$ rpki-client -vvf rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.mft File: U-fOlDUz-NPAVknylGgqJvgU8V8.mft (raw, json) Hash identifier: ZtdxiSCvfimHl5J7fmnuJAor/66YLgs6reqjNzkcsCw= Subject key identifier: 1E:BE:17:17:43:34:28:2E:C7:C0:97:D4:3A:1F:9E:C0:0F:B4:4C:AF Authority key identifier: 53:E7:CE:94:35:33:F8:D3:C0:56:49:F2:94:68:2A:26:F8:14:F1:5F Certificate issuer: /CN=A9144391/serialNumber=53E7CE943533F8D3C05649F294682A26F814F15F Certificate serial: DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-fOlDUz-NPAVknylGgqJvgU8V8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.mft Manifest number: DA Signing time: Mon 03 Nov 2025 05:36:52 +0000 Manifest this update: Mon 03 Nov 2025 05:36:51 +0000 Manifest next update: Mon 10 Nov 2025 05:36:51 +0000 Files and hashes: 1: U-fOlDUz-NPAVknylGgqJvgU8V8.crl (hash: UmHBLnSqtXxvFSXagagX8NUhT+G/MX7o2NqsxRgbV0o=) 2: BC213E3C70AF11EF9C9B2C0EC4F9AE02.roa (hash: 3YeMlkcKDR/G7e8HpdLpzhvB3RsMdGgeM4Qv8rsxSYk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.crl rsync://rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-fOlDUz-NPAVknylGgqJvgU8V8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:36:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 221 (0xdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144391, serialNumber=53E7CE943533F8D3C05649F294682A26F814F15F Validity Not Before: Nov 3 05:36:51 2025 GMT Not After : Nov 10 05:36:51 2025 GMT Subject: CN=69083f73-2d5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:f6:24:f3:e3:08:6d:6e:7c:00:05:69:8c:f3: d6:a4:81:d6:ee:8f:c1:98:89:c9:85:24:fe:03:d3: 51:bc:c1:56:1d:34:2e:c7:50:eb:5f:87:7c:eb:f5: 59:8e:40:7f:79:f4:38:6e:e0:02:7f:28:17:6f:98: ad:ca:c5:f8:bf:a0:fa:19:8c:c6:4b:5f:1a:56:e4: 09:99:56:9f:33:9b:33:c6:77:1e:83:64:1b:72:41: 9e:15:d3:c8:12:44:e0:9d:41:ec:e0:91:b3:74:cc: c2:36:e8:43:ef:67:d8:8b:0e:05:41:b5:8d:ba:a2: 34:74:9b:0a:b3:9e:f7:3e:9e:da:b4:7f:a1:d3:b4: dc:a4:a9:6d:a6:9a:a6:d7:4b:2b:77:92:cd:75:54: 60:34:71:66:47:e3:1c:03:e8:e3:fb:d3:53:5e:7d: ce:ce:02:9b:29:7d:ce:83:6c:d5:70:0a:e3:e2:82: ca:4e:49:e9:80:57:02:52:83:48:06:ec:ae:51:3e: d3:e8:d2:fe:c8:5d:4e:3a:e2:2d:41:2f:ad:ea:6c: 85:59:5a:a7:bd:2e:d5:5b:17:eb:70:b4:da:88:3e: 59:3a:47:02:b5:da:97:14:73:11:6e:84:76:ad:c5: 7d:c0:4a:76:47:5c:19:c0:c4:1b:e2:27:2a:1a:aa: fc:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:BE:17:17:43:34:28:2E:C7:C0:97:D4:3A:1F:9E:C0:0F:B4:4C:AF X509v3 Authority Key Identifier: keyid:53:E7:CE:94:35:33:F8:D3:C0:56:49:F2:94:68:2A:26:F8:14:F1:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-fOlDUz-NPAVknylGgqJvgU8V8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:f1:ba:dc:b3:5b:e8:7a:88:9d:08:ab:46:4f:de:b7:4e:91: 78:7f:39:93:f3:c4:76:15:32:9c:3f:fb:16:b0:43:cf:46:ef: 74:9a:1b:76:bd:8f:a7:82:e9:aa:68:09:1b:21:a8:51:32:ee: 2f:2d:cc:05:37:10:b9:1d:4a:31:21:ed:a1:58:7a:4d:09:83: 75:18:3b:44:e1:58:76:6b:55:17:31:53:20:f0:12:5b:9e:fd: d2:71:3f:a0:7a:55:0c:26:d8:3a:69:a5:91:f1:65:2f:ff:c1: 74:7f:e4:c6:87:c3:34:cd:17:11:c9:57:4d:8e:27:f8:5d:04: 77:85:3e:36:a8:30:57:fe:1d:6d:2b:e0:64:f9:11:4c:60:d6: 9e:57:d8:37:43:23:47:c1:d7:a4:99:dd:a7:4d:8c:fa:b9:bf: d2:cb:6b:b5:e8:28:e0:b3:a3:1e:3a:93:b4:f9:87:df:21:0d: d5:4c:88:d0:bb:72:42:32:10:5a:bc:a5:2b:73:d7:07:4d:16: 41:64:e5:75:f1:55:58:31:45:b9:fd:e5:4c:2f:cb:58:d7:a1: 52:98:e5:19:10:94:fb:06:1d:e6:5e:41:c3:cd:56:6f:63:7d: 6a:ca:f9:f8:00:b4:47:94:2a:fe:fe:28:a3:8c:09:27:99:b1: 95:ed:18:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQzOTExMTAvBgNVBAUTKDUzRTdDRTk0MzUzM0Y4RDNDMDU2NDlGMjk0NjgyQTI2 RjgxNEYxNUYwHhcNMjUxMTAzMDUzNjUxWhcNMjUxMTEwMDUzNjUxWjAYMRYwFAYD VQQDEw02OTA4M2Y3My0yZDVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqfYk8+MIbW58AAVpjPPWpIHW7o/BmInJhST+A9NRvMFWHTQux1DrX4d86/VZ jkB/efQ4buACfygXb5itysX4v6D6GYzGS18aVuQJmVafM5szxnceg2QbckGeFdPI EkTgnUHs4JGzdMzCNuhD72fYiw4FQbWNuqI0dJsKs573Pp7atH+h07TcpKltppqm 10srd5LNdVRgNHFmR+McA+jj+9NTXn3OzgKbKX3Og2zVcArj4oLKTknpgFcCUoNI BuyuUT7T6NL+yF1OOuItQS+t6myFWVqnvS7VWxfrcLTaiD5ZOkcCtdqXFHMRboR2 rcV9wEp2R1wZwMQb4icqGqr8UQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB6+FxdD NCgux8CX1DofnsAPtEyvMB8GA1UdIwQYMBaAFFPnzpQ1M/jTwFZJ8pRoKib4FPFf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDM5MS8wMTlGRjE0RTcw QUUxMUVGQTg0OEIwNjhDNEY5QUUwMi9VLWZPbERVei1OUEFWa255bEdncUp2Z1U4 VjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UtZk9sRFV6LU5QQVZrbnlsR2dxSnZnVThWOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDM5MS8wMTlGRjE0RTcwQUUxMUVGQTg0OEIwNjhDNEY5QUUwMi9VLWZPbERVei1O UEFWa255bEdncUp2Z1U4VjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCM8brcs1voeoidCKtGT963TpF4fzmT88R2FTKcP/sWsEPPRu90mht2 vY+ngumqaAkbIahRMu4vLcwFNxC5HUoxIe2hWHpNCYN1GDtE4Vh2a1UXMVMg8BJb nv3ScT+gelUMJtg6aaWR8WUv/8F0f+TGh8M0zRcRyVdNjif4XQR3hT42qDBX/h1t K+Bk+RFMYNaeV9g3QyNHwdekmd2nTYz6ub/Sy2u16Cjgs6MeOpO0+YffIQ3VTIjQ u3JCMhBavKUrc9cHTRZBZOV18VVYMUW5/eVML8tY16FSmOUZEJT7Bh3mXkHDzVZv Y31qyvn4ALRHlCr+/iijjAknmbGV7Rgk -----END CERTIFICATE-----Generated at Tue Nov 4 08:31:17 2025 by rpki-client