$ rpki-client -vvf rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.mft File: UN4cYHM-ori3boQDYJGOHyXEbkM.mft (raw, json) Hash identifier: 7lWmmcv+2uAReB9p6eAa2dBMxwGdSsd+EzD/yZQGkpo= Subject key identifier: 4E:64:72:BF:A6:90:E7:E8:B9:0B:50:8F:8B:A5:47:55:3C:CC:33:E8 Authority key identifier: 50:DE:1C:60:73:3E:A2:B8:B7:6E:84:03:60:91:8E:1F:25:C4:6E:43 Certificate issuer: /CN=A916701E/serialNumber=50DE1C60733EA2B8B76E840360918E1F25C46E43 Certificate serial: 0C3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UN4cYHM-ori3boQDYJGOHyXEbkM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.mft Manifest number: 0C2D Signing time: Sun 02 Nov 2025 18:42:45 +0000 Manifest this update: Sun 02 Nov 2025 18:42:44 +0000 Manifest next update: Sun 09 Nov 2025 18:42:44 +0000 Files and hashes: 1: UN4cYHM-ori3boQDYJGOHyXEbkM.crl (hash: /dXoQe5DmEigyCcLgY5atRvl+HzTyDboPqzphgPbvzY=) 2: 46C5452E0DD711EF85707821C4F9AE02.roa (hash: /U7W3kIJcREb7MGP1Cl2Wpd73rbaNoFSjTUo68eX8m0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.crl rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UN4cYHM-ori3boQDYJGOHyXEbkM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:42:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3135 (0xc3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916701E, serialNumber=50DE1C60733EA2B8B76E840360918E1F25C46E43 Validity Not Before: Nov 2 18:42:44 2025 GMT Not After : Nov 9 18:42:44 2025 GMT Subject: CN=6907a624-97df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:2e:99:14:eb:3f:79:5f:2d:2a:3b:03:a1:66: 3a:e9:2b:cb:3f:5e:74:52:82:51:d9:91:6d:1f:18: 23:1a:f5:6f:57:42:0c:dc:49:4c:19:9e:99:41:58: 5c:21:8c:84:7f:97:39:88:f7:f1:a0:75:b4:eb:90: 1e:ff:1f:57:7b:2b:d8:71:7b:2c:c9:43:66:b2:6f: d4:75:73:9c:16:d9:d6:ca:ba:f8:ad:09:87:07:9e: 56:c6:d3:6d:b5:c4:e2:36:1a:0d:37:7b:d2:ab:c6: b3:96:1e:b9:45:e5:c1:5c:d2:5a:c2:d8:d9:f7:d8: 48:b8:0e:d5:42:92:be:92:f3:82:fe:9f:2d:f2:26: 0d:bb:1c:3b:d1:69:5a:56:c9:62:6c:b8:46:3d:4d: 7b:0e:e1:04:bc:e4:b8:7f:8a:eb:a5:d7:60:77:16: 94:82:a6:14:35:c5:ed:19:25:ad:0d:65:12:31:41: 34:12:33:8b:78:44:d0:a1:d3:74:c8:94:c0:ff:53: d8:3a:84:26:e0:4e:20:be:77:0c:0f:b8:c1:96:c9: 00:21:a5:f0:15:c8:b4:c6:e7:72:8e:d3:a4:e4:11: fb:2a:fe:34:6e:ef:f1:05:54:02:6d:8d:2e:4b:24: 3a:52:8f:85:b0:fb:34:a5:dd:f9:37:6a:86:29:b5: 7c:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:64:72:BF:A6:90:E7:E8:B9:0B:50:8F:8B:A5:47:55:3C:CC:33:E8 X509v3 Authority Key Identifier: keyid:50:DE:1C:60:73:3E:A2:B8:B7:6E:84:03:60:91:8E:1F:25:C4:6E:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UN4cYHM-ori3boQDYJGOHyXEbkM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:fc:4c:cd:ce:ee:91:6b:fd:d0:8d:00:2c:1b:88:71:8e:56: d6:4d:0c:58:a3:71:c7:ae:3f:65:0e:6f:7b:f9:16:21:25:ba: ba:78:7b:0a:45:9d:2a:e6:fb:23:5c:f7:d9:ec:b0:02:3b:b9: 1d:11:64:be:51:8a:ea:86:d1:d7:9f:35:54:d6:6a:e2:8b:3e: 7f:bd:3f:e6:94:49:c3:1d:eb:bc:6e:57:5f:6c:6f:59:55:be: 81:fe:e6:9f:ab:aa:41:f2:6f:50:8e:91:99:05:72:72:88:72: 66:cd:88:55:b0:66:99:8a:50:47:1e:2a:f9:a4:f6:13:fc:21: 70:aa:74:2b:35:88:d6:e4:69:dd:d5:44:aa:15:eb:fc:6b:d1: 6c:f4:45:45:8b:de:41:a4:86:1f:eb:60:bf:88:6f:70:ab:c3: 19:19:96:86:d6:75:5a:86:be:ef:b6:58:1a:d8:de:56:ef:74: 58:83:90:02:a5:85:a0:c2:c5:ab:4d:47:8b:f1:26:7e:6a:d9: de:9a:ad:2e:fe:ea:4a:6c:69:39:49:16:ea:98:40:3b:a0:d4: f0:14:5c:d5:68:44:03:04:cc:8e:94:74:bd:44:d3:97:a3:3e: cf:0a:f1:fc:ae:f6:8a:c5:de:1f:b8:d4:7a:1e:8f:dc:41:c4: f1:a8:ce:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDD8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjcwMUUxMTAvBgNVBAUTKDUwREUxQzYwNzMzRUEyQjhCNzZFODQwMzYwOTE4RTFG MjVDNDZFNDMwHhcNMjUxMTAyMTg0MjQ0WhcNMjUxMTA5MTg0MjQ0WjAYMRYwFAYD VQQDEw02OTA3YTYyNC05N2RmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7i6ZFOs/eV8tKjsDoWY66SvLP150UoJR2ZFtHxgjGvVvV0IM3ElMGZ6ZQVhc IYyEf5c5iPfxoHW065Ae/x9XeyvYcXssyUNmsm/UdXOcFtnWyrr4rQmHB55WxtNt tcTiNhoNN3vSq8azlh65ReXBXNJawtjZ99hIuA7VQpK+kvOC/p8t8iYNuxw70Wla VslibLhGPU17DuEEvOS4f4rrpddgdxaUgqYUNcXtGSWtDWUSMUE0EjOLeETQodN0 yJTA/1PYOoQm4E4gvncMD7jBlskAIaXwFci0xudyjtOk5BH7Kv40bu/xBVQCbY0u SyQ6Uo+FsPs0pd35N2qGKbV8VwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE5kcr+m kOfouQtQj4ulR1U8zDPoMB8GA1UdIwQYMBaAFFDeHGBzPqK4t26EA2CRjh8lxG5D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NzAxRS83ODVEN0VEMjFD MDgxMUVBODU3NkIxNTFDNEY5QUUwMi9VTjRjWUhNLW9yaTNib1FEWUpHT0h5WEVi a00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VONGNZSE0tb3JpM2JvUURZSkdPSHlYRWJrTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NzAxRS83ODVEN0VEMjFDMDgxMUVBODU3NkIxNTFDNEY5QUUwMi9VTjRjWUhNLW9y aTNib1FEWUpHT0h5WEVia00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAw/EzNzu6Ra/3QjQAsG4hxjlbWTQxYo3HHrj9lDm97+RYhJbq6eHsK RZ0q5vsjXPfZ7LACO7kdEWS+UYrqhtHXnzVU1mriiz5/vT/mlEnDHeu8bldfbG9Z Vb6B/uafq6pB8m9QjpGZBXJyiHJmzYhVsGaZilBHHir5pPYT/CFwqnQrNYjW5Gnd 1USqFev8a9Fs9EVFi95BpIYf62C/iG9wq8MZGZaG1nVahr7vtlga2N5W73RYg5AC pYWgwsWrTUeL8SZ+atnemq0u/upKbGk5SRbqmEA7oNTwFFzVaEQDBMyOlHS9RNOX oz7PCvH8rvaKxd4fuNR6Ho/cQcTxqM7M -----END CERTIFICATE-----Generated at Mon Nov 3 18:19:23 2025 by rpki-client