$ rpki-client -vvf rpki.apnic.net/member_repository/A918B418/AD0DC4801C4F11EDAAD31386C4F9AE02/rUk9yaPSQDSDYoWHBR93lRWJFnk.mft File: rUk9yaPSQDSDYoWHBR93lRWJFnk.mft (raw, json) Hash identifier: HRfP0a6CpSFE25MIxmWjIATRlwH5AS2CmNQpApVih1c= Subject key identifier: 53:26:D4:20:56:F1:79:21:EC:1A:0D:4A:72:FD:61:0D:2B:02:0F:98 Authority key identifier: AD:49:3D:C9:A3:D2:40:34:83:62:85:87:05:1F:77:95:15:89:16:79 Certificate issuer: /CN=A918B418/serialNumber=AD493DC9A3D2403483628587051F779515891679 Certificate serial: 02A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rUk9yaPSQDSDYoWHBR93lRWJFnk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B418/AD0DC4801C4F11EDAAD31386C4F9AE02/rUk9yaPSQDSDYoWHBR93lRWJFnk.mft Manifest number: 02A1 Signing time: Mon 03 Nov 2025 01:29:34 +0000 Manifest this update: Mon 03 Nov 2025 01:29:34 +0000 Manifest next update: Mon 10 Nov 2025 01:29:34 +0000 Files and hashes: 1: rUk9yaPSQDSDYoWHBR93lRWJFnk.crl (hash: AYx/Mf0XkfONejiA9Aif+BpHWj/8OekDLXqi9yCPqMM=) 2: 8275E1721C5311EDA75CF137C4F9AE02.roa (hash: QBccf8qiB/fg1E5oo2BszC0tBdDW5Z5O97MgPa2rWD0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B418/AD0DC4801C4F11EDAAD31386C4F9AE02/rUk9yaPSQDSDYoWHBR93lRWJFnk.crl rsync://rpki.apnic.net/member_repository/A918B418/AD0DC4801C4F11EDAAD31386C4F9AE02/rUk9yaPSQDSDYoWHBR93lRWJFnk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rUk9yaPSQDSDYoWHBR93lRWJFnk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 01:29:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 677 (0x2a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B418, serialNumber=AD493DC9A3D2403483628587051F779515891679 Validity Not Before: Nov 3 01:29:34 2025 GMT Not After : Nov 10 01:29:34 2025 GMT Subject: CN=6908057e-b2d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:20:42:62:dc:fd:69:e2:3e:9a:f7:7d:a4:45: 5c:e5:16:20:1d:42:31:16:17:d8:05:8a:78:5a:09: 9d:1d:5e:d3:bd:d9:e9:48:7f:8a:20:f0:09:11:b4: 2d:56:6c:26:4a:97:60:a1:dc:2d:d3:61:5d:ef:2d: 44:e3:2d:db:9a:1b:31:20:5a:b1:15:08:41:7d:4a: b8:a9:92:d5:43:46:c4:6b:cd:73:92:d6:52:b6:99: 2a:60:8a:d6:ca:5b:34:57:89:be:b3:03:cd:1e:32: ca:58:80:d8:0a:05:f9:7a:90:11:43:68:69:92:ed: 35:c8:08:7b:ea:c5:99:a5:3c:80:2e:60:11:82:58: 59:32:4f:6d:af:0c:a8:47:ef:53:4f:df:ff:8d:ce: 2c:d8:4f:8f:6f:3b:7c:37:23:7c:0b:ce:56:5a:9d: 6f:f2:9d:31:be:fc:47:e2:71:be:c2:0b:32:bb:a9: 3a:b0:14:f4:de:2c:44:c9:a2:54:59:23:5a:81:66: fb:90:c3:7a:86:db:7c:e3:17:32:54:51:40:6f:b0: 9d:b2:c7:95:0a:6b:39:0a:47:95:1b:a4:0b:21:4a: 28:e1:44:cd:f3:74:21:04:a7:a5:e1:46:4f:4d:bf: e6:de:0b:71:76:05:d4:bd:55:56:e5:e0:4d:13:a0: 9c:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:26:D4:20:56:F1:79:21:EC:1A:0D:4A:72:FD:61:0D:2B:02:0F:98 X509v3 Authority Key Identifier: keyid:AD:49:3D:C9:A3:D2:40:34:83:62:85:87:05:1F:77:95:15:89:16:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B418/AD0DC4801C4F11EDAAD31386C4F9AE02/rUk9yaPSQDSDYoWHBR93lRWJFnk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rUk9yaPSQDSDYoWHBR93lRWJFnk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B418/AD0DC4801C4F11EDAAD31386C4F9AE02/rUk9yaPSQDSDYoWHBR93lRWJFnk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:a1:70:d7:80:1c:92:d2:6c:ca:89:4b:4c:2a:d0:0a:5a:84: 53:72:c6:41:03:eb:f1:12:51:29:64:6d:0f:a1:ed:78:b2:98: a6:35:d3:27:b2:23:02:7a:e6:d8:29:ac:e9:fa:b0:c6:cd:e0: 2e:b6:5b:29:5c:39:31:9b:fa:76:cf:93:5e:1d:78:a3:4f:56: 94:1a:4e:b8:53:3f:f1:e6:21:a4:a6:7b:9a:23:4a:34:a9:2b: e7:57:aa:a0:10:9c:69:6c:84:4b:88:9e:62:a6:27:0f:a4:4e: df:52:33:ad:59:61:2f:80:d1:29:a9:7a:0d:47:1e:ea:e6:5b: c1:8b:2a:f5:3d:13:1c:98:fb:43:31:0a:42:01:a9:c3:da:70: 92:d9:6c:2c:1f:1d:8a:3b:c6:4d:52:a2:d9:b1:48:eb:75:42: 4a:1f:89:ee:79:88:7e:0b:e8:c6:6d:39:e2:c5:7e:33:09:db: 73:2b:54:8b:0a:14:e2:66:3c:1a:2c:d4:7f:7a:dc:0d:81:2c: da:ab:5d:27:43:77:a5:b6:2f:db:18:58:86:a2:d8:97:e7:81: aa:93:38:42:6f:e7:93:1c:e0:5e:7d:de:08:76:a7:2f:20:d2: 55:a3:ec:6a:e3:83:25:1c:79:73:11:19:b4:40:a9:ce:c1:f5: 0b:c8:9f:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEI0MTgxMTAvBgNVBAUTKEFENDkzREM5QTNEMjQwMzQ4MzYyODU4NzA1MUY3Nzk1 MTU4OTE2NzkwHhcNMjUxMTAzMDEyOTM0WhcNMjUxMTEwMDEyOTM0WjAYMRYwFAYD VQQDEw02OTA4MDU3ZS1iMmQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzyBCYtz9aeI+mvd9pEVc5RYgHUIxFhfYBYp4WgmdHV7TvdnpSH+KIPAJEbQt VmwmSpdgodwt02Fd7y1E4y3bmhsxIFqxFQhBfUq4qZLVQ0bEa81zktZStpkqYIrW yls0V4m+swPNHjLKWIDYCgX5epARQ2hpku01yAh76sWZpTyALmARglhZMk9trwyo R+9TT9//jc4s2E+Pbzt8NyN8C85WWp1v8p0xvvxH4nG+wgsyu6k6sBT03ixEyaJU WSNagWb7kMN6htt84xcyVFFAb7CdsseVCms5CkeVG6QLIUoo4UTN83QhBKel4UZP Tb/m3gtxdgXUvVVW5eBNE6CcZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFMm1CBW 8Xkh7BoNSnL9YQ0rAg+YMB8GA1UdIwQYMBaAFK1JPcmj0kA0g2KFhwUfd5UViRZ5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjQxOC9BRDBEQzQ4MDFD NEYxMUVEQUFEMzEzODZDNEY5QUUwMi9yVWs5eWFQU1FEU0RZb1dIQlI5M2xSV0pG bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JVazl5YVBTUURTRFlvV0hCUjkzbFJXSkZuay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QjQxOC9BRDBEQzQ4MDFDNEYxMUVEQUFEMzEzODZDNEY5QUUwMi9yVWs5eWFQU1FE U0RZb1dIQlI5M2xSV0pGbmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFoXDXgByS0mzKiUtMKtAKWoRTcsZBA+vxElEpZG0Poe14spimNdMn siMCeubYKazp+rDGzeAutlspXDkxm/p2z5NeHXijT1aUGk64Uz/x5iGkpnuaI0o0 qSvnV6qgEJxpbIRLiJ5ipicPpE7fUjOtWWEvgNEpqXoNRx7q5lvBiyr1PRMcmPtD MQpCAanD2nCS2WwsHx2KO8ZNUqLZsUjrdUJKH4nueYh+C+jGbTnixX4zCdtzK1SL ChTiZjwaLNR/etwNgSzaq10nQ3elti/bGFiGotiX54GqkzhCb+eTHOBefd4Idqcv INJVo+xq44MlHHlzERm0QKnOwfULyJ9l -----END CERTIFICATE-----Generated at Tue Nov 4 12:41:20 2025 by rpki-client