$ rpki-client -vvf rpki.apnic.net/member_repository/A913318E/6A90AF84EBF911EE9DA79B77C4F9AE02/UA-SAOuG3F_QbbeGwM6kUtDOcjA.mft File: UA-SAOuG3F_QbbeGwM6kUtDOcjA.mft (raw, json) Hash identifier: g5V1XF2lqCFV740E80gs/RRwTMcZ29mBiD6zNHn5/TY= Subject key identifier: E2:E2:BA:4B:66:A0:68:75:C4:A5:D4:66:8F:54:77:C3:0A:B7:4B:62 Authority key identifier: 50:0F:92:00:EB:86:DC:5F:D0:6D:B7:86:C0:CE:A4:52:D0:CE:72:30 Certificate issuer: /CN=A913318E/serialNumber=500F9200EB86DC5FD06DB786C0CEA452D0CE7230 Certificate serial: 0133 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UA-SAOuG3F_QbbeGwM6kUtDOcjA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913318E/6A90AF84EBF911EE9DA79B77C4F9AE02/UA-SAOuG3F_QbbeGwM6kUtDOcjA.mft Manifest number: 012F Signing time: Wed 05 Nov 2025 04:45:28 +0000 Manifest this update: Wed 05 Nov 2025 04:45:27 +0000 Manifest next update: Wed 12 Nov 2025 04:45:27 +0000 Files and hashes: 1: UA-SAOuG3F_QbbeGwM6kUtDOcjA.crl (hash: /rrsMjfU0XsygJ+UKENpGwzEHzN4ixCwOp+hgI8Jf2E=) 2: 6EAE50E8EBFA11EEA937307AC4F9AE02.roa (hash: n4jE/JU888DErTDFi7j6yPAf5IRm3HLfX3pJFCp7TIY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913318E/6A90AF84EBF911EE9DA79B77C4F9AE02/UA-SAOuG3F_QbbeGwM6kUtDOcjA.crl rsync://rpki.apnic.net/member_repository/A913318E/6A90AF84EBF911EE9DA79B77C4F9AE02/UA-SAOuG3F_QbbeGwM6kUtDOcjA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UA-SAOuG3F_QbbeGwM6kUtDOcjA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:45:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 307 (0x133) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913318E, serialNumber=500F9200EB86DC5FD06DB786C0CEA452D0CE7230 Validity Not Before: Nov 5 04:45:27 2025 GMT Not After : Nov 12 04:45:27 2025 GMT Subject: CN=690ad668-2072 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:15:e2:ca:48:b1:ff:bd:b4:50:cd:e1:a8:16: ba:5c:ab:c2:2e:09:5d:b6:e7:d4:08:bc:5a:e3:8f: f7:ff:c1:69:52:5d:32:8f:81:c3:dc:23:ab:58:b8: 78:99:0b:1e:1c:06:af:8d:a5:62:56:9c:ba:3f:dc: eb:6f:b2:4c:70:53:a8:f3:d1:d2:7d:41:77:74:9d: b8:cd:e0:7b:20:93:4f:26:e1:26:1a:62:4d:13:19: f3:2f:64:01:99:92:d2:71:ef:ca:7f:e7:88:62:76: 86:f0:91:01:c8:4a:e1:e7:36:f5:63:1c:61:55:b6: 38:7c:45:2f:8f:2b:9e:88:a0:e1:87:b3:cb:74:fb: de:e2:ce:96:ee:4b:11:ed:8c:bb:e1:61:f7:68:bf: 1e:00:7c:db:fb:f0:1f:92:b7:28:62:9c:55:63:94: 5e:62:79:0a:de:4a:36:cd:02:1b:25:74:a6:d9:a4: f6:13:96:e1:b0:73:71:6e:de:96:f7:b7:17:f6:6f: 6d:4d:5b:6e:55:93:ba:be:4d:5b:80:52:c8:64:b6: 84:af:0e:c2:5f:30:39:da:5e:ba:0c:88:0f:f3:b3: ce:2e:5f:ef:88:56:97:5c:61:10:02:40:cc:59:32: f5:ca:41:99:d7:f2:cd:c0:7d:9a:49:3e:18:3c:cf: 2c:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:E2:BA:4B:66:A0:68:75:C4:A5:D4:66:8F:54:77:C3:0A:B7:4B:62 X509v3 Authority Key Identifier: keyid:50:0F:92:00:EB:86:DC:5F:D0:6D:B7:86:C0:CE:A4:52:D0:CE:72:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913318E/6A90AF84EBF911EE9DA79B77C4F9AE02/UA-SAOuG3F_QbbeGwM6kUtDOcjA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UA-SAOuG3F_QbbeGwM6kUtDOcjA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913318E/6A90AF84EBF911EE9DA79B77C4F9AE02/UA-SAOuG3F_QbbeGwM6kUtDOcjA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:03:23:e5:7d:6f:11:77:0c:7e:e9:84:de:53:3b:aa:24:72: cd:01:60:da:1e:90:d4:35:72:16:26:95:17:21:a1:d8:f6:ee: 3e:81:48:04:e5:1d:fe:6e:40:39:a0:38:9d:fd:ea:f6:cf:36: 82:5a:d0:50:b6:9e:80:d0:6f:68:99:09:e8:48:e8:25:ec:90: c7:4d:99:b7:2b:9f:c1:81:e3:ca:44:04:c2:c4:8a:7a:38:0d: 39:df:01:5c:aa:a7:00:50:ab:53:47:6c:34:54:2a:ea:33:bf: 39:cd:2d:81:7c:9c:11:b9:7e:41:b8:fa:a0:9d:e7:1d:15:be: db:d3:3e:b6:0e:ce:8a:18:41:c2:ec:15:df:3f:55:72:0a:57: 1a:2d:15:68:06:cc:70:e5:98:bb:8c:8a:b7:d7:02:ab:cc:40: 65:f2:95:f3:97:17:66:88:61:1d:38:37:56:b6:c1:f5:a3:7a: e4:fa:aa:b0:61:2a:2a:2d:50:55:9a:57:84:9e:d4:99:c7:e9: 5a:5e:9f:58:96:b4:7e:19:23:22:4c:80:12:74:02:7e:91:c3: af:f7:f7:31:df:15:78:02:e9:3e:b8:5e:dc:26:19:10:6f:a8: 2c:ac:14:7b:b7:2c:4d:c5:b6:fa:28:7d:e7:64:75:37:79:c0: 2d:36:0b:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzMxOEUxMTAvBgNVBAUTKDUwMEY5MjAwRUI4NkRDNUZEMDZEQjc4NkMwQ0VBNDUy RDBDRTcyMzAwHhcNMjUxMTA1MDQ0NTI3WhcNMjUxMTEyMDQ0NTI3WjAYMRYwFAYD VQQDEw02OTBhZDY2OC0yMDcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArxXiykix/720UM3hqBa6XKvCLgldtufUCLxa44/3/8FpUl0yj4HD3COrWLh4 mQseHAavjaViVpy6P9zrb7JMcFOo89HSfUF3dJ24zeB7IJNPJuEmGmJNExnzL2QB mZLSce/Kf+eIYnaG8JEByErh5zb1YxxhVbY4fEUvjyueiKDhh7PLdPve4s6W7ksR 7Yy74WH3aL8eAHzb+/AfkrcoYpxVY5ReYnkK3ko2zQIbJXSm2aT2E5bhsHNxbt6W 97cX9m9tTVtuVZO6vk1bgFLIZLaErw7CXzA52l66DIgP87POLl/viFaXXGEQAkDM WTL1ykGZ1/LNwH2aST4YPM8skQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOLiuktm oGh1xKXUZo9Ud8MKt0tiMB8GA1UdIwQYMBaAFFAPkgDrhtxf0G23hsDOpFLQznIw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMzE4RS82QTkwQUY4NEVC RjkxMUVFOURBNzlCNzdDNEY5QUUwMi9VQS1TQU91RzNGX1FiYmVHd002a1V0RE9j akEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VBLVNBT3VHM0ZfUWJiZUd3TTZrVXRET2NqQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MzE4RS82QTkwQUY4NEVCRjkxMUVFOURBNzlCNzdDNEY5QUUwMi9VQS1TQU91RzNG X1FiYmVHd002a1V0RE9jakEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNAyPlfW8Rdwx+6YTeUzuqJHLNAWDaHpDUNXIWJpUXIaHY9u4+gUgE 5R3+bkA5oDid/er2zzaCWtBQtp6A0G9omQnoSOgl7JDHTZm3K5/BgePKRATCxIp6 OA053wFcqqcAUKtTR2w0VCrqM785zS2BfJwRuX5BuPqgnecdFb7b0z62Ds6KGEHC 7BXfP1VyClcaLRVoBsxw5Zi7jIq31wKrzEBl8pXzlxdmiGEdODdWtsH1o3rk+qqw YSoqLVBVmleEntSZx+laXp9YlrR+GSMiTIASdAJ+kcOv9/cx3xV4Auk+uF7cJhkQ b6gsrBR7tyxNxbb6KH3nZHU3ecAtNgvt -----END CERTIFICATE-----Generated at Wed Nov 5 19:32:41 2025 by rpki-client