$ rpki-client -vvf rpki.apnic.net/member_repository/A9153490/8F52488ED05411EEAF799F16C4F9AE02/R_UMlYv5z1RcYBresE-KBeEB2aU.mft File: R_UMlYv5z1RcYBresE-KBeEB2aU.mft (raw, json) Hash identifier: d/oqF8FzrfEGxK1jBf0NxTZe+HqPaVTiaYfp6H5Va3s= Subject key identifier: 1C:59:24:28:6B:F3:5C:EF:23:A6:B6:3D:14:8E:76:FD:A2:15:F6:2E Authority key identifier: 47:F5:0C:95:8B:F9:CF:54:5C:60:1A:DE:B0:4F:8A:05:E1:01:D9:A5 Certificate issuer: /CN=A9153490/serialNumber=47F50C958BF9CF545C601ADEB04F8A05E101D9A5 Certificate serial: 0146 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R_UMlYv5z1RcYBresE-KBeEB2aU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153490/8F52488ED05411EEAF799F16C4F9AE02/R_UMlYv5z1RcYBresE-KBeEB2aU.mft Manifest number: 0140 Signing time: Wed 05 Nov 2025 04:34:02 +0000 Manifest this update: Wed 05 Nov 2025 04:34:01 +0000 Manifest next update: Wed 12 Nov 2025 04:34:01 +0000 Files and hashes: 1: R_UMlYv5z1RcYBresE-KBeEB2aU.crl (hash: iT6+knazIBdHlsk+mFCm4sWTAJg+uyK0b7J/Ogd9LpQ=) 2: 0F778EDCEBB411EE9D86095BC4F9AE02.roa (hash: GLQc94rusVtQbATmFzKX5DyXm0E80+RpBsTaqBZ5TIc=) 3: 0F0A0C72EBB411EE9D86095BC4F9AE02.roa (hash: g+h2X039YfWFdq3nneNF8fX2UZhaS8/1cDtSjJwB84Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153490/8F52488ED05411EEAF799F16C4F9AE02/R_UMlYv5z1RcYBresE-KBeEB2aU.crl rsync://rpki.apnic.net/member_repository/A9153490/8F52488ED05411EEAF799F16C4F9AE02/R_UMlYv5z1RcYBresE-KBeEB2aU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R_UMlYv5z1RcYBresE-KBeEB2aU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:34:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 326 (0x146) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153490, serialNumber=47F50C958BF9CF545C601ADEB04F8A05E101D9A5 Validity Not Before: Nov 5 04:34:01 2025 GMT Not After : Nov 12 04:34:01 2025 GMT Subject: CN=690ad3ba-7383 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:9b:fd:26:db:8f:2b:96:b1:ac:a0:81:cc:46: 35:cb:eb:54:94:8f:37:ec:94:60:12:2e:a1:f9:e6: ec:79:0d:91:0d:82:c7:8e:30:59:88:ec:c3:1a:b4: 9e:51:53:9a:6e:89:78:6f:92:7c:cf:da:f3:c5:af: 37:01:19:c8:43:81:e8:d1:d6:73:bf:9f:de:32:a3: 6f:30:37:aa:b0:09:21:8b:9a:da:29:4b:c6:36:64: 4e:23:74:2c:a3:6c:7d:a2:0f:06:1c:94:78:db:c1: cb:6b:7f:14:b1:41:7f:db:d9:a0:50:bf:6c:43:e0: 42:0a:92:28:97:0e:d9:c7:ae:3c:dc:f4:bb:2e:ca: 0f:a8:45:62:24:dd:3c:3b:a1:67:3b:1f:53:cb:83: 88:ff:ac:bc:e5:fc:98:0a:d3:44:f2:08:52:90:e7: 0e:83:74:f6:f7:41:1d:e1:09:5f:c2:73:8c:f3:54: fb:cc:ee:2f:9d:ed:d8:c0:5d:69:02:50:57:b4:3d: fa:a2:fa:0f:39:fd:36:7e:e6:f7:a8:3e:b9:d2:8c: 52:57:c7:c4:c3:5e:81:72:2f:4c:f1:1d:7e:a4:91: 0e:f5:f6:b0:99:da:de:08:21:0a:5f:93:f0:fe:a3: f8:ab:97:0a:5e:6d:7a:52:70:4b:7b:ef:67:de:b4: 5b:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:59:24:28:6B:F3:5C:EF:23:A6:B6:3D:14:8E:76:FD:A2:15:F6:2E X509v3 Authority Key Identifier: keyid:47:F5:0C:95:8B:F9:CF:54:5C:60:1A:DE:B0:4F:8A:05:E1:01:D9:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153490/8F52488ED05411EEAF799F16C4F9AE02/R_UMlYv5z1RcYBresE-KBeEB2aU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R_UMlYv5z1RcYBresE-KBeEB2aU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153490/8F52488ED05411EEAF799F16C4F9AE02/R_UMlYv5z1RcYBresE-KBeEB2aU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ed:b8:34:50:52:a6:03:62:d0:8b:cb:47:a8:0a:e4:d5:0c:e5: ee:dc:40:72:20:5c:cd:2b:81:69:11:1e:07:e0:e7:8c:38:65: 19:61:eb:1d:ac:33:46:6e:a2:8c:de:16:47:10:09:29:ee:87: e6:6f:dd:6e:13:25:91:56:a1:fa:3a:1d:5f:f9:b4:e7:df:dc: 03:d4:6c:92:21:a9:0c:3c:fa:81:8b:4a:0f:a6:7b:98:46:d0: 5c:80:e8:bd:13:44:01:67:a3:7d:b1:cd:e1:8c:d2:3c:ac:0f: 33:50:4d:e2:97:4d:c5:81:39:47:e0:c1:8a:35:12:d6:b4:45: a6:ea:39:73:7a:48:32:30:3e:b2:ed:d9:12:ae:0e:ce:a7:6d: 00:d8:21:9b:96:20:03:76:bf:65:b2:52:d3:21:98:e4:f9:e0: 84:6a:ff:a4:c6:e7:f3:dc:ce:68:95:1e:ab:9c:c5:c9:a0:8d: 60:ad:29:3e:1e:e3:df:c8:0b:51:ca:77:fe:f4:8b:ac:e5:d3: d7:e9:50:b6:0d:0c:34:2c:99:aa:77:74:d4:02:58:fd:a8:46: 9c:86:61:54:5b:23:1c:9c:89:ed:e8:5c:1d:b5:a2:c4:eb:56: 6d:b4:6b:a3:30:04:9a:7e:16:e9:07:9d:ef:0d:88:1e:1a:e6: 4c:d7:e0:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM0OTAxMTAvBgNVBAUTKDQ3RjUwQzk1OEJGOUNGNTQ1QzYwMUFERUIwNEY4QTA1 RTEwMUQ5QTUwHhcNMjUxMTA1MDQzNDAxWhcNMjUxMTEyMDQzNDAxWjAYMRYwFAYD VQQDEw02OTBhZDNiYS03MzgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAopv9JtuPK5axrKCBzEY1y+tUlI837JRgEi6h+ebseQ2RDYLHjjBZiOzDGrSe UVOabol4b5J8z9rzxa83ARnIQ4Ho0dZzv5/eMqNvMDeqsAkhi5raKUvGNmROI3Qs o2x9og8GHJR428HLa38UsUF/29mgUL9sQ+BCCpIolw7Zx6483PS7LsoPqEViJN08 O6FnOx9Ty4OI/6y85fyYCtNE8ghSkOcOg3T290Ed4QlfwnOM81T7zO4vne3YwF1p AlBXtD36ovoPOf02fub3qD650oxSV8fEw16Bci9M8R1+pJEO9fawmdreCCEKX5Pw /qP4q5cKXm16UnBLe+9n3rRbZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBxZJChr 81zvI6a2PRSOdv2iFfYuMB8GA1UdIwQYMBaAFEf1DJWL+c9UXGAa3rBPigXhAdml MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzQ5MC84RjUyNDg4RUQw NTQxMUVFQUY3OTlGMTZDNEY5QUUwMi9SX1VNbFl2NXoxUmNZQnJlc0UtS0JlRUIy YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JfVU1sWXY1ejFSY1lCcmVzRS1LQmVFQjJhVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzQ5MC84RjUyNDg4RUQwNTQxMUVFQUY3OTlGMTZDNEY5QUUwMi9SX1VNbFl2NXox UmNZQnJlc0UtS0JlRUIyYVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDtuDRQUqYDYtCLy0eoCuTVDOXu3EByIFzNK4FpER4H4OeMOGUZYesd rDNGbqKM3hZHEAkp7ofmb91uEyWRVqH6Oh1f+bTn39wD1GySIakMPPqBi0oPpnuY RtBcgOi9E0QBZ6N9sc3hjNI8rA8zUE3il03FgTlH4MGKNRLWtEWm6jlzekgyMD6y 7dkSrg7Op20A2CGbliADdr9lslLTIZjk+eCEav+kxufz3M5olR6rnMXJoI1grSk+ HuPfyAtRynf+9Ius5dPX6VC2DQw0LJmqd3TUAlj9qEachmFUWyMcnInt6FwdtaLE 61ZttGujMASafhbpB53vDYgeGuZM1+D8 -----END CERTIFICATE-----Generated at Wed Nov 5 15:18:10 2025 by rpki-client