$ rpki-client -vvf rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft File: xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft (raw, json) Hash identifier: Ie6jV8qDSC7YC7oQwTH46mb6IHKbA00Lwly9M9rWu2c= Subject key identifier: CB:E1:E2:64:DC:C1:6F:4B:19:4C:20:62:0D:C2:E5:B7:C9:CC:F6:D8 Authority key identifier: C5:45:25:E9:70:5B:D6:9D:61:42:4D:BE:E7:B0:49:3F:5F:D6:F0:A4 Certificate issuer: /CN=A912D1D5/serialNumber=C54525E9705BD69D61424DBEE7B0493F5FD6F0A4 Certificate serial: 01FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xUUl6XBb1p1hQk2-57BJP1_W8KQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft Manifest number: 01F2 Signing time: Wed 05 Nov 2025 02:44:31 +0000 Manifest this update: Wed 05 Nov 2025 02:44:31 +0000 Manifest next update: Wed 12 Nov 2025 02:44:31 +0000 Files and hashes: 1: xUUl6XBb1p1hQk2-57BJP1_W8KQ.crl (hash: Xm46ASez86e2zpsbr4eGJ4PBDdunasMXrmTTiNYxRCk=) 2: 19E19DA0E5CE11EDB697BC74C4F9AE02.roa (hash: 8oKi9g3FW28uCT296akypss1lnTC3S8VPwt27zeBIKU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.crl rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xUUl6XBb1p1hQk2-57BJP1_W8KQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:44:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 508 (0x1fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D1D5, serialNumber=C54525E9705BD69D61424DBEE7B0493F5FD6F0A4 Validity Not Before: Nov 5 02:44:31 2025 GMT Not After : Nov 12 02:44:31 2025 GMT Subject: CN=690aba0f-728b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:eb:94:6b:0f:22:ad:dc:e1:70:b0:20:34:ae: ef:a5:d6:42:5c:ad:86:13:1e:4d:fa:85:ca:18:f4: be:bf:70:06:a9:f6:c6:eb:62:e6:f4:6c:67:d7:9d: 2e:05:b7:c9:1d:c9:00:8d:8f:f7:b6:94:35:36:fe: 83:fe:5c:95:1f:84:57:67:e9:39:dd:c6:46:9c:69: eb:0c:e3:dd:7b:cb:7c:47:dc:e2:5a:19:e1:ea:9d: 7e:62:25:ba:01:dd:50:b2:85:bb:57:75:a1:67:aa: f1:c4:64:e3:49:5e:a9:e2:11:85:c0:73:22:45:0a: 55:00:e1:fe:06:57:23:a7:6e:57:7d:c9:f1:c9:c6: 88:a2:ce:d4:5c:dd:b5:8b:e2:1b:44:ae:c3:33:61: 1a:5b:56:7c:e3:e1:98:2a:e4:4e:98:df:69:88:b9: 98:ec:11:e6:dd:2e:38:f5:5c:42:86:f9:d1:b7:44: 60:a4:96:74:fd:c7:18:43:27:8a:20:37:3b:a3:14: ce:7f:61:58:94:46:16:4f:20:f7:21:e9:c9:ca:b5: 0b:a6:c4:98:ce:6c:da:a5:8b:2b:23:d2:86:73:d1: e6:00:47:2c:46:4d:17:35:00:8d:68:9f:77:4c:c8: fc:c2:06:a3:54:53:0d:ef:76:5f:a0:b3:01:52:c4: b0:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:E1:E2:64:DC:C1:6F:4B:19:4C:20:62:0D:C2:E5:B7:C9:CC:F6:D8 X509v3 Authority Key Identifier: keyid:C5:45:25:E9:70:5B:D6:9D:61:42:4D:BE:E7:B0:49:3F:5F:D6:F0:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xUUl6XBb1p1hQk2-57BJP1_W8KQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:22:94:ea:94:7d:52:05:42:73:b0:16:57:bd:c4:8a:b8:33: de:c3:b4:42:88:91:0f:e1:91:3d:ee:58:12:3c:e5:1f:9f:9d: 8a:6f:ed:d7:75:8f:f9:2f:9c:5c:0b:73:55:ac:a6:b9:ac:62: 63:9c:00:20:48:b4:6d:7c:5f:56:a0:f8:c1:a4:bf:13:76:af: 3b:a1:cf:a5:91:5d:43:84:c8:84:af:ef:b1:2e:c9:5c:f4:ff: aa:ba:b3:64:9c:24:ac:43:91:44:c5:71:c8:c0:ef:40:a6:0c: 4a:d4:ca:5d:c4:81:2e:43:32:1e:ed:1a:ca:bb:83:83:94:26: a3:61:51:db:0c:02:fd:e1:51:76:5d:7a:f6:59:b8:7a:da:80: 44:71:0a:21:92:47:2e:77:bd:ff:69:59:25:24:b3:7c:ba:47: 83:ca:c9:1c:fc:9c:3a:b3:c8:00:34:da:3e:04:bb:e8:09:bd: 5e:0a:cc:22:18:3e:26:ee:36:c5:e4:43:b1:14:3e:16:1c:f3: 3c:7f:15:d7:1e:6d:c8:e7:d2:ee:01:52:d8:d1:92:4d:17:3a: c1:af:e4:d6:62:0e:c6:35:ee:34:e3:a9:b9:c3:4a:f4:05:b3: 85:f0:df:87:27:05:f6:cc:6b:8c:f0:af:56:dd:80:e4:e0:21: 39:78:98:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQxRDUxMTAvBgNVBAUTKEM1NDUyNUU5NzA1QkQ2OUQ2MTQyNERCRUU3QjA0OTNG NUZENkYwQTQwHhcNMjUxMTA1MDI0NDMxWhcNMjUxMTEyMDI0NDMxWjAYMRYwFAYD VQQDEw02OTBhYmEwZi03MjhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoOuUaw8irdzhcLAgNK7vpdZCXK2GEx5N+oXKGPS+v3AGqfbG62Lm9Gxn150u BbfJHckAjY/3tpQ1Nv6D/lyVH4RXZ+k53cZGnGnrDOPde8t8R9ziWhnh6p1+YiW6 Ad1QsoW7V3WhZ6rxxGTjSV6p4hGFwHMiRQpVAOH+Blcjp25XfcnxycaIos7UXN21 i+IbRK7DM2EaW1Z84+GYKuROmN9piLmY7BHm3S449VxChvnRt0RgpJZ0/ccYQyeK IDc7oxTOf2FYlEYWTyD3IenJyrULpsSYzmzapYsrI9KGc9HmAEcsRk0XNQCNaJ93 TMj8wgajVFMN73ZfoLMBUsSwGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMvh4mTc wW9LGUwgYg3C5bfJzPbYMB8GA1UdIwQYMBaAFMVFJelwW9adYUJNvuewST9f1vCk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDFENS8zNDMzNjFFRUND OEMxMUVEQTRDMUExNDNDNEY5QUUwMi94VVVsNlhCYjFwMWhRazItNTdCSlAxX1c4 S1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hVVWw2WEJiMXAxaFFrMi01N0JKUDFfVzhLUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDFENS8zNDMzNjFFRUNDOEMxMUVEQTRDMUExNDNDNEY5QUUwMi94VVVsNlhCYjFw MWhRazItNTdCSlAxX1c4S1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJIpTqlH1SBUJzsBZXvcSKuDPew7RCiJEP4ZE97lgSPOUfn52Kb+3X dY/5L5xcC3NVrKa5rGJjnAAgSLRtfF9WoPjBpL8Tdq87oc+lkV1DhMiEr++xLslc 9P+qurNknCSsQ5FExXHIwO9ApgxK1MpdxIEuQzIe7RrKu4ODlCajYVHbDAL94VF2 XXr2Wbh62oBEcQohkkcud73/aVklJLN8ukeDyskc/Jw6s8gANNo+BLvoCb1eCswi GD4m7jbF5EOxFD4WHPM8fxXXHm3I59LuAVLY0ZJNFzrBr+TWYg7GNe4046m5w0r0 BbOF8N+HJwX2zGuM8K9W3YDk4CE5eJiD -----END CERTIFICATE-----Generated at Wed Nov 5 04:46:36 2025 by rpki-client