$ rpki-client -vvf rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.mft File: UT8gd9itkRrHe1tcWbPiFMeLAjs.mft (raw, json) Hash identifier: rxK2HsszynjpjzRv9rHcApz/D2Clopcg1tt9YDU2Eag= Subject key identifier: 98:93:3E:8C:5D:F8:21:0B:4A:2C:F9:41:D1:D2:86:84:08:06:77:6A Authority key identifier: 51:3F:20:77:D8:AD:91:1A:C7:7B:5B:5C:59:B3:E2:14:C7:8B:02:3B Certificate issuer: /CN=A917E1B9/serialNumber=513F2077D8AD911AC77B5B5C59B3E214C78B023B Certificate serial: 0607 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UT8gd9itkRrHe1tcWbPiFMeLAjs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.mft Manifest number: 0601 Signing time: Tue 04 Nov 2025 22:59:11 +0000 Manifest this update: Tue 04 Nov 2025 22:59:09 +0000 Manifest next update: Tue 11 Nov 2025 22:59:09 +0000 Files and hashes: 1: UT8gd9itkRrHe1tcWbPiFMeLAjs.crl (hash: pv1tb2Y5BOr6HP6QtThK0zCVe2cU1hWpc8mayXrGDcw=) 2: 7F27A9D6C88211EBB7A6F948C4F9AE02.roa (hash: mwVl4hNEaIqbBNWJudlbCJK/THwSQhv97GiC3rtYAeU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.crl rsync://rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UT8gd9itkRrHe1tcWbPiFMeLAjs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:59:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1543 (0x607) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E1B9, serialNumber=513F2077D8AD911AC77B5B5C59B3E214C78B023B Validity Not Before: Nov 4 22:59:09 2025 GMT Not After : Nov 11 22:59:09 2025 GMT Subject: CN=690a853e-2785 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:72:04:98:1b:8c:42:c9:37:67:f2:c1:36:90: 00:ad:60:11:3d:81:6a:6c:b1:d9:f1:ba:61:ba:b7: 11:f6:de:7d:a4:b1:ca:6b:99:cd:7d:fd:09:b5:cb: 17:09:f7:29:a5:17:78:80:0a:48:8f:73:c5:6a:49: fc:ca:9e:af:e1:63:83:15:c2:93:e7:72:f2:44:ca: dd:06:d2:8d:ec:e5:61:3a:28:57:1c:df:ef:1c:5d: 07:3a:e0:9a:4c:a1:3e:30:aa:5e:39:9a:44:fe:6d: 20:a5:52:c6:44:c7:de:b3:51:e9:ae:e3:52:d1:2f: 51:54:4f:a0:cf:2e:f3:aa:a1:6f:25:93:93:01:f9: 49:55:85:b2:48:01:49:5b:02:c0:11:e7:4d:33:8c: 9d:7d:68:1c:ed:ed:f6:56:ac:58:1e:9b:0f:35:2d: 1e:57:ed:1c:79:9e:ad:96:7a:19:9f:93:39:4c:9f: e7:3c:81:05:cc:6f:24:42:ac:6e:8d:e0:df:65:88: fb:b3:bb:ad:5a:c2:15:3a:53:de:af:11:86:e9:4f: 5a:5c:47:61:ca:38:ce:60:61:93:5d:a0:64:20:79: 8c:06:2d:c5:21:84:87:e0:a2:2e:ce:fe:a0:2f:a7: 78:dc:e1:77:9a:4e:2c:9c:e1:05:52:85:32:c9:7e: 80:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:93:3E:8C:5D:F8:21:0B:4A:2C:F9:41:D1:D2:86:84:08:06:77:6A X509v3 Authority Key Identifier: keyid:51:3F:20:77:D8:AD:91:1A:C7:7B:5B:5C:59:B3:E2:14:C7:8B:02:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UT8gd9itkRrHe1tcWbPiFMeLAjs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:42:56:b6:b4:73:01:ef:81:6d:64:0e:3a:aa:36:07:88:2d: af:a4:7c:b4:3b:c4:b5:02:75:14:d5:57:ef:f5:78:d4:db:db: 64:71:f2:ba:b5:66:5e:15:1c:0e:9f:80:ec:7c:50:cc:c3:b2: 2e:7c:b7:bc:d3:9a:c3:23:0e:c2:6c:64:4c:7d:2b:ce:74:fd: 78:31:1b:3f:71:93:5c:2c:f4:6a:a0:3d:02:e7:1c:b8:fc:43: 24:a7:05:16:ed:90:b1:d6:b9:af:f1:17:ca:10:c2:f7:ba:6a: fc:58:ae:ea:4e:58:c2:f7:44:59:70:f5:c2:c9:cb:a6:57:c4: c0:51:5a:e6:c7:a4:de:33:a2:41:a0:83:53:17:a6:04:56:84: 11:af:96:69:7d:f4:0e:a5:f8:9b:27:70:64:18:ff:ce:7e:73: 77:1b:f7:eb:d4:d6:58:55:0a:fe:7a:31:70:e8:cd:ee:fa:d8: 48:a5:30:0f:18:98:45:71:90:49:9e:6e:9b:ca:5d:e3:28:c9: 37:cb:6a:43:82:0b:98:0b:4c:d5:5c:6d:8b:86:92:5f:25:08: 8b:51:25:d4:4d:a9:54:1d:f8:90:07:0d:62:6c:75:59:0f:5e: 65:69:13:b0:ae:59:21:41:cb:c9:cc:5d:6f:cf:eb:b2:6e:45: 86:41:8f:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBgcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UxQjkxMTAvBgNVBAUTKDUxM0YyMDc3RDhBRDkxMUFDNzdCNUI1QzU5QjNFMjE0 Qzc4QjAyM0IwHhcNMjUxMTA0MjI1OTA5WhcNMjUxMTExMjI1OTA5WjAYMRYwFAYD VQQDEw02OTBhODUzZS0yNzg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlnIEmBuMQsk3Z/LBNpAArWARPYFqbLHZ8bphurcR9t59pLHKa5nNff0JtcsX CfcppRd4gApIj3PFakn8yp6v4WODFcKT53LyRMrdBtKN7OVhOihXHN/vHF0HOuCa TKE+MKpeOZpE/m0gpVLGRMfes1HpruNS0S9RVE+gzy7zqqFvJZOTAflJVYWySAFJ WwLAEedNM4ydfWgc7e32VqxYHpsPNS0eV+0ceZ6tlnoZn5M5TJ/nPIEFzG8kQqxu jeDfZYj7s7utWsIVOlPerxGG6U9aXEdhyjjOYGGTXaBkIHmMBi3FIYSH4KIuzv6g L6d43OF3mk4snOEFUoUyyX6AywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJiTPoxd +CELSiz5QdHShoQIBndqMB8GA1UdIwQYMBaAFFE/IHfYrZEax3tbXFmz4hTHiwI7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTFCOS9DREI3MDJGNkM4 N0IxMUVCQUZBNjk1M0JDNEY5QUUwMi9VVDhnZDlpdGtSckhlMXRjV2JQaUZNZUxB anMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VUOGdkOWl0a1JySGUxdGNXYlBpRk1lTEFqcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTFCOS9DREI3MDJGNkM4N0IxMUVCQUZBNjk1M0JDNEY5QUUwMi9VVDhnZDlpdGtS ckhlMXRjV2JQaUZNZUxBanMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXQla2tHMB74FtZA46qjYHiC2vpHy0O8S1AnUU1Vfv9XjU29tkcfK6 tWZeFRwOn4DsfFDMw7IufLe805rDIw7CbGRMfSvOdP14MRs/cZNcLPRqoD0C5xy4 /EMkpwUW7ZCx1rmv8RfKEML3umr8WK7qTljC90RZcPXCycumV8TAUVrmx6TeM6JB oINTF6YEVoQRr5ZpffQOpfibJ3BkGP/OfnN3G/fr1NZYVQr+ejFw6M3u+thIpTAP GJhFcZBJnm6byl3jKMk3y2pDgguYC0zVXG2LhpJfJQiLUSXUTalUHfiQBw1ibHVZ D15laROwrlkhQcvJzF1vz+uybkWGQY+b -----END CERTIFICATE-----Generated at Wed Nov 5 04:55:07 2025 by rpki-client