$ rpki-client -vvf rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.mft File: U78N14DbA47OFNQEWbq5xo9phTs.mft (raw, json) Hash identifier: Gltly5R2E0HJYXqMcG7hJ+ieJbUaN6ajfnI8gSEWVTg= Subject key identifier: 0B:FE:FA:B6:40:12:EA:58:34:D3:67:B8:B1:C6:60:21:C7:7D:61:64 Authority key identifier: 53:BF:0D:D7:80:DB:03:8E:CE:14:D4:04:59:BA:B9:C6:8F:69:85:3B Certificate issuer: /CN=A912FCD6/serialNumber=53BF0DD780DB038ECE14D40459BAB9C68F69853B Certificate serial: 22D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.mft Manifest number: 2276 Signing time: Tue 04 Nov 2025 15:57:13 +0000 Manifest this update: Tue 04 Nov 2025 15:57:13 +0000 Manifest next update: Tue 11 Nov 2025 15:57:13 +0000 Files and hashes: 1: U78N14DbA47OFNQEWbq5xo9phTs.crl (hash: XyhKBFu/wZJx8MweXulfmYdNtlDbl3+cOaqxc/7DxhA=) 2: 848CD92660A611F0806EB31DC4F9AE02.roa (hash: E2krETd7neWC8d4xIatDnIbAfqIHXkBF6iProCmPjFo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.crl rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:57:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8921 (0x22d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FCD6, serialNumber=53BF0DD780DB038ECE14D40459BAB9C68F69853B Validity Not Before: Nov 4 15:57:13 2025 GMT Not After : Nov 11 15:57:13 2025 GMT Subject: CN=690a2259-3505 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:5a:96:71:a7:ac:0a:8a:1e:ce:10:ba:bc:cf: 16:9b:f4:2e:ed:98:bb:79:d1:f1:c8:c8:cc:5e:bb: 44:10:09:29:4a:aa:d5:d5:25:ae:ef:27:e4:e7:fe: 81:99:92:86:34:ef:e3:49:95:00:77:8c:27:72:3b: fb:21:f6:f9:71:d0:02:31:7b:d3:52:76:4e:5a:f5: 80:8d:86:2d:18:37:dd:eb:d2:28:ca:89:4a:7e:6e: e2:60:bd:3a:8a:0e:35:29:c3:71:d0:91:9e:ba:8d: 66:ce:6a:2f:9e:9e:4f:ea:49:e4:98:f4:e9:0f:c3: 94:73:32:3a:74:e4:1a:0e:ec:0a:ec:c5:2d:a6:84: a2:bf:9c:8a:57:64:2c:1c:f2:08:7e:61:2e:aa:c3: 1d:fa:7b:49:45:50:03:ef:d6:0d:b1:20:0c:75:e9: b5:61:ca:25:8a:41:4b:07:e3:9d:15:58:ae:65:ce: ed:28:40:08:dc:e6:ea:7d:d5:e0:12:63:5e:12:88: 4e:37:4a:40:56:5c:7f:0e:10:78:ed:4a:ee:9c:89: 15:26:f5:2e:74:fc:66:83:4e:13:32:be:46:49:11: 30:4f:b5:f8:f3:41:f1:66:20:69:12:9d:62:20:72: ee:08:33:27:62:97:fc:69:54:c8:38:e7:fa:85:9d: e5:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:FE:FA:B6:40:12:EA:58:34:D3:67:B8:B1:C6:60:21:C7:7D:61:64 X509v3 Authority Key Identifier: keyid:53:BF:0D:D7:80:DB:03:8E:CE:14:D4:04:59:BA:B9:C6:8F:69:85:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:93:dc:d3:4c:a5:1c:e8:38:f7:bd:1c:1f:07:c5:25:94:98: c0:b2:db:02:a9:0f:6a:4f:fe:ff:a5:ec:0c:a6:20:90:90:e7: eb:88:48:2b:14:2b:73:60:be:51:41:a2:88:51:f5:96:27:a1: 33:1a:4b:cc:cf:e5:74:26:97:04:a6:e5:c5:35:69:81:42:31: c4:5f:52:61:3e:a8:3d:57:58:81:48:08:14:c3:d2:16:93:6c: 5b:32:d9:97:2b:ae:a0:95:b2:88:1c:c9:d9:ee:6f:82:58:38: 7d:d9:d5:30:b6:a0:1e:fd:17:78:99:1e:2c:2d:17:29:40:07: 82:58:97:3b:52:97:48:3a:fd:a5:5d:5a:c6:2e:83:e6:04:fa: 92:6f:c0:5f:58:99:fb:1a:6c:45:05:bd:02:13:0e:47:46:92: 73:44:c8:07:7a:a6:d3:43:4d:35:0f:aa:de:90:12:5c:06:62: 4a:83:48:12:5e:3d:24:76:1f:96:b2:7b:df:e5:f4:79:0b:4e: 24:9f:81:8c:8d:dd:49:5e:a9:26:82:34:f1:b8:75:93:9f:95: 23:b8:ff:a7:c7:d3:28:ad:5d:6e:ca:1c:13:91:3b:4c:01:48: 00:9b:04:09:9d:22:e3:39:4d:6c:db:1a:12:55:05:03:5c:f7: ab:c8:e4:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICItkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZDRDYxMTAvBgNVBAUTKDUzQkYwREQ3ODBEQjAzOEVDRTE0RDQwNDU5QkFCOUM2 OEY2OTg1M0IwHhcNMjUxMTA0MTU1NzEzWhcNMjUxMTExMTU1NzEzWjAYMRYwFAYD VQQDEw02OTBhMjI1OS0zNTA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3lqWcaesCooezhC6vM8Wm/Qu7Zi7edHxyMjMXrtEEAkpSqrV1SWu7yfk5/6B mZKGNO/jSZUAd4wncjv7Ifb5cdACMXvTUnZOWvWAjYYtGDfd69IoyolKfm7iYL06 ig41KcNx0JGeuo1mzmovnp5P6knkmPTpD8OUczI6dOQaDuwK7MUtpoSiv5yKV2Qs HPIIfmEuqsMd+ntJRVAD79YNsSAMdem1YcolikFLB+OdFViuZc7tKEAI3ObqfdXg EmNeEohON0pAVlx/DhB47UrunIkVJvUudPxmg04TMr5GSREwT7X480HxZiBpEp1i IHLuCDMnYpf8aVTIOOf6hZ3l3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAv++rZA EupYNNNnuLHGYCHHfWFkMB8GA1UdIwQYMBaAFFO/DdeA2wOOzhTUBFm6ucaPaYU7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkNENi8xRTlFMUFBQ0Qy RUExMUU1QUZCMUUyNENDNEY5QUUwMi9VNzhOMTREYkE0N09GTlFFV2JxNXhvOXBo VHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U3OE4xNERiQTQ3T0ZOUUVXYnE1eG85cGhUcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RkNENi8xRTlFMUFBQ0QyRUExMUU1QUZCMUUyNENDNEY5QUUwMi9VNzhOMTREYkE0 N09GTlFFV2JxNXhvOXBoVHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXk9zTTKUc6Dj3vRwfB8UllJjAstsCqQ9qT/7/pewMpiCQkOfriEgr FCtzYL5RQaKIUfWWJ6EzGkvMz+V0JpcEpuXFNWmBQjHEX1JhPqg9V1iBSAgUw9IW k2xbMtmXK66glbKIHMnZ7m+CWDh92dUwtqAe/Rd4mR4sLRcpQAeCWJc7UpdIOv2l XVrGLoPmBPqSb8BfWJn7GmxFBb0CEw5HRpJzRMgHeqbTQ001D6rekBJcBmJKg0gS Xj0kdh+Wsnvf5fR5C04kn4GMjd1JXqkmgjTxuHWTn5UjuP+nx9MorV1uyhwTkTtM AUgAmwQJnSLjOU1s2xoSVQUDXPeryOTy -----END CERTIFICATE-----Generated at Wed Nov 5 13:33:43 2025 by rpki-client