$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft File: U8lIF-sTZfHejDwrRAIjmIHBlD0.mft (raw, json) Hash identifier: izbu9vHrVUmqjjQmu/QtfYqCeEsaY+TG06vqvz16VPg= Subject key identifier: CE:3A:A5:16:A9:5B:4B:6C:44:89:51:36:4E:5E:05:9C:4F:92:73:84 Authority key identifier: 53:C9:48:17:EB:13:65:F1:DE:8C:3C:2B:44:02:23:98:81:C1:94:3D Certificate issuer: /CN=A91D3307/serialNumber=53C94817EB1365F1DE8C3C2B4402239881C1943D Certificate serial: 04FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8lIF-sTZfHejDwrRAIjmIHBlD0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft Manifest number: 04E5 Signing time: Sun 02 Nov 2025 23:48:10 +0000 Manifest this update: Sun 02 Nov 2025 23:48:09 +0000 Manifest next update: Sun 09 Nov 2025 23:48:09 +0000 Files and hashes: 1: U8lIF-sTZfHejDwrRAIjmIHBlD0.crl (hash: q7OC5F8rQO0CqYC2hTv3xhoo1Ew8H2rwuknabGTaVWY=) 2: C908B72A696F11EFA4DA475FC4F9AE02.roa (hash: tXoHtibATlzSAFpYW8FXeLBuzqLRo++NJ/KLRuKUVS4=) 3: C9C70AEA696F11EFA4DA475FC4F9AE02.roa (hash: 8/T20piCaEKmwex2vfHli1eA2pf6jywQnHESOXqs7Kg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.crl rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8lIF-sTZfHejDwrRAIjmIHBlD0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:48:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1278 (0x4fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3307, serialNumber=53C94817EB1365F1DE8C3C2B4402239881C1943D Validity Not Before: Nov 2 23:48:09 2025 GMT Not After : Nov 9 23:48:09 2025 GMT Subject: CN=6907edba-9fb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:9e:71:c4:3f:c3:89:e3:b7:f7:d3:62:9f:f0: 2d:c4:44:66:fb:8b:71:d7:1a:af:33:d5:76:55:5d: 93:eb:93:2e:0e:1f:cb:02:18:65:1f:9c:28:c7:0a: 14:d0:d6:63:f0:72:d7:d0:71:c2:b5:73:82:5d:42: 7f:b1:55:60:68:09:47:46:c6:61:3f:cc:99:45:d0: 72:5b:05:39:e3:e0:c1:3f:3f:c2:61:22:f5:78:fe: 0b:cd:53:d1:4d:5d:9c:e1:1f:68:9f:35:0b:30:3a: 95:08:08:05:24:35:a2:1c:78:58:18:e9:d6:81:ec: 24:9c:c6:18:07:d6:fa:e7:3e:6f:7f:ab:f1:16:79: c5:23:9b:7c:1c:0b:76:10:b4:46:9a:95:90:e4:e1: 2d:eb:ed:40:29:e9:21:28:46:65:89:8c:51:f7:9d: bc:eb:24:a7:dd:30:b2:78:34:50:ec:c5:e5:46:60: fa:7a:7a:e8:59:80:52:09:a6:6b:d4:a6:9c:4e:c0: 49:a9:b2:aa:86:3f:bc:28:3c:d6:6c:49:fd:d9:e7: 25:a3:9e:32:be:f4:89:08:2a:41:9b:cf:b9:73:2f: a1:21:1d:d1:5e:ef:ea:7a:1d:12:34:b1:9c:b0:57: c4:80:60:6c:d8:7f:73:4b:0a:c9:6d:ef:b9:83:46: 7d:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:3A:A5:16:A9:5B:4B:6C:44:89:51:36:4E:5E:05:9C:4F:92:73:84 X509v3 Authority Key Identifier: keyid:53:C9:48:17:EB:13:65:F1:DE:8C:3C:2B:44:02:23:98:81:C1:94:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8lIF-sTZfHejDwrRAIjmIHBlD0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:42:1b:0b:bb:a4:53:06:99:e2:e6:c2:7f:26:73:22:13:4f: 56:4e:3f:ae:bf:e7:1d:d3:ac:fc:61:45:6c:ac:a6:50:71:40: 64:cc:f3:f6:56:b9:45:13:2c:88:5e:21:0f:44:f1:54:95:25: 7c:90:a6:bc:a9:0a:24:2c:2d:a7:12:a3:63:a4:40:c3:60:52: e7:fe:ad:af:69:04:25:72:e1:78:64:97:6d:be:cb:d3:5e:f9: ad:54:e6:b3:34:a3:f1:25:a6:b9:69:c0:26:3f:59:5d:f9:80: 4f:eb:d7:96:29:69:13:f6:a9:c5:85:5d:b4:e8:58:21:1b:8f: c1:7c:82:ab:87:34:20:e0:fb:4a:02:c9:3d:d3:71:f3:0b:af: a9:37:16:f7:c3:77:36:65:de:a1:66:f4:92:b6:12:f9:db:19: e2:40:19:cf:94:5f:8e:b9:7d:0b:50:a4:28:19:51:eb:e1:80: 33:c0:c5:2e:43:c7:c8:3b:56:54:27:5a:14:13:0f:ab:8d:6e: 17:77:4a:57:08:bd:65:92:18:7b:d0:4e:73:d1:0d:1f:f9:78: 28:23:fb:89:bc:f9:ca:09:f1:70:56:dc:14:3f:ba:9c:9c:f2: 76:5d:17:f6:ea:42:59:6e:a3:72:b2:7e:cd:49:af:81:66:a4: 2a:ee:8f:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMzMDcxMTAvBgNVBAUTKDUzQzk0ODE3RUIxMzY1RjFERThDM0MyQjQ0MDIyMzk4 ODFDMTk0M0QwHhcNMjUxMTAyMjM0ODA5WhcNMjUxMTA5MjM0ODA5WjAYMRYwFAYD VQQDEw02OTA3ZWRiYS05ZmI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxp5xxD/DieO399Nin/AtxERm+4tx1xqvM9V2VV2T65MuDh/LAhhlH5woxwoU 0NZj8HLX0HHCtXOCXUJ/sVVgaAlHRsZhP8yZRdByWwU54+DBPz/CYSL1eP4LzVPR TV2c4R9onzULMDqVCAgFJDWiHHhYGOnWgewknMYYB9b65z5vf6vxFnnFI5t8HAt2 ELRGmpWQ5OEt6+1AKekhKEZliYxR95286ySn3TCyeDRQ7MXlRmD6enroWYBSCaZr 1KacTsBJqbKqhj+8KDzWbEn92eclo54yvvSJCCpBm8+5cy+hIR3RXu/qeh0SNLGc sFfEgGBs2H9zSwrJbe+5g0Z9qQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM46pRap W0tsRIlRNk5eBZxPknOEMB8GA1UdIwQYMBaAFFPJSBfrE2Xx3ow8K0QCI5iBwZQ9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzMwNy8zNDJEODMyODQy Q0MxMUVDOEYxMzMyMERDNEY5QUUwMi9VOGxJRi1zVFpmSGVqRHdyUkFJam1JSEJs RDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U4bElGLXNUWmZIZWpEd3JSQUlqbUlIQmxEMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzMwNy8zNDJEODMyODQyQ0MxMUVDOEYxMzMyMERDNEY5QUUwMi9VOGxJRi1zVFpm SGVqRHdyUkFJam1JSEJsRDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjQhsLu6RTBpni5sJ/JnMiE09WTj+uv+cd06z8YUVsrKZQcUBkzPP2 VrlFEyyIXiEPRPFUlSV8kKa8qQokLC2nEqNjpEDDYFLn/q2vaQQlcuF4ZJdtvsvT XvmtVOazNKPxJaa5acAmP1ld+YBP69eWKWkT9qnFhV206FghG4/BfIKrhzQg4PtK Ask903HzC6+pNxb3w3c2Zd6hZvSSthL52xniQBnPlF+OuX0LUKQoGVHr4YAzwMUu Q8fIO1ZUJ1oUEw+rjW4Xd0pXCL1lkhh70E5z0Q0f+XgoI/uJvPnKCfFwVtwUP7qc nPJ2XRf26kJZbqNysn7NSa+BZqQq7o8j -----END CERTIFICATE-----Generated at Tue Nov 4 08:18:20 2025 by rpki-client