$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5BD4/08AD6D226DB811ED8833FA0DC4F9AE02/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.mft File: rUH7gn-TEEuJ-m-nhfIRUL5vl5o.mft (raw, json) Hash identifier: 44MIwXZ+WCJK5Zo6v77HXraUddPDo94X4zNJF9WYsKY= Subject key identifier: D9:86:16:54:F4:52:4D:7C:57:79:DE:11:96:B9:FA:D1:FE:5B:83:54 Authority key identifier: AD:41:FB:82:7F:93:10:4B:89:FA:6F:A7:85:F2:11:50:BE:6F:97:9A Certificate issuer: /CN=A91B5BD4/serialNumber=AD41FB827F93104B89FA6FA785F21150BE6F979A Certificate serial: 022B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5BD4/08AD6D226DB811ED8833FA0DC4F9AE02/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.mft Manifest number: 0226 Signing time: Mon 03 Nov 2025 02:00:36 +0000 Manifest this update: Mon 03 Nov 2025 02:00:35 +0000 Manifest next update: Mon 10 Nov 2025 02:00:35 +0000 Files and hashes: 1: rUH7gn-TEEuJ-m-nhfIRUL5vl5o.crl (hash: UucwV2MKmhU8F3RWpLyWNnkJ3qha9KNGYt2NMgiVGVw=) 2: C248DFA26DBB11EDB3635D28C4F9AE02.roa (hash: gQzK7hVZPrZ6aKsXhdiMNjPzCoQYQhoW/DlG0FlsTCE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5BD4/08AD6D226DB811ED8833FA0DC4F9AE02/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.crl rsync://rpki.apnic.net/member_repository/A91B5BD4/08AD6D226DB811ED8833FA0DC4F9AE02/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 555 (0x22b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5BD4, serialNumber=AD41FB827F93104B89FA6FA785F21150BE6F979A Validity Not Before: Nov 3 02:00:35 2025 GMT Not After : Nov 10 02:00:35 2025 GMT Subject: CN=69080cc4-b7a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:08:64:ff:30:a4:2b:13:b3:8f:90:e5:86:64: 69:8a:06:a3:ce:76:43:b1:71:e1:37:3d:a9:a9:2e: 84:45:d1:c5:72:66:73:6b:c1:63:28:10:9c:94:4a: d2:90:93:ef:d9:8f:b2:08:7f:10:23:23:9f:49:5d: 1b:5a:8e:c6:a1:7d:9c:cd:5f:e0:a1:d9:5b:6d:9b: 01:27:99:2d:fa:2e:f5:43:c2:e6:20:09:c7:65:29: b1:99:a6:88:4d:34:a1:9e:e6:d6:fd:b9:02:b3:75: 46:e8:97:37:87:45:c3:bb:65:22:41:cb:a4:56:82: 3f:22:1a:c4:51:6d:ad:ad:a9:c0:08:1b:5c:5b:24: 5b:f0:df:48:0e:a1:6c:3a:35:2c:47:76:17:97:4b: 5e:be:d8:d2:f5:f8:ed:a3:5e:d5:39:c7:db:9d:5b: 9e:08:ad:6e:cb:60:b4:27:36:8a:dd:a2:07:2d:7d: 7e:d3:a5:68:7d:a2:12:db:13:2d:88:ca:8c:ba:3c: ff:fc:83:be:41:9d:5d:0f:d1:ab:6f:7b:e6:f1:e7: a1:05:7a:cf:93:45:c1:bd:63:75:ee:27:a2:f4:e9: 3e:36:03:3a:b0:15:42:a8:75:ca:f5:5f:8a:56:1d: 9d:52:eb:a2:78:7f:22:0e:e6:21:8b:3d:f1:5c:4f: 1f:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:86:16:54:F4:52:4D:7C:57:79:DE:11:96:B9:FA:D1:FE:5B:83:54 X509v3 Authority Key Identifier: keyid:AD:41:FB:82:7F:93:10:4B:89:FA:6F:A7:85:F2:11:50:BE:6F:97:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5BD4/08AD6D226DB811ED8833FA0DC4F9AE02/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5BD4/08AD6D226DB811ED8833FA0DC4F9AE02/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:58:92:02:cc:42:83:d2:e3:16:78:6b:53:41:81:53:43:d3: 3e:d8:df:8f:e1:c2:0d:d8:9a:6f:4e:19:c4:00:b3:6b:b6:0c: 34:25:83:58:56:56:7d:9c:4c:8d:66:59:c0:60:da:19:61:a1: ea:76:bc:87:67:1d:28:1c:87:36:e9:a0:b6:e4:bf:59:4e:3c: 19:36:97:41:22:5d:12:a0:ab:4a:62:9f:c3:8d:42:04:0b:6e: 1d:17:4f:7c:ef:a5:0d:60:46:c4:e0:c6:90:5a:38:d1:fd:ee: 34:93:20:23:f6:1b:db:e3:42:a1:0e:75:03:7c:2c:58:f6:7d: de:4f:47:d4:93:91:aa:a8:42:8c:45:bd:b6:45:5c:b8:87:bd: c1:c7:1d:29:11:b1:89:a0:72:96:5b:64:4c:d3:51:dc:48:c5: f5:33:09:54:6f:d1:2f:82:72:0e:98:a8:a8:1d:37:df:ac:3b: f2:1a:82:ea:76:c6:68:7c:d4:e8:e1:31:e1:45:1d:8a:83:cb: 25:98:b1:da:d9:64:90:b4:86:35:9d:b6:1d:7f:61:2f:36:b2: 4a:00:84:2d:c1:33:46:33:1a:b3:24:bb:c7:af:38:aa:17:bd: a9:c4:6c:a8:5d:63:66:16:ac:49:ce:b0:1c:da:8c:26:85:1b: 9d:91:73:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVCRDQxMTAvBgNVBAUTKEFENDFGQjgyN0Y5MzEwNEI4OUZBNkZBNzg1RjIxMTUw QkU2Rjk3OUEwHhcNMjUxMTAzMDIwMDM1WhcNMjUxMTEwMDIwMDM1WjAYMRYwFAYD VQQDEw02OTA4MGNjNC1iN2E4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2whk/zCkKxOzj5DlhmRpigajznZDsXHhNz2pqS6ERdHFcmZza8FjKBCclErS kJPv2Y+yCH8QIyOfSV0bWo7GoX2czV/godlbbZsBJ5kt+i71Q8LmIAnHZSmxmaaI TTShnubW/bkCs3VG6Jc3h0XDu2UiQcukVoI/IhrEUW2tranACBtcWyRb8N9IDqFs OjUsR3YXl0tevtjS9fjto17VOcfbnVueCK1uy2C0JzaK3aIHLX1+06VofaIS2xMt iMqMujz//IO+QZ1dD9Grb3vm8eehBXrPk0XBvWN17iei9Ok+NgM6sBVCqHXK9V+K Vh2dUuuieH8iDuYhiz3xXE8fXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNmGFlT0 Uk18V3neEZa5+tH+W4NUMB8GA1UdIwQYMBaAFK1B+4J/kxBLifpvp4XyEVC+b5ea MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUJENC8wOEFENkQyMjZE QjgxMUVEODgzM0ZBMERDNEY5QUUwMi9yVUg3Z24tVEVFdUotbS1uaGZJUlVMNXZs NW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JVSDdnbi1URUV1Si1tLW5oZklSVUw1dmw1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUJENC8wOEFENkQyMjZEQjgxMUVEODgzM0ZBMERDNEY5QUUwMi9yVUg3Z24tVEVF dUotbS1uaGZJUlVMNXZsNW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXWJICzEKD0uMWeGtTQYFTQ9M+2N+P4cIN2JpvThnEALNrtgw0JYNY VlZ9nEyNZlnAYNoZYaHqdryHZx0oHIc26aC25L9ZTjwZNpdBIl0SoKtKYp/DjUIE C24dF09876UNYEbE4MaQWjjR/e40kyAj9hvb40KhDnUDfCxY9n3eT0fUk5GqqEKM Rb22RVy4h73Bxx0pEbGJoHKWW2RM01HcSMX1MwlUb9EvgnIOmKioHTffrDvyGoLq dsZofNTo4THhRR2Kg8slmLHa2WSQtIY1nbYdf2EvNrJKAIQtwTNGMxqzJLvHrziq F72pxGyoXWNmFqxJzrAc2owmhRudkXON -----END CERTIFICATE-----Generated at Tue Nov 4 08:28:07 2025 by rpki-client