$ rpki-client -vvf rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft File: U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft (raw, json) Hash identifier: qlOSnuT9+7bXHqw5sKBXd2A/HVAtE7J6OBLvOcwd8vs= Subject key identifier: FA:6D:6A:95:FF:F4:89:2F:6E:37:B4:DC:DE:19:E8:92:1B:7D:9C:ED Authority key identifier: 53:E2:E1:34:52:45:7D:F2:1E:F2:5C:BA:3B:26:10:D0:12:A9:06:D2 Certificate issuer: /CN=A91736BD/serialNumber=53E2E13452457DF21EF25CBA3B2610D012A906D2 Certificate serial: 0228 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-LhNFJFffIe8ly6OyYQ0BKpBtI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft Manifest number: 0224 Signing time: Mon 03 Nov 2025 02:01:23 +0000 Manifest this update: Mon 03 Nov 2025 02:01:23 +0000 Manifest next update: Mon 10 Nov 2025 02:01:23 +0000 Files and hashes: 1: U-LhNFJFffIe8ly6OyYQ0BKpBtI.crl (hash: 0x4JH8w/YyE9eoNJ00Yblmap2kV7Lmd7cZf9k/25kEs=) 2: EB8C9B546EE911ED8F07B022C4F9AE02.roa (hash: aHr48jg9C6XT7m5IpFV6+gOg/wu3/75OLv4ksFQsrBE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.crl rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-LhNFJFffIe8ly6OyYQ0BKpBtI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:01:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 552 (0x228) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91736BD, serialNumber=53E2E13452457DF21EF25CBA3B2610D012A906D2 Validity Not Before: Nov 3 02:01:23 2025 GMT Not After : Nov 10 02:01:23 2025 GMT Subject: CN=69080cf3-0b43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:52:63:15:36:ed:d5:7a:e0:92:f9:5b:6a:51: c0:8d:c9:43:f5:f7:21:68:0d:43:b6:4d:ff:2d:fd: 0d:b2:bc:2b:81:ec:2b:70:95:6f:70:9c:6a:69:c0: 26:ce:bf:8e:42:64:a3:ab:12:ee:34:91:c0:4f:55: b6:46:99:c3:3c:fd:7d:a5:39:56:29:9b:16:4b:19: 8e:b8:52:31:b9:74:b2:25:5e:c4:a4:bd:d3:0c:a7: a6:be:9c:15:02:96:09:aa:66:61:e2:30:fe:14:ee: 20:97:73:69:05:7b:17:6a:42:d1:8a:08:c3:a7:6c: 13:0f:75:fc:5d:ca:20:54:dc:ad:8d:56:97:b7:51: 59:b4:de:0b:1b:27:91:e2:b3:1a:88:b8:b0:8e:b9: 82:d7:d6:8e:66:61:23:60:35:dc:3a:e0:b6:01:3b: 50:5a:63:71:5f:ae:1d:21:aa:54:9c:c1:2b:d5:49: 36:5c:c4:f6:81:4f:ad:11:f5:2d:b0:f6:28:4a:eb: ad:cb:6f:8d:53:c0:46:9a:93:91:68:4f:c1:99:27: 34:18:d3:a9:8e:be:aa:53:bb:30:5c:b4:46:9f:3e: 2e:5c:74:63:ad:37:2b:1b:ee:ba:ac:25:6c:56:7a: f5:c5:7f:8e:d3:84:75:d5:2a:36:a7:53:84:8a:3a: ba:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:6D:6A:95:FF:F4:89:2F:6E:37:B4:DC:DE:19:E8:92:1B:7D:9C:ED X509v3 Authority Key Identifier: keyid:53:E2:E1:34:52:45:7D:F2:1E:F2:5C:BA:3B:26:10:D0:12:A9:06:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-LhNFJFffIe8ly6OyYQ0BKpBtI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:b6:c8:e3:95:27:62:35:8d:9a:aa:af:f3:77:43:49:a1:cc: cf:34:12:cb:79:52:92:8f:f1:0e:b6:18:1e:db:ff:29:73:b0: 64:21:5b:b6:9a:7e:54:44:1b:91:4f:0c:6b:39:50:d4:c2:63: d9:40:bc:a4:3f:b4:f3:25:32:c8:2b:87:88:4b:5a:e2:ed:16: e1:29:67:85:38:2a:41:9a:65:b6:f6:7a:3f:2c:5d:d7:9d:cb: 6e:54:3d:89:4e:6a:c3:0c:c5:71:04:ee:40:ae:5a:00:4a:48: 84:b6:d5:8e:16:37:4f:0f:7b:9b:61:da:74:c8:08:b0:a1:c2: 7d:81:80:38:87:7f:3f:26:b4:a5:ad:7b:9c:77:7d:11:d0:b4: 00:a6:63:a3:d5:ae:3c:87:20:3c:94:cd:9c:c4:74:ab:99:f6: 13:47:21:2b:2e:9b:f2:cc:eb:9c:71:37:5d:b4:7d:69:fe:60: 20:65:25:e8:3a:24:c3:af:51:ed:54:41:4d:15:23:b8:63:74: ad:be:38:26:b2:31:57:be:88:3e:41:b6:0c:3d:a1:b1:07:6a: 2f:3e:fb:0d:04:e3:97:80:cc:4d:fd:dc:cd:bf:70:d1:db:11: fd:12:e1:d7:da:a2:31:45:5c:63:92:9b:7f:94:d0:41:c8:52: ce:4a:66:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAigwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM2QkQxMTAvBgNVBAUTKDUzRTJFMTM0NTI0NTdERjIxRUYyNUNCQTNCMjYxMEQw MTJBOTA2RDIwHhcNMjUxMTAzMDIwMTIzWhcNMjUxMTEwMDIwMTIzWjAYMRYwFAYD VQQDEw02OTA4MGNmMy0wYjQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArlJjFTbt1XrgkvlbalHAjclD9fchaA1Dtk3/Lf0NsrwrgewrcJVvcJxqacAm zr+OQmSjqxLuNJHAT1W2RpnDPP19pTlWKZsWSxmOuFIxuXSyJV7EpL3TDKemvpwV ApYJqmZh4jD+FO4gl3NpBXsXakLRigjDp2wTD3X8XcogVNytjVaXt1FZtN4LGyeR 4rMaiLiwjrmC19aOZmEjYDXcOuC2ATtQWmNxX64dIapUnMEr1Uk2XMT2gU+tEfUt sPYoSuuty2+NU8BGmpORaE/BmSc0GNOpjr6qU7swXLRGnz4uXHRjrTcrG+66rCVs Vnr1xX+O04R11So2p1OEijq6BQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPptapX/ 9Ikvbje03N4Z6JIbfZztMB8GA1UdIwQYMBaAFFPi4TRSRX3yHvJcujsmENASqQbS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzZCRC8yMkM2MjFBODZF RTUxMUVEQjlDNDUzODVDNEY5QUUwMi9VLUxoTkZKRmZmSWU4bHk2T3lZUTBCS3BC dEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UtTGhORkpGZmZJZThseTZPeVlRMEJLcEJ0SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzZCRC8yMkM2MjFBODZFRTUxMUVEQjlDNDUzODVDNEY5QUUwMi9VLUxoTkZKRmZm SWU4bHk2T3lZUTBCS3BCdEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUtsjjlSdiNY2aqq/zd0NJoczPNBLLeVKSj/EOthge2/8pc7BkIVu2 mn5URBuRTwxrOVDUwmPZQLykP7TzJTLIK4eIS1ri7RbhKWeFOCpBmmW29no/LF3X nctuVD2JTmrDDMVxBO5ArloASkiEttWOFjdPD3ubYdp0yAiwocJ9gYA4h38/JrSl rXucd30R0LQApmOj1a48hyA8lM2cxHSrmfYTRyErLpvyzOuccTddtH1p/mAgZSXo OiTDr1HtVEFNFSO4Y3StvjgmsjFXvog+QbYMPaGxB2ovPvsNBOOXgMxN/dzNv3DR 2xH9EuHX2qIxRVxjkpt/lNBByFLOSmb3 -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:32 2025 by rpki-client