$ rpki-client -vvf rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/0UdMHaQ5s05IfCjCRynmh-CUfXM.mft File: 0UdMHaQ5s05IfCjCRynmh-CUfXM.mft (raw, json) Hash identifier: LoePxrVzaYFGkwjeNtZRx4ey0WSUIqKI290iTX6Cdwo= Subject key identifier: 36:D3:D6:21:4A:31:A3:29:F1:86:A1:E6:74:0B:C9:9C:BC:DF:77:8A Authority key identifier: D1:47:4C:1D:A4:39:B3:4E:48:7C:28:C2:47:29:E6:87:E0:94:7D:73 Certificate issuer: /CN=A91840A8/serialNumber=D1474C1DA439B34E487C28C24729E687E0947D73 Certificate serial: 0698 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0UdMHaQ5s05IfCjCRynmh-CUfXM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/0UdMHaQ5s05IfCjCRynmh-CUfXM.mft Manifest number: 067C Signing time: Tue 04 Nov 2025 22:41:07 +0000 Manifest this update: Tue 04 Nov 2025 22:41:07 +0000 Manifest next update: Tue 11 Nov 2025 22:41:07 +0000 Files and hashes: 1: 0UdMHaQ5s05IfCjCRynmh-CUfXM.crl (hash: 7V0UNlRgfUK9U82nO0GdR8v9cfzHNwym6l8YeYVULUM=) 2: AB4B141CA24211ED92C4107BC4F9AE02.roa (hash: gznbpzQsXm6xdg/ldBzHxBtH3yLXVXqXYnLIiSuqeug=) 3: DD7CA58EA23F11EDBCDB6D73C4F9AE02.roa (hash: 5xwHH4/f23qWAT+TboZC+tRvenA32AbWJXTfPPug25w=) 4: E9FB74DCE57711ECBC483554C4F9AE02.roa (hash: t68ri8+sG+PCgnACutRhiIQMtoo2iXpsz04+S32xy6c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/0UdMHaQ5s05IfCjCRynmh-CUfXM.crl rsync://rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/0UdMHaQ5s05IfCjCRynmh-CUfXM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0UdMHaQ5s05IfCjCRynmh-CUfXM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:41:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1688 (0x698) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91840A8, serialNumber=D1474C1DA439B34E487C28C24729E687E0947D73 Validity Not Before: Nov 4 22:41:07 2025 GMT Not After : Nov 11 22:41:07 2025 GMT Subject: CN=690a8103-5a20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:5d:be:17:6d:8f:15:58:a6:af:3e:ce:2c:77: 89:75:a3:60:63:15:21:80:a2:4d:27:f7:d3:71:a6: 9f:38:4e:0a:7f:a8:84:fe:e4:14:b3:b1:f0:ec:c4: 14:78:bf:12:e5:b6:30:9c:32:f7:98:b4:9f:22:f4: f5:8d:63:78:14:d2:2e:4b:fc:0d:2c:96:4e:46:99: cf:1b:74:b0:3c:9a:bb:ad:8a:f2:ba:ca:a1:60:6f: 29:3b:52:cd:34:4d:3f:1f:48:6e:76:f7:89:ba:25: e6:5f:5f:1f:d9:3b:a5:ad:a5:ee:25:9e:94:7d:f5: 42:c0:77:b8:b2:91:19:cf:57:16:06:2f:d9:92:48: 0f:7d:bf:98:55:6e:04:9e:4a:6c:da:e3:29:fe:32: ae:c7:ff:29:f7:bb:f0:28:82:6e:21:1e:8d:20:8f: 41:6a:7c:48:14:02:ea:98:36:0b:c3:85:79:32:75: d6:19:2c:eb:a6:1a:d2:48:59:e1:c1:ee:4b:77:df: c9:dd:04:30:d9:66:55:36:c5:db:98:30:b9:96:8d: a1:df:c4:04:98:c2:71:d0:3b:a3:02:2a:4c:8a:a2: ef:e6:6a:a4:89:83:93:6d:c0:61:a9:82:b0:24:af: e6:e5:7d:b0:35:af:bd:76:32:6d:ea:52:52:f2:10: ee:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:D3:D6:21:4A:31:A3:29:F1:86:A1:E6:74:0B:C9:9C:BC:DF:77:8A X509v3 Authority Key Identifier: keyid:D1:47:4C:1D:A4:39:B3:4E:48:7C:28:C2:47:29:E6:87:E0:94:7D:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/0UdMHaQ5s05IfCjCRynmh-CUfXM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0UdMHaQ5s05IfCjCRynmh-CUfXM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/0UdMHaQ5s05IfCjCRynmh-CUfXM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:4f:32:c0:e1:72:49:63:f1:48:43:c6:20:77:2b:71:4b:17: 4b:09:71:d6:3a:ba:3c:1a:ec:38:e4:98:94:7f:5f:69:d3:1b: a3:d6:13:a4:82:a9:44:aa:cf:ed:3b:be:ec:21:31:30:66:e0: 63:34:37:87:a1:23:40:4e:c6:36:9b:82:2d:6b:a7:04:fb:d0: 16:83:ae:56:91:ad:60:8e:1a:e5:1a:1b:81:56:95:d8:55:7b: 67:25:8a:05:ab:1b:bf:04:8e:03:15:2d:9c:09:d0:14:fe:4a: c8:00:41:b7:ab:5f:3e:bc:11:d9:39:9f:f5:c5:ad:ee:82:bd: 21:66:36:17:c1:d0:d3:1c:bd:a0:37:19:79:4d:b7:d1:22:c4: 71:c8:53:c9:23:00:2f:e1:12:26:43:66:69:0d:25:ab:d2:a5: b9:59:58:8f:3e:eb:33:f6:81:8d:b9:3a:5f:96:d7:f3:55:ce: 8d:46:1c:76:d3:0a:e1:f0:a5:bb:b8:fd:00:69:57:36:e6:42: 2a:cf:24:db:b5:4a:a7:3d:20:42:dd:18:74:ab:a3:ce:14:83: b3:97:08:cf:c4:dd:ad:cb:2e:d8:c7:7e:e7:8e:10:88:9f:cb: 4e:7c:af:94:03:67:98:db:38:13:55:c5:f9:f3:d2:e8:94:e3: 90:cd:46:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQwQTgxMTAvBgNVBAUTKEQxNDc0QzFEQTQzOUIzNEU0ODdDMjhDMjQ3MjlFNjg3 RTA5NDdENzMwHhcNMjUxMTA0MjI0MTA3WhcNMjUxMTExMjI0MTA3WjAYMRYwFAYD VQQDEw02OTBhODEwMy01YTIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyl2+F22PFVimrz7OLHeJdaNgYxUhgKJNJ/fTcaafOE4Kf6iE/uQUs7Hw7MQU eL8S5bYwnDL3mLSfIvT1jWN4FNIuS/wNLJZORpnPG3SwPJq7rYryusqhYG8pO1LN NE0/H0hudveJuiXmX18f2TulraXuJZ6UffVCwHe4spEZz1cWBi/ZkkgPfb+YVW4E nkps2uMp/jKux/8p97vwKIJuIR6NII9BanxIFALqmDYLw4V5MnXWGSzrphrSSFnh we5Ld9/J3QQw2WZVNsXbmDC5lo2h38QEmMJx0DujAipMiqLv5mqkiYOTbcBhqYKw JK/m5X2wNa+9djJt6lJS8hDuTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDbT1iFK MaMp8Yah5nQLyZy833eKMB8GA1UdIwQYMBaAFNFHTB2kObNOSHwowkcp5ofglH1z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDBBOC83MEMyRUI3QUEx OTYxMUVCODIwMENGMDlDNEY5QUUwMi8wVWRNSGFRNXMwNUlmQ2pDUnlubWgtQ1Vm WE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBVZE1IYVE1czA1SWZDakNSeW5taC1DVWZYTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDBBOC83MEMyRUI3QUExOTYxMUVCODIwMENGMDlDNEY5QUUwMi8wVWRNSGFRNXMw NUlmQ2pDUnlubWgtQ1VmWE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJTzLA4XJJY/FIQ8YgdytxSxdLCXHWOro8Guw45JiUf19p0xuj1hOk gqlEqs/tO77sITEwZuBjNDeHoSNATsY2m4Ita6cE+9AWg65Wka1gjhrlGhuBVpXY VXtnJYoFqxu/BI4DFS2cCdAU/krIAEG3q18+vBHZOZ/1xa3ugr0hZjYXwdDTHL2g Nxl5TbfRIsRxyFPJIwAv4RImQ2ZpDSWr0qW5WViPPusz9oGNuTpfltfzVc6NRhx2 0wrh8KW7uP0AaVc25kIqzyTbtUqnPSBC3Rh0q6POFIOzlwjPxN2tyy7Yx37njhCI n8tOfK+UA2eY2zgTVcX589LolOOQzUZQ -----END CERTIFICATE-----Generated at Wed Nov 5 23:06:09 2025 by rpki-client