$ rpki-client -vvf rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/UylwC03drZ4_zcMnP00Y0-MEXcA.mft File: UylwC03drZ4_zcMnP00Y0-MEXcA.mft (raw, json) Hash identifier: +xcPmtn3tCDEydPIUSIA/gK3Rg6Wh/SetY2ytEWS72U= Subject key identifier: 2E:68:A3:6D:85:12:BB:17:4C:D0:2A:50:AF:02:B1:73:E4:95:28:9C Authority key identifier: 53:29:70:0B:4D:DD:AD:9E:3F:CD:C3:27:3F:4D:18:D3:E3:04:5D:C0 Certificate issuer: /CN=A9143B09/serialNumber=5329700B4DDDAD9E3FCDC3273F4D18D3E3045DC0 Certificate serial: 0920 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UylwC03drZ4_zcMnP00Y0-MEXcA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/UylwC03drZ4_zcMnP00Y0-MEXcA.mft Manifest number: 19C0 Signing time: Tue 04 Nov 2025 17:24:07 +0000 Manifest this update: Tue 04 Nov 2025 17:24:07 +0000 Manifest next update: Tue 11 Nov 2025 17:24:07 +0000 Files and hashes: 1: UylwC03drZ4_zcMnP00Y0-MEXcA.crl (hash: bAaEzQMHlzvqngcbYcs8bRhH9i5Gpo9pprr5XuhhcR0=) 2: 31414558B0D511EFB17B942FC4F9AE02.roa (hash: mtUL6kpWcJ0s0WYAq9l26D9HLDGvLgZ5GCmZqFRcyjs=) 3: D9B56C8A7AB211EB99DAFE83C4F9AE02.roa (hash: F8NUI5IF7FjRVcKD/tqhJ5Q4QNzh0QGai7XMrRHjkus=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/UylwC03drZ4_zcMnP00Y0-MEXcA.crl rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/UylwC03drZ4_zcMnP00Y0-MEXcA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UylwC03drZ4_zcMnP00Y0-MEXcA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:24:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2336 (0x920) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143B09, serialNumber=5329700B4DDDAD9E3FCDC3273F4D18D3E3045DC0 Validity Not Before: Nov 4 17:24:07 2025 GMT Not After : Nov 11 17:24:07 2025 GMT Subject: CN=690a36b7-e043 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:df:ec:60:37:45:02:ff:2a:39:4d:4a:00:f3: 14:56:ac:fa:e2:7f:db:eb:23:e8:aa:95:1b:45:6f: 76:6a:b9:d9:15:0a:93:4f:6f:dd:52:46:86:01:bf: 33:4d:01:46:12:49:65:55:a0:90:d9:40:fb:5b:c5: 1f:59:5e:cf:0b:d2:c0:6a:74:2d:2e:ba:43:b7:da: 81:67:75:25:eb:df:fd:9e:10:d6:73:fc:cb:c1:45: fa:70:fc:b3:db:82:62:bc:c8:aa:84:da:ca:17:d5: cf:78:67:c2:f8:fa:99:65:e2:f1:90:75:ae:52:3c: 61:1e:7e:c7:9c:42:82:71:8d:a4:42:80:d8:dd:ac: 93:d0:6a:b8:ac:04:99:ff:fb:04:b2:46:ac:2c:cc: 69:67:48:d7:96:65:8a:8b:d0:40:f7:60:d1:6a:cc: 8e:d2:5c:1b:35:d5:e6:73:c9:9b:f2:cd:15:da:e9: 4d:8f:af:25:d7:5e:cd:d7:87:47:b1:11:aa:ae:93: 57:14:f7:9e:34:76:4c:a0:2a:74:c7:2a:94:4d:75: 7c:60:06:07:49:ae:71:f1:04:a9:43:16:9e:ab:74: 00:99:05:da:cc:c6:b5:56:79:b7:8f:38:a2:be:6a: fc:19:d3:69:2f:19:87:82:b3:1e:4a:fd:1b:87:c2: 73:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:68:A3:6D:85:12:BB:17:4C:D0:2A:50:AF:02:B1:73:E4:95:28:9C X509v3 Authority Key Identifier: keyid:53:29:70:0B:4D:DD:AD:9E:3F:CD:C3:27:3F:4D:18:D3:E3:04:5D:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/UylwC03drZ4_zcMnP00Y0-MEXcA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UylwC03drZ4_zcMnP00Y0-MEXcA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/UylwC03drZ4_zcMnP00Y0-MEXcA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:57:eb:38:56:0e:46:1e:07:c5:5b:de:8c:30:23:7f:20:b3: 74:0d:27:03:1f:a8:9d:2a:3d:c3:0e:1b:01:7d:ff:6f:41:e5: 9b:30:19:4d:44:cd:82:5e:e6:14:fb:fa:ab:85:ca:43:19:94: a2:07:8b:93:b8:e0:83:6f:be:5c:88:aa:16:1b:7c:2f:41:d1: 77:5f:79:57:3f:cc:aa:f1:18:7a:04:d3:b2:99:91:17:d3:ad: 1e:19:8a:23:55:d7:76:33:26:32:41:1b:23:47:2c:b3:ed:df: 74:a4:8e:3e:f0:1a:6e:8f:15:e3:60:12:f3:c3:ab:a8:f0:72: 0c:e3:85:4f:b0:0f:8c:64:1c:df:99:70:09:49:74:ad:fe:d3: 1c:d9:e2:8a:63:fb:5f:4b:08:66:9c:db:57:d6:7f:53:bd:91: 72:ec:37:8b:d2:4e:cf:e0:b9:40:d8:ce:ac:da:d4:ca:5e:ff: 4e:b4:86:0e:f1:2a:47:f4:3c:3b:5a:b3:1f:b8:fe:9b:cc:1a: 87:2a:e3:71:37:79:ba:95:81:df:fb:aa:97:12:da:90:cf:ac: 63:d0:7c:82:09:5b:82:e9:27:83:f6:b8:f8:6f:27:e3:c1:5f: 6a:e0:44:07:6f:ed:11:77:2f:27:b6:b1:74:5d:d9:77:4e:62: 6a:84:3f:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCSAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNCMDkxMTAvBgNVBAUTKDUzMjk3MDBCNEREREFEOUUzRkNEQzMyNzNGNEQxOEQz RTMwNDVEQzAwHhcNMjUxMTA0MTcyNDA3WhcNMjUxMTExMTcyNDA3WjAYMRYwFAYD VQQDEw02OTBhMzZiNy1lMDQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0N/sYDdFAv8qOU1KAPMUVqz64n/b6yPoqpUbRW92arnZFQqTT2/dUkaGAb8z TQFGEkllVaCQ2UD7W8UfWV7PC9LAanQtLrpDt9qBZ3Ul69/9nhDWc/zLwUX6cPyz 24JivMiqhNrKF9XPeGfC+PqZZeLxkHWuUjxhHn7HnEKCcY2kQoDY3ayT0Gq4rASZ //sEskasLMxpZ0jXlmWKi9BA92DRasyO0lwbNdXmc8mb8s0V2ulNj68l117N14dH sRGqrpNXFPeeNHZMoCp0xyqUTXV8YAYHSa5x8QSpQxaeq3QAmQXazMa1Vnm3jzii vmr8GdNpLxmHgrMeSv0bh8Jz8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC5oo22F ErsXTNAqUK8CsXPklSicMB8GA1UdIwQYMBaAFFMpcAtN3a2eP83DJz9NGNPjBF3A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0IwOS8zQjM2N0JDRTMz QjcxMUU5QUQwRjU4N0FDNEY5QUUwMi9VeWx3QzAzZHJaNF96Y01uUDAwWTAtTUVY Y0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V5bHdDMDNkclo0X3pjTW5QMDBZMC1NRVhjQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0IwOS8zQjM2N0JDRTMzQjcxMUU5QUQwRjU4N0FDNEY5QUUwMi9VeWx3QzAzZHJa NF96Y01uUDAwWTAtTUVYY0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3V+s4Vg5GHgfFW96MMCN/ILN0DScDH6idKj3DDhsBff9vQeWbMBlN RM2CXuYU+/qrhcpDGZSiB4uTuOCDb75ciKoWG3wvQdF3X3lXP8yq8Rh6BNOymZEX 060eGYojVdd2MyYyQRsjRyyz7d90pI4+8BpujxXjYBLzw6uo8HIM44VPsA+MZBzf mXAJSXSt/tMc2eKKY/tfSwhmnNtX1n9TvZFy7DeL0k7P4LlA2M6s2tTKXv9OtIYO 8SpH9Dw7WrMfuP6bzBqHKuNxN3m6lYHf+6qXEtqQz6xj0HyCCVuC6SeD9rj4byfj wV9q4EQHb+0Rdy8ntrF0Xdl3TmJqhD9K -----END CERTIFICATE-----Generated at Wed Nov 5 16:41:40 2025 by rpki-client