$ rpki-client -vvf rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.mft File: UyQGWmE9LRB4F5xiFjcczGp3UHo.mft (raw, json) Hash identifier: az/WfFglsrDfDpoYd9A9oMuC2L0aViYNLcpjmYa+Ylo= Subject key identifier: 4A:45:16:DF:F1:4A:05:F5:97:76:09:8A:B3:FB:EE:5A:33:73:63:42 Authority key identifier: 53:24:06:5A:61:3D:2D:10:78:17:9C:62:16:37:1C:CC:6A:77:50:7A Certificate issuer: /CN=A9158EC4/serialNumber=5324065A613D2D1078179C6216371CCC6A77507A Certificate serial: 0133 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UyQGWmE9LRB4F5xiFjcczGp3UHo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.mft Manifest number: 012E Signing time: Sat 25 Oct 2025 08:11:24 +0000 Manifest this update: Sat 25 Oct 2025 08:11:23 +0000 Manifest next update: Sat 01 Nov 2025 08:11:23 +0000 Files and hashes: 1: UyQGWmE9LRB4F5xiFjcczGp3UHo.crl (hash: RVhV5HO9pHMZPXqdsk//2lZcLkFN6vdZRdcPNeaU3CQ=) 2: 2805F2D6E5B511EEB34EF35AC4F9AE02.roa (hash: 0mdd1hPCY77vgsAR82vZE3qWvhrgXofs3UYJMwrKnGE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.crl rsync://rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UyQGWmE9LRB4F5xiFjcczGp3UHo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Nov 2025 08:11:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 307 (0x133) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158EC4, serialNumber=5324065A613D2D1078179C6216371CCC6A77507A Validity Not Before: Oct 25 08:11:23 2025 GMT Not After : Nov 1 08:11:23 2025 GMT Subject: CN=68fc862c-4578 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:4c:31:60:b8:fe:44:cf:06:e8:37:9f:f2:ae: d6:d4:b4:6c:96:f3:4d:aa:71:fe:6c:e8:aa:d1:df: 38:5f:3c:c1:45:ad:db:b3:a7:9c:db:15:e9:d7:27: 9f:d2:73:e5:1c:8a:0e:d2:c1:21:b0:e4:5d:b1:ca: d5:9f:86:eb:03:20:13:4a:29:d3:54:1b:e7:7a:be: b1:67:64:91:79:ec:62:27:1e:92:be:b7:c6:a0:27: a6:bc:e0:19:94:ae:08:bd:4f:15:81:55:57:9a:df: 73:b0:59:60:70:97:e8:3e:62:4e:7d:e0:9f:64:0e: cf:4b:39:f8:38:73:3b:f4:7c:4d:82:5b:df:5f:9b: 4f:0d:cf:59:f8:12:e1:e3:79:ea:98:08:97:31:10: 78:94:3a:a3:a4:99:db:bf:98:dc:48:a7:20:5c:d9: 0e:4b:3b:81:e8:4d:7b:5e:31:60:74:f1:23:81:17: 34:54:3e:30:f6:ce:16:55:eb:a7:fd:e9:91:2b:a5: 75:9a:fa:10:12:f6:87:ae:ad:aa:9a:34:1e:b8:e0: 63:d6:9c:25:73:5a:d0:cb:21:19:4b:2f:e6:18:c8: b5:d9:27:91:cd:36:83:f5:10:95:f5:2d:6a:67:7a: 5d:d9:04:eb:fa:42:52:f1:9c:db:9e:f7:e2:bb:c1: c9:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:45:16:DF:F1:4A:05:F5:97:76:09:8A:B3:FB:EE:5A:33:73:63:42 X509v3 Authority Key Identifier: keyid:53:24:06:5A:61:3D:2D:10:78:17:9C:62:16:37:1C:CC:6A:77:50:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UyQGWmE9LRB4F5xiFjcczGp3UHo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:f5:6b:13:4a:2e:e9:a6:ee:7a:97:20:a3:cb:bd:24:a3:39: 90:a6:7f:0d:6b:cd:ef:41:40:11:17:ab:d5:a0:a7:66:68:db: 74:72:1b:4b:d9:bf:21:9d:c9:85:4a:c5:94:24:ad:aa:22:01: 94:e7:04:f1:4a:e1:a0:6f:fe:7f:3f:a9:59:3f:7e:21:34:b4: 30:49:70:ab:16:da:c8:65:ae:23:73:a6:8e:9b:18:9c:b8:d7: b7:b0:4c:6c:f3:e4:a2:78:06:c6:83:76:0c:26:94:0d:5d:56: 19:ab:ce:39:9b:a9:08:61:13:0b:cc:03:fb:c9:0f:08:6a:3c: 66:c4:d9:37:f9:0a:05:ad:16:71:7f:49:8f:72:32:e2:fe:1b: 4f:42:37:16:73:28:7c:3c:7f:e1:fe:33:15:a3:dc:f4:fe:bb: 93:20:cb:2c:9f:bb:06:6a:0f:aa:81:16:ad:84:0c:0b:7c:5a: 35:41:2e:62:10:b0:81:20:4b:8d:cc:77:56:ec:9d:08:7c:33: 02:f9:29:31:7e:a2:42:31:41:06:55:34:dc:54:ff:5b:05:d8: 48:e8:3a:c7:19:a7:34:77:2e:98:bd:e2:90:ab:a7:b2:bd:0d: 9e:c1:2f:05:7a:65:e7:ec:5f:7e:a1:d6:bd:cc:9b:7d:31:f4: 47:a7:7f:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThFQzQxMTAvBgNVBAUTKDUzMjQwNjVBNjEzRDJEMTA3ODE3OUM2MjE2MzcxQ0ND NkE3NzUwN0EwHhcNMjUxMDI1MDgxMTIzWhcNMjUxMTAxMDgxMTIzWjAYMRYwFAYD VQQDEw02OGZjODYyYy00NTc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1EwxYLj+RM8G6Def8q7W1LRslvNNqnH+bOiq0d84XzzBRa3bs6ec2xXp1yef 0nPlHIoO0sEhsORdscrVn4brAyATSinTVBvner6xZ2SReexiJx6SvrfGoCemvOAZ lK4IvU8VgVVXmt9zsFlgcJfoPmJOfeCfZA7PSzn4OHM79HxNglvfX5tPDc9Z+BLh 43nqmAiXMRB4lDqjpJnbv5jcSKcgXNkOSzuB6E17XjFgdPEjgRc0VD4w9s4WVeun /emRK6V1mvoQEvaHrq2qmjQeuOBj1pwlc1rQyyEZSy/mGMi12SeRzTaD9RCV9S1q Z3pd2QTr+kJS8Zzbnvfiu8HJdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEpFFt/x SgX1l3YJirP77lozc2NCMB8GA1UdIwQYMBaAFFMkBlphPS0QeBecYhY3HMxqd1B6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEVDNC80NTA2NDc5MEU1 QjExMUVFOUUzNUMzMzNDNEY5QUUwMi9VeVFHV21FOUxSQjRGNXhpRmpjY3pHcDNV SG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V5UUdXbUU5TFJCNEY1eGlGamNjekdwM1VIby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OEVDNC80NTA2NDc5MEU1QjExMUVFOUUzNUMzMzNDNEY5QUUwMi9VeVFHV21FOUxS QjRGNXhpRmpjY3pHcDNVSG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCU9WsTSi7ppu56lyCjy70kozmQpn8Na83vQUARF6vVoKdmaNt0chtL 2b8hncmFSsWUJK2qIgGU5wTxSuGgb/5/P6lZP34hNLQwSXCrFtrIZa4jc6aOmxic uNe3sExs8+SieAbGg3YMJpQNXVYZq845m6kIYRMLzAP7yQ8IajxmxNk3+QoFrRZx f0mPcjLi/htPQjcWcyh8PH/h/jMVo9z0/ruTIMssn7sGag+qgRathAwLfFo1QS5i ELCBIEuNzHdW7J0IfDMC+SkxfqJCMUEGVTTcVP9bBdhI6DrHGac0dy6YveKQq6ey vQ2ewS8FemXn7F9+oda9zJt9MfRHp38X -----END CERTIFICATE-----Generated at Sun Oct 26 07:18:45 2025 by rpki-client