$ rpki-client -vvf rpki.apnic.net/member_repository/A912AFA4/B67862FAAB9511EAB2559C5BC4F9AE02/UZQtJe28pR36Vs4J7TYet6JtvSU.mft File: UZQtJe28pR36Vs4J7TYet6JtvSU.mft (raw, json) Hash identifier: ztTK93bqBh8lRpdYzLTgVbN2acvxrbJighmjK6ulOHc= Subject key identifier: 20:0B:61:20:DA:58:A3:3F:E7:18:79:69:95:AB:06:DA:D8:3E:51:0E Authority key identifier: 51:94:2D:25:ED:BC:A5:1D:FA:56:CE:09:ED:36:1E:B7:A2:6D:BD:25 Certificate issuer: /CN=A912AFA4/serialNumber=51942D25EDBCA51DFA56CE09ED361EB7A26DBD25 Certificate serial: 0995 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UZQtJe28pR36Vs4J7TYet6JtvSU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912AFA4/B67862FAAB9511EAB2559C5BC4F9AE02/UZQtJe28pR36Vs4J7TYet6JtvSU.mft Manifest number: 0978 Signing time: Tue 04 Nov 2025 20:17:19 +0000 Manifest this update: Tue 04 Nov 2025 20:17:19 +0000 Manifest next update: Tue 11 Nov 2025 20:17:19 +0000 Files and hashes: 1: UZQtJe28pR36Vs4J7TYet6JtvSU.crl (hash: s4RZeQMyiAl4cfBwMWIUmdKR6UhCzGQJchYQKP9CfD4=) 2: 11DBC0ACEB3211EFBDFC3E0FC4F9AE02.roa (hash: zYdZV0PmY995jxBgObVxrNeEKm4srCzVt7whFrsxdT8=) 3: 6602AEE2CD7411EFB3DC8110C4F9AE02.roa (hash: nXVtsybD/p0SClRwWP9c2+ZIMGXniljjDK2EFaKpa7A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912AFA4/B67862FAAB9511EAB2559C5BC4F9AE02/UZQtJe28pR36Vs4J7TYet6JtvSU.crl rsync://rpki.apnic.net/member_repository/A912AFA4/B67862FAAB9511EAB2559C5BC4F9AE02/UZQtJe28pR36Vs4J7TYet6JtvSU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UZQtJe28pR36Vs4J7TYet6JtvSU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:17:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2453 (0x995) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912AFA4, serialNumber=51942D25EDBCA51DFA56CE09ED361EB7A26DBD25 Validity Not Before: Nov 4 20:17:19 2025 GMT Not After : Nov 11 20:17:19 2025 GMT Subject: CN=690a5f4f-3fe6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:2c:36:c5:64:5a:d1:5f:3b:2d:1a:86:94:dc: 85:62:7e:71:38:14:25:36:8e:fe:53:b7:4d:7b:d0: 86:67:7c:43:54:66:95:11:6c:cc:55:0e:14:f0:5f: 9a:ac:8c:5d:94:a6:3a:71:d4:f8:c4:17:c8:a1:e8: f2:0b:50:7b:2f:0e:fc:46:17:97:df:e6:c7:49:dc: 95:aa:47:32:ab:43:de:c7:53:22:23:9a:f4:27:49: ad:28:c7:e8:55:92:a3:d8:c6:d3:c9:0f:fa:2a:23: 4a:23:3b:c9:6c:5e:79:45:07:ec:d0:5c:22:66:b4: ae:72:82:c8:8e:a1:e8:e1:fe:18:d1:52:22:f4:60: c7:4a:3a:20:bb:87:c8:f9:1b:1e:ce:2b:3a:c2:17: c9:e7:74:7f:0c:19:08:a3:8d:2f:6a:81:d4:97:ec: 9c:7b:ae:f7:db:3e:b6:26:5b:e6:21:02:d8:0a:65: c1:53:37:9a:48:c3:1a:e5:c2:e1:49:f7:ec:c0:5d: 67:ea:76:c1:4f:e3:f8:32:59:e8:1e:39:d5:5d:7d: e7:03:cc:38:f6:78:ff:d6:5b:2d:48:ec:90:6f:22: 62:33:ec:a0:f4:13:d7:88:b7:36:07:ef:bd:b7:dd: a7:67:23:b4:8e:77:bc:f4:a3:fd:83:2e:67:e2:b9: 6d:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:0B:61:20:DA:58:A3:3F:E7:18:79:69:95:AB:06:DA:D8:3E:51:0E X509v3 Authority Key Identifier: keyid:51:94:2D:25:ED:BC:A5:1D:FA:56:CE:09:ED:36:1E:B7:A2:6D:BD:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912AFA4/B67862FAAB9511EAB2559C5BC4F9AE02/UZQtJe28pR36Vs4J7TYet6JtvSU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UZQtJe28pR36Vs4J7TYet6JtvSU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912AFA4/B67862FAAB9511EAB2559C5BC4F9AE02/UZQtJe28pR36Vs4J7TYet6JtvSU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:30:28:2f:aa:78:43:6c:d5:5c:3e:35:f4:5b:df:a8:bb:56: 6d:34:71:c5:7c:72:13:9f:c7:65:ba:5c:4b:d6:18:fe:e0:95: ce:3c:f2:52:7c:29:ec:ec:1f:29:66:8b:bd:d0:58:59:69:ab: 28:0e:6e:0d:ee:d4:f3:43:39:b3:2d:b4:5e:2e:fd:74:92:c4: 4d:b7:8a:e3:1f:1c:fb:a7:26:9d:b4:62:30:57:bf:10:bd:77: 4f:18:ab:3c:e1:d9:36:ba:20:f9:96:08:a6:7e:7e:b3:7d:1c: 6e:7a:86:69:e8:56:1f:4c:95:09:2a:79:17:ca:c2:92:89:5c: d6:95:98:be:6f:4b:70:8a:44:a9:c5:c3:e0:cf:bb:a2:37:82: 8b:4b:e6:6e:71:20:ed:05:14:84:3a:b4:f9:4d:a9:df:2f:47: 14:9e:8c:e5:13:89:7b:5c:a7:27:88:b2:4a:13:2e:09:f8:80: 6b:6f:a5:4b:44:e9:cb:48:10:af:b7:57:d6:97:93:6f:c0:a8: eb:5a:2e:73:f6:d4:50:61:7f:04:42:e5:ef:87:79:d7:1c:e0: 02:5f:6e:55:91:1c:78:f0:7b:53:2a:dd:4b:67:f4:f5:67:b2: 7f:2e:b9:d6:43:08:d3:3b:96:62:a5:ad:57:09:99:bb:da:8b: f0:e0:ab:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCZUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkFGQTQxMTAvBgNVBAUTKDUxOTQyRDI1RURCQ0E1MURGQTU2Q0UwOUVEMzYxRUI3 QTI2REJEMjUwHhcNMjUxMTA0MjAxNzE5WhcNMjUxMTExMjAxNzE5WjAYMRYwFAYD VQQDEw02OTBhNWY0Zi0zZmU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzyw2xWRa0V87LRqGlNyFYn5xOBQlNo7+U7dNe9CGZ3xDVGaVEWzMVQ4U8F+a rIxdlKY6cdT4xBfIoejyC1B7Lw78RheX3+bHSdyVqkcyq0Pex1MiI5r0J0mtKMfo VZKj2MbTyQ/6KiNKIzvJbF55RQfs0FwiZrSucoLIjqHo4f4Y0VIi9GDHSjogu4fI +Rsezis6whfJ53R/DBkIo40vaoHUl+yce6732z62JlvmIQLYCmXBUzeaSMMa5cLh SffswF1n6nbBT+P4MlnoHjnVXX3nA8w49nj/1lstSOyQbyJiM+yg9BPXiLc2B++9 t92nZyO0jne89KP9gy5n4rlt1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCALYSDa WKM/5xh5aZWrBtrYPlEOMB8GA1UdIwQYMBaAFFGULSXtvKUd+lbOCe02Hreibb0l MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQUZBNC9CNjc4NjJGQUFC OTUxMUVBQjI1NTlDNUJDNEY5QUUwMi9VWlF0SmUyOHBSMzZWczRKN1RZZXQ2SnR2 U1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VaUXRKZTI4cFIzNlZzNEo3VFlldDZKdHZTVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QUZBNC9CNjc4NjJGQUFCOTUxMUVBQjI1NTlDNUJDNEY5QUUwMi9VWlF0SmUyOHBS MzZWczRKN1RZZXQ2SnR2U1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSMCgvqnhDbNVcPjX0W9+ou1ZtNHHFfHITn8dlulxL1hj+4JXOPPJS fCns7B8pZou90FhZaasoDm4N7tTzQzmzLbReLv10ksRNt4rjHxz7pyadtGIwV78Q vXdPGKs84dk2uiD5lgimfn6zfRxueoZp6FYfTJUJKnkXysKSiVzWlZi+b0twikSp xcPgz7uiN4KLS+ZucSDtBRSEOrT5TanfL0cUnozlE4l7XKcniLJKEy4J+IBrb6VL ROnLSBCvt1fWl5NvwKjrWi5z9tRQYX8EQuXvh3nXHOACX25VkRx48HtTKt1LZ/T1 Z7J/LrnWQwjTO5Zipa1XCZm72ovw4Kvb -----END CERTIFICATE-----Generated at Wed Nov 5 19:32:35 2025 by rpki-client