$ rpki-client -vvf rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft File: cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft (raw, json) Hash identifier: E1cSE04sfBtIyrviVTTspyEKmQOUnCfID165efYOzys= Subject key identifier: 52:F2:1E:1B:E6:4E:F3:F9:8E:61:AB:EA:8B:7F:FF:B2:68:1A:F0:45 Authority key identifier: 71:4B:A2:8D:D8:35:A7:D4:19:70:1F:AD:37:2A:34:B7:C6:6C:FA:A0 Certificate issuer: /CN=A91238D6/serialNumber=714BA28DD835A7D419701FAD372A34B7C66CFAA0 Certificate serial: 22B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUuijdg1p9QZcB-tNyo0t8Zs-qA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft Manifest number: 2287 Signing time: Tue 04 Nov 2025 15:56:20 +0000 Manifest this update: Tue 04 Nov 2025 15:56:20 +0000 Manifest next update: Tue 11 Nov 2025 15:56:19 +0000 Files and hashes: 1: cUuijdg1p9QZcB-tNyo0t8Zs-qA.crl (hash: h1MP9MuTwdFf179t327pfZ4KKcSows923w1VRR2eNyk=) 2: BB62FBD82AEC11EA972CB627C4F9AE02.roa (hash: KdmEZEpKoLyIMn6+XZO0IZiKVzRjxKxZXmexqgggUFU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.crl rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUuijdg1p9QZcB-tNyo0t8Zs-qA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:56:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8889 (0x22b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91238D6, serialNumber=714BA28DD835A7D419701FAD372A34B7C66CFAA0 Validity Not Before: Nov 4 15:56:20 2025 GMT Not After : Nov 11 15:56:19 2025 GMT Subject: CN=690a2224-c7c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:2a:a4:80:2b:57:cd:fb:f3:20:34:96:86:f2: 3f:40:22:32:fd:4d:c9:03:37:ad:29:53:fd:2a:e2: 32:58:65:4a:ed:69:e6:0a:88:b0:ba:5a:60:d7:83: 06:d2:73:44:1c:d6:c6:92:53:53:62:4d:2f:a5:f3: 21:23:dd:1f:1e:8b:20:ff:09:18:52:74:4c:3f:31: fd:ca:f9:4b:df:2b:fd:41:6e:0f:0b:49:f9:7e:4e: c1:e0:88:9c:1e:53:1a:62:93:a1:9f:9f:4b:dd:e3: 93:5b:8d:aa:19:a5:b6:1b:8e:bd:b6:44:fe:07:7b: d1:8b:b5:f1:13:53:f7:14:d5:1b:1b:3b:f3:5d:ac: 58:17:69:f6:28:4f:3a:b7:2b:eb:48:d4:94:e3:23: 39:65:3f:95:38:df:8f:a7:57:22:f2:6a:28:1b:10: 97:97:f8:6b:da:06:f4:cf:04:87:7e:38:09:f0:1e: f3:20:69:e9:10:04:2e:10:1a:52:31:60:5b:ad:3b: 44:58:7f:c8:83:28:f8:d2:b2:c7:6d:84:04:98:f8: b1:78:17:11:c5:4d:17:18:15:24:47:13:55:58:97: 1e:1f:2b:ea:25:6c:cd:8f:95:ff:15:56:6c:67:b5: 54:97:bd:7a:d2:14:a7:6c:14:a1:3d:b0:7f:4a:2a: 93:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:F2:1E:1B:E6:4E:F3:F9:8E:61:AB:EA:8B:7F:FF:B2:68:1A:F0:45 X509v3 Authority Key Identifier: keyid:71:4B:A2:8D:D8:35:A7:D4:19:70:1F:AD:37:2A:34:B7:C6:6C:FA:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUuijdg1p9QZcB-tNyo0t8Zs-qA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:b9:c1:5f:77:02:13:39:44:ec:bb:e9:5c:52:f3:cf:2c:fd: f8:10:77:35:31:9c:32:d5:d0:f4:77:23:3e:b5:d5:19:6c:b3: 56:f5:85:d1:f9:2a:8e:7d:e6:84:79:d6:b0:14:f5:7f:ca:05: d4:ba:3a:cd:23:a0:ed:89:5e:28:15:fd:07:c9:41:40:0b:6b: a9:ce:73:a7:ea:c2:d7:33:80:19:bb:21:ac:30:52:f9:95:6e: 87:77:e3:48:26:ae:28:6e:d4:37:fa:ec:1b:18:0e:77:cb:23: 40:a8:f9:82:da:a1:e6:e0:e8:f0:8a:c0:2b:6d:7d:af:58:73: 99:57:7d:49:2a:be:9d:f5:c2:cc:09:38:22:3c:64:83:64:21: 13:5c:e3:70:28:06:02:43:e6:f4:ab:30:50:6f:53:8d:1a:19: 58:cd:67:1c:c8:fb:7b:5e:21:bf:56:2a:91:49:1c:6b:ed:ff: 14:c1:4f:80:7e:07:6b:7b:0f:83:e7:61:74:de:d2:69:2b:99: 72:29:6b:3f:0a:eb:44:2d:3b:45:ce:51:34:af:d6:ba:40:b5: 3a:a0:31:9b:4a:2c:7c:fc:10:9c:18:6f:bd:3d:94:44:3e:10: b0:89:30:26:bb:42:0c:9d:8c:4e:48:4c:bd:98:00:5e:72:20: 95:a3:91:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIrkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4RDYxMTAvBgNVBAUTKDcxNEJBMjhERDgzNUE3RDQxOTcwMUZBRDM3MkEzNEI3 QzY2Q0ZBQTAwHhcNMjUxMTA0MTU1NjIwWhcNMjUxMTExMTU1NjE5WjAYMRYwFAYD VQQDEw02OTBhMjIyNC1jN2MwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsyqkgCtXzfvzIDSWhvI/QCIy/U3JAzetKVP9KuIyWGVK7WnmCoiwulpg14MG 0nNEHNbGklNTYk0vpfMhI90fHosg/wkYUnRMPzH9yvlL3yv9QW4PC0n5fk7B4Iic HlMaYpOhn59L3eOTW42qGaW2G469tkT+B3vRi7XxE1P3FNUbGzvzXaxYF2n2KE86 tyvrSNSU4yM5ZT+VON+Pp1ci8mooGxCXl/hr2gb0zwSHfjgJ8B7zIGnpEAQuEBpS MWBbrTtEWH/Igyj40rLHbYQEmPixeBcRxU0XGBUkRxNVWJceHyvqJWzNj5X/FVZs Z7VUl7160hSnbBShPbB/SiqTzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFLyHhvm TvP5jmGr6ot//7JoGvBFMB8GA1UdIwQYMBaAFHFLoo3YNafUGXAfrTcqNLfGbPqg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzhENi8yODk5MDUzMEJF NTQxMUU1OERDQzQzNTdDNEY5QUUwMi9jVXVpamRnMXA5UVpjQi10TnlvMHQ4WnMt cUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NVdWlqZGcxcDlRWmNCLXROeW8wdDhacy1xQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzhENi8yODk5MDUzMEJFNTQxMUU1OERDQzQzNTdDNEY5QUUwMi9jVXVpamRnMXA5 UVpjQi10TnlvMHQ4WnMtcUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNucFfdwITOUTsu+lcUvPPLP34EHc1MZwy1dD0dyM+tdUZbLNW9YXR +SqOfeaEedawFPV/ygXUujrNI6DtiV4oFf0HyUFAC2upznOn6sLXM4AZuyGsMFL5 lW6Hd+NIJq4obtQ3+uwbGA53yyNAqPmC2qHm4OjwisArbX2vWHOZV31JKr6d9cLM CTgiPGSDZCETXONwKAYCQ+b0qzBQb1ONGhlYzWccyPt7XiG/ViqRSRxr7f8UwU+A fgdrew+D52F03tJpK5lyKWs/CutELTtFzlE0r9a6QLU6oDGbSix8/BCcGG+9PZRE PhCwiTAmu0IMnYxOSEy9mABeciCVo5H9 -----END CERTIFICATE-----Generated at Wed Nov 5 17:08:49 2025 by rpki-client