$ rpki-client -vvf rpki.apnic.net/member_repository/A9155725/801BCAA6083A11F09FF1D074C4F9AE02/uH-tZU7EIXxlANDwaxm-MZ09rfc.mft File: uH-tZU7EIXxlANDwaxm-MZ09rfc.mft (raw, json) Hash identifier: +IK+DtHAKKS4Awg1KJN4aOBAbxT8b6qVLFMFct1+NuA= Subject key identifier: EF:55:E0:CD:AC:9B:67:4A:D3:FB:BD:44:06:1A:72:7F:18:A3:5C:5D Authority key identifier: B8:7F:AD:65:4E:C4:21:7C:65:00:D0:F0:6B:19:BE:31:9D:3D:AD:F7 Certificate issuer: /CN=A9155725/serialNumber=B87FAD654EC4217C6500D0F06B19BE319D3DADF7 Certificate serial: 78 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uH-tZU7EIXxlANDwaxm-MZ09rfc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155725/801BCAA6083A11F09FF1D074C4F9AE02/uH-tZU7EIXxlANDwaxm-MZ09rfc.mft Manifest number: 75 Signing time: Wed 05 Nov 2025 07:03:36 +0000 Manifest this update: Wed 05 Nov 2025 07:03:36 +0000 Manifest next update: Wed 12 Nov 2025 07:03:36 +0000 Files and hashes: 1: uH-tZU7EIXxlANDwaxm-MZ09rfc.crl (hash: iiUREY3Q6ocZ9k2YA3EvFveln/3Irsc84JvRaAKSM3k=) 2: 7621BEA0084611F08BEB2E2DC4F9AE02.roa (hash: aySEvRngppKs/Lyekhtc0uzM27zK/l0cRA6UmOeIzlU=) 3: 753F0588084611F08BEB2E2DC4F9AE02.roa (hash: v1ibDjxmzIv2LQG97YVedEX5wevRpNJDRuNHyDfGpBg=) 4: 75A4B2D4084611F08BEB2E2DC4F9AE02.roa (hash: JronbENc2C4chw8Lr5GoQXHOGuejfoIjiKRSNDdiR4Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155725/801BCAA6083A11F09FF1D074C4F9AE02/uH-tZU7EIXxlANDwaxm-MZ09rfc.crl rsync://rpki.apnic.net/member_repository/A9155725/801BCAA6083A11F09FF1D074C4F9AE02/uH-tZU7EIXxlANDwaxm-MZ09rfc.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uH-tZU7EIXxlANDwaxm-MZ09rfc.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:03:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 120 (0x78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155725, serialNumber=B87FAD654EC4217C6500D0F06B19BE319D3DADF7 Validity Not Before: Nov 5 07:03:36 2025 GMT Not After : Nov 12 07:03:36 2025 GMT Subject: CN=690af6c8-b930 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:0d:64:79:e6:f7:5c:d3:2b:ae:ea:b4:ce:01: 0a:44:8d:bb:9a:21:8e:14:a9:4f:b4:98:98:3a:ce: c0:fa:80:e5:31:92:9a:a1:eb:94:f0:b4:2b:16:0c: 71:ed:6b:67:3e:76:22:f2:c2:3c:17:5a:56:6d:b4: 72:39:90:2c:4e:42:d5:dd:c8:08:2f:f6:fe:31:fc: cb:13:d7:2e:5b:a9:88:44:be:1c:e8:76:ea:97:b9: c5:93:1e:a9:9c:28:61:18:1a:10:8f:fd:69:4c:53: 4d:c8:0c:f6:7c:fa:9a:44:5e:28:83:82:11:72:92: 02:81:af:d8:9e:db:e9:83:7c:13:b0:be:ad:92:8c: d8:0a:d0:cc:4d:d1:a8:bf:b3:d7:42:93:af:fb:57: 85:86:5b:b3:af:8a:b7:2e:42:b3:c6:c5:73:94:48: 31:7f:7c:68:ea:19:45:e7:3d:9b:93:98:33:bb:de: 24:b6:24:06:a3:2e:53:48:16:04:c3:1d:c1:8f:67: 39:83:54:27:93:c2:18:87:7a:54:66:0a:d3:bb:3a: a5:a2:89:db:01:81:d3:59:5e:58:af:ca:96:76:47: e0:c7:a8:ae:83:87:8c:1f:38:cb:f7:e3:db:fa:3a: 72:84:6f:13:d7:1e:e6:d1:d7:d2:09:ac:c6:37:d6: 61:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:55:E0:CD:AC:9B:67:4A:D3:FB:BD:44:06:1A:72:7F:18:A3:5C:5D X509v3 Authority Key Identifier: keyid:B8:7F:AD:65:4E:C4:21:7C:65:00:D0:F0:6B:19:BE:31:9D:3D:AD:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155725/801BCAA6083A11F09FF1D074C4F9AE02/uH-tZU7EIXxlANDwaxm-MZ09rfc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uH-tZU7EIXxlANDwaxm-MZ09rfc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155725/801BCAA6083A11F09FF1D074C4F9AE02/uH-tZU7EIXxlANDwaxm-MZ09rfc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:d5:64:e8:cf:1e:da:49:80:66:a0:b9:dd:be:91:7b:dc:24: f6:41:a7:07:98:96:22:d8:b2:d4:40:a1:15:89:c7:07:be:5a: a3:be:d9:56:c6:0b:f4:62:ee:26:56:5d:d6:c2:49:d6:9c:f1: be:61:12:75:7e:1f:f6:a5:e7:99:a6:d8:34:f5:3e:34:2b:0e: 27:5c:a9:6c:0f:41:a7:66:7d:f3:7b:03:4c:99:ef:1c:0e:1a: 42:7c:99:2f:66:b1:6a:c0:5b:4a:6d:23:1a:67:09:fa:5d:ae: 20:a0:02:fe:8a:9c:ed:9c:39:b6:af:ac:30:5e:84:2f:6c:04: bb:fc:00:8a:0f:28:b2:d8:1d:e1:31:96:3c:49:00:4c:b5:d0: 30:3f:25:08:9a:03:0c:ac:77:a6:55:d4:fc:80:36:03:07:c1: 4b:42:b6:c0:2c:52:b7:47:3f:d7:28:9a:29:4a:32:39:cb:a2: 3a:66:34:ff:dd:25:d1:75:5e:28:a4:cf:7b:28:36:62:f6:c2: 7d:6d:80:f4:43:9b:72:3b:5b:0c:76:33:9a:f8:ae:85:b3:ed: 7b:fb:69:69:4b:30:92:61:7a:6e:b5:6c:8f:22:f1:92:a4:87: 84:2c:67:c1:d9:2a:be:13:13:fd:c3:27:bd:e5:c5:74:a6:e6: 1f:0f:72:5e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBeDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NTcyNTExMC8GA1UEBRMoQjg3RkFENjU0RUM0MjE3QzY1MDBEMEYwNkIxOUJFMzE5 RDNEQURGNzAeFw0yNTExMDUwNzAzMzZaFw0yNTExMTIwNzAzMzZaMBgxFjAUBgNV BAMTDTY5MGFmNmM4LWI5MzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCzDWR55vdc0yuu6rTOAQpEjbuaIY4UqU+0mJg6zsD6gOUxkpqh65TwtCsWDHHt a2c+diLywjwXWlZttHI5kCxOQtXdyAgv9v4x/MsT1y5bqYhEvhzoduqXucWTHqmc KGEYGhCP/WlMU03IDPZ8+ppEXiiDghFykgKBr9ie2+mDfBOwvq2SjNgK0MxN0ai/ s9dCk6/7V4WGW7OvircuQrPGxXOUSDF/fGjqGUXnPZuTmDO73iS2JAajLlNIFgTD HcGPZzmDVCeTwhiHelRmCtO7OqWiidsBgdNZXlivypZ2R+DHqK6Dh4wfOMv349v6 OnKEbxPXHubR19IJrMY31mFnAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU71Xgzayb Z0rT+71EBhpyfxijXF0wHwYDVR0jBBgwFoAUuH+tZU7EIXxlANDwaxm+MZ09rfcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1NzI1LzgwMUJDQUE2MDgz QTExRjA5RkYxRDA3NEM0RjlBRTAyL3VILXRaVTdFSVh4bEFORHdheG0tTVowOXJm Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvdUgtdFpVN0VJWHhsQU5Ed2F4bS1NWjA5cmZjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1 NzI1LzgwMUJDQUE2MDgzQTExRjA5RkYxRDA3NEM0RjlBRTAyL3VILXRaVTdFSVh4 bEFORHdheG0tTVowOXJmYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFnVZOjPHtpJgGagud2+kXvcJPZBpweYliLYstRAoRWJxwe+WqO+2VbG C/Ri7iZWXdbCSdac8b5hEnV+H/al55mm2DT1PjQrDidcqWwPQadmffN7A0yZ7xwO GkJ8mS9msWrAW0ptIxpnCfpdriCgAv6KnO2cObavrDBehC9sBLv8AIoPKLLYHeEx ljxJAEy10DA/JQiaAwysd6ZV1PyANgMHwUtCtsAsUrdHP9comilKMjnLojpmNP/d JdF1Xiikz3soNmL2wn1tgPRDm3I7Wwx2M5r4roWz7Xv7aWlLMJJhem61bI8i8ZKk h4QsZ8HZKr4TE/3DJ73lxXSm5h8Pcl4= -----END CERTIFICATE-----Generated at Wed Nov 5 19:32:49 2025 by rpki-client