$ rpki-client -vvf rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft File: up0lGkqfrMTkpmOHdQooZioxAFc.mft (raw, json) Hash identifier: Yxehl0vQJM1qq+0kgHCkN5Opnx3U1JZDnpGNDxDGrho= Subject key identifier: E1:D4:EE:0F:05:B3:71:C4:DB:D7:B4:82:2B:6B:9C:23:25:D2:52:B6 Authority key identifier: BA:9D:25:1A:4A:9F:AC:C4:E4:A6:63:87:75:0A:28:66:2A:31:00:57 Certificate issuer: /CN=A915B581/serialNumber=BA9D251A4A9FACC4E4A66387750A28662A310057 Certificate serial: 3501 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0lGkqfrMTkpmOHdQooZioxAFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft Manifest number: 34ED Signing time: Tue 04 Nov 2025 14:49:57 +0000 Manifest this update: Tue 04 Nov 2025 14:49:56 +0000 Manifest next update: Tue 11 Nov 2025 14:49:56 +0000 Files and hashes: 1: up0lGkqfrMTkpmOHdQooZioxAFc.crl (hash: wLet9sP1ymkmP0BZ7Zm8uni8xpRc0QNY/aJdAKAN0io=) 2: 7A38D6B854F311E7AC64ED3AC4F9AE02.roa (hash: 87V6SXUvvAIKhZA2XnoavxG9s7I/eBbv0ebUc09ej5A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.crl rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0lGkqfrMTkpmOHdQooZioxAFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:49:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13569 (0x3501) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B581, serialNumber=BA9D251A4A9FACC4E4A66387750A28662A310057 Validity Not Before: Nov 4 14:49:56 2025 GMT Not After : Nov 11 14:49:56 2025 GMT Subject: CN=690a1295-74e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:c7:7e:73:e1:69:ea:08:9b:82:8b:2f:e4:f1: 55:72:a4:29:bb:65:62:92:c0:2c:e5:f3:b7:f7:f0: cf:dc:d0:a9:2f:43:8b:7e:6f:1a:1c:34:44:06:40: 77:7d:d0:f0:6c:07:60:c8:5f:93:b1:33:f2:57:d2: 50:c4:ae:3e:83:d4:55:73:a0:f7:9b:2c:be:29:e9: 2a:84:91:d0:b5:81:9b:23:68:24:ca:ae:f1:f2:eb: 65:40:64:bf:3f:a2:e8:e1:73:ec:79:60:31:a7:97: 0f:1a:65:c1:c0:2c:18:48:69:d3:f7:b8:7a:4e:14: d3:6f:20:c5:db:c4:7d:c0:8f:4b:15:ab:7d:3a:b3: e8:9c:0e:e9:76:73:cd:22:ed:0c:f0:18:39:d5:57: 89:50:43:6a:99:ae:5d:a1:a5:55:b4:3b:2d:8d:0f: 60:fc:b9:04:cd:6f:1f:07:d9:fa:e5:d8:26:19:3d: e0:ce:d7:76:48:5a:33:56:75:41:20:81:8b:a0:06: 3d:ec:8f:9e:d0:86:ab:00:c5:44:28:ae:a1:f0:2c: 13:d7:4a:bf:c4:23:33:a6:8a:3c:60:4f:4b:4c:da: d3:dd:be:e6:2e:0e:29:90:c6:93:f5:4a:e7:94:ce: 8f:2a:25:2a:7b:8e:ee:93:14:4c:f3:dd:97:21:10: 9e:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:D4:EE:0F:05:B3:71:C4:DB:D7:B4:82:2B:6B:9C:23:25:D2:52:B6 X509v3 Authority Key Identifier: keyid:BA:9D:25:1A:4A:9F:AC:C4:E4:A6:63:87:75:0A:28:66:2A:31:00:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0lGkqfrMTkpmOHdQooZioxAFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:37:24:0e:82:70:aa:79:88:72:b1:f9:f9:66:81:00:60:25: fe:f0:ce:97:15:1f:c6:6b:f7:df:7a:e1:c9:38:bc:1e:fa:f7: a7:07:63:b8:15:94:d4:9d:fa:6a:ce:08:9d:d5:aa:21:11:a9: a9:52:5a:0f:55:2d:19:0e:4b:bf:06:f8:96:f6:f3:51:91:cc: 4a:bf:f2:93:ba:d8:88:fe:fc:53:99:cd:9f:45:a3:a6:61:b5: 9f:c1:c9:15:67:cd:4d:03:03:a6:26:70:a5:0d:cc:5d:83:a4: 0d:76:c3:bf:7d:d0:9e:e1:2c:60:80:83:34:5f:c3:10:14:00: 4b:d9:15:4f:e7:b2:a0:ee:cd:e5:cf:35:ad:d9:b5:0e:54:d2: 54:06:06:c4:15:20:ce:47:31:33:78:a0:ca:8a:e9:78:ea:9e: 59:29:4a:85:84:8c:59:6a:09:63:c0:16:f3:66:5d:e8:84:46: 85:44:14:f0:92:ee:3d:06:00:e3:fd:a6:31:a1:4b:41:03:02: f4:bc:39:15:d7:8f:20:e2:10:f2:62:ac:26:52:a3:aa:22:e4: 18:7c:24:4c:e0:f1:05:b1:23:d4:2f:50:ea:a7:e1:2f:c1:a2: a4:8a:52:30:31:25:38:01:e3:a4:a1:a5:c2:93:7a:d9:3d:4a: b8:dc:1d:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNQEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUI1ODExMTAvBgNVBAUTKEJBOUQyNTFBNEE5RkFDQzRFNEE2NjM4Nzc1MEEyODY2 MkEzMTAwNTcwHhcNMjUxMTA0MTQ0OTU2WhcNMjUxMTExMTQ0OTU2WjAYMRYwFAYD VQQDEw02OTBhMTI5NS03NGUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5sd+c+Fp6gibgosv5PFVcqQpu2ViksAs5fO39/DP3NCpL0OLfm8aHDREBkB3 fdDwbAdgyF+TsTPyV9JQxK4+g9RVc6D3myy+KekqhJHQtYGbI2gkyq7x8utlQGS/ P6Lo4XPseWAxp5cPGmXBwCwYSGnT97h6ThTTbyDF28R9wI9LFat9OrPonA7pdnPN Iu0M8Bg51VeJUENqma5doaVVtDstjQ9g/LkEzW8fB9n65dgmGT3gztd2SFozVnVB IIGLoAY97I+e0IarAMVEKK6h8CwT10q/xCMzpoo8YE9LTNrT3b7mLg4pkMaT9Urn lM6PKiUqe47ukxRM892XIRCeGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOHU7g8F s3HE29e0gitrnCMl0lK2MB8GA1UdIwQYMBaAFLqdJRpKn6zE5KZjh3UKKGYqMQBX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QjU4MS9CQjhGREZGRTFE OTMxMUUyQTk2MzhBRjcwOEIwMkNEMi91cDBsR2txZnJNVGtwbU9IZFFvb1ppb3hB RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VwMGxHa3Fmck1Ua3BtT0hkUW9vWmlveEFGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QjU4MS9CQjhGREZGRTFEOTMxMUUyQTk2MzhBRjcwOEIwMkNEMi91cDBsR2txZnJN VGtwbU9IZFFvb1ppb3hBRmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALNyQOgnCqeYhysfn5ZoEAYCX+8M6XFR/Ga/ffeuHJOLwe+venB2O4 FZTUnfpqzgid1aohEampUloPVS0ZDku/BviW9vNRkcxKv/KTutiI/vxTmc2fRaOm YbWfwckVZ81NAwOmJnClDcxdg6QNdsO/fdCe4SxggIM0X8MQFABL2RVP57Kg7s3l zzWt2bUOVNJUBgbEFSDORzEzeKDKiul46p5ZKUqFhIxZagljwBbzZl3ohEaFRBTw ku49BgDj/aYxoUtBAwL0vDkV148g4hDyYqwmUqOqIuQYfCRM4PEFsSPUL1Dqp+Ev waKkilIwMSU4AeOkoaXCk3rZPUq43B2v -----END CERTIFICATE-----Generated at Wed Nov 5 19:20:50 2025 by rpki-client