$ rpki-client -vvf rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.mft File: U_b3klO824sdFxgs5PGdOf1JnfU.mft (raw, json) Hash identifier: L9UsOdrIidu8X71x4KZf+LwvM9RlkhzFuajG0JvoVBw= Subject key identifier: 91:FF:D5:91:EC:74:17:8E:C9:8B:CA:BE:3F:D9:EB:C6:66:96:FC:3E Authority key identifier: 53:F6:F7:92:53:BC:DB:8B:1D:17:18:2C:E4:F1:9D:39:FD:49:9D:F5 Certificate issuer: /CN=A9154340/serialNumber=53F6F79253BCDB8B1D17182CE4F19D39FD499DF5 Certificate serial: 0691 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U_b3klO824sdFxgs5PGdOf1JnfU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.mft Manifest number: 068C Signing time: Tue 04 Nov 2025 22:30:42 +0000 Manifest this update: Tue 04 Nov 2025 22:30:42 +0000 Manifest next update: Tue 11 Nov 2025 22:30:42 +0000 Files and hashes: 1: U_b3klO824sdFxgs5PGdOf1JnfU.crl (hash: T7FNzxsFw5yklq95mppvzG5H11vMUsBAievX7R8Hazk=) 2: 28D1785891E311EBA138E330C4F9AE02.roa (hash: jZlWStDyUEA5NOntBzhPKNNSuOk9+V2s5MhuAGQtCUc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.crl rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U_b3klO824sdFxgs5PGdOf1JnfU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:30:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1681 (0x691) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154340, serialNumber=53F6F79253BCDB8B1D17182CE4F19D39FD499DF5 Validity Not Before: Nov 4 22:30:42 2025 GMT Not After : Nov 11 22:30:42 2025 GMT Subject: CN=690a7e92-9f27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:17:26:62:9c:79:3d:3a:f2:a0:f2:bb:5f:c8: 99:99:a5:3f:76:f8:7a:cf:bc:be:f9:0b:0a:f0:2d: 47:20:ff:b0:0b:48:ca:c8:31:2b:4e:47:46:81:62: 92:db:c3:5f:ce:21:ae:9e:cc:cf:83:dc:34:44:b7: 57:74:28:0e:69:45:f6:97:f7:09:9d:f0:38:a6:e8: 99:e4:1e:e0:f0:f8:12:c1:b1:4d:0d:75:96:8d:b6: a4:c0:95:f1:ca:73:cf:da:00:95:c1:6a:2f:4b:30: 49:da:63:42:01:70:eb:95:92:ab:bc:80:a7:ff:4b: f3:f4:e8:ed:f4:0c:2f:fd:60:88:fd:e5:94:17:4f: e6:04:40:f8:18:a2:93:99:4a:67:1f:cb:3d:b4:b4: d7:ef:a0:dc:44:3b:a4:84:6d:80:2c:93:f9:be:ac: c0:7c:e2:6b:7a:fe:54:bb:f0:de:2a:8b:56:05:97: 9f:d0:6c:b0:b8:b2:19:16:31:6b:55:02:58:0a:de: b6:f7:c4:6a:7f:50:5f:6d:c7:b3:1e:f8:6f:42:32: e5:a3:03:31:9c:44:90:b5:60:92:f0:69:c7:e1:c7: 3e:44:a7:02:39:8f:f4:ed:f1:c8:f5:46:c3:92:15: 53:32:b6:93:ed:7e:5c:7f:4c:d7:2d:5b:68:b9:37: e6:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:FF:D5:91:EC:74:17:8E:C9:8B:CA:BE:3F:D9:EB:C6:66:96:FC:3E X509v3 Authority Key Identifier: keyid:53:F6:F7:92:53:BC:DB:8B:1D:17:18:2C:E4:F1:9D:39:FD:49:9D:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U_b3klO824sdFxgs5PGdOf1JnfU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:3a:60:d3:ef:35:50:a2:40:c3:80:26:30:21:b2:01:2e:b8: 0d:7e:3d:b2:e4:e8:4f:1f:35:ed:ee:4a:c2:4f:9a:53:53:72: 78:4a:db:05:3b:49:67:53:24:dc:82:75:77:1a:a7:60:93:a6: 39:2d:6e:7e:bd:c9:8c:e0:1a:84:c3:06:57:ae:60:a5:52:ba: ae:4d:d2:f9:28:2f:00:18:10:69:87:df:9b:ac:5e:be:06:e3: 89:ba:32:f4:fa:a9:00:66:8b:6e:eb:f2:11:8d:33:b0:b0:05: a6:ba:b6:b6:d6:dc:6c:fc:5e:df:02:4b:b3:e1:51:9b:35:77: d8:be:52:18:b6:1c:1b:f5:fc:ee:0a:59:55:c7:0c:99:4d:89: f4:b8:58:d0:9d:dc:c1:d0:f2:61:68:90:fd:80:32:3c:20:55: 15:61:50:7d:78:01:94:5d:01:d1:50:91:4a:09:3d:ef:22:21: 05:f9:c3:13:04:75:99:8c:c0:6e:c8:b0:0b:a6:2b:84:bf:88: 13:02:89:d3:47:e5:42:bf:18:04:29:73:1e:f3:d9:86:64:d3: 4a:06:2a:01:64:4c:c6:77:fb:b3:73:ed:39:53:f6:b5:a6:17: 54:77:de:74:ea:5e:5b:47:4f:35:9b:de:96:fa:a8:4a:04:9d: cf:3a:c9:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQzNDAxMTAvBgNVBAUTKDUzRjZGNzkyNTNCQ0RCOEIxRDE3MTgyQ0U0RjE5RDM5 RkQ0OTlERjUwHhcNMjUxMTA0MjIzMDQyWhcNMjUxMTExMjIzMDQyWjAYMRYwFAYD VQQDEw02OTBhN2U5Mi05ZjI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvxcmYpx5PTryoPK7X8iZmaU/dvh6z7y++QsK8C1HIP+wC0jKyDErTkdGgWKS 28NfziGunszPg9w0RLdXdCgOaUX2l/cJnfA4puiZ5B7g8PgSwbFNDXWWjbakwJXx ynPP2gCVwWovSzBJ2mNCAXDrlZKrvICn/0vz9Ojt9Awv/WCI/eWUF0/mBED4GKKT mUpnH8s9tLTX76DcRDukhG2ALJP5vqzAfOJrev5Uu/DeKotWBZef0GywuLIZFjFr VQJYCt6298Rqf1BfbcezHvhvQjLlowMxnESQtWCS8GnH4cc+RKcCOY/07fHI9UbD khVTMraT7X5cf0zXLVtouTfmmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJH/1ZHs dBeOyYvKvj/Z68Zmlvw+MB8GA1UdIwQYMBaAFFP295JTvNuLHRcYLOTxnTn9SZ31 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDM0MC83QzFGRDFEMjkx RTExMUVCQjY4NzhDMkVDNEY5QUUwMi9VX2Iza2xPODI0c2RGeGdzNVBHZE9mMUpu ZlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VfYjNrbE84MjRzZEZ4Z3M1UEdkT2YxSm5mVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDM0MC83QzFGRDFEMjkxRTExMUVCQjY4NzhDMkVDNEY5QUUwMi9VX2Iza2xPODI0 c2RGeGdzNVBHZE9mMUpuZlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHOmDT7zVQokDDgCYwIbIBLrgNfj2y5OhPHzXt7krCT5pTU3J4StsF O0lnUyTcgnV3Gqdgk6Y5LW5+vcmM4BqEwwZXrmClUrquTdL5KC8AGBBph9+brF6+ BuOJujL0+qkAZotu6/IRjTOwsAWmura21txs/F7fAkuz4VGbNXfYvlIYthwb9fzu CllVxwyZTYn0uFjQndzB0PJhaJD9gDI8IFUVYVB9eAGUXQHRUJFKCT3vIiEF+cMT BHWZjMBuyLALpiuEv4gTAonTR+VCvxgEKXMe89mGZNNKBioBZEzGd/uzc+05U/a1 phdUd9506l5bR081m96W+qhKBJ3POslA -----END CERTIFICATE-----Generated at Wed Nov 5 15:39:51 2025 by rpki-client