$ rpki-client -vvf rpki.apnic.net/member_repository/A919E4C6/EAB947A81E1811ED9479365DC4F9AE02/uRm6CzrV4m_DHTlL4TK7yof8yFI.mft File: uRm6CzrV4m_DHTlL4TK7yof8yFI.mft (raw, json) Hash identifier: lwiPgedUPyL82wHDuTwB2C/nikmJ2DSiGVA4jkBvyMc= Subject key identifier: 4F:74:FD:95:0C:AF:D7:4D:09:67:9F:9E:40:9E:4B:EF:BB:EF:95:9B Authority key identifier: B9:19:BA:0B:3A:D5:E2:6F:C3:1D:39:4B:E1:32:BB:CA:87:FC:C8:52 Certificate issuer: /CN=A919E4C6/serialNumber=B919BA0B3AD5E26FC31D394BE132BBCA87FCC852 Certificate serial: 02A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uRm6CzrV4m_DHTlL4TK7yof8yFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E4C6/EAB947A81E1811ED9479365DC4F9AE02/uRm6CzrV4m_DHTlL4TK7yof8yFI.mft Manifest number: 02A1 Signing time: Mon 03 Nov 2025 01:30:20 +0000 Manifest this update: Mon 03 Nov 2025 01:30:19 +0000 Manifest next update: Mon 10 Nov 2025 01:30:19 +0000 Files and hashes: 1: uRm6CzrV4m_DHTlL4TK7yof8yFI.crl (hash: j18KAk2Lp0JDG7C6mNz+AdzThn1hkHB+a/HXiqhpNEU=) 2: 4C0F405E1E1C11EDA19CF560C4F9AE02.roa (hash: gIwDWIDp8+Uz5STSFrQB1zJpip3RVo/LQNwdpuz8o1g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E4C6/EAB947A81E1811ED9479365DC4F9AE02/uRm6CzrV4m_DHTlL4TK7yof8yFI.crl rsync://rpki.apnic.net/member_repository/A919E4C6/EAB947A81E1811ED9479365DC4F9AE02/uRm6CzrV4m_DHTlL4TK7yof8yFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uRm6CzrV4m_DHTlL4TK7yof8yFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 01:30:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 679 (0x2a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E4C6, serialNumber=B919BA0B3AD5E26FC31D394BE132BBCA87FCC852 Validity Not Before: Nov 3 01:30:19 2025 GMT Not After : Nov 10 01:30:19 2025 GMT Subject: CN=690805ac-b1f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:d0:8e:84:d6:be:87:d1:1e:99:a0:b7:f1:bc: c8:70:a2:2f:49:1e:48:77:fe:8a:d7:e4:f8:9a:6c: cb:a2:e2:ff:29:84:f0:3a:fb:5c:18:59:97:af:f4: 72:dc:7b:68:44:19:fa:9e:1b:aa:ad:aa:b5:7d:21: f3:12:19:00:e7:65:94:e8:d6:7d:2c:e5:87:5f:84: 0e:32:96:2a:a3:04:ec:13:9d:c0:d8:53:a5:71:d9: ef:3d:d5:10:95:17:4c:e1:e6:ed:3c:fd:36:f8:83: dd:af:32:9f:e0:f6:f4:ff:9d:d9:c9:4b:2f:ff:78: 4a:6b:12:ff:41:47:e2:2d:07:d9:66:7f:0e:8b:29: c3:da:08:ca:5d:5f:68:70:6f:fc:0d:38:20:7c:65: 3a:26:9d:59:8c:df:3c:6a:05:b1:38:f2:0e:52:c9: cf:48:3d:4a:f3:ff:f2:40:0b:3f:71:34:a6:e3:fc: 3e:4b:76:40:f8:d3:db:bc:26:7b:5b:7a:3f:77:94: 2a:3e:30:76:75:6a:ae:09:4a:4a:c7:90:74:95:aa: c4:1f:49:69:e6:e7:6c:fc:1c:93:a7:e2:60:4d:e1: 8a:d2:3b:f4:01:c8:74:e1:06:f3:fa:5f:b1:ee:30: dd:db:bc:3a:40:4c:3b:fa:c2:0a:92:ed:87:76:ff: 20:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:74:FD:95:0C:AF:D7:4D:09:67:9F:9E:40:9E:4B:EF:BB:EF:95:9B X509v3 Authority Key Identifier: keyid:B9:19:BA:0B:3A:D5:E2:6F:C3:1D:39:4B:E1:32:BB:CA:87:FC:C8:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E4C6/EAB947A81E1811ED9479365DC4F9AE02/uRm6CzrV4m_DHTlL4TK7yof8yFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uRm6CzrV4m_DHTlL4TK7yof8yFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E4C6/EAB947A81E1811ED9479365DC4F9AE02/uRm6CzrV4m_DHTlL4TK7yof8yFI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:ce:05:ce:5c:e7:0c:4e:3f:5f:66:ef:b3:f0:8d:ad:5e:7a: 65:fc:3b:cd:58:e0:99:6c:5a:c1:b1:f1:42:0f:40:13:04:be: b7:e3:f0:f7:3c:29:94:84:dd:7c:5b:aa:eb:70:4d:38:3c:c6: db:16:ce:7c:1d:bb:f7:f8:53:60:5d:11:82:be:cd:7a:d8:e8: de:38:5e:33:c6:81:f9:82:66:7e:96:f7:79:d3:ed:ad:3d:d7: 0e:8e:f5:9d:2e:d0:35:b1:09:92:3d:c1:a3:68:f6:37:7e:c4: a2:d2:23:68:d6:64:41:ba:c0:e6:62:6c:de:a2:a5:f4:bc:95: 9f:b2:9e:e5:8a:ad:96:29:64:21:a5:02:c4:f6:79:59:26:95: e7:9c:14:e2:5d:e4:78:8b:81:88:39:9c:f2:00:79:34:95:e1: 91:1c:68:7a:f6:40:ea:06:34:e1:19:3a:c0:9f:57:e8:45:60: 9f:17:7c:95:fd:c3:a4:48:b4:80:91:35:cb:d9:ce:31:ac:a1: 5b:31:1c:d0:9f:f3:59:3a:ec:b6:44:bd:1c:81:0f:ca:6b:88: fc:49:ea:0a:72:b2:c3:36:50:b7:ca:95:ae:f6:c8:ed:64:d7: 73:b0:14:6b:36:76:08:90:6b:da:62:6f:24:e1:37:c1:c4:23: ad:d3:03:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUU0QzYxMTAvBgNVBAUTKEI5MTlCQTBCM0FENUUyNkZDMzFEMzk0QkUxMzJCQkNB ODdGQ0M4NTIwHhcNMjUxMTAzMDEzMDE5WhcNMjUxMTEwMDEzMDE5WjAYMRYwFAYD VQQDEw02OTA4MDVhYy1iMWYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1NCOhNa+h9EemaC38bzIcKIvSR5Id/6K1+T4mmzLouL/KYTwOvtcGFmXr/Ry 3HtoRBn6nhuqraq1fSHzEhkA52WU6NZ9LOWHX4QOMpYqowTsE53A2FOlcdnvPdUQ lRdM4ebtPP02+IPdrzKf4Pb0/53ZyUsv/3hKaxL/QUfiLQfZZn8OiynD2gjKXV9o cG/8DTggfGU6Jp1ZjN88agWxOPIOUsnPSD1K8//yQAs/cTSm4/w+S3ZA+NPbvCZ7 W3o/d5QqPjB2dWquCUpKx5B0larEH0lp5uds/ByTp+JgTeGK0jv0Ach04Qbz+l+x 7jDd27w6QEw7+sIKku2Hdv8g6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE90/ZUM r9dNCWefnkCeS++775WbMB8GA1UdIwQYMBaAFLkZugs61eJvwx05S+Eyu8qH/MhS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RTRDNi9FQUI5NDdBODFF MTgxMUVEOTQ3OTM2NURDNEY5QUUwMi91Um02Q3pyVjRtX0RIVGxMNFRLN3lvZjh5 RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VSbTZDenJWNG1fREhUbEw0VEs3eW9mOHlGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RTRDNi9FQUI5NDdBODFFMTgxMUVEOTQ3OTM2NURDNEY5QUUwMi91Um02Q3pyVjRt X0RIVGxMNFRLN3lvZjh5RkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC9zgXOXOcMTj9fZu+z8I2tXnpl/DvNWOCZbFrBsfFCD0ATBL634/D3 PCmUhN18W6rrcE04PMbbFs58Hbv3+FNgXRGCvs162OjeOF4zxoH5gmZ+lvd50+2t PdcOjvWdLtA1sQmSPcGjaPY3fsSi0iNo1mRBusDmYmzeoqX0vJWfsp7liq2WKWQh pQLE9nlZJpXnnBTiXeR4i4GIOZzyAHk0leGRHGh69kDqBjThGTrAn1foRWCfF3yV /cOkSLSAkTXL2c4xrKFbMRzQn/NZOuy2RL0cgQ/Ka4j8SeoKcrLDNlC3ypWu9sjt ZNdzsBRrNnYIkGvaYm8k4TfBxCOt0wPP -----END CERTIFICATE-----Generated at Tue Nov 4 08:21:11 2025 by rpki-client