$ rpki-client -vvf rpki.apnic.net/member_repository/A919014C/154FAC2C547E11EE8E710074C4F9AE02/UnWd41wCZ5226TLqiGidwQ1czK4.mft File: UnWd41wCZ5226TLqiGidwQ1czK4.mft (raw, json) Hash identifier: H/APTSKcxp5UPrpcrATLQuy5ds17WSYy5ySI+0iUTIk= Subject key identifier: D6:7A:6F:C0:3E:6B:51:FF:A9:ED:CF:35:84:D8:D9:5B:27:AB:F1:74 Authority key identifier: 52:75:9D:E3:5C:02:67:9D:B6:E9:32:EA:88:68:9D:C1:0D:5C:CC:AE Certificate issuer: /CN=A919014C/serialNumber=52759DE35C02679DB6E932EA88689DC10D5CCCAE Certificate serial: 0196 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UnWd41wCZ5226TLqiGidwQ1czK4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919014C/154FAC2C547E11EE8E710074C4F9AE02/UnWd41wCZ5226TLqiGidwQ1czK4.mft Manifest number: 0192 Signing time: Wed 05 Nov 2025 03:48:12 +0000 Manifest this update: Wed 05 Nov 2025 03:48:12 +0000 Manifest next update: Wed 12 Nov 2025 03:48:12 +0000 Files and hashes: 1: UnWd41wCZ5226TLqiGidwQ1czK4.crl (hash: x/EdmFK1OKRMA9qSyFZi7xvcQ7T3KvEP0iqCAh2+GbI=) 2: 503DC7FA547F11EE9512EE75C4F9AE02.roa (hash: prpO02sdaGxa9omiI4KP6Jj37m9PViRORA2hf2czA64=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919014C/154FAC2C547E11EE8E710074C4F9AE02/UnWd41wCZ5226TLqiGidwQ1czK4.crl rsync://rpki.apnic.net/member_repository/A919014C/154FAC2C547E11EE8E710074C4F9AE02/UnWd41wCZ5226TLqiGidwQ1czK4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UnWd41wCZ5226TLqiGidwQ1czK4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:48:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 406 (0x196) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919014C, serialNumber=52759DE35C02679DB6E932EA88689DC10D5CCCAE Validity Not Before: Nov 5 03:48:12 2025 GMT Not After : Nov 12 03:48:12 2025 GMT Subject: CN=690ac8fc-83a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:a9:33:db:0a:06:4c:ac:09:16:3d:18:3b:10: ec:41:44:d4:4e:7b:67:52:2e:d6:e3:a1:13:28:c8: 73:1f:49:a8:f9:9c:a1:30:2d:c6:9f:64:eb:95:08: c1:00:d9:97:bd:df:bf:64:21:a7:ab:e2:7f:4a:62: 45:5e:74:87:c7:a0:7c:63:c2:d5:82:c1:f5:17:8a: df:f5:ba:90:42:b4:17:52:f2:9d:e1:5b:be:d6:32: 81:99:30:13:37:94:6a:3b:51:99:36:64:66:b5:c5: 9c:0a:1f:b0:b5:2d:1c:81:92:15:c1:12:b2:aa:2a: 8e:af:b2:25:90:50:e6:b9:ce:3b:25:c9:91:45:72: 89:c3:6d:b7:75:3c:d3:85:4b:f5:ae:be:9d:54:9c: 43:5f:7e:f5:2c:79:21:78:6a:cb:27:39:7e:37:a2: 13:74:6e:a9:a9:21:8e:9a:2f:b2:c0:42:1a:16:3f: 04:52:55:c4:b9:bb:9a:75:71:75:a5:c4:f9:ef:e2: 64:1f:67:97:45:22:d3:fa:97:11:59:a2:b9:a7:16: 78:21:41:41:80:bf:99:c8:a3:6f:66:d0:67:37:bd: 4e:30:f7:b2:6e:bc:a0:ab:51:3e:3c:3b:16:19:52: 40:66:3b:bd:5f:a6:f3:e6:12:79:63:fb:12:75:ed: f2:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:7A:6F:C0:3E:6B:51:FF:A9:ED:CF:35:84:D8:D9:5B:27:AB:F1:74 X509v3 Authority Key Identifier: keyid:52:75:9D:E3:5C:02:67:9D:B6:E9:32:EA:88:68:9D:C1:0D:5C:CC:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919014C/154FAC2C547E11EE8E710074C4F9AE02/UnWd41wCZ5226TLqiGidwQ1czK4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UnWd41wCZ5226TLqiGidwQ1czK4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919014C/154FAC2C547E11EE8E710074C4F9AE02/UnWd41wCZ5226TLqiGidwQ1czK4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:c7:43:84:b1:c1:f9:e5:4e:da:94:1a:60:aa:10:1b:03:bd: 03:a2:d6:7d:53:20:36:ec:5f:7d:bb:5d:e6:2b:28:f3:e8:19: fd:af:7b:4d:7b:f8:55:03:c1:b0:62:e7:89:bd:f7:c4:90:78: 1f:ee:be:28:ee:90:5f:89:61:55:15:a8:b1:0d:a5:72:0d:43: c9:86:7d:99:3a:5c:55:fb:20:6d:49:98:40:81:d8:8e:06:75: f0:c3:cb:3a:cb:cb:63:00:ca:bb:c4:9a:87:a8:9c:29:53:fe: cc:57:22:d9:94:fd:48:26:fc:bb:49:a5:60:56:08:0b:1d:4d: 71:5f:fe:50:a0:ed:9e:86:32:15:8d:7b:38:f0:ac:67:d4:6a: 27:51:3c:8f:fc:98:19:32:6e:27:ab:b0:d0:1e:7d:3c:92:df: 84:ce:20:57:1e:46:3d:32:8f:8a:95:c6:eb:9c:97:a2:b2:26: 3e:c2:bd:4b:e9:69:94:03:a0:61:f7:f5:c5:ef:bc:be:08:5c: c1:8e:36:51:0e:5e:d8:cb:64:a7:ef:f2:dc:24:90:90:ea:a9: 07:0e:56:95:06:b0:42:1c:98:b9:45:09:91:52:6d:16:67:1a: cf:9b:23:f7:93:db:45:45:54:76:1c:ca:08:2e:81:e4:a1:6d: 01:2d:e8:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTAxNEMxMTAvBgNVBAUTKDUyNzU5REUzNUMwMjY3OURCNkU5MzJFQTg4Njg5REMx MEQ1Q0NDQUUwHhcNMjUxMTA1MDM0ODEyWhcNMjUxMTEyMDM0ODEyWjAYMRYwFAYD VQQDEw02OTBhYzhmYy04M2EwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzqkz2woGTKwJFj0YOxDsQUTUTntnUi7W46ETKMhzH0mo+ZyhMC3Gn2TrlQjB ANmXvd+/ZCGnq+J/SmJFXnSHx6B8Y8LVgsH1F4rf9bqQQrQXUvKd4Vu+1jKBmTAT N5RqO1GZNmRmtcWcCh+wtS0cgZIVwRKyqiqOr7IlkFDmuc47JcmRRXKJw223dTzT hUv1rr6dVJxDX371LHkheGrLJzl+N6ITdG6pqSGOmi+ywEIaFj8EUlXEubuadXF1 pcT57+JkH2eXRSLT+pcRWaK5pxZ4IUFBgL+ZyKNvZtBnN71OMPeybrygq1E+PDsW GVJAZju9X6bz5hJ5Y/sSde3yNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNZ6b8A+ a1H/qe3PNYTY2Vsnq/F0MB8GA1UdIwQYMBaAFFJ1neNcAmedtuky6ohoncENXMyu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MDE0Qy8xNTRGQUMyQzU0 N0UxMUVFOEU3MTAwNzRDNEY5QUUwMi9VbldkNDF3Q1o1MjI2VExxaUdpZHdRMWN6 SzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VuV2Q0MXdDWjUyMjZUTHFpR2lkd1ExY3pLNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MDE0Qy8xNTRGQUMyQzU0N0UxMUVFOEU3MTAwNzRDNEY5QUUwMi9VbldkNDF3Q1o1 MjI2VExxaUdpZHdRMWN6SzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnx0OEscH55U7alBpgqhAbA70DotZ9UyA27F99u13mKyjz6Bn9r3tN e/hVA8GwYueJvffEkHgf7r4o7pBfiWFVFaixDaVyDUPJhn2ZOlxV+yBtSZhAgdiO BnXww8s6y8tjAMq7xJqHqJwpU/7MVyLZlP1IJvy7SaVgVggLHU1xX/5QoO2ehjIV jXs48Kxn1GonUTyP/JgZMm4nq7DQHn08kt+EziBXHkY9Mo+KlcbrnJeisiY+wr1L 6WmUA6Bh9/XF77y+CFzBjjZRDl7Yy2Sn7/LcJJCQ6qkHDlaVBrBCHJi5RQmRUm0W ZxrPmyP3k9tFRVR2HMoILoHkoW0BLeif -----END CERTIFICATE-----Generated at Wed Nov 5 19:34:02 2025 by rpki-client