$ rpki-client -vvf rpki.apnic.net/member_repository/A91934DE/A941D5E2D8E411ED92EA3620C4F9AE02/_UnAZPyj6S3swYqPUElLIfwB8lY.mft File: _UnAZPyj6S3swYqPUElLIfwB8lY.mft (raw, json) Hash identifier: nsaaWZ/jlfwjWZnxDdGV6xjpufaOLyGgbzwOBLqnwHg= Subject key identifier: 4C:1C:22:97:DD:5D:61:1C:B8:C6:4A:3D:0A:D0:47:AA:B5:C3:22:5D Authority key identifier: FD:49:C0:64:FC:A3:E9:2D:EC:C1:8A:8F:50:49:4B:21:FC:01:F2:56 Certificate issuer: /CN=A91934DE/serialNumber=FD49C064FCA3E92DECC18A8F50494B21FC01F256 Certificate serial: 01F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_UnAZPyj6S3swYqPUElLIfwB8lY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91934DE/A941D5E2D8E411ED92EA3620C4F9AE02/_UnAZPyj6S3swYqPUElLIfwB8lY.mft Manifest number: 01E9 Signing time: Mon 03 Nov 2025 02:40:30 +0000 Manifest this update: Mon 03 Nov 2025 02:40:30 +0000 Manifest next update: Mon 10 Nov 2025 02:40:30 +0000 Files and hashes: 1: _UnAZPyj6S3swYqPUElLIfwB8lY.crl (hash: 7O7h5BjNTZCg6S6CBYGs4rJ85BkniNJQ24gmbCruOz4=) 2: 358556D2D98F11EDA9A38028C4F9AE02.roa (hash: w60npFN7Kaoau14A8nUumKIk6Z7FI9jzoRmBuAraQgw=) 3: 05F11BACDF4A11EDA4190947C4F9AE02.roa (hash: xNw6lqRZVzml6zGHz7sRyZFWQnA5LMwPw8PJ9UjVWeM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91934DE/A941D5E2D8E411ED92EA3620C4F9AE02/_UnAZPyj6S3swYqPUElLIfwB8lY.crl rsync://rpki.apnic.net/member_repository/A91934DE/A941D5E2D8E411ED92EA3620C4F9AE02/_UnAZPyj6S3swYqPUElLIfwB8lY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_UnAZPyj6S3swYqPUElLIfwB8lY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:40:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 502 (0x1f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91934DE, serialNumber=FD49C064FCA3E92DECC18A8F50494B21FC01F256 Validity Not Before: Nov 3 02:40:30 2025 GMT Not After : Nov 10 02:40:30 2025 GMT Subject: CN=6908161e-25e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:95:e2:6a:f8:e6:2b:91:23:58:d0:0b:c2:bc: dd:4d:40:ea:c6:cb:85:72:5a:85:81:91:bb:3f:94: 28:a7:62:10:de:66:b2:2a:8d:e1:4f:10:53:31:d9: 95:99:b3:02:b2:12:46:32:17:da:80:43:1a:3b:95: 4a:bf:e2:15:5e:a7:cf:97:d8:8b:03:51:5c:9b:7d: f8:80:83:17:0d:3b:0f:39:9c:e4:1e:e0:c1:8c:d9: 12:d2:b4:fb:3a:2c:6e:76:22:da:4e:1b:b2:20:f0: b2:de:b1:96:46:15:25:79:cb:97:e5:ff:b0:5c:44: 36:2e:be:a2:64:62:56:fa:85:bc:29:c0:fd:ec:0c: ee:31:74:50:41:54:a1:71:10:bd:f1:cd:01:26:f2: 0b:64:69:c0:88:be:d3:95:78:1c:2d:c7:26:9a:69: 59:bb:52:3b:79:b6:2d:0e:64:8c:66:cd:aa:21:45: 86:57:ef:12:5f:9f:c8:47:5d:e7:bc:6b:4b:b5:ff: 69:a7:9a:dd:f2:73:96:25:3e:dc:f1:44:1d:0f:01: d1:e3:28:57:53:c3:8c:21:d0:0d:44:11:38:09:4d: d5:ce:6f:e4:73:b8:b7:01:c9:bf:6c:e6:a9:b2:70: 21:84:70:45:21:81:68:de:63:56:b3:1a:e0:5f:0a: 01:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:1C:22:97:DD:5D:61:1C:B8:C6:4A:3D:0A:D0:47:AA:B5:C3:22:5D X509v3 Authority Key Identifier: keyid:FD:49:C0:64:FC:A3:E9:2D:EC:C1:8A:8F:50:49:4B:21:FC:01:F2:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91934DE/A941D5E2D8E411ED92EA3620C4F9AE02/_UnAZPyj6S3swYqPUElLIfwB8lY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_UnAZPyj6S3swYqPUElLIfwB8lY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91934DE/A941D5E2D8E411ED92EA3620C4F9AE02/_UnAZPyj6S3swYqPUElLIfwB8lY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:d5:48:36:38:22:4c:79:68:64:3a:d5:0e:a2:ce:8d:79:6f: 45:ef:9d:e6:85:b0:d7:60:c4:a7:b4:af:7f:62:90:c4:28:03: 1e:b8:90:19:03:b4:1d:ac:c9:7a:12:c1:fe:2c:68:b1:f8:67: 68:25:5e:ab:84:6d:4b:fe:aa:0e:0c:6d:a1:58:1c:2a:58:3f: 42:29:f1:86:d3:37:a3:fe:03:f8:93:ed:8c:df:a8:da:a1:c1: 72:01:c7:eb:b2:81:2c:07:3c:7e:a0:7d:39:22:a1:2f:f7:5e: dc:41:76:42:94:24:4d:3b:c5:5c:71:94:d3:43:2c:00:9e:8c: 26:c1:c7:de:27:1f:35:a8:55:34:7d:72:f4:36:b0:aa:c3:41: 25:72:d9:37:42:73:f6:f6:56:5e:6e:f2:24:c6:75:d8:6b:b6: d1:59:d1:66:4b:9d:c5:ae:6b:e3:11:a5:03:5c:7e:f8:2f:4e: d4:e2:d6:5e:a6:b5:a4:96:13:07:fd:4d:50:0c:7e:6d:3a:67: 9d:43:97:d7:06:cd:21:32:ba:67:36:86:ee:05:9a:db:1f:fc: 7f:f1:16:b2:6a:97:cf:ef:d0:d0:0d:e9:01:aa:5b:8b:89:29: 91:2e:cb:53:a3:eb:a8:1e:55:d6:09:35:c8:0e:11:c3:74:3f: 06:3d:90:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTM0REUxMTAvBgNVBAUTKEZENDlDMDY0RkNBM0U5MkRFQ0MxOEE4RjUwNDk0QjIx RkMwMUYyNTYwHhcNMjUxMTAzMDI0MDMwWhcNMjUxMTEwMDI0MDMwWjAYMRYwFAYD VQQDEw02OTA4MTYxZS0yNWUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr5XiavjmK5EjWNALwrzdTUDqxsuFclqFgZG7P5Qop2IQ3mayKo3hTxBTMdmV mbMCshJGMhfagEMaO5VKv+IVXqfPl9iLA1Fcm334gIMXDTsPOZzkHuDBjNkS0rT7 OixudiLaThuyIPCy3rGWRhUlecuX5f+wXEQ2Lr6iZGJW+oW8KcD97AzuMXRQQVSh cRC98c0BJvILZGnAiL7TlXgcLccmmmlZu1I7ebYtDmSMZs2qIUWGV+8SX5/IR13n vGtLtf9pp5rd8nOWJT7c8UQdDwHR4yhXU8OMIdANRBE4CU3Vzm/kc7i3Acm/bOap snAhhHBFIYFo3mNWsxrgXwoBvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEwcIpfd XWEcuMZKPQrQR6q1wyJdMB8GA1UdIwQYMBaAFP1JwGT8o+kt7MGKj1BJSyH8AfJW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzRERS9BOTQxRDVFMkQ4 RTQxMUVEOTJFQTM2MjBDNEY5QUUwMi9fVW5BWlB5ajZTM3N3WXFQVUVsTElmd0I4 bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19VbkFaUHlqNlMzc3dZcVBVRWxMSWZ3QjhsWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MzRERS9BOTQxRDVFMkQ4RTQxMUVEOTJFQTM2MjBDNEY5QUUwMi9fVW5BWlB5ajZT M3N3WXFQVUVsTElmd0I4bFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAP1Ug2OCJMeWhkOtUOos6NeW9F753mhbDXYMSntK9/YpDEKAMeuJAZ A7QdrMl6EsH+LGix+GdoJV6rhG1L/qoODG2hWBwqWD9CKfGG0zej/gP4k+2M36ja ocFyAcfrsoEsBzx+oH05IqEv917cQXZClCRNO8VccZTTQywAnowmwcfeJx81qFU0 fXL0NrCqw0Elctk3QnP29lZebvIkxnXYa7bRWdFmS53FrmvjEaUDXH74L07U4tZe prWklhMH/U1QDH5tOmedQ5fXBs0hMrpnNobuBZrbH/x/8RayapfP79DQDekBqluL iSmRLstTo+uoHlXWCTXIDhHDdD8GPZAL -----END CERTIFICATE-----Generated at Tue Nov 4 22:21:32 2025 by rpki-client