$ rpki-client -vvf rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft File: sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft (raw, json) Hash identifier: 4tPfUfzwBL2i9pf9XxUi62aiQxri0WdQMXE23Oh9y3U= Subject key identifier: 66:3B:9E:63:FC:1A:71:E4:6E:CB:91:96:02:76:88:1F:9D:B0:C8:22 Authority key identifier: B1:4B:2E:E5:C5:ED:73:6A:B7:36:B2:55:35:86:75:9A:FC:DE:C3:E2 Certificate issuer: /CN=A913BF1E/serialNumber=B14B2EE5C5ED736AB736B2553586759AFCDEC3E2 Certificate serial: 0FBD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sUsu5cXtc2q3NrJVNYZ1mvzew-I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft Manifest number: 0FA7 Signing time: Tue 28 Oct 2025 17:29:20 +0000 Manifest this update: Tue 28 Oct 2025 17:29:20 +0000 Manifest next update: Tue 04 Nov 2025 17:29:20 +0000 Files and hashes: 1: sUsu5cXtc2q3NrJVNYZ1mvzew-I.crl (hash: RTiLsW/O9syuZ8piBtKFTQyLs/LlwKxiIrZLtB9uOlw=) 2: 164B42E2414111F0A098A82DC4F9AE02.roa (hash: tvN8EtS+iS2pn0JRehFrlQmdvXAZ8RTeiP4cegXS6xo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.crl rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sUsu5cXtc2q3NrJVNYZ1mvzew-I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Nov 2025 17:27:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4029 (0xfbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913BF1E, serialNumber=B14B2EE5C5ED736AB736B2553586759AFCDEC3E2 Validity Not Before: Oct 28 17:29:20 2025 GMT Not After : Nov 4 17:29:20 2025 GMT Subject: CN=6900fd70-3f13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:be:68:21:ac:32:2c:68:82:23:ff:7a:8c:a0: 7f:73:fa:52:ef:23:0a:92:68:f9:92:86:6e:78:62: a9:26:50:aa:a8:91:bc:be:ad:ef:62:84:f1:05:74: 3b:47:c9:8b:8e:80:39:4b:1d:43:6b:07:16:f8:cc: 8c:ee:80:3d:97:c2:cc:e4:83:68:af:43:6e:50:2c: 90:4b:73:64:34:e2:4e:f2:82:7b:8b:52:39:c2:3a: 09:28:81:bd:f9:ee:5c:fc:48:9d:c6:1d:e1:63:94: 15:89:12:30:38:4f:ae:1c:98:05:d1:9a:a2:32:23: be:50:e8:80:73:b6:14:e4:20:63:a0:90:b9:64:f6: 95:f7:a7:b4:32:80:a2:c8:41:1e:96:89:7e:9d:f2: 7a:b7:c9:f2:03:4d:32:45:08:d2:cb:a3:2a:27:22: 89:56:f9:7c:8e:55:4e:64:91:bb:56:6d:77:79:2b: ca:25:54:44:2a:2f:54:62:fe:78:93:3d:23:b2:57: 6f:d7:1d:44:19:b4:84:bf:ee:55:0c:42:e1:f9:41: 76:92:93:7b:bc:b4:ae:d9:0e:9e:8d:45:c6:3a:11: 28:d3:97:30:db:37:50:97:f0:33:71:6b:ae:4d:9e: 66:92:f3:d5:dd:cc:94:a2:63:de:bb:b3:a5:f6:4d: 74:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:3B:9E:63:FC:1A:71:E4:6E:CB:91:96:02:76:88:1F:9D:B0:C8:22 X509v3 Authority Key Identifier: keyid:B1:4B:2E:E5:C5:ED:73:6A:B7:36:B2:55:35:86:75:9A:FC:DE:C3:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sUsu5cXtc2q3NrJVNYZ1mvzew-I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:3d:e3:99:74:72:b9:31:94:be:fc:29:ff:37:c6:9a:d5:f4: d7:6f:07:4a:a5:3f:b6:56:ce:41:82:4d:d3:4f:b5:1d:bb:85: 6f:c4:f3:69:35:5f:d7:7e:b0:76:bd:b3:55:67:0a:e4:69:88: 80:73:db:12:72:ab:14:1c:bf:09:75:53:ed:15:0f:f5:d3:0d: 65:d3:04:d7:3d:91:cc:0a:74:91:2d:ce:19:d8:1f:40:df:29: 2b:5b:e7:23:1d:14:81:90:da:a9:17:f9:f4:cd:0b:3a:81:13: ca:46:ae:b6:47:8f:8e:9b:d8:e4:6b:1b:ba:7f:8e:5e:5d:31: b9:76:a2:04:13:7b:41:b2:01:95:25:ff:a8:82:98:86:28:96: f2:1a:c2:a6:50:27:4f:c9:1c:50:f9:aa:b4:e8:30:3b:60:f3: 24:bc:e5:c8:5b:79:04:0c:4b:2b:e2:fa:5a:d4:46:4c:35:32: cb:cd:93:5a:13:1b:31:c0:fc:b2:04:1f:cf:81:60:88:75:dd: 4e:21:d5:fd:cc:85:52:c6:64:c8:8c:bf:7c:46:0b:94:d6:1f: 9c:73:45:7d:87:5b:18:f1:b5:e6:41:41:5b:b1:db:6a:3f:11: 36:bd:16:18:ab:7b:1e:d4:7b:a7:3c:2d:f6:4c:0a:9c:98:0e: 46:16:ea:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD70wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0JGMUUxMTAvBgNVBAUTKEIxNEIyRUU1QzVFRDczNkFCNzM2QjI1NTM1ODY3NTlB RkNERUMzRTIwHhcNMjUxMDI4MTcyOTIwWhcNMjUxMTA0MTcyOTIwWjAYMRYwFAYD VQQDEw02OTAwZmQ3MC0zZjEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq75oIawyLGiCI/96jKB/c/pS7yMKkmj5koZueGKpJlCqqJG8vq3vYoTxBXQ7 R8mLjoA5Sx1DawcW+MyM7oA9l8LM5INor0NuUCyQS3NkNOJO8oJ7i1I5wjoJKIG9 +e5c/Eidxh3hY5QViRIwOE+uHJgF0ZqiMiO+UOiAc7YU5CBjoJC5ZPaV96e0MoCi yEEelol+nfJ6t8nyA00yRQjSy6MqJyKJVvl8jlVOZJG7Vm13eSvKJVREKi9UYv54 kz0jsldv1x1EGbSEv+5VDELh+UF2kpN7vLSu2Q6ejUXGOhEo05cw2zdQl/AzcWuu TZ5mkvPV3cyUomPeu7Ol9k107wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGY7nmP8 GnHkbsuRlgJ2iB+dsMgiMB8GA1UdIwQYMBaAFLFLLuXF7XNqtzayVTWGdZr83sPi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQkYxRS9EQkIyQkY2NjZF NkYxMUU5QUEwMTdDMzNDNEY5QUUwMi9zVXN1NWNYdGMycTNOckpWTllaMW12emV3 LUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NVc3U1Y1h0YzJxM05ySlZOWVoxbXZ6ZXctSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QkYxRS9EQkIyQkY2NjZFNkYxMUU5QUEwMTdDMzNDNEY5QUUwMi9zVXN1NWNYdGMy cTNOckpWTllaMW12emV3LUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOPeOZdHK5MZS+/Cn/N8aa1fTXbwdKpT+2Vs5Bgk3TT7Udu4VvxPNp NV/XfrB2vbNVZwrkaYiAc9sScqsUHL8JdVPtFQ/10w1l0wTXPZHMCnSRLc4Z2B9A 3ykrW+cjHRSBkNqpF/n0zQs6gRPKRq62R4+Om9jkaxu6f45eXTG5dqIEE3tBsgGV Jf+ogpiGKJbyGsKmUCdPyRxQ+aq06DA7YPMkvOXIW3kEDEsr4vpa1EZMNTLLzZNa ExsxwPyyBB/PgWCIdd1OIdX9zIVSxmTIjL98RguU1h+cc0V9h1sY8bXmQUFbsdtq PxE2vRYYq3se1HunPC32TAqcmA5GFurJ -----END CERTIFICATE-----Generated at Tue Oct 28 18:47:30 2025 by rpki-client