$ rpki-client -vvf rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.mft File: UT8gd9itkRrHe1tcWbPiFMeLAjs.mft (raw, json) Hash identifier: LpAbmlSRT2VpKw4zN2kLUtfnsHnoDHcwqpDOE89/wbw= Subject key identifier: 1C:D9:D5:E6:E2:B5:02:34:CC:8D:F0:C4:70:1A:C7:47:4A:49:B9:85 Authority key identifier: 51:3F:20:77:D8:AD:91:1A:C7:7B:5B:5C:59:B3:E2:14:C7:8B:02:3B Certificate issuer: /CN=A917E1B9/serialNumber=513F2077D8AD911AC77B5B5C59B3E214C78B023B Certificate serial: 0606 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UT8gd9itkRrHe1tcWbPiFMeLAjs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.mft Manifest number: 0600 Signing time: Sun 02 Nov 2025 22:53:53 +0000 Manifest this update: Sun 02 Nov 2025 22:53:52 +0000 Manifest next update: Sun 09 Nov 2025 22:53:52 +0000 Files and hashes: 1: UT8gd9itkRrHe1tcWbPiFMeLAjs.crl (hash: yb1q3/k5gvW1zpcwYabfl/lD57oOIDXRwiQHvoupaWg=) 2: 7F27A9D6C88211EBB7A6F948C4F9AE02.roa (hash: mwVl4hNEaIqbBNWJudlbCJK/THwSQhv97GiC3rtYAeU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.crl rsync://rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UT8gd9itkRrHe1tcWbPiFMeLAjs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 22:53:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1542 (0x606) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E1B9, serialNumber=513F2077D8AD911AC77B5B5C59B3E214C78B023B Validity Not Before: Nov 2 22:53:52 2025 GMT Not After : Nov 9 22:53:52 2025 GMT Subject: CN=6907e100-4ad6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:90:ba:9d:49:e2:95:74:1e:ad:20:85:14:c0: c5:10:a3:3e:02:f4:ab:e6:89:5b:c4:7e:3e:ea:f5: 9c:10:b0:87:d6:6d:5b:a9:65:5d:a0:ae:62:ac:ff: 98:94:12:db:f7:34:e5:64:3f:3c:44:f6:88:f1:f4: 17:30:5e:2a:24:6f:d5:1a:cb:1e:e0:fd:e4:90:4c: 2d:e7:46:19:59:c0:58:72:20:d3:6d:f2:c1:e1:c9: 88:0e:34:86:c6:42:c0:09:94:90:95:45:fa:bc:b6: 4b:83:25:9d:7e:aa:d2:0b:47:17:4c:4e:bf:6f:80: 1a:50:71:14:4f:2a:44:bf:fd:f8:17:6c:94:49:eb: f4:23:62:45:6d:04:fb:2f:4c:1d:1e:fb:e3:9f:77: 17:f7:d4:d8:18:e7:f8:14:e0:f6:45:4d:8d:93:93: f2:23:19:d8:23:35:9d:83:69:c9:ec:80:b8:34:bf: a1:3d:30:c5:b4:9d:a1:c9:63:29:60:d6:f8:73:91: 5d:ad:d9:00:a6:c1:43:b8:5d:f5:7a:e7:35:27:a9: a3:22:1d:55:6f:67:e1:0e:d3:9a:d7:75:b8:60:19: 92:5e:d4:07:08:9b:c5:f3:bd:a6:aa:d9:95:a9:cd: 80:e5:b7:17:12:d1:a7:98:40:51:86:81:20:7f:dc: 62:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:D9:D5:E6:E2:B5:02:34:CC:8D:F0:C4:70:1A:C7:47:4A:49:B9:85 X509v3 Authority Key Identifier: keyid:51:3F:20:77:D8:AD:91:1A:C7:7B:5B:5C:59:B3:E2:14:C7:8B:02:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UT8gd9itkRrHe1tcWbPiFMeLAjs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:29:40:d6:65:ce:d4:ad:03:7c:09:77:26:cc:6a:43:1d:5f: 8b:c9:c1:4a:3f:96:09:0a:ad:68:02:dc:5b:46:d8:bf:af:87: 65:70:7d:7d:05:86:24:c7:fe:f7:46:e3:4a:e9:86:a9:8e:a0: ca:37:d5:fa:7b:38:4f:07:05:04:bf:c5:89:d0:8d:54:19:9d: 6f:ee:d8:1a:a1:4a:04:f4:b2:41:c8:d9:3f:24:54:0b:d8:dc: 08:ec:29:14:d7:db:22:7e:33:de:aa:e8:26:3e:63:a7:33:c6: 91:4e:61:4a:c4:d8:6d:40:dc:cc:77:f6:80:28:0b:e5:32:03: b4:af:78:ee:ed:85:49:30:86:8b:d6:2e:1b:7f:f7:75:d4:0c: a2:1f:2e:d2:ec:33:86:bd:74:d1:fd:cb:e5:33:40:64:9b:08: d6:9a:14:78:e5:f0:4a:e5:65:3b:eb:d8:47:66:fc:81:e9:73: f9:48:57:d8:ed:d6:f2:5e:2d:fe:78:2d:a4:bb:50:d8:4b:a2: 48:53:46:a9:0d:22:ea:d7:45:c3:dd:63:5e:f8:dc:e4:92:99: 3e:20:f9:b0:66:29:17:02:91:ec:b8:6e:6d:af:cf:11:e0:1a: 50:99:6a:81:60:34:23:fe:67:80:61:d7:5b:f8:f0:af:70:db: 24:94:5c:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBgYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UxQjkxMTAvBgNVBAUTKDUxM0YyMDc3RDhBRDkxMUFDNzdCNUI1QzU5QjNFMjE0 Qzc4QjAyM0IwHhcNMjUxMTAyMjI1MzUyWhcNMjUxMTA5MjI1MzUyWjAYMRYwFAYD VQQDEw02OTA3ZTEwMC00YWQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAypC6nUnilXQerSCFFMDFEKM+AvSr5olbxH4+6vWcELCH1m1bqWVdoK5irP+Y lBLb9zTlZD88RPaI8fQXMF4qJG/VGsse4P3kkEwt50YZWcBYciDTbfLB4cmIDjSG xkLACZSQlUX6vLZLgyWdfqrSC0cXTE6/b4AaUHEUTypEv/34F2yUSev0I2JFbQT7 L0wdHvvjn3cX99TYGOf4FOD2RU2Nk5PyIxnYIzWdg2nJ7IC4NL+hPTDFtJ2hyWMp YNb4c5FdrdkApsFDuF31euc1J6mjIh1Vb2fhDtOa13W4YBmSXtQHCJvF872mqtmV qc2A5bcXEtGnmEBRhoEgf9xiuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBzZ1ebi tQI0zI3wxHAax0dKSbmFMB8GA1UdIwQYMBaAFFE/IHfYrZEax3tbXFmz4hTHiwI7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTFCOS9DREI3MDJGNkM4 N0IxMUVCQUZBNjk1M0JDNEY5QUUwMi9VVDhnZDlpdGtSckhlMXRjV2JQaUZNZUxB anMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VUOGdkOWl0a1JySGUxdGNXYlBpRk1lTEFqcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTFCOS9DREI3MDJGNkM4N0IxMUVCQUZBNjk1M0JDNEY5QUUwMi9VVDhnZDlpdGtS ckhlMXRjV2JQaUZNZUxBanMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVKUDWZc7UrQN8CXcmzGpDHV+LycFKP5YJCq1oAtxbRti/r4dlcH19 BYYkx/73RuNK6YapjqDKN9X6ezhPBwUEv8WJ0I1UGZ1v7tgaoUoE9LJByNk/JFQL 2NwI7CkU19sifjPequgmPmOnM8aRTmFKxNhtQNzMd/aAKAvlMgO0r3ju7YVJMIaL 1i4bf/d11AyiHy7S7DOGvXTR/cvlM0BkmwjWmhR45fBK5WU769hHZvyB6XP5SFfY 7dbyXi3+eC2ku1DYS6JIU0apDSLq10XD3WNe+Nzkkpk+IPmwZikXApHsuG5tr88R 4BpQmWqBYDQj/meAYddb+PCvcNsklFzk -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:16 2025 by rpki-client