$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft File: U8lIF-sTZfHejDwrRAIjmIHBlD0.mft (raw, json) Hash identifier: yRLtf17B8MJkNt2+X3k8X02Sk8x6q054O+TUsuipkb4= Subject key identifier: CF:C0:AB:62:C4:47:0A:D4:A0:52:0F:04:88:EA:1E:99:D1:F3:49:15 Authority key identifier: 53:C9:48:17:EB:13:65:F1:DE:8C:3C:2B:44:02:23:98:81:C1:94:3D Certificate issuer: /CN=A91D3307/serialNumber=53C94817EB1365F1DE8C3C2B4402239881C1943D Certificate serial: 04FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8lIF-sTZfHejDwrRAIjmIHBlD0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft Manifest number: 04E6 Signing time: Tue 04 Nov 2025 23:55:34 +0000 Manifest this update: Tue 04 Nov 2025 23:55:33 +0000 Manifest next update: Tue 11 Nov 2025 23:55:33 +0000 Files and hashes: 1: U8lIF-sTZfHejDwrRAIjmIHBlD0.crl (hash: DN4wVoEGPGiTWwuHass2wmyaFeACnK/6i3xUdNzERuw=) 2: C908B72A696F11EFA4DA475FC4F9AE02.roa (hash: tXoHtibATlzSAFpYW8FXeLBuzqLRo++NJ/KLRuKUVS4=) 3: C9C70AEA696F11EFA4DA475FC4F9AE02.roa (hash: 8/T20piCaEKmwex2vfHli1eA2pf6jywQnHESOXqs7Kg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.crl rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8lIF-sTZfHejDwrRAIjmIHBlD0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:55:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1279 (0x4ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3307, serialNumber=53C94817EB1365F1DE8C3C2B4402239881C1943D Validity Not Before: Nov 4 23:55:33 2025 GMT Not After : Nov 11 23:55:33 2025 GMT Subject: CN=690a9275-9192 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:68:4e:e4:18:96:50:3a:3d:e6:ee:aa:89:5d: c6:a1:57:97:d9:59:8a:02:20:01:b3:db:78:69:eb: 60:85:6c:eb:ed:92:e6:b8:57:93:ff:46:da:47:3a: d5:81:31:10:99:39:bb:fc:17:0d:ec:b2:1d:65:38: 33:05:01:98:3b:e8:82:3f:57:7a:a6:ea:de:a0:d2: 7b:dd:15:66:bb:ce:fb:7c:8e:57:a0:9d:dc:14:f8: 51:51:ff:9d:91:ec:5f:ec:d7:2e:81:fe:82:a9:ed: 7b:82:08:53:83:9e:2e:b5:e2:d1:d4:7e:36:aa:d1: 31:38:97:bb:46:5e:a9:43:50:c5:5c:42:53:b0:b2: e7:14:6d:02:49:a6:fc:78:e7:98:6b:21:65:f7:77: 39:fd:b3:76:76:5e:56:8b:c0:b2:df:7d:9d:90:99: 01:a5:cc:b1:f2:4c:9e:70:f2:5a:53:e3:19:fd:22: f2:cc:e9:2c:ab:e7:06:fb:d7:20:70:41:6c:64:a3: 8c:27:a6:eb:4c:2f:54:d1:b1:0e:42:45:71:34:83: a8:6b:07:1e:08:90:f5:1b:42:24:5d:3e:41:1b:13: df:d6:fc:2d:7c:c0:68:74:34:24:76:0b:05:d2:11: 12:69:02:09:bd:0f:7d:7b:46:7a:95:fe:91:fc:a6: 7d:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:C0:AB:62:C4:47:0A:D4:A0:52:0F:04:88:EA:1E:99:D1:F3:49:15 X509v3 Authority Key Identifier: keyid:53:C9:48:17:EB:13:65:F1:DE:8C:3C:2B:44:02:23:98:81:C1:94:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8lIF-sTZfHejDwrRAIjmIHBlD0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:ef:ba:3a:6f:f8:3a:57:ef:54:d9:a4:24:c8:85:6c:a8:b6: 9f:a5:aa:ce:6f:32:8b:18:08:d2:26:27:5d:cd:36:82:14:25: 4f:76:03:c8:94:60:d2:db:6e:2d:2e:41:a5:6a:32:1c:97:a4: 16:b1:f6:14:3c:99:b6:3c:ad:39:c7:bd:bb:81:2d:de:21:62: 5e:43:25:c2:42:82:c3:9a:4b:b6:50:f1:d1:33:49:54:58:dd: a6:7a:d7:92:fc:a1:b2:be:2f:f7:42:ed:50:0e:3b:cd:87:40: 31:fe:7b:a3:c4:8a:eb:4b:f1:96:16:2f:89:44:77:7e:d2:31: 05:04:32:b4:bd:0c:24:07:bc:96:fd:93:5a:2a:c7:bf:e1:b0: 57:3c:0b:af:da:a9:77:c5:25:ee:8e:8c:ae:17:12:a3:af:c9: d8:92:51:61:cd:f7:e4:42:ce:e8:b5:c8:fa:6e:6a:2b:fa:c1: e2:29:ef:4a:ae:c4:fe:27:2e:2e:c2:e8:bd:59:05:16:c3:fb: c5:34:69:8b:a8:27:86:c6:c2:25:70:79:96:f4:ea:7d:73:9d: 53:80:e2:ad:35:65:24:51:cc:8f:5e:6a:29:5a:b7:ba:e7:fd: 3b:0f:25:2e:91:43:01:ad:69:a8:e3:38:da:c8:d3:fc:3f:b0: b0:2f:8e:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBP8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMzMDcxMTAvBgNVBAUTKDUzQzk0ODE3RUIxMzY1RjFERThDM0MyQjQ0MDIyMzk4 ODFDMTk0M0QwHhcNMjUxMTA0MjM1NTMzWhcNMjUxMTExMjM1NTMzWjAYMRYwFAYD VQQDEw02OTBhOTI3NS05MTkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4mhO5BiWUDo95u6qiV3GoVeX2VmKAiABs9t4aetghWzr7ZLmuFeT/0baRzrV gTEQmTm7/BcN7LIdZTgzBQGYO+iCP1d6pureoNJ73RVmu877fI5XoJ3cFPhRUf+d kexf7Ncugf6Cqe17gghTg54uteLR1H42qtExOJe7Rl6pQ1DFXEJTsLLnFG0CSab8 eOeYayFl93c5/bN2dl5Wi8Cy332dkJkBpcyx8kyecPJaU+MZ/SLyzOksq+cG+9cg cEFsZKOMJ6brTC9U0bEOQkVxNIOoawceCJD1G0IkXT5BGxPf1vwtfMBodDQkdgsF 0hESaQIJvQ99e0Z6lf6R/KZ9WwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM/Aq2LE RwrUoFIPBIjqHpnR80kVMB8GA1UdIwQYMBaAFFPJSBfrE2Xx3ow8K0QCI5iBwZQ9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzMwNy8zNDJEODMyODQy Q0MxMUVDOEYxMzMyMERDNEY5QUUwMi9VOGxJRi1zVFpmSGVqRHdyUkFJam1JSEJs RDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U4bElGLXNUWmZIZWpEd3JSQUlqbUlIQmxEMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzMwNy8zNDJEODMyODQyQ0MxMUVDOEYxMzMyMERDNEY5QUUwMi9VOGxJRi1zVFpm SGVqRHdyUkFJam1JSEJsRDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAP77o6b/g6V+9U2aQkyIVsqLafparObzKLGAjSJiddzTaCFCVPdgPI lGDS224tLkGlajIcl6QWsfYUPJm2PK05x727gS3eIWJeQyXCQoLDmku2UPHRM0lU WN2meteS/KGyvi/3Qu1QDjvNh0Ax/nujxIrrS/GWFi+JRHd+0jEFBDK0vQwkB7yW /ZNaKse/4bBXPAuv2ql3xSXujoyuFxKjr8nYklFhzffkQs7otcj6bmor+sHiKe9K rsT+Jy4uwui9WQUWw/vFNGmLqCeGxsIlcHmW9Op9c51TgOKtNWUkUcyPXmopWre6 5/07DyUukUMBrWmo4zjayNP8P7CwL44y -----END CERTIFICATE-----Generated at Wed Nov 5 11:50:23 2025 by rpki-client