$ rpki-client -vvf rpki.apnic.net/member_repository/A916D5A2/C21A538680B811EBBEB19E83C4F9AE02/uftCI-sDug7mzge0ZgIXr69xbV0.mft File: uftCI-sDug7mzge0ZgIXr69xbV0.mft (raw, json) Hash identifier: 3luuTuhV/DVuf2eNeSImLdfhzqCunV/w8DTBNFU+JrU= Subject key identifier: 63:E7:BF:2A:D5:DD:A0:96:38:FB:39:56:42:37:A4:B1:97:78:38:4E Authority key identifier: B9:FB:42:23:EB:03:BA:0E:E6:CE:07:B4:66:02:17:AF:AF:71:6D:5D Certificate issuer: /CN=A916D5A2/serialNumber=B9FB4223EB03BA0EE6CE07B4660217AFAF716D5D Certificate serial: 06BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uftCI-sDug7mzge0ZgIXr69xbV0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D5A2/C21A538680B811EBBEB19E83C4F9AE02/uftCI-sDug7mzge0ZgIXr69xbV0.mft Manifest number: 06B6 Signing time: Sun 02 Nov 2025 22:11:00 +0000 Manifest this update: Sun 02 Nov 2025 22:11:00 +0000 Manifest next update: Sun 09 Nov 2025 22:11:00 +0000 Files and hashes: 1: uftCI-sDug7mzge0ZgIXr69xbV0.crl (hash: oRaZBXyl2qxDkWOeRiqIogf/kjXKWNiC3/H4wxBlRao=) 2: F5250AEAB57011F0A97B9E77C4F9AE02.roa (hash: 7MZHUJH95TcyRd7ME/hVxnITTbrFzvEBCqxuhjcdwaM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D5A2/C21A538680B811EBBEB19E83C4F9AE02/uftCI-sDug7mzge0ZgIXr69xbV0.crl rsync://rpki.apnic.net/member_repository/A916D5A2/C21A538680B811EBBEB19E83C4F9AE02/uftCI-sDug7mzge0ZgIXr69xbV0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uftCI-sDug7mzge0ZgIXr69xbV0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 22:10:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1725 (0x6bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D5A2, serialNumber=B9FB4223EB03BA0EE6CE07B4660217AFAF716D5D Validity Not Before: Nov 2 22:11:00 2025 GMT Not After : Nov 9 22:11:00 2025 GMT Subject: CN=6907d6f4-a16a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:f9:ab:58:e9:ce:7b:70:ac:1f:2c:d4:4d:75: 00:39:25:ed:3f:1c:9a:90:2c:8a:d9:ae:6f:c7:0f: 7e:7f:43:ed:27:2b:f7:12:34:bc:2d:5f:62:3a:f2: e8:86:9a:09:a2:3c:30:f1:49:a3:9d:1c:b2:62:a1: 3e:63:11:47:b6:6f:8b:b2:1b:59:37:bb:6a:24:d8: 20:52:e2:2a:85:d4:31:fb:e4:c6:ec:7d:0c:09:58: 40:2d:5f:59:8a:46:f7:c4:3c:c1:11:9a:5b:2d:e2: 8b:53:bb:27:d9:92:a0:c3:16:dc:c9:39:ad:70:19: 40:89:75:11:8f:53:c0:84:c5:bf:4b:09:a2:31:79: 1f:c1:b3:83:34:32:8b:b5:0f:7f:31:28:3f:60:5c: 57:f8:2e:08:a5:39:10:4f:91:d2:40:c0:c0:6e:22: 2a:bf:4f:ef:a7:d0:14:bf:d4:a6:c4:8e:9b:7f:5d: c0:65:c5:75:64:19:cc:1a:dd:ee:6b:b5:7a:aa:96: d0:3d:82:53:95:7d:43:c3:bc:07:72:a7:e3:f1:30: e9:08:88:7c:fa:8f:be:77:7e:c9:b6:dc:6d:0f:04: 3c:00:cd:f5:44:14:83:69:f6:20:25:e2:65:50:7d: fb:a0:d6:81:8e:1c:f8:28:21:66:ee:02:bc:9e:68: dc:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:E7:BF:2A:D5:DD:A0:96:38:FB:39:56:42:37:A4:B1:97:78:38:4E X509v3 Authority Key Identifier: keyid:B9:FB:42:23:EB:03:BA:0E:E6:CE:07:B4:66:02:17:AF:AF:71:6D:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D5A2/C21A538680B811EBBEB19E83C4F9AE02/uftCI-sDug7mzge0ZgIXr69xbV0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uftCI-sDug7mzge0ZgIXr69xbV0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D5A2/C21A538680B811EBBEB19E83C4F9AE02/uftCI-sDug7mzge0ZgIXr69xbV0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:49:9b:ca:ea:b5:5d:38:cf:4b:86:d7:9c:fc:2e:ea:b8:37: e3:eb:8b:7c:c7:ab:7c:9b:90:64:e7:22:54:3e:cc:a9:fe:66: 23:1e:52:cb:f4:3b:e4:fd:e8:af:a5:ef:f8:b4:1a:de:37:f5: 33:2b:85:79:9b:33:18:08:7f:86:52:46:96:9d:13:dd:f4:8b: 57:ab:6d:20:3a:d0:c4:8e:68:c0:96:71:a8:aa:df:06:3d:bb: 4b:f9:2a:f3:c4:4b:f8:3f:b8:d6:c7:8e:3f:c1:bc:42:c4:1d: d2:ba:30:32:0f:a5:f2:17:b5:b3:5f:13:e6:71:09:d8:9f:dd: 0f:36:28:ad:16:bc:6f:22:2c:83:e7:62:c1:b1:b0:12:b0:23: 89:69:f0:2b:b0:f9:d1:9e:7d:5d:70:9b:49:57:df:2f:d2:d0: 7f:83:9a:74:88:69:8b:5b:6d:4d:77:cc:97:0e:8f:bc:fb:9f: 27:e7:71:77:45:83:6c:40:48:b7:20:32:8f:4d:22:04:02:38: 79:05:02:f7:ff:25:0b:68:1a:66:ea:94:a6:b0:53:40:9d:20: de:8e:fd:4f:cd:9c:a0:dd:af:6f:41:b2:06:7e:a9:33:8e:88: c0:06:89:78:f1:ce:05:95:db:de:30:f4:e8:43:58:32:f9:f3: 56:bf:91:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBr0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQ1QTIxMTAvBgNVBAUTKEI5RkI0MjIzRUIwM0JBMEVFNkNFMDdCNDY2MDIxN0FG QUY3MTZENUQwHhcNMjUxMTAyMjIxMTAwWhcNMjUxMTA5MjIxMTAwWjAYMRYwFAYD VQQDEw02OTA3ZDZmNC1hMTZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwPmrWOnOe3CsHyzUTXUAOSXtPxyakCyK2a5vxw9+f0PtJyv3EjS8LV9iOvLo hpoJojww8UmjnRyyYqE+YxFHtm+LshtZN7tqJNggUuIqhdQx++TG7H0MCVhALV9Z ikb3xDzBEZpbLeKLU7sn2ZKgwxbcyTmtcBlAiXURj1PAhMW/SwmiMXkfwbODNDKL tQ9/MSg/YFxX+C4IpTkQT5HSQMDAbiIqv0/vp9AUv9SmxI6bf13AZcV1ZBnMGt3u a7V6qpbQPYJTlX1Dw7wHcqfj8TDpCIh8+o++d37JttxtDwQ8AM31RBSDafYgJeJl UH37oNaBjhz4KCFm7gK8nmjcfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGPnvyrV 3aCWOPs5VkI3pLGXeDhOMB8GA1UdIwQYMBaAFLn7QiPrA7oO5s4HtGYCF6+vcW1d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDVBMi9DMjFBNTM4Njgw QjgxMUVCQkVCMTlFODNDNEY5QUUwMi91ZnRDSS1zRHVnN216Z2UwWmdJWHI2OXhi VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VmdENJLXNEdWc3bXpnZTBaZ0lYcjY5eGJWMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RDVBMi9DMjFBNTM4NjgwQjgxMUVCQkVCMTlFODNDNEY5QUUwMi91ZnRDSS1zRHVn N216Z2UwWmdJWHI2OXhiVjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFSZvK6rVdOM9Lhtec/C7quDfj64t8x6t8m5Bk5yJUPsyp/mYjHlLL 9Dvk/eivpe/4tBreN/UzK4V5mzMYCH+GUkaWnRPd9ItXq20gOtDEjmjAlnGoqt8G PbtL+SrzxEv4P7jWx44/wbxCxB3SujAyD6XyF7WzXxPmcQnYn90PNiitFrxvIiyD 52LBsbASsCOJafArsPnRnn1dcJtJV98v0tB/g5p0iGmLW21Nd8yXDo+8+58n53F3 RYNsQEi3IDKPTSIEAjh5BQL3/yULaBpm6pSmsFNAnSDejv1PzZyg3a9vQbIGfqkz jojABol48c4FldveMPToQ1gy+fNWv5HF -----END CERTIFICATE-----Generated at Mon Nov 3 18:17:23 2025 by rpki-client