$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5BD4/08AD6D226DB811ED8833FA0DC4F9AE02/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.mft File: rUH7gn-TEEuJ-m-nhfIRUL5vl5o.mft (raw, json) Hash identifier: wM6DXMl1yL7iAuboEcnGUscK7YlBwOObH/gXq+thGF0= Subject key identifier: 47:90:13:C0:0A:BC:49:C4:FA:1A:D7:5E:08:40:5D:D2:74:66:1D:0B Authority key identifier: AD:41:FB:82:7F:93:10:4B:89:FA:6F:A7:85:F2:11:50:BE:6F:97:9A Certificate issuer: /CN=A91B5BD4/serialNumber=AD41FB827F93104B89FA6FA785F21150BE6F979A Certificate serial: 022C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5BD4/08AD6D226DB811ED8833FA0DC4F9AE02/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.mft Manifest number: 0227 Signing time: Wed 05 Nov 2025 02:08:30 +0000 Manifest this update: Wed 05 Nov 2025 02:08:29 +0000 Manifest next update: Wed 12 Nov 2025 02:08:29 +0000 Files and hashes: 1: rUH7gn-TEEuJ-m-nhfIRUL5vl5o.crl (hash: xpYr+zJluWPZsRwdX8caq0lWTfMyEtKMbhQoztKmIn8=) 2: C248DFA26DBB11EDB3635D28C4F9AE02.roa (hash: gQzK7hVZPrZ6aKsXhdiMNjPzCoQYQhoW/DlG0FlsTCE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5BD4/08AD6D226DB811ED8833FA0DC4F9AE02/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.crl rsync://rpki.apnic.net/member_repository/A91B5BD4/08AD6D226DB811ED8833FA0DC4F9AE02/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:08:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 556 (0x22c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5BD4, serialNumber=AD41FB827F93104B89FA6FA785F21150BE6F979A Validity Not Before: Nov 5 02:08:29 2025 GMT Not After : Nov 12 02:08:29 2025 GMT Subject: CN=690ab19d-0f08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c2:ff:57:20:ac:05:18:a6:b0:aa:42:78:e9: d1:ff:72:f2:f9:09:17:c2:58:d4:b0:7d:96:30:b1: 76:a8:04:42:73:e7:dd:ca:16:68:26:69:73:f5:3f: ee:a2:81:e9:15:a0:e1:d4:c7:9f:75:e9:91:1b:9e: d8:ef:a2:91:fb:77:aa:3a:cd:dd:57:8e:60:cf:78: ec:43:32:17:80:45:3a:ed:da:06:e5:3a:33:7a:c5: 8c:ea:66:2b:e8:a0:28:9d:a7:0c:86:9a:79:48:3d: f2:f0:c4:96:36:0c:4b:e8:41:36:a5:78:04:4d:2d: ee:c7:6c:91:28:5a:80:0d:15:80:d8:62:8c:1f:09: d4:fc:ad:cb:b4:46:d7:22:1d:97:8d:6a:ae:d0:df: 88:70:96:06:3b:6e:ca:6d:10:7e:df:2e:cf:8b:f8: d5:95:dc:54:9e:a6:12:38:af:6c:ce:be:5b:05:d6: b7:fe:e7:74:2c:04:7d:3c:00:5c:c6:2f:6a:42:5d: da:92:ed:2d:e4:4d:5b:8a:a8:2a:4d:c2:dd:b5:3b: 45:29:2c:8f:48:9b:f1:fb:3d:5c:51:8d:ea:e7:d0: 8f:a6:a4:02:a0:60:5e:f4:cd:5d:81:eb:cf:bd:98: 5f:02:10:21:eb:d4:06:63:91:4f:dc:d5:2b:44:4d: b1:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:90:13:C0:0A:BC:49:C4:FA:1A:D7:5E:08:40:5D:D2:74:66:1D:0B X509v3 Authority Key Identifier: keyid:AD:41:FB:82:7F:93:10:4B:89:FA:6F:A7:85:F2:11:50:BE:6F:97:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5BD4/08AD6D226DB811ED8833FA0DC4F9AE02/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5BD4/08AD6D226DB811ED8833FA0DC4F9AE02/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:c1:33:f4:b2:fa:97:e2:25:8c:cb:ac:4c:63:f5:18:3a:7f: 07:27:e1:ae:3d:1e:1c:af:fc:6e:5e:22:60:84:08:9a:24:11: 97:8c:b9:32:00:0f:04:03:d9:70:7b:f1:0a:52:e7:4f:95:1e: 3b:29:ec:ef:a8:2a:82:a2:57:34:c2:b2:0f:95:e4:7b:b0:aa: 60:80:09:d9:f4:73:8a:68:f1:44:59:68:61:ba:9c:1f:29:3a: 54:ab:c3:59:27:30:a3:c4:53:46:c4:39:6a:ec:f7:95:48:17: 75:fc:58:76:7a:81:41:90:f4:ac:e1:d5:45:56:1e:99:cf:e8: 9c:12:0e:d9:de:b6:c4:2c:09:60:a8:72:88:90:bc:df:8a:11: 23:5e:dc:c3:fd:59:e0:91:dc:1a:b9:0e:9a:63:da:56:25:11: 10:b5:34:e2:6c:d1:05:4a:c6:80:76:e1:fe:36:06:42:69:e2: 0f:57:75:f9:5c:5b:8c:3f:20:f6:e3:a3:83:3c:f3:16:3b:1f: 3d:12:4d:ea:81:9c:36:c0:57:4e:fa:8d:ae:a0:1e:7d:90:21: 39:1f:23:f0:02:0f:f8:33:b4:50:67:5c:36:1f:70:1e:e7:18: 01:35:43:f9:82:e8:62:25:86:a3:bc:b7:9b:c7:eb:dd:b8:8f: 37:ad:09:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVCRDQxMTAvBgNVBAUTKEFENDFGQjgyN0Y5MzEwNEI4OUZBNkZBNzg1RjIxMTUw QkU2Rjk3OUEwHhcNMjUxMTA1MDIwODI5WhcNMjUxMTEyMDIwODI5WjAYMRYwFAYD VQQDEw02OTBhYjE5ZC0wZjA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu8L/VyCsBRimsKpCeOnR/3Ly+QkXwljUsH2WMLF2qARCc+fdyhZoJmlz9T/u ooHpFaDh1MefdemRG57Y76KR+3eqOs3dV45gz3jsQzIXgEU67doG5TozesWM6mYr 6KAonacMhpp5SD3y8MSWNgxL6EE2pXgETS3ux2yRKFqADRWA2GKMHwnU/K3LtEbX Ih2XjWqu0N+IcJYGO27KbRB+3y7Pi/jVldxUnqYSOK9szr5bBda3/ud0LAR9PABc xi9qQl3aku0t5E1biqgqTcLdtTtFKSyPSJvx+z1cUY3q59CPpqQCoGBe9M1dgevP vZhfAhAh69QGY5FP3NUrRE2xzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEeQE8AK vEnE+hrXXghAXdJ0Zh0LMB8GA1UdIwQYMBaAFK1B+4J/kxBLifpvp4XyEVC+b5ea MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUJENC8wOEFENkQyMjZE QjgxMUVEODgzM0ZBMERDNEY5QUUwMi9yVUg3Z24tVEVFdUotbS1uaGZJUlVMNXZs NW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JVSDdnbi1URUV1Si1tLW5oZklSVUw1dmw1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUJENC8wOEFENkQyMjZEQjgxMUVEODgzM0ZBMERDNEY5QUUwMi9yVUg3Z24tVEVF dUotbS1uaGZJUlVMNXZsNW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKwTP0svqX4iWMy6xMY/UYOn8HJ+GuPR4cr/xuXiJghAiaJBGXjLky AA8EA9lwe/EKUudPlR47KezvqCqColc0wrIPleR7sKpggAnZ9HOKaPFEWWhhupwf KTpUq8NZJzCjxFNGxDlq7PeVSBd1/Fh2eoFBkPSs4dVFVh6Zz+icEg7Z3rbELAlg qHKIkLzfihEjXtzD/VngkdwauQ6aY9pWJREQtTTibNEFSsaAduH+NgZCaeIPV3X5 XFuMPyD246ODPPMWOx89Ek3qgZw2wFdO+o2uoB59kCE5HyPwAg/4M7RQZ1w2H3Ae 5xgBNUP5guhiJYajvLebx+vduI83rQmd -----END CERTIFICATE-----Generated at Wed Nov 5 19:19:30 2025 by rpki-client