$ rpki-client -vvf rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft File: U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft (raw, json) Hash identifier: fcSGTg94u/ViXJTvMr1uazimqWof5mn/mjgdoYxD9V8= Subject key identifier: 21:0C:76:1C:11:78:09:DF:1D:DE:58:AE:9D:E5:3A:9C:1F:A1:05:7F Authority key identifier: 53:C0:8B:DA:04:BC:05:32:21:EB:27:3A:A2:15:CC:D9:5C:00:C3:92 Certificate issuer: /CN=A9187325/serialNumber=53C08BDA04BC053221EB273AA215CCD95C00C392 Certificate serial: AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8CL2gS8BTIh6yc6ohXM2VwAw5I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft Manifest number: AF Signing time: Mon 03 Nov 2025 06:06:11 +0000 Manifest this update: Mon 03 Nov 2025 06:06:10 +0000 Manifest next update: Mon 10 Nov 2025 06:06:10 +0000 Files and hashes: 1: U8CL2gS8BTIh6yc6ohXM2VwAw5I.crl (hash: A2NfLdLWn4+m0jeONmMZ1vEmFrOrqdP5r+xZxen+B30=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.crl rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8CL2gS8BTIh6yc6ohXM2VwAw5I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:06:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 175 (0xaf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187325, serialNumber=53C08BDA04BC053221EB273AA215CCD95C00C392 Validity Not Before: Nov 3 06:06:10 2025 GMT Not After : Nov 10 06:06:10 2025 GMT Subject: CN=69084653-4315 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:57:b8:0f:ab:72:46:5a:d5:9d:e3:7c:a7:97: f0:93:44:48:7e:02:96:3c:d7:32:f2:95:62:72:e5: ae:36:54:3a:d0:62:df:ff:05:39:0e:90:8c:56:08: bc:d3:42:91:00:9e:92:18:d0:9b:5f:cf:fc:30:f3: 9f:2a:52:fd:51:16:4e:6f:5f:17:03:38:7b:8b:4e: a4:9f:57:e2:c4:03:b9:48:2c:87:16:07:be:d7:25: 61:29:c5:5b:b6:d2:5d:ed:2a:fc:e2:25:63:ac:73: 2d:ad:80:ae:8f:1a:c3:34:e7:f8:78:6d:e2:72:1d: 7e:b8:50:73:9d:64:2b:83:59:4e:4a:46:db:c8:b3: 0c:9c:0f:72:5b:3f:af:44:a1:c6:fb:5e:f8:bc:43: 06:c1:09:4a:0f:5d:7b:98:78:6f:8d:e4:22:05:0c: 88:eb:23:fd:7f:78:7d:34:81:22:71:57:73:f2:f3: f3:15:6d:0c:e2:01:29:e7:7d:a8:b3:75:ae:8b:61: 32:f4:80:b4:eb:72:41:07:45:3f:a3:1b:32:3d:a6: da:b2:c6:b0:e3:f3:7d:63:09:92:bc:a8:01:d9:2f: fe:2e:12:07:8e:55:0d:d9:8e:c2:9c:c8:52:7d:9d: 45:81:d8:c4:6c:0d:b4:0b:d4:a0:2b:be:83:9d:de: 5e:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:0C:76:1C:11:78:09:DF:1D:DE:58:AE:9D:E5:3A:9C:1F:A1:05:7F X509v3 Authority Key Identifier: keyid:53:C0:8B:DA:04:BC:05:32:21:EB:27:3A:A2:15:CC:D9:5C:00:C3:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8CL2gS8BTIh6yc6ohXM2VwAw5I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cb:f8:da:e5:de:f7:24:c8:cb:06:59:53:d8:13:25:cc:ea:57: 1d:4b:f1:dc:e4:53:4d:ed:64:e5:84:e5:8a:fc:62:8b:9f:df: ca:64:50:8e:be:46:d3:32:46:12:e4:49:76:e3:0c:21:75:87: 40:61:6a:79:6e:c7:b6:34:38:47:22:5b:26:09:05:e8:32:31: 86:bc:3b:a2:e2:f6:af:df:90:dc:a9:c0:ef:df:cf:03:47:89: 3e:3a:78:4b:e9:73:66:34:98:88:2e:79:84:d6:b0:f9:32:2a: 6d:88:55:c7:f0:c7:89:c2:a6:3f:41:c9:fc:1c:77:2c:93:68: 69:dc:05:f2:57:15:71:33:7d:bd:cf:8b:84:f5:3e:2a:46:60: cc:0b:0a:f2:58:f1:b1:32:d7:eb:3e:ae:ce:c2:fb:4f:a4:78: 98:46:1a:9c:88:c8:11:d9:f9:10:da:4b:0e:14:60:05:56:f5: a1:79:8d:72:6b:01:99:b4:ba:0e:72:61:47:e0:a9:48:fa:f4: 0d:3d:89:b2:f9:89:3d:e6:bf:40:c2:76:e6:30:0b:79:ae:7c: 40:4c:ce:88:08:e3:e5:9d:8f:d5:b0:6b:a6:e1:0a:78:5e:98: 26:7e:19:b6:92:5c:57:62:a4:e6:e5:b4:6b:ad:7a:c1:ac:20: 29:30:ae:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODczMjUxMTAvBgNVBAUTKDUzQzA4QkRBMDRCQzA1MzIyMUVCMjczQUEyMTVDQ0Q5 NUMwMEMzOTIwHhcNMjUxMTAzMDYwNjEwWhcNMjUxMTEwMDYwNjEwWjAYMRYwFAYD VQQDEw02OTA4NDY1My00MzE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Ve4D6tyRlrVneN8p5fwk0RIfgKWPNcy8pVicuWuNlQ60GLf/wU5DpCMVgi8 00KRAJ6SGNCbX8/8MPOfKlL9URZOb18XAzh7i06kn1fixAO5SCyHFge+1yVhKcVb ttJd7Sr84iVjrHMtrYCujxrDNOf4eG3ich1+uFBznWQrg1lOSkbbyLMMnA9yWz+v RKHG+174vEMGwQlKD117mHhvjeQiBQyI6yP9f3h9NIEicVdz8vPzFW0M4gEp532o s3Wui2Ey9IC063JBB0U/oxsyPabassaw4/N9YwmSvKgB2S/+LhIHjlUN2Y7CnMhS fZ1FgdjEbA20C9SgK76Dnd5eNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCEMdhwR eAnfHd5Yrp3lOpwfoQV/MB8GA1UdIwQYMBaAFFPAi9oEvAUyIesnOqIVzNlcAMOS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzMyNS84MzM4QzRENkFB RTkxMUVGQjcyMUMyNURDNEY5QUUwMi9VOENMMmdTOEJUSWg2eWM2b2hYTTJWd0F3 NUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U4Q0wyZ1M4QlRJaDZ5YzZvaFhNMlZ3QXc1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzMyNS84MzM4QzRENkFBRTkxMUVGQjcyMUMyNURDNEY5QUUwMi9VOENMMmdTOEJU SWg2eWM2b2hYTTJWd0F3NUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDL+Nrl3vckyMsGWVPYEyXM6lcdS/Hc5FNN7WTlhOWK/GKLn9/KZFCO vkbTMkYS5El24wwhdYdAYWp5bse2NDhHIlsmCQXoMjGGvDui4vav35DcqcDv388D R4k+OnhL6XNmNJiILnmE1rD5MiptiFXH8MeJwqY/Qcn8HHcsk2hp3AXyVxVxM329 z4uE9T4qRmDMCwryWPGxMtfrPq7OwvtPpHiYRhqciMgR2fkQ2ksOFGAFVvWheY1y awGZtLoOcmFH4KlI+vQNPYmy+Yk95r9AwnbmMAt5rnxATM6ICOPlnY/VsGum4Qp4 Xpgmfhm2klxXYqTm5bRrrXrBrCApMK6+ -----END CERTIFICATE-----Generated at Wed Nov 5 03:54:36 2025 by rpki-client