$ rpki-client -vvf rpki.apnic.net/member_repository/A917C606/7C8B137A8FC911EC8155DB61C4F9AE02/uHLzTVUlH6dw7MOT0mcSED1VBzc.mft File: uHLzTVUlH6dw7MOT0mcSED1VBzc.mft (raw, json) Hash identifier: 8tNEAWlCENN8xU5ZooAAZVFDaXp6z9UG/R6gP9/UJ60= Subject key identifier: 3A:F8:30:5F:49:C4:82:AB:F8:CF:6E:DF:35:40:CC:D5:7E:52:4F:D7 Authority key identifier: B8:72:F3:4D:55:25:1F:A7:70:EC:C3:93:D2:67:12:10:3D:55:07:37 Certificate issuer: /CN=A917C606/serialNumber=B872F34D55251FA770ECC393D26712103D550737 Certificate serial: 0417 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uHLzTVUlH6dw7MOT0mcSED1VBzc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C606/7C8B137A8FC911EC8155DB61C4F9AE02/uHLzTVUlH6dw7MOT0mcSED1VBzc.mft Manifest number: 040C Signing time: Fri 31 Oct 2025 00:22:54 +0000 Manifest this update: Fri 31 Oct 2025 00:22:53 +0000 Manifest next update: Fri 07 Nov 2025 00:22:53 +0000 Files and hashes: 1: uHLzTVUlH6dw7MOT0mcSED1VBzc.crl (hash: GLilrHHUvyF3aJCIQCigcyRH9AqswUcj8uOn3KaO1oI=) 2: 945375FAF69511EC90A47215C4F9AE02.roa (hash: 93z4oqW7DQ1yUII6DWRvY7Xrtn4iF7Cp5BMrU5CKBhM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C606/7C8B137A8FC911EC8155DB61C4F9AE02/uHLzTVUlH6dw7MOT0mcSED1VBzc.crl rsync://rpki.apnic.net/member_repository/A917C606/7C8B137A8FC911EC8155DB61C4F9AE02/uHLzTVUlH6dw7MOT0mcSED1VBzc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uHLzTVUlH6dw7MOT0mcSED1VBzc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 00:22:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1047 (0x417) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C606, serialNumber=B872F34D55251FA770ECC393D26712103D550737 Validity Not Before: Oct 31 00:22:53 2025 GMT Not After : Nov 7 00:22:53 2025 GMT Subject: CN=6904015d-a941 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:b5:91:e6:69:75:7f:b5:2a:62:60:e3:54:1f: 1d:48:2a:60:73:32:cd:4d:8b:6d:43:a1:ce:ba:f4: d7:5a:b7:98:ed:61:37:ca:66:50:ec:a3:ef:e5:d4: 65:cb:2e:47:2a:96:9f:32:d7:5d:ad:57:c9:ac:4e: 28:c8:be:cd:cf:2d:cb:fa:94:5b:12:7c:ac:6d:25: da:36:81:ca:61:a4:2c:e5:fc:a4:dd:f7:74:65:7a: f6:0f:eb:df:96:2c:4d:0e:01:31:ce:2d:28:57:8f: 49:e7:9a:2b:77:88:8d:cc:8f:ce:e3:8b:a0:09:42: be:75:9c:d2:71:17:d0:1a:8d:e9:b0:04:1f:42:35: ac:7d:4b:a8:3c:c1:e5:56:5e:ff:e4:0b:a0:9d:d5: dd:d4:b2:f7:df:e6:4d:df:8a:54:4e:31:c3:1a:0b: d3:16:77:96:4f:e6:2c:cf:94:c7:0e:1a:e6:99:f4: 8e:4e:a5:9e:61:1f:26:ce:c5:92:76:15:10:f3:37: 43:aa:9d:08:3d:4c:16:45:2c:80:58:a2:37:29:22: b8:93:d0:e0:39:53:7f:36:aa:be:e2:04:7e:53:2f: 9a:d0:c6:19:db:a5:6a:a4:0f:80:30:f2:6f:c9:30: 22:4e:61:cf:1e:11:26:13:ec:22:ac:85:1f:1d:24: f7:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:F8:30:5F:49:C4:82:AB:F8:CF:6E:DF:35:40:CC:D5:7E:52:4F:D7 X509v3 Authority Key Identifier: keyid:B8:72:F3:4D:55:25:1F:A7:70:EC:C3:93:D2:67:12:10:3D:55:07:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C606/7C8B137A8FC911EC8155DB61C4F9AE02/uHLzTVUlH6dw7MOT0mcSED1VBzc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uHLzTVUlH6dw7MOT0mcSED1VBzc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C606/7C8B137A8FC911EC8155DB61C4F9AE02/uHLzTVUlH6dw7MOT0mcSED1VBzc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:60:71:74:cc:ef:11:2a:e0:49:59:a6:c2:96:c6:58:aa:cd: f1:8c:e7:46:bf:09:b5:14:c1:c9:a3:cf:a9:83:89:d4:0e:56: 8a:93:7c:e7:ba:fb:62:07:a9:08:e1:21:e5:f2:b7:dc:59:ec: 4f:0b:87:4a:ed:5c:49:ae:28:ff:c0:d8:31:62:15:c8:73:db: 09:26:06:b0:42:04:dc:39:d7:f5:1e:bf:bc:9a:7c:85:14:04: 9e:0e:ca:5c:12:ba:da:92:70:ab:93:a7:ae:2f:37:22:65:97: 68:49:e4:00:fd:0f:37:c9:ca:f1:ce:9a:ed:58:7c:06:a8:5a: 74:bb:5f:38:b9:38:9f:ce:98:49:98:bf:b7:fc:2e:9b:21:ac: e7:36:8f:b6:f9:cd:a4:0f:e0:a1:28:2d:ef:b5:82:2d:5a:0d: e7:9e:86:78:cf:63:64:6f:b1:89:e4:c8:10:a3:fe:2c:8f:f3: 7b:5e:8e:a1:b6:d8:35:2d:0f:96:e0:a9:e9:b7:7c:8e:4d:48: c8:02:3b:9d:df:54:9f:28:a0:ad:6f:7b:37:83:4e:cb:66:14: 71:fb:6c:66:3c:53:2d:75:7f:aa:14:c6:0e:fb:16:38:6b:39: aa:5b:ba:d2:b7:ca:a7:36:3c:17:6d:79:5c:f2:e0:79:68:6c: 29:83:3a:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M2MDYxMTAvBgNVBAUTKEI4NzJGMzRENTUyNTFGQTc3MEVDQzM5M0QyNjcxMjEw M0Q1NTA3MzcwHhcNMjUxMDMxMDAyMjUzWhcNMjUxMTA3MDAyMjUzWjAYMRYwFAYD VQQDEw02OTA0MDE1ZC1hOTQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw7WR5ml1f7UqYmDjVB8dSCpgczLNTYttQ6HOuvTXWreY7WE3ymZQ7KPv5dRl yy5HKpafMtddrVfJrE4oyL7Nzy3L+pRbEnysbSXaNoHKYaQs5fyk3fd0ZXr2D+vf lixNDgExzi0oV49J55ord4iNzI/O44ugCUK+dZzScRfQGo3psAQfQjWsfUuoPMHl Vl7/5AugndXd1LL33+ZN34pUTjHDGgvTFneWT+Ysz5THDhrmmfSOTqWeYR8mzsWS dhUQ8zdDqp0IPUwWRSyAWKI3KSK4k9DgOVN/Nqq+4gR+Uy+a0MYZ26VqpA+AMPJv yTAiTmHPHhEmE+wirIUfHST3cQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDr4MF9J xIKr+M9u3zVAzNV+Uk/XMB8GA1UdIwQYMBaAFLhy801VJR+ncOzDk9JnEhA9VQc3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzYwNi83QzhCMTM3QThG QzkxMUVDODE1NURCNjFDNEY5QUUwMi91SEx6VFZVbEg2ZHc3TU9UMG1jU0VEMVZC emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VITHpUVlVsSDZkdzdNT1QwbWNTRUQxVkJ6Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzYwNi83QzhCMTM3QThGQzkxMUVDODE1NURCNjFDNEY5QUUwMi91SEx6VFZVbEg2 ZHc3TU9UMG1jU0VEMVZCemMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlYHF0zO8RKuBJWabClsZYqs3xjOdGvwm1FMHJo8+pg4nUDlaKk3zn uvtiB6kI4SHl8rfcWexPC4dK7VxJrij/wNgxYhXIc9sJJgawQgTcOdf1Hr+8mnyF FASeDspcErraknCrk6euLzciZZdoSeQA/Q83ycrxzprtWHwGqFp0u184uTifzphJ mL+3/C6bIaznNo+2+c2kD+ChKC3vtYItWg3nnoZ4z2Nkb7GJ5MgQo/4sj/N7Xo6h ttg1LQ+W4Knpt3yOTUjIAjud31SfKKCtb3s3g07LZhRx+2xmPFMtdX+qFMYO+xY4 azmqW7rSt8qnNjwXbXlc8uB5aGwpgzpM -----END CERTIFICATE-----Generated at Fri Oct 31 08:16:11 2025 by rpki-client