$ rpki-client -vvf rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft File: U5TlfShXd_11FCjRXLD7L8WSx6Y.mft (raw, json) Hash identifier: ee3RUa5xrtrckLiFG0VGtWkHtJh7glsLTwRe3Lcv9Sc= Subject key identifier: 44:9B:0B:D1:78:FA:F1:77:C7:32:8F:6B:7B:21:84:A8:22:6F:94:23 Authority key identifier: 53:94:E5:7D:28:57:77:FD:75:14:28:D1:5C:B0:FB:2F:C5:92:C7:A6 Certificate issuer: /CN=A91C17A9/serialNumber=5394E57D285777FD751428D15CB0FB2FC592C7A6 Certificate serial: 0596 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft Manifest number: 0580 Signing time: Thu 23 Oct 2025 00:22:45 +0000 Manifest this update: Thu 23 Oct 2025 00:22:44 +0000 Manifest next update: Thu 30 Oct 2025 00:22:44 +0000 Files and hashes: 1: U5TlfShXd_11FCjRXLD7L8WSx6Y.crl (hash: QH/gX7+Ad9DNquUxoQ1Z2FmXoMFbExqf/9ry90ruCjU=) 2: E19B6AD6D5BE11ECA8BE4666C4F9AE02.roa (hash: k5X4by3Br8W/PYfkmb4iRMPeho37AmOnY5X1wBHf0bs=) 3: C2CAC16E5C9D11EC99F7D10BC4F9AE02.roa (hash: 0dj9Leao2hIOrNuzQzhTyOKvRe7wijLNctX+F2sNN6Y=) 4: C25659465C9D11EC99F7D10BC4F9AE02.roa (hash: gBnTTYjyqczZgDb3uD73c44S0Waa5svUhRxTsEIxWDk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.crl rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 00:22:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1430 (0x596) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C17A9, serialNumber=5394E57D285777FD751428D15CB0FB2FC592C7A6 Validity Not Before: Oct 23 00:22:44 2025 GMT Not After : Oct 30 00:22:44 2025 GMT Subject: CN=68f97554-5526 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:52:84:40:d5:88:72:f1:a0:28:c2:4c:75:16: 47:a2:3e:af:d8:70:79:f9:58:38:0d:22:08:30:4a: 87:26:cc:80:5f:a4:87:ea:3e:71:1f:12:17:c0:e4: 24:e4:ec:a1:6f:4e:ed:a2:4f:df:8e:b0:50:fc:de: 5e:92:75:dc:1e:7b:0a:eb:7b:3e:58:56:c2:70:e0: 9d:53:f6:48:aa:79:ac:54:d8:5e:af:6d:2f:e0:c9: aa:bc:cb:da:d4:8f:f1:86:a8:81:61:15:b0:91:f0: b5:fc:b9:d3:7f:52:13:1d:91:ea:aa:db:84:7b:f1: ed:45:27:b7:1a:46:43:82:47:67:e9:55:3f:44:66: e2:c8:60:15:d8:d7:4b:e1:51:10:f7:19:e5:24:23: 55:95:4f:cc:db:11:74:22:af:dd:ed:4f:d7:fb:83: 65:35:6e:85:d1:7b:4f:00:fd:f7:8a:f7:9c:fa:26: d5:19:f9:a4:9a:89:b3:40:c4:f2:e9:fa:f4:64:62: bd:5e:14:31:09:26:33:49:b7:39:03:28:45:02:d2: 97:15:b7:d9:45:3f:23:d8:01:c6:5b:90:c8:b8:85: b2:87:5b:f1:66:bf:da:54:ae:15:6d:fd:fd:c6:98: b1:f4:5d:e6:7b:8e:93:05:7c:85:01:a8:44:40:35: 2f:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:9B:0B:D1:78:FA:F1:77:C7:32:8F:6B:7B:21:84:A8:22:6F:94:23 X509v3 Authority Key Identifier: keyid:53:94:E5:7D:28:57:77:FD:75:14:28:D1:5C:B0:FB:2F:C5:92:C7:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:cf:2b:b8:21:de:b3:a4:86:02:7c:2e:72:3a:32:2f:51:db: 52:74:88:1a:dc:48:f2:34:9b:ca:a3:0f:90:b9:c9:7a:a4:b2: 54:50:90:3e:7e:40:4d:72:60:9f:64:65:30:d0:b7:98:ac:24: a9:c7:2d:76:60:bb:66:e1:9b:51:10:96:c0:e2:cd:57:1a:c0: 4a:5f:68:b4:ac:73:65:d4:e3:4d:96:37:1d:7b:50:b1:89:6c: c3:16:31:66:98:90:7b:fc:06:6b:f2:28:00:fd:05:a1:43:1c: 69:50:fb:11:92:2a:99:10:c0:2d:88:17:9f:93:c6:84:a0:7d: b9:a2:4e:00:1d:62:e2:5e:9c:b7:b3:76:fa:f1:97:e6:c4:20: d2:26:75:cf:9b:72:f8:af:4d:f7:12:aa:e7:e3:2d:16:72:87: 65:55:09:27:32:aa:c2:9c:b1:b5:bf:4c:0b:1d:3f:31:d7:e2: 81:fb:84:74:3e:42:5c:f4:85:0b:9f:39:79:f9:7f:da:25:a4: 3d:62:6c:4d:b6:65:fb:4f:b2:2e:c9:72:fc:d2:04:0f:cb:c7: e8:c2:0d:94:a1:f5:c8:bd:27:a9:c6:66:b5:09:a1:65:46:e0: 55:5e:28:3e:f2:d4:16:b6:c7:bf:f4:b4:27:02:d6:75:12:97: c2:64:bc:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE3QTkxMTAvBgNVBAUTKDUzOTRFNTdEMjg1Nzc3RkQ3NTE0MjhEMTVDQjBGQjJG QzU5MkM3QTYwHhcNMjUxMDIzMDAyMjQ0WhcNMjUxMDMwMDAyMjQ0WjAYMRYwFAYD VQQDEw02OGY5NzU1NC01NTI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA51KEQNWIcvGgKMJMdRZHoj6v2HB5+Vg4DSIIMEqHJsyAX6SH6j5xHxIXwOQk 5Oyhb07tok/fjrBQ/N5eknXcHnsK63s+WFbCcOCdU/ZIqnmsVNher20v4MmqvMva 1I/xhqiBYRWwkfC1/LnTf1ITHZHqqtuEe/HtRSe3GkZDgkdn6VU/RGbiyGAV2NdL 4VEQ9xnlJCNVlU/M2xF0Iq/d7U/X+4NlNW6F0XtPAP33ivec+ibVGfmkmomzQMTy 6fr0ZGK9XhQxCSYzSbc5AyhFAtKXFbfZRT8j2AHGW5DIuIWyh1vxZr/aVK4Vbf39 xpix9F3me46TBXyFAahEQDUvrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFESbC9F4 +vF3xzKPa3shhKgib5QjMB8GA1UdIwQYMBaAFFOU5X0oV3f9dRQo0Vyw+y/Fksem MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTdBOS81Rjg5RjZFQ0ZC MzExMUVCOEZCRkE1NTlDNEY5QUUwMi9VNVRsZlNoWGRfMTFGQ2pSWExEN0w4V1N4 NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U1VGxmU2hYZF8xMUZDalJYTEQ3TDhXU3g2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTdBOS81Rjg5RjZFQ0ZCMzExMUVCOEZCRkE1NTlDNEY5QUUwMi9VNVRsZlNoWGRf MTFGQ2pSWExEN0w4V1N4NlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCszyu4Id6zpIYCfC5yOjIvUdtSdIga3EjyNJvKow+Qucl6pLJUUJA+ fkBNcmCfZGUw0LeYrCSpxy12YLtm4ZtREJbA4s1XGsBKX2i0rHNl1ONNljcde1Cx iWzDFjFmmJB7/AZr8igA/QWhQxxpUPsRkiqZEMAtiBefk8aEoH25ok4AHWLiXpy3 s3b68ZfmxCDSJnXPm3L4r033Eqrn4y0WcodlVQknMqrCnLG1v0wLHT8x1+KB+4R0 PkJc9IULnzl5+X/aJaQ9YmxNtmX7T7IuyXL80gQPy8fowg2UofXIvSepxma1CaFl RuBVXig+8tQWtse/9LQnAtZ1EpfCZLxb -----END CERTIFICATE-----Generated at Thu Oct 23 10:00:51 2025 by rpki-client