$ rpki-client -vvf rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.mft File: UoaLCQH1W0B4uRpzRRym0iMSyKs.mft (raw, json) Hash identifier: 8O+TS5H1dK46mPn3xJZUGbp3geIXfEnUbo6hdA8pdr0= Subject key identifier: 19:9A:72:9F:46:66:36:29:E6:0D:A3:D8:06:1C:01:C8:BF:7C:7E:8D Authority key identifier: 52:86:8B:09:01:F5:5B:40:78:B9:1A:73:45:1C:A6:D2:23:12:C8:AB Certificate issuer: /CN=A913E2B3/serialNumber=52868B0901F55B4078B91A73451CA6D22312C8AB Certificate serial: 0C59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoaLCQH1W0B4uRpzRRym0iMSyKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.mft Manifest number: 0C4B Signing time: Sun 26 Oct 2025 19:03:15 +0000 Manifest this update: Sun 26 Oct 2025 19:03:15 +0000 Manifest next update: Sun 02 Nov 2025 19:03:15 +0000 Files and hashes: 1: UoaLCQH1W0B4uRpzRRym0iMSyKs.crl (hash: 2hcUlQlNRuh8+jgl7YMvyc71NQA0KGc1q8/mmKsKwWE=) 2: 399AB6DA4ED511ED84336740C4F9AE02.roa (hash: xH17spaHhMO4029wjNj4ZW6FqoA9g6CON6QQbD7o3j0=) 3: 3AB1E0D44ED511ED84336740C4F9AE02.roa (hash: J+JzfdPnvnmB6Ay3Ml+qeWmcjb1XIfVxnUqGVNUN7Ko=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.crl rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoaLCQH1W0B4uRpzRRym0iMSyKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Nov 2025 19:03:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3161 (0xc59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E2B3, serialNumber=52868B0901F55B4078B91A73451CA6D22312C8AB Validity Not Before: Oct 26 19:03:15 2025 GMT Not After : Nov 2 19:03:15 2025 GMT Subject: CN=68fe7073-fb64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:91:7e:5a:2c:db:8b:3e:ea:51:c4:45:45:d4: 11:13:e0:41:fe:36:ea:9a:9e:b3:86:3b:1e:d6:48: 3a:fa:6f:68:cf:15:a3:8c:e5:e9:b0:b8:02:69:40: 4a:69:7d:74:4f:33:d9:c7:06:06:15:e0:98:0b:c3: fa:6d:3c:c5:49:dc:9f:7e:89:03:6e:39:f4:95:f8: 26:29:b8:9f:21:fd:78:22:b9:9d:d0:1b:31:f8:a1: 4a:25:41:bd:5e:07:9e:4c:a9:e0:60:23:60:a6:8b: 43:58:ac:a7:5a:32:79:28:6b:98:5f:12:8a:b4:7f: 75:8c:47:64:51:69:05:99:4d:ca:37:e8:d4:19:fd: c3:16:9d:6b:44:3b:d6:a1:9f:bd:67:bd:c1:49:1e: 21:16:3c:3d:18:b7:b0:c9:b6:5b:07:d6:01:af:3b: ec:16:88:a0:6a:97:4b:c0:50:31:d4:47:79:76:1a: 6d:6c:a6:33:b4:3e:d4:6e:9c:14:04:16:d7:21:f9: df:05:a5:9a:ae:2e:d5:66:c9:35:f8:bc:3c:7d:16: 06:cb:fa:2e:99:75:85:8a:2a:da:5d:48:eb:72:18: 96:00:c8:e3:f1:5e:9a:e7:7c:70:e4:62:b5:e6:b6: d4:78:1b:a0:6c:60:e9:1c:3d:16:a5:95:e7:80:5e: e9:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:9A:72:9F:46:66:36:29:E6:0D:A3:D8:06:1C:01:C8:BF:7C:7E:8D X509v3 Authority Key Identifier: keyid:52:86:8B:09:01:F5:5B:40:78:B9:1A:73:45:1C:A6:D2:23:12:C8:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoaLCQH1W0B4uRpzRRym0iMSyKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:20:5a:e6:64:6a:d6:85:9c:ae:18:7e:34:c7:5f:37:1e:dc: fe:dd:7b:ec:71:04:e0:c6:12:84:69:72:48:2d:63:8f:d0:f4: a7:66:cb:d0:f4:ae:da:0b:d0:80:19:d6:74:d8:c9:fc:cc:df: ea:ca:4e:92:33:0f:6a:b6:38:20:ed:1b:4c:47:c4:06:3a:bd: b0:2f:f8:ca:bc:21:d8:27:d9:3f:14:56:6d:2e:29:f0:07:dd: d5:fb:cb:55:bc:e7:71:88:86:7a:ed:65:ae:1e:63:84:ba:76: f9:09:d1:5f:1a:8b:fe:df:a5:a3:ab:d2:4c:14:45:5f:63:78: b0:1a:7a:5e:ec:20:3f:d4:ee:83:78:e1:a4:ec:4e:22:33:39: b6:ad:76:34:f8:c2:25:08:d8:78:c6:c2:ac:28:df:5a:38:2f: 42:fb:34:b2:5c:0a:19:c4:8b:fb:c5:f7:4e:55:56:fb:93:92: b0:0f:f3:da:ce:02:3f:9c:14:d8:04:bd:78:6a:a6:48:e8:d2: 3f:13:a8:25:08:f8:5b:53:4a:cb:23:2c:fb:de:52:23:ea:59: c7:8f:f6:de:c5:45:36:64:06:4b:fa:f9:7f:80:8c:9f:05:1f: da:dc:30:d6:a3:a7:36:22:0a:f5:14:46:ba:0a:4a:e5:33:dc: d9:71:37:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0UyQjMxMTAvBgNVBAUTKDUyODY4QjA5MDFGNTVCNDA3OEI5MUE3MzQ1MUNBNkQy MjMxMkM4QUIwHhcNMjUxMDI2MTkwMzE1WhcNMjUxMTAyMTkwMzE1WjAYMRYwFAYD VQQDEw02OGZlNzA3My1mYjY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn5F+Wizbiz7qUcRFRdQRE+BB/jbqmp6zhjse1kg6+m9ozxWjjOXpsLgCaUBK aX10TzPZxwYGFeCYC8P6bTzFSdyffokDbjn0lfgmKbifIf14Irmd0Bsx+KFKJUG9 XgeeTKngYCNgpotDWKynWjJ5KGuYXxKKtH91jEdkUWkFmU3KN+jUGf3DFp1rRDvW oZ+9Z73BSR4hFjw9GLewybZbB9YBrzvsFoigapdLwFAx1Ed5dhptbKYztD7UbpwU BBbXIfnfBaWari7VZsk1+Lw8fRYGy/oumXWFiiraXUjrchiWAMjj8V6a53xw5GK1 5rbUeBugbGDpHD0WpZXngF7pBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBmacp9G ZjYp5g2j2AYcAci/fH6NMB8GA1UdIwQYMBaAFFKGiwkB9VtAeLkac0UcptIjEsir MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTJCMy8yMEU2N0REODEy RjQxMUVBODk0MjA0MzBDNEY5QUUwMi9Vb2FMQ1FIMVcwQjR1UnB6UlJ5bTBpTVN5 S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VvYUxDUUgxVzBCNHVScHpSUnltMGlNU3lLcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTJCMy8yMEU2N0REODEyRjQxMUVBODk0MjA0MzBDNEY5QUUwMi9Vb2FMQ1FIMVcw QjR1UnB6UlJ5bTBpTVN5S3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxIFrmZGrWhZyuGH40x183Htz+3XvscQTgxhKEaXJILWOP0PSnZsvQ 9K7aC9CAGdZ02Mn8zN/qyk6SMw9qtjgg7RtMR8QGOr2wL/jKvCHYJ9k/FFZtLinw B93V+8tVvOdxiIZ67WWuHmOEunb5CdFfGov+36Wjq9JMFEVfY3iwGnpe7CA/1O6D eOGk7E4iMzm2rXY0+MIlCNh4xsKsKN9aOC9C+zSyXAoZxIv7xfdOVVb7k5KwD/Pa zgI/nBTYBL14aqZI6NI/E6glCPhbU0rLIyz73lIj6lnHj/bexUU2ZAZL+vl/gIyf BR/a3DDWo6c2Igr1FEa6CkrlM9zZcTfI -----END CERTIFICATE-----Generated at Mon Oct 27 15:52:10 2025 by rpki-client