$ rpki-client -vvf rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.mft File: rU1lO4NcTh3pjsZjdoiamoN2SwI.mft (raw, json) Hash identifier: GaFgR0g6zGK+EOde8e1N3DNiSh1oQoGIxocPO/OxQig= Subject key identifier: 87:4B:AB:C6:35:60:7B:3A:F2:B5:7D:C3:F4:88:93:2E:7D:02:8A:F6 Authority key identifier: AD:4D:65:3B:83:5C:4E:1D:E9:8E:C6:63:76:88:9A:9A:83:76:4B:02 Certificate issuer: /CN=A914B669/serialNumber=AD4D653B835C4E1DE98EC66376889A9A83764B02 Certificate serial: 34D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rU1lO4NcTh3pjsZjdoiamoN2SwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.mft Manifest number: 34D2 Signing time: Sun 02 Nov 2025 14:45:11 +0000 Manifest this update: Sun 02 Nov 2025 14:45:10 +0000 Manifest next update: Sun 09 Nov 2025 14:45:10 +0000 Files and hashes: 1: rU1lO4NcTh3pjsZjdoiamoN2SwI.crl (hash: HX56uYYvfm3yXtS4qjPi36Ry9E/SdlZJZATTqpS58mc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.crl rsync://rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rU1lO4NcTh3pjsZjdoiamoN2SwI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 14:45:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13522 (0x34d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B669, serialNumber=AD4D653B835C4E1DE98EC66376889A9A83764B02 Validity Not Before: Nov 2 14:45:10 2025 GMT Not After : Nov 9 14:45:10 2025 GMT Subject: CN=69076e77-2152 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ef:fc:aa:21:1e:15:87:1c:fd:12:80:d1:16: e8:4a:fb:23:09:66:a6:57:4e:df:7a:86:78:f2:b3: 95:57:7a:36:eb:eb:86:04:20:77:fa:42:14:65:57: 8f:b7:70:e5:66:0f:45:70:95:74:26:8d:f4:00:b2: 82:c1:ca:e2:f6:ae:61:31:dc:96:69:f5:17:cd:ff: 44:ef:2d:77:b3:66:3e:d1:b5:0c:08:d1:7d:ca:b1: 00:75:4c:f3:33:1a:b3:ed:ff:92:b4:78:19:fa:30: 14:65:bb:78:00:30:01:7a:48:9f:9b:34:04:59:70: 13:d4:11:e2:7c:ec:a4:c5:c3:be:a4:ce:85:fd:d5: 33:70:46:02:1a:8d:1d:a4:7e:c0:c8:fc:68:46:bc: 3a:2e:e6:33:8f:47:0e:c3:9e:ed:8b:2c:d3:36:16: 20:ac:89:e5:3b:71:b5:8a:61:c7:c7:1f:b8:b8:97: 02:05:c4:2f:6f:df:c8:bb:e4:0d:37:f2:2b:ba:10: ff:c2:48:34:d6:4d:e4:25:96:85:db:8d:2b:1d:47: 5c:2c:93:a4:66:a2:16:59:03:ed:9c:7a:1c:c5:63: dc:5d:78:c4:6b:d0:c2:01:37:bf:ea:02:03:23:93: c5:96:be:20:32:b2:aa:9d:0a:88:86:eb:44:d9:d4: ef:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:4B:AB:C6:35:60:7B:3A:F2:B5:7D:C3:F4:88:93:2E:7D:02:8A:F6 X509v3 Authority Key Identifier: keyid:AD:4D:65:3B:83:5C:4E:1D:E9:8E:C6:63:76:88:9A:9A:83:76:4B:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rU1lO4NcTh3pjsZjdoiamoN2SwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:f4:3a:ed:22:ad:dd:e8:0b:34:4d:ee:f7:47:a9:75:a2:04: 2b:d5:9b:88:9e:bc:55:38:78:b7:84:e0:95:c4:7b:3e:73:10: 97:ab:2d:3c:5d:af:3a:79:88:52:2a:f3:21:5b:62:1c:cf:1d: ca:f8:a7:1c:45:f3:59:4d:ed:6c:0c:04:00:2f:c6:5a:f5:82: fb:cd:c6:d7:c3:90:86:3a:af:d8:b6:f4:2d:29:a6:a1:bf:ec: a1:47:02:76:3e:78:d8:ca:db:7c:9d:e6:7c:ae:75:a1:9a:5f: 97:82:5e:01:07:e6:cb:11:7b:cc:3f:44:51:f5:31:f2:e4:66: 42:c9:02:b9:cc:48:df:50:7d:2d:59:49:90:1b:49:cd:f2:8e: 60:5c:9e:c3:85:0e:35:40:9a:09:80:f8:b0:b4:1c:fe:84:8e: 8e:77:f4:b4:d5:b0:d7:8a:2f:33:99:00:84:a8:44:93:53:4b: 9d:af:38:e8:90:9f:56:53:77:41:5b:b5:43:4a:a0:b9:5a:95: 7a:16:80:7a:e8:6d:ad:ff:01:e7:7e:4a:a6:46:6d:c9:ae:55: cd:78:0f:9c:0e:4a:cd:6a:b3:6f:90:a1:2b:50:fa:05:01:3f: 01:e6:ee:80:22:6b:bb:be:50:42:7f:d0:fe:b1:75:d2:b3:db: fb:96:cf:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEI2NjkxMTAvBgNVBAUTKEFENEQ2NTNCODM1QzRFMURFOThFQzY2Mzc2ODg5QTlB ODM3NjRCMDIwHhcNMjUxMTAyMTQ0NTEwWhcNMjUxMTA5MTQ0NTEwWjAYMRYwFAYD VQQDEw02OTA3NmU3Ny0yMTUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAve/8qiEeFYcc/RKA0RboSvsjCWamV07feoZ48rOVV3o26+uGBCB3+kIUZVeP t3DlZg9FcJV0Jo30ALKCwcri9q5hMdyWafUXzf9E7y13s2Y+0bUMCNF9yrEAdUzz Mxqz7f+StHgZ+jAUZbt4ADABekifmzQEWXAT1BHifOykxcO+pM6F/dUzcEYCGo0d pH7AyPxoRrw6LuYzj0cOw57tiyzTNhYgrInlO3G1imHHxx+4uJcCBcQvb9/Iu+QN N/IruhD/wkg01k3kJZaF240rHUdcLJOkZqIWWQPtnHocxWPcXXjEa9DCATe/6gID I5PFlr4gMrKqnQqIhutE2dTvOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIdLq8Y1 YHs68rV9w/SIky59Aor2MB8GA1UdIwQYMBaAFK1NZTuDXE4d6Y7GY3aImpqDdksC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjY2OS85RDVCRjZGRTFE OTIxMUUyODg2RUFBRjUwOEIwMkNEMi9yVTFsTzROY1RoM3Bqc1pqZG9pYW1vTjJT d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JVMWxPNE5jVGgzcGpzWmpkb2lhbW9OMlN3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjY2OS85RDVCRjZGRTFEOTIxMUUyODg2RUFBRjUwOEIwMkNEMi9yVTFsTzROY1Ro M3Bqc1pqZG9pYW1vTjJTd0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCP9DrtIq3d6As0Te73R6l1ogQr1ZuInrxVOHi3hOCVxHs+cxCXqy08 Xa86eYhSKvMhW2Iczx3K+KccRfNZTe1sDAQAL8Za9YL7zcbXw5CGOq/YtvQtKaah v+yhRwJ2PnjYytt8neZ8rnWhml+Xgl4BB+bLEXvMP0RR9THy5GZCyQK5zEjfUH0t WUmQG0nN8o5gXJ7DhQ41QJoJgPiwtBz+hI6Od/S01bDXii8zmQCEqESTU0udrzjo kJ9WU3dBW7VDSqC5WpV6FoB66G2t/wHnfkqmRm3JrlXNeA+cDkrNarNvkKErUPoF AT8B5u6AImu7vlBCf9D+sXXSs9v7ls+Z -----END CERTIFICATE-----Generated at Mon Nov 3 18:14:37 2025 by rpki-client