$ rpki-client -vvf rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.mft File: uN9D7us1RpuyzAulIS0b_yaKe24.mft (raw, json) Hash identifier: wRWwMV+6HZ4YHKzcRTBmsf3mPq+H1f9OZr/PBXk8VCQ= Subject key identifier: 29:F8:D1:82:31:76:56:D7:D1:04:05:A0:8C:6D:31:EE:CF:3F:B4:75 Authority key identifier: B8:DF:43:EE:EB:35:46:9B:B2:CC:0B:A5:21:2D:1B:FF:26:8A:7B:6E Certificate issuer: /CN=A91F134A/serialNumber=B8DF43EEEB35469BB2CC0BA5212D1BFF268A7B6E Certificate serial: 0229 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uN9D7us1RpuyzAulIS0b_yaKe24.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.mft Manifest number: 0225 Signing time: Mon 03 Nov 2025 02:02:54 +0000 Manifest this update: Mon 03 Nov 2025 02:02:53 +0000 Manifest next update: Mon 10 Nov 2025 02:02:53 +0000 Files and hashes: 1: uN9D7us1RpuyzAulIS0b_yaKe24.crl (hash: MR4bCxcFiwYw6wA9fa1cuKc4sXfxqHhBF7b2vVlWAaQ=) 2: 90269D3A716611ED9D80F448C4F9AE02.roa (hash: MO9P1WGnI9RODyxLdTa3D8Yco4aTU5+oDDX9VBwpv+g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.crl rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uN9D7us1RpuyzAulIS0b_yaKe24.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:02:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 553 (0x229) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F134A, serialNumber=B8DF43EEEB35469BB2CC0BA5212D1BFF268A7B6E Validity Not Before: Nov 3 02:02:53 2025 GMT Not After : Nov 10 02:02:53 2025 GMT Subject: CN=69080d4d-380b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:48:0a:df:de:5d:64:fc:65:b4:1f:f4:fe:64: 47:fc:0f:37:19:df:ed:55:81:c4:d7:f0:ae:19:d5: ad:c4:b6:6c:16:fc:40:6c:7e:7d:e8:31:1a:98:74: 16:f0:94:e4:65:36:19:b3:4b:0b:46:a6:7e:6b:d4: b1:ba:ca:5b:c9:e8:8d:6b:e6:6e:e3:da:81:28:51: b5:be:8c:94:9e:f7:6e:1b:33:76:68:1b:ce:98:3a: 63:01:bb:93:54:f9:f1:7e:8d:fd:5d:a4:e2:5d:33: 73:71:8f:c3:b9:2f:d5:e3:31:4b:57:c0:e0:40:fe: 63:05:e3:9d:7c:4f:1f:b1:f6:a8:3c:2c:61:2a:f8: 01:9c:f0:d7:2f:30:92:cc:e7:03:e5:75:e7:29:77: c8:39:25:44:c5:94:23:42:e9:ff:c7:08:f1:3f:44: 92:26:c3:ff:29:77:c2:b4:66:f8:b4:c9:28:fd:54: 95:ca:c9:6f:68:c8:03:29:f5:1b:41:c7:28:bf:10: 8b:32:fb:38:20:cc:74:58:1c:de:e0:b7:4c:ae:a9: 83:91:e6:25:d2:f7:61:e6:0f:f4:cb:32:c5:1c:4a: 5d:c1:95:f8:e7:74:c9:4d:23:1a:a6:4d:2d:ec:37: c7:90:17:c8:87:31:9d:80:c0:ca:30:e8:ca:be:56: c7:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:F8:D1:82:31:76:56:D7:D1:04:05:A0:8C:6D:31:EE:CF:3F:B4:75 X509v3 Authority Key Identifier: keyid:B8:DF:43:EE:EB:35:46:9B:B2:CC:0B:A5:21:2D:1B:FF:26:8A:7B:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uN9D7us1RpuyzAulIS0b_yaKe24.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:67:31:d1:41:73:28:ad:df:5a:ab:9a:bd:f4:a1:c6:82:7d: 4f:e5:1b:a5:4a:00:00:97:89:12:6f:72:5f:71:27:62:4b:df: 09:c7:48:63:4e:00:9c:83:f2:40:93:b6:f9:61:17:98:72:49: 22:66:0b:1d:61:9e:39:02:ad:b8:70:55:89:b0:bc:43:40:8c: 7f:22:0e:e5:9b:18:94:b9:0d:39:18:17:9a:da:d4:1c:18:f7: a5:ed:b4:b1:65:f2:de:b2:c2:0c:60:a3:78:81:7d:b4:f3:10: 81:c3:a2:16:a2:47:bd:ce:d2:db:fd:ce:a4:ac:74:23:75:c2: a7:2a:76:3e:60:aa:6d:b8:54:82:15:6d:27:42:d0:b8:22:08: c7:f5:6f:97:72:e0:27:05:2e:cd:6d:95:ed:ba:55:19:d6:bc: 06:f6:ea:e5:1c:b1:d0:d5:1f:94:92:62:5e:6f:08:19:52:09: b0:84:a1:3f:c2:1c:8c:20:98:d9:63:52:76:0a:6c:77:29:e9: f6:9d:4b:99:bf:2d:28:01:4a:c1:35:7e:a4:af:fd:09:56:b8: 63:17:e5:85:23:14:8b:a6:0d:9a:1a:1b:40:d1:cf:c6:45:4a: 0c:88:ef:bf:1a:b0:84:89:38:dc:ce:69:82:c7:20:60:73:a6: 5e:21:3b:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAikwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjEzNEExMTAvBgNVBAUTKEI4REY0M0VFRUIzNTQ2OUJCMkNDMEJBNTIxMkQxQkZG MjY4QTdCNkUwHhcNMjUxMTAzMDIwMjUzWhcNMjUxMTEwMDIwMjUzWjAYMRYwFAYD VQQDEw02OTA4MGQ0ZC0zODBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn0gK395dZPxltB/0/mRH/A83Gd/tVYHE1/CuGdWtxLZsFvxAbH596DEamHQW 8JTkZTYZs0sLRqZ+a9SxuspbyeiNa+Zu49qBKFG1voyUnvduGzN2aBvOmDpjAbuT VPnxfo39XaTiXTNzcY/DuS/V4zFLV8DgQP5jBeOdfE8fsfaoPCxhKvgBnPDXLzCS zOcD5XXnKXfIOSVExZQjQun/xwjxP0SSJsP/KXfCtGb4tMko/VSVyslvaMgDKfUb QccovxCLMvs4IMx0WBze4LdMrqmDkeYl0vdh5g/0yzLFHEpdwZX453TJTSMapk0t 7DfHkBfIhzGdgMDKMOjKvlbH6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCn40YIx dlbX0QQFoIxtMe7PP7R1MB8GA1UdIwQYMBaAFLjfQ+7rNUabsswLpSEtG/8mintu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTM0QS9GOTc2QkZEQTcx NjIxMUVEODg5MzEzMzFDNEY5QUUwMi91TjlEN3VzMVJwdXl6QXVsSVMwYl95YUtl MjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VOOUQ3dXMxUnB1eXpBdWxJUzBiX3lhS2UyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTM0QS9GOTc2QkZEQTcxNjIxMUVEODg5MzEzMzFDNEY5QUUwMi91TjlEN3VzMVJw dXl6QXVsSVMwYl95YUtlMjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyZzHRQXMord9aq5q99KHGgn1P5RulSgAAl4kSb3JfcSdiS98Jx0hj TgCcg/JAk7b5YReYckkiZgsdYZ45Aq24cFWJsLxDQIx/Ig7lmxiUuQ05GBea2tQc GPel7bSxZfLessIMYKN4gX208xCBw6IWoke9ztLb/c6krHQjdcKnKnY+YKptuFSC FW0nQtC4IgjH9W+XcuAnBS7NbZXtulUZ1rwG9urlHLHQ1R+UkmJebwgZUgmwhKE/ whyMIJjZY1J2Cmx3Ken2nUuZvy0oAUrBNX6kr/0JVrhjF+WFIxSLpg2aGhtA0c/G RUoMiO+/GrCEiTjczmmCxyBgc6ZeITs6 -----END CERTIFICATE-----Generated at Tue Nov 4 02:15:03 2025 by rpki-client