$ rpki-client -vvf rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft File: U73ibYJfZ3-axChvmmdmH1xJtWk.mft (raw, json) Hash identifier: RTwlZLmUv1Ky8tyD9MMH3YaTtZCLmWjYeIUG0/OJVkg= Subject key identifier: 00:B4:42:A1:44:EE:A9:EF:AE:3C:EF:17:CF:1C:BC:76:C0:8E:65:46 Authority key identifier: 53:BD:E2:6D:82:5F:67:7F:9A:C4:28:6F:9A:67:66:1F:5C:49:B5:69 Certificate issuer: /CN=A919E1AE/serialNumber=53BDE26D825F677F9AC4286F9A67661F5C49B569 Certificate serial: 097F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U73ibYJfZ3-axChvmmdmH1xJtWk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft Manifest number: 0957 Signing time: Tue 04 Nov 2025 20:21:09 +0000 Manifest this update: Tue 04 Nov 2025 20:21:09 +0000 Manifest next update: Tue 11 Nov 2025 20:21:09 +0000 Files and hashes: 1: U73ibYJfZ3-axChvmmdmH1xJtWk.crl (hash: SJNCnVTJr++goz8e0ye7i+pb9s48XgicgfcqrRb1QXI=) 2: C8DC6BD8EBF311EEAD0C015FC4F9AE02.roa (hash: KVB3EN6tICNkhnYw0xKL9CwQn9qOYhPXhmG08EEY8D8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.crl rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U73ibYJfZ3-axChvmmdmH1xJtWk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:21:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2431 (0x97f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E1AE, serialNumber=53BDE26D825F677F9AC4286F9A67661F5C49B569 Validity Not Before: Nov 4 20:21:09 2025 GMT Not After : Nov 11 20:21:09 2025 GMT Subject: CN=690a6035-9d3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:36:aa:80:59:74:ed:4d:56:61:b4:83:3d:b0: 32:1b:b9:88:2a:6b:f6:06:c6:1e:10:f7:8e:4b:e1: 6e:50:1f:b1:72:63:f4:ea:07:41:cd:50:7a:6f:69: bd:dd:17:bd:80:a5:88:6f:bf:8d:71:0c:f7:e8:21: ec:85:a3:dc:e5:93:7a:fc:d8:0d:76:80:66:a5:25: e5:a9:53:cb:c0:39:c5:f9:d5:6b:31:ca:1c:2a:f0: 3c:74:14:ad:5d:61:2f:2e:b3:22:8d:94:cc:0f:16: 8b:74:37:18:36:0d:38:81:67:20:36:bc:2c:6a:22: ac:95:fa:96:93:5b:93:15:82:67:d4:5c:8c:75:c9: 25:c7:97:86:53:fd:a8:fa:e1:08:50:fb:59:3e:aa: 24:5b:3b:9a:22:48:5d:8c:9f:5c:e2:b3:93:99:2a: cf:62:bd:dc:9d:69:9c:ec:44:49:3e:36:dc:9d:b7: 01:0b:79:47:31:84:93:6e:52:3b:93:13:60:11:4b: 84:c7:36:2c:b1:12:ec:74:d3:b3:be:f0:55:48:84: 67:bb:cf:b1:5a:a6:43:1b:4f:be:a5:5e:c2:c4:85: d0:e4:cc:3f:f7:d2:54:c4:1d:d4:a2:13:8a:a2:cd: a3:d0:48:21:33:c2:b4:c6:23:3d:8a:8a:18:57:29: c7:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:B4:42:A1:44:EE:A9:EF:AE:3C:EF:17:CF:1C:BC:76:C0:8E:65:46 X509v3 Authority Key Identifier: keyid:53:BD:E2:6D:82:5F:67:7F:9A:C4:28:6F:9A:67:66:1F:5C:49:B5:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U73ibYJfZ3-axChvmmdmH1xJtWk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:a4:39:f5:4b:0d:05:28:3e:75:e2:97:3d:88:c4:c3:d5:13: ff:de:86:14:8e:00:12:17:9d:2d:03:1d:be:3a:93:fc:88:7c: be:6c:b2:fc:0a:87:20:93:b0:a5:57:f5:87:c4:77:df:bf:cf: 64:eb:12:85:dd:06:7e:db:24:ea:ae:01:89:19:0c:46:6f:16: b2:14:10:9b:05:54:55:12:b9:db:15:b9:96:de:79:a1:4e:54: e3:32:b3:b5:ac:89:19:ff:70:34:a7:d4:8a:fa:9c:d8:6f:8e: 1d:b7:e5:d8:1c:6f:14:32:0a:53:fe:a0:03:80:92:00:9a:a3: 84:f8:87:e8:b4:3a:df:db:fe:64:85:a1:c0:dc:4b:de:d7:70: 31:8e:fa:f4:91:e1:8f:17:7d:1d:a4:68:18:07:51:21:89:7a: 06:ec:4a:e6:5d:85:6f:c9:6a:48:1b:9e:96:39:15:c9:2e:d9: 7d:c8:89:39:48:4a:86:ef:e1:2f:b6:89:17:d8:2f:03:ad:33: 6d:ad:3c:39:cb:0c:88:b5:90:ac:b0:32:b1:db:71:8b:0c:a9: 3c:c6:9b:45:1d:77:eb:4a:8e:d6:7a:69:7b:b6:a8:b3:5a:c0: 85:4c:c7:02:7b:22:a6:bf:44:07:1a:0b:66:a3:62:e5:c1:9e: 4c:33:53:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCX8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUUxQUUxMTAvBgNVBAUTKDUzQkRFMjZEODI1RjY3N0Y5QUM0Mjg2RjlBNjc2NjFG NUM0OUI1NjkwHhcNMjUxMTA0MjAyMTA5WhcNMjUxMTExMjAyMTA5WjAYMRYwFAYD VQQDEw02OTBhNjAzNS05ZDNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApzaqgFl07U1WYbSDPbAyG7mIKmv2BsYeEPeOS+FuUB+xcmP06gdBzVB6b2m9 3Re9gKWIb7+NcQz36CHshaPc5ZN6/NgNdoBmpSXlqVPLwDnF+dVrMcocKvA8dBSt XWEvLrMijZTMDxaLdDcYNg04gWcgNrwsaiKslfqWk1uTFYJn1FyMdcklx5eGU/2o +uEIUPtZPqokWzuaIkhdjJ9c4rOTmSrPYr3cnWmc7ERJPjbcnbcBC3lHMYSTblI7 kxNgEUuExzYssRLsdNOzvvBVSIRnu8+xWqZDG0++pV7CxIXQ5Mw/99JUxB3UohOK os2j0EghM8K0xiM9iooYVynHTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAC0QqFE 7qnvrjzvF88cvHbAjmVGMB8GA1UdIwQYMBaAFFO94m2CX2d/msQob5pnZh9cSbVp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RTFBRS9CNDBCQjFCOEIx MkUxMUVBOUE5NUI1NkFDNEY5QUUwMi9VNzNpYllKZlozLWF4Q2h2bW1kbUgxeEp0 V2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U3M2liWUpmWjMtYXhDaHZtbWRtSDF4SnRXay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RTFBRS9CNDBCQjFCOEIxMkUxMUVBOUE5NUI1NkFDNEY5QUUwMi9VNzNpYllKZloz LWF4Q2h2bW1kbUgxeEp0V2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCupDn1Sw0FKD514pc9iMTD1RP/3oYUjgASF50tAx2+OpP8iHy+bLL8 Cocgk7ClV/WHxHffv89k6xKF3QZ+2yTqrgGJGQxGbxayFBCbBVRVErnbFbmW3nmh TlTjMrO1rIkZ/3A0p9SK+pzYb44dt+XYHG8UMgpT/qADgJIAmqOE+IfotDrf2/5k haHA3Eve13Axjvr0keGPF30dpGgYB1EhiXoG7ErmXYVvyWpIG56WORXJLtl9yIk5 SEqG7+EvtokX2C8DrTNtrTw5ywyItZCssDKx23GLDKk8xptFHXfrSo7Weml7tqiz WsCFTMcCeyKmv0QHGgtmo2LlwZ5MM1Mg -----END CERTIFICATE-----Generated at Wed Nov 5 08:10:46 2025 by rpki-client