUxMDI1MDIzNTA1WhcNMjUxMTAxMDIzNTA1WjAYMRYwFAYD VQQDEw02OGZjMzc1YS05YWNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxAznQdhnwTR2X3POouhsvs62GAbYqgGTuSsfq+EYir8A0k8ZeN7RAvRAVDqe fiseAMEM/2qI9+tFYMB6dMNy0Zb5/jthZKq6HvFetP2UCrJtC7unTvco/bQi+N2/ FjFSqlM7w4x8dwUNZRAC+HcRV+TpaT5Al8s+m6fpJE/zYNdRVqqo2ByPlxJLVYzM qvxemVEvGFmxvzsZwYGR4b2/RlUruhvhc1PvqiHGrwmaX0TtDvW9pHnX+XOHJvQs ZRegJxu0qAbDygsWIAtvH45ZPei1k3KGI9xZVnjIHl/ziEHfq0lH5CdEKr6KYZZ3 2+pa9PuGJdKmTy8FAi1yySiVfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA3mGkDI +1Ez6FTCP3SpZ8dC16ylMB8GA1UdIwQYMBaAFFNouMjWlj6tg5kFpIb1PESwQaXv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDgzNy9FM0Y4N0NCMjM2 RTMxMUVDQkM4Q0MyNTBDNEY5QUUwMi9VMmk0eU5hV1BxMkRtUVdraHZVOFJMQkJw ZTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UyaTR5TmFXUHEyRG1RV2todlU4UkxCQnBlOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDgzNy9FM0Y4N0NCMjM2RTMxMUVDQkM4Q0MyNTBDNEY5QUUwMi9VMmk0eU5hV1Bx MkRtUVdraHZVOFJMQkJwZTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNGxvnycAjR+dHCF/U0WHy68IJxwaBZ0x25CBm27tG5thAxYyCEWYk e4tzljI+M1OIidRxFCv/oOHsCX+mUxrLxp4apjKjMI4BcYWz7c/Z9TH2UlpAO0PE Y1RQbsT6Zak4JD1POJTm1o4/wv53YOdCzUjR6q36W9YpFh12z2om9XEjgmj4j9Qb G10gmhWxjJQpYFH4etb50741Ee0FvYKO4vdlGuhDoFwIeNKw9kZX3pCbiMIWIgU4 xlgGPtc36dSlk2LpEOv4LCxGsVrpVV/V5hdzKjG9VPa8rXJ0Eo4h4zNn2nfjUDtu y7by8B+9o1jGZ1nl6AQX4ivor5MXtkWa -----END CERTIFICATE-----Generated at Sat Oct 25 17:18:57 2025 by rpki-client