$ rpki-client -vvf rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.mft File: UN4cYHM-ori3boQDYJGOHyXEbkM.mft (raw, json) Hash identifier: p8ZN0ppaToaBB+D37MU4zs70qehqzbQDIGsz3aODbd8= Subject key identifier: 7A:09:92:15:51:31:7A:CA:7A:A7:16:B6:9F:CA:A0:63:D7:0B:F5:59 Authority key identifier: 50:DE:1C:60:73:3E:A2:B8:B7:6E:84:03:60:91:8E:1F:25:C4:6E:43 Certificate issuer: /CN=A916701E/serialNumber=50DE1C60733EA2B8B76E840360918E1F25C46E43 Certificate serial: 0C27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UN4cYHM-ori3boQDYJGOHyXEbkM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.mft Manifest number: 0C15 Signing time: Thu 18 Sep 2025 18:57:28 +0000 Manifest this update: Thu 18 Sep 2025 18:57:27 +0000 Manifest next update: Thu 25 Sep 2025 18:57:27 +0000 Files and hashes: 1: UN4cYHM-ori3boQDYJGOHyXEbkM.crl (hash: fWJqbhP6xJk3runGS8BgRChBwb2pe4+NYEacT5DWMfY=) 2: 46C5452E0DD711EF85707821C4F9AE02.roa (hash: /U7W3kIJcREb7MGP1Cl2Wpd73rbaNoFSjTUo68eX8m0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.crl rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UN4cYHM-ori3boQDYJGOHyXEbkM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 18:57:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3111 (0xc27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916701E, serialNumber=50DE1C60733EA2B8B76E840360918E1F25C46E43 Validity Not Before: Sep 18 18:57:27 2025 GMT Not After : Sep 25 18:57:27 2025 GMT Subject: CN=68cc5618-dc5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:5f:df:e6:1b:29:29:8e:b1:da:bf:0d:d9:21: 7c:f4:01:90:76:6a:e9:9f:04:4f:ee:0f:68:d9:eb: d5:82:36:f8:7d:14:44:e2:32:99:bd:cf:ee:9d:d0: ef:72:f6:f3:67:cf:64:41:55:aa:b4:05:25:db:e3: 74:f2:d4:a0:8c:25:57:02:f1:47:b5:45:3c:ff:08: cf:13:46:b0:c1:ed:40:bc:c7:7f:49:9a:73:da:57: fd:25:b9:4b:c7:1d:88:54:4b:bf:5b:cb:2a:c0:44: 77:c3:09:bb:31:ba:20:a8:1d:32:10:df:d6:8a:fc: 2d:d2:50:7b:6b:e4:ad:d4:e8:68:d9:a7:08:e2:57: 86:27:71:ea:ec:c6:0b:48:0a:81:81:b3:40:29:89: bc:67:31:06:c1:1f:49:d6:70:e3:2a:20:68:6c:03: 02:c9:dd:21:15:24:64:77:09:88:5e:f7:5d:98:1f: f9:b3:fa:e5:80:f8:c5:d6:f4:69:ac:ca:63:47:1c: 5f:3b:c0:31:19:2f:ae:5c:a0:30:c8:99:16:a6:aa: 0d:4c:52:4e:67:d6:bf:c3:c9:ce:c9:43:5b:a0:04: dd:e3:d8:68:b9:c9:88:f1:d1:32:6d:00:5e:02:b8: 76:4f:2f:2c:3f:3b:0d:80:11:b7:ed:91:3a:9b:8f: 72:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:09:92:15:51:31:7A:CA:7A:A7:16:B6:9F:CA:A0:63:D7:0B:F5:59 X509v3 Authority Key Identifier: keyid:50:DE:1C:60:73:3E:A2:B8:B7:6E:84:03:60:91:8E:1F:25:C4:6E:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UN4cYHM-ori3boQDYJGOHyXEbkM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d5:de:a2:3a:58:76:3d:f6:14:46:6c:d1:d2:46:1c:4f:d0:f1: 4a:72:00:74:5a:3a:77:a3:2c:2d:37:d0:ae:12:e4:b3:5d:dc: 6f:24:1d:6e:a9:78:85:e2:cf:4a:58:c2:fb:73:e0:58:c1:4e: af:bf:17:40:f4:3a:16:50:54:10:e0:b0:cc:ac:ca:af:e5:21: 69:6f:72:c8:ef:54:e8:f8:09:bf:2b:1b:13:45:a2:81:27:dd: 7f:7a:21:71:75:b7:83:22:08:45:e5:2c:b6:60:d6:13:a5:9e: ad:01:40:f8:a7:3a:78:d0:d9:44:bf:27:13:b1:af:0e:a1:ff: 27:37:8c:72:5c:8b:cc:7f:1f:a8:14:0b:53:d4:fc:85:eb:59: 50:5d:b8:bd:4b:ce:0a:f2:d8:1a:8b:62:56:ef:97:35:77:1f: ba:b4:19:89:bb:2e:00:75:ff:40:1a:07:81:d0:c5:f4:41:35: 79:cc:9f:f5:62:ef:03:7d:23:93:f5:8d:94:62:da:67:c4:b8: 30:bf:e4:2b:4b:e6:1d:29:5f:d5:16:39:da:0c:26:88:d4:45: 86:a5:ea:1b:62:7c:51:6b:a7:39:38:7a:bf:47:7c:3c:fa:62: f3:f1:82:41:ad:d0:6f:13:69:ec:7a:0c:29:8c:9d:63:84:4d: 45:20:40:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjcwMUUxMTAvBgNVBAUTKDUwREUxQzYwNzMzRUEyQjhCNzZFODQwMzYwOTE4RTFG MjVDNDZFNDMwHhcNMjUwOTE4MTg1NzI3WhcNMjUwOTI1MTg1NzI3WjAYMRYwFAYD VQQDEw02OGNjNTYxOC1kYzVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwF/f5hspKY6x2r8N2SF89AGQdmrpnwRP7g9o2evVgjb4fRRE4jKZvc/undDv cvbzZ89kQVWqtAUl2+N08tSgjCVXAvFHtUU8/wjPE0awwe1AvMd/SZpz2lf9JblL xx2IVEu/W8sqwER3wwm7MbogqB0yEN/Wivwt0lB7a+St1Oho2acI4leGJ3Hq7MYL SAqBgbNAKYm8ZzEGwR9J1nDjKiBobAMCyd0hFSRkdwmIXvddmB/5s/rlgPjF1vRp rMpjRxxfO8AxGS+uXKAwyJkWpqoNTFJOZ9a/w8nOyUNboATd49houcmI8dEybQBe Arh2Ty8sPzsNgBG37ZE6m49y6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHoJkhVR MXrKeqcWtp/KoGPXC/VZMB8GA1UdIwQYMBaAFFDeHGBzPqK4t26EA2CRjh8lxG5D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NzAxRS83ODVEN0VEMjFD MDgxMUVBODU3NkIxNTFDNEY5QUUwMi9VTjRjWUhNLW9yaTNib1FEWUpHT0h5WEVi a00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VONGNZSE0tb3JpM2JvUURZSkdPSHlYRWJrTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NzAxRS83ODVEN0VEMjFDMDgxMUVBODU3NkIxNTFDNEY5QUUwMi9VTjRjWUhNLW9y aTNib1FEWUpHT0h5WEVia00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDV3qI6WHY99hRGbNHSRhxP0PFKcgB0Wjp3oywtN9CuEuSzXdxvJB1u qXiF4s9KWML7c+BYwU6vvxdA9DoWUFQQ4LDMrMqv5SFpb3LI71To+Am/KxsTRaKB J91/eiFxdbeDIghF5Sy2YNYTpZ6tAUD4pzp40NlEvycTsa8Oof8nN4xyXIvMfx+o FAtT1PyF61lQXbi9S84K8tgai2JW75c1dx+6tBmJuy4Adf9AGgeB0MX0QTV5zJ/1 Yu8DfSOT9Y2UYtpnxLgwv+QrS+YdKV/VFjnaDCaI1EWGpeobYnxRa6c5OHq/R3w8 +mLz8YJBrdBvE2nsegwpjJ1jhE1FIEBg -----END CERTIFICATE-----Generated at Fri Sep 19 02:50:00 2025 by rpki-client