$ rpki-client -vvf rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft File: U73ibYJfZ3-axChvmmdmH1xJtWk.mft (raw, json) Hash identifier: RbDY317v4WBHgDfDxhfHUTDnfzOnIKMiCxn8PlXhkww= Subject key identifier: 1A:80:B5:A7:86:B5:E1:7B:4D:FF:78:66:EF:77:61:1E:08:D8:BA:03 Authority key identifier: 53:BD:E2:6D:82:5F:67:7F:9A:C4:28:6F:9A:67:66:1F:5C:49:B5:69 Certificate issuer: /CN=A919E1AE/serialNumber=53BDE26D825F677F9AC4286F9A67661F5C49B569 Certificate serial: 097E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U73ibYJfZ3-axChvmmdmH1xJtWk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft Manifest number: 0956 Signing time: Sun 02 Nov 2025 20:13:05 +0000 Manifest this update: Sun 02 Nov 2025 20:13:05 +0000 Manifest next update: Sun 09 Nov 2025 20:13:05 +0000 Files and hashes: 1: U73ibYJfZ3-axChvmmdmH1xJtWk.crl (hash: RpkCDTwAy7AqTrNKKKvEsmuAR6hfvrHcY1rQNJR8o6U=) 2: C8DC6BD8EBF311EEAD0C015FC4F9AE02.roa (hash: KVB3EN6tICNkhnYw0xKL9CwQn9qOYhPXhmG08EEY8D8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.crl rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U73ibYJfZ3-axChvmmdmH1xJtWk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 20:13:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2430 (0x97e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E1AE, serialNumber=53BDE26D825F677F9AC4286F9A67661F5C49B569 Validity Not Before: Nov 2 20:13:05 2025 GMT Not After : Nov 9 20:13:05 2025 GMT Subject: CN=6907bb51-c9ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:d2:d2:89:7c:9b:05:5a:80:a3:87:84:cc:ca: b5:e9:76:e2:6a:6c:ab:6f:33:c4:49:c7:e5:64:93: 04:9a:6e:56:a6:04:5d:c3:95:97:75:31:7f:80:14: bc:43:9d:d2:d5:fb:3c:ce:1e:d9:c0:ac:fa:fd:b7: a0:57:5a:b4:56:00:2f:9d:76:51:e3:f1:00:e4:d2: fe:e0:28:52:56:4b:8c:71:dc:3f:11:cf:20:f2:dc: 17:f1:c1:3a:cc:1f:29:48:29:12:f7:0e:7a:41:76: 1b:20:91:3d:a0:86:61:87:ae:8f:a6:11:51:f6:e7: 86:fc:16:04:f5:82:ea:05:a1:85:69:8f:0a:bb:3b: 78:e9:5a:a9:d9:73:89:a8:01:09:78:44:f2:2b:c0: 82:7a:47:87:81:48:ff:1a:4e:a4:db:06:ac:60:7d: 57:3a:f2:13:d9:0a:c7:a0:30:d1:db:d6:dc:4b:88: ff:79:cc:16:9f:a0:af:f6:ab:37:ca:e4:9c:7b:6e: 35:52:60:a0:b4:24:87:7a:b5:e0:85:f1:5c:b9:84: 88:1e:03:c8:5d:08:49:61:e0:c6:f0:8f:88:3c:6f: 16:99:df:ed:69:bc:50:3d:9f:37:ca:ab:28:f6:e2: df:f8:d5:70:5f:e0:61:e7:64:d2:e1:08:28:72:57: aa:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:80:B5:A7:86:B5:E1:7B:4D:FF:78:66:EF:77:61:1E:08:D8:BA:03 X509v3 Authority Key Identifier: keyid:53:BD:E2:6D:82:5F:67:7F:9A:C4:28:6F:9A:67:66:1F:5C:49:B5:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U73ibYJfZ3-axChvmmdmH1xJtWk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d9:85:0a:c4:17:9a:87:20:01:9c:2b:73:c5:44:87:ac:58:1b: b9:0e:30:bf:fc:e4:7f:31:b3:2b:c7:c9:cb:06:8c:1e:cb:21: 22:fe:29:51:bf:3d:96:d8:0e:20:17:e2:ba:4c:cd:f4:26:0e: 44:3c:b0:ae:0f:75:b8:02:27:69:5d:96:5b:f9:4b:f4:53:51: 5c:13:9d:a0:e3:fe:78:20:25:70:5b:ea:76:fb:8c:9d:4a:b9: ed:b2:53:fb:8f:8a:b4:1e:c0:c0:6b:03:b2:b2:4f:da:46:77: 54:03:3d:bf:6c:85:ed:df:48:3c:0c:d6:40:16:7f:bb:06:cd: 94:b1:4f:7d:12:42:ea:af:eb:4e:cb:92:eb:76:b9:f2:9a:02: a5:37:e3:b9:62:2d:54:85:21:38:2f:93:32:6c:9d:60:0c:9f: 26:38:4b:b8:94:a0:35:48:d2:b5:2f:8c:d5:da:4c:66:77:19: 5a:b4:6f:e0:4e:7f:71:23:90:f9:ac:43:a7:11:6b:22:fe:4e: 56:bb:13:43:65:ce:0b:22:6a:4e:41:8c:d7:5e:03:0b:0d:ab: a1:22:8b:7f:5d:0c:f9:cc:bd:8f:62:95:ab:a6:16:77:ce:71: 6c:49:74:d9:ff:40:c8:1a:a5:fb:ba:82:18:a3:44:86:82:46: e5:eb:29:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCX4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUUxQUUxMTAvBgNVBAUTKDUzQkRFMjZEODI1RjY3N0Y5QUM0Mjg2RjlBNjc2NjFG NUM0OUI1NjkwHhcNMjUxMTAyMjAxMzA1WhcNMjUxMTA5MjAxMzA1WjAYMRYwFAYD VQQDEw02OTA3YmI1MS1jOWVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0dLSiXybBVqAo4eEzMq16XbiamyrbzPEScflZJMEmm5WpgRdw5WXdTF/gBS8 Q53S1fs8zh7ZwKz6/begV1q0VgAvnXZR4/EA5NL+4ChSVkuMcdw/Ec8g8twX8cE6 zB8pSCkS9w56QXYbIJE9oIZhh66PphFR9ueG/BYE9YLqBaGFaY8Kuzt46Vqp2XOJ qAEJeETyK8CCekeHgUj/Gk6k2wasYH1XOvIT2QrHoDDR29bcS4j/ecwWn6Cv9qs3 yuSce241UmCgtCSHerXghfFcuYSIHgPIXQhJYeDG8I+IPG8Wmd/tabxQPZ83yqso 9uLf+NVwX+Bh52TS4QgocleqJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBqAtaeG teF7Tf94Zu93YR4I2LoDMB8GA1UdIwQYMBaAFFO94m2CX2d/msQob5pnZh9cSbVp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RTFBRS9CNDBCQjFCOEIx MkUxMUVBOUE5NUI1NkFDNEY5QUUwMi9VNzNpYllKZlozLWF4Q2h2bW1kbUgxeEp0 V2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U3M2liWUpmWjMtYXhDaHZtbWRtSDF4SnRXay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RTFBRS9CNDBCQjFCOEIxMkUxMUVBOUE5NUI1NkFDNEY5QUUwMi9VNzNpYllKZloz LWF4Q2h2bW1kbUgxeEp0V2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDZhQrEF5qHIAGcK3PFRIesWBu5DjC//OR/MbMrx8nLBoweyyEi/ilR vz2W2A4gF+K6TM30Jg5EPLCuD3W4AidpXZZb+Uv0U1FcE52g4/54ICVwW+p2+4yd SrntslP7j4q0HsDAawOysk/aRndUAz2/bIXt30g8DNZAFn+7Bs2UsU99EkLqr+tO y5LrdrnymgKlN+O5Yi1UhSE4L5MybJ1gDJ8mOEu4lKA1SNK1L4zV2kxmdxlatG/g Tn9xI5D5rEOnEWsi/k5WuxNDZc4LImpOQYzXXgMLDauhIot/XQz5zL2PYpWrphZ3 znFsSXTZ/0DIGqX7uoIYo0SGgkbl6ylh -----END CERTIFICATE-----Generated at Mon Nov 3 18:19:31 2025 by rpki-client