$ rpki-client -vvf rpki.apnic.net/member_repository/A9199CFF/2AE16A58D7E011EF8B173D2FC4F9AE02/ULpjuT-CkSle5HAxuWtFzaXCSw0.mft File: ULpjuT-CkSle5HAxuWtFzaXCSw0.mft (raw, json) Hash identifier: iimnxPvzRSJNyu7Vg7GD84JoHgTbO5x3veCdJh9RwsM= Subject key identifier: E6:62:4B:0F:52:81:50:44:D3:31:4A:F3:F3:47:BB:21:6B:0F:35:EA Authority key identifier: 50:BA:63:B9:3F:82:91:29:5E:E4:70:31:B9:6B:45:CD:A5:C2:4B:0D Certificate issuer: /CN=A9199CFF/serialNumber=50BA63B93F8291295EE47031B96B45CDA5C24B0D Certificate serial: 95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ULpjuT-CkSle5HAxuWtFzaXCSw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199CFF/2AE16A58D7E011EF8B173D2FC4F9AE02/ULpjuT-CkSle5HAxuWtFzaXCSw0.mft Manifest number: 94 Signing time: Mon 03 Nov 2025 06:29:10 +0000 Manifest this update: Mon 03 Nov 2025 06:29:10 +0000 Manifest next update: Mon 10 Nov 2025 06:29:10 +0000 Files and hashes: 1: ULpjuT-CkSle5HAxuWtFzaXCSw0.crl (hash: eCZz274nP9xUwfZfCdYP28vuC1w13HuXArx+MJMyejE=) 2: 42D62828962711F0B74FEE0CC4F9AE02.roa (hash: 0z7LOagwkk6qGA8xhyY/PPVphtP1S0sI7WQf0daRuRk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199CFF/2AE16A58D7E011EF8B173D2FC4F9AE02/ULpjuT-CkSle5HAxuWtFzaXCSw0.crl rsync://rpki.apnic.net/member_repository/A9199CFF/2AE16A58D7E011EF8B173D2FC4F9AE02/ULpjuT-CkSle5HAxuWtFzaXCSw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ULpjuT-CkSle5HAxuWtFzaXCSw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:29:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 149 (0x95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199CFF, serialNumber=50BA63B93F8291295EE47031B96B45CDA5C24B0D Validity Not Before: Nov 3 06:29:10 2025 GMT Not After : Nov 10 06:29:10 2025 GMT Subject: CN=69084bb6-e168 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:02:36:02:22:9d:14:2d:af:a1:c1:3f:12:6b: 82:da:18:ea:7d:f3:1c:c9:0a:8b:c2:40:cb:01:35: 26:d9:49:5e:53:39:03:91:35:47:df:82:68:dc:f0: 59:6d:24:45:1b:fd:0e:0b:2d:af:a1:09:7b:9b:f9: 3d:da:86:7b:c0:e2:a1:23:21:1c:2e:25:7c:91:5f: 9a:9a:80:25:1c:11:93:1e:5f:f9:08:9e:c3:86:6b: e1:0b:2b:df:18:84:47:73:98:6f:92:91:b2:06:d7: ee:45:da:03:cb:56:fb:92:1a:4e:68:3f:55:66:30: 1a:98:e5:5d:98:d2:59:ae:85:c8:57:e5:1b:d7:8c: c4:4b:c3:ee:31:d7:34:e2:ba:3f:b5:ae:2f:d7:1f: 45:f5:71:52:6b:68:d3:2f:78:c9:d8:5c:78:28:ed: 0f:c3:75:19:56:51:4d:43:1b:04:35:74:86:37:e9: 23:a9:4f:ec:40:18:48:f0:0e:6d:fc:ef:20:67:71: f7:a6:c5:5d:bc:3f:d7:94:c3:91:e8:41:6d:f6:4d: 27:0d:6e:e3:7d:cb:b9:ec:49:30:63:b1:df:35:b1: e1:9e:37:b6:ac:8e:f2:4e:ff:73:d3:aa:be:5d:63: fd:fe:4a:3b:13:2a:5c:34:85:83:d7:16:06:23:1c: 1c:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:62:4B:0F:52:81:50:44:D3:31:4A:F3:F3:47:BB:21:6B:0F:35:EA X509v3 Authority Key Identifier: keyid:50:BA:63:B9:3F:82:91:29:5E:E4:70:31:B9:6B:45:CD:A5:C2:4B:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199CFF/2AE16A58D7E011EF8B173D2FC4F9AE02/ULpjuT-CkSle5HAxuWtFzaXCSw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ULpjuT-CkSle5HAxuWtFzaXCSw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199CFF/2AE16A58D7E011EF8B173D2FC4F9AE02/ULpjuT-CkSle5HAxuWtFzaXCSw0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:9d:d1:4e:49:83:80:a3:3d:0e:44:47:5d:d4:82:9a:f7:3a: 00:20:00:ae:d3:55:20:00:52:a6:11:a3:79:df:e7:f5:dd:a5: a6:89:7a:0e:c9:63:df:e2:c5:9d:7d:ab:5b:ef:ae:84:2a:32: cb:be:04:d0:6d:38:db:29:91:85:51:f7:a2:6e:9a:19:e4:bc: 12:2d:d9:17:ec:0b:62:24:bf:8a:56:e6:07:89:9f:99:54:de: f3:5c:94:f8:1c:b2:7f:e6:7f:2d:6f:08:f6:4f:f4:86:5f:4e: f7:a6:0d:52:c0:2a:79:0f:fa:38:01:ab:13:c9:b5:06:71:55: 84:01:da:85:04:54:ba:14:79:0d:dc:72:2c:c6:d1:44:3c:ce: da:bd:cd:85:05:2d:8c:7c:a2:7a:5b:4f:bb:6e:78:8e:da:1d: 36:83:d2:38:0a:cd:38:cd:b7:dc:cc:03:c4:9a:75:fb:96:65: b1:bf:27:5e:6b:94:12:40:79:3b:22:72:f0:43:05:ae:ce:09: e2:4e:c3:c7:11:ac:29:8d:95:5f:f0:93:ed:5f:99:2c:43:94: 23:6a:77:04:2b:06:55:26:99:2d:81:b1:30:07:f0:39:97:75: d9:99:7f:52:c5:25:86:75:78:82:02:63:23:1c:4d:0b:69:d8: 39:f0:6c:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTlDRkYxMTAvBgNVBAUTKDUwQkE2M0I5M0Y4MjkxMjk1RUU0NzAzMUI5NkI0NUNE QTVDMjRCMEQwHhcNMjUxMTAzMDYyOTEwWhcNMjUxMTEwMDYyOTEwWjAYMRYwFAYD VQQDEw02OTA4NGJiNi1lMTY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAswI2AiKdFC2vocE/EmuC2hjqffMcyQqLwkDLATUm2UleUzkDkTVH34Jo3PBZ bSRFG/0OCy2voQl7m/k92oZ7wOKhIyEcLiV8kV+amoAlHBGTHl/5CJ7DhmvhCyvf GIRHc5hvkpGyBtfuRdoDy1b7khpOaD9VZjAamOVdmNJZroXIV+Ub14zES8PuMdc0 4ro/ta4v1x9F9XFSa2jTL3jJ2Fx4KO0Pw3UZVlFNQxsENXSGN+kjqU/sQBhI8A5t /O8gZ3H3psVdvD/XlMOR6EFt9k0nDW7jfcu57EkwY7HfNbHhnje2rI7yTv9z06q+ XWP9/ko7EypcNIWD1xYGIxwchwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOZiSw9S gVBE0zFK8/NHuyFrDzXqMB8GA1UdIwQYMBaAFFC6Y7k/gpEpXuRwMblrRc2lwksN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OUNGRi8yQUUxNkE1OEQ3 RTAxMUVGOEIxNzNEMkZDNEY5QUUwMi9VTHBqdVQtQ2tTbGU1SEF4dVd0RnphWENT dzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VMcGp1VC1Da1NsZTVIQXh1V3RGemFYQ1N3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OUNGRi8yQUUxNkE1OEQ3RTAxMUVGOEIxNzNEMkZDNEY5QUUwMi9VTHBqdVQtQ2tT bGU1SEF4dVd0RnphWENTdzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsndFOSYOAoz0OREdd1IKa9zoAIACu01UgAFKmEaN53+f13aWmiXoO yWPf4sWdfatb766EKjLLvgTQbTjbKZGFUfeibpoZ5LwSLdkX7AtiJL+KVuYHiZ+Z VN7zXJT4HLJ/5n8tbwj2T/SGX073pg1SwCp5D/o4AasTybUGcVWEAdqFBFS6FHkN 3HIsxtFEPM7avc2FBS2MfKJ6W0+7bniO2h02g9I4Cs04zbfczAPEmnX7lmWxvyde a5QSQHk7InLwQwWuzgniTsPHEawpjZVf8JPtX5ksQ5QjancEKwZVJpktgbEwB/A5 l3XZmX9SxSWGdXiCAmMjHE0Ladg58Gw3 -----END CERTIFICATE-----Generated at Tue Nov 4 09:08:35 2025 by rpki-client