$ rpki-client -vvf rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.mft File: UTbgDQPR84UAq2cpty7T1yzWoQU.mft (raw, json) Hash identifier: /dhmOyiMUsf4TPCfSZpDmmVvGX4N9bnEkBafYJss55Q= Subject key identifier: 2B:A9:80:33:0D:E4:ED:77:37:25:83:D2:3B:3C:99:D0:AF:F4:18:0C Authority key identifier: 51:36:E0:0D:03:D1:F3:85:00:AB:67:29:B7:2E:D3:D7:2C:D6:A1:05 Certificate issuer: /CN=A919B3BC/serialNumber=5136E00D03D1F38500AB6729B72ED3D72CD6A105 Certificate serial: 1E66 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UTbgDQPR84UAq2cpty7T1yzWoQU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.mft Manifest number: 1E50 Signing time: Thu 06 Nov 2025 15:45:51 +0000 Manifest this update: Thu 06 Nov 2025 15:45:51 +0000 Manifest next update: Thu 13 Nov 2025 15:45:51 +0000 Files and hashes: 1: UTbgDQPR84UAq2cpty7T1yzWoQU.crl (hash: 0qtsXFnPsYRF2Vt6MZ8PDeGAGbrB88CTs97O22OITZ0=) 2: 03D29A521AD611F0BC67FC1CC4F9AE02.roa (hash: 1U6J+6Id+mf2w4NcxMra67o7UyeEGu3wuhpl6ihE5eM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.crl rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UTbgDQPR84UAq2cpty7T1yzWoQU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Nov 2025 15:45:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7782 (0x1e66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B3BC, serialNumber=5136E00D03D1F38500AB6729B72ED3D72CD6A105 Validity Not Before: Nov 6 15:45:51 2025 GMT Not After : Nov 13 15:45:51 2025 GMT Subject: CN=690cc2af-750e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:0f:dd:b5:27:3a:e2:f7:b5:b8:93:1c:4d:d9: bd:39:60:be:86:60:79:5f:ce:b3:d1:80:06:ed:49: 63:9b:e5:05:77:0c:d5:6d:b1:6a:50:00:81:2d:f4: 33:82:6a:da:47:52:f5:de:3a:b8:21:8c:ed:fe:ad: 6b:1b:55:ca:3b:45:48:08:65:0c:6d:3a:ed:d2:6d: 3e:00:6f:71:ea:c2:cf:ab:7e:b6:22:8c:a2:16:7a: 44:d9:9b:b3:f1:e8:19:de:6e:0e:1e:b5:37:6a:0d: dd:7f:29:f8:9e:c5:4c:6b:b8:ee:37:bf:6d:0b:9c: a9:68:1c:e9:7e:bf:ac:eb:5f:8e:3d:d2:0a:fa:a3: 42:3a:e7:7f:4c:99:ce:28:ff:9e:57:4d:cf:e7:f1: 50:db:c2:60:ff:05:bc:59:9c:ba:db:b5:95:2c:b3: 20:44:b5:e2:9c:98:f3:c1:8c:5b:d0:5b:81:de:50: 95:6e:cc:db:89:2b:64:87:d6:46:5f:03:b5:58:00: 4d:bf:16:56:ba:48:62:65:e4:f5:e0:b2:7d:15:70: 25:55:b3:7a:08:ba:4e:e0:e9:c8:7d:40:72:ea:ea: 0e:78:c6:fb:11:4b:4f:4e:89:83:b4:22:1f:ec:47: 50:41:48:c4:a0:41:20:b6:05:6f:a4:08:59:e2:2a: 97:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:A9:80:33:0D:E4:ED:77:37:25:83:D2:3B:3C:99:D0:AF:F4:18:0C X509v3 Authority Key Identifier: keyid:51:36:E0:0D:03:D1:F3:85:00:AB:67:29:B7:2E:D3:D7:2C:D6:A1:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UTbgDQPR84UAq2cpty7T1yzWoQU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:b3:dd:43:7a:c6:15:50:c0:0e:c2:b8:42:03:08:0f:37:49: b4:0a:75:7a:2c:9c:ec:1b:66:b3:03:4f:cc:4f:8b:b0:49:58: 0e:00:d7:bd:7f:2a:15:a9:ba:58:6d:26:f8:cc:53:c3:18:51: e2:8a:8a:49:79:9d:0e:4e:46:f5:05:a6:0d:68:ed:44:c5:4d: 64:35:f5:79:62:73:f5:e7:a0:80:c3:97:a2:b0:e1:fe:f4:96: d7:63:54:df:58:5a:39:8d:fa:d1:cd:f1:c6:a1:03:72:79:00: 3f:a5:90:91:f2:aa:5b:8d:d0:43:cb:dc:1e:eb:83:9e:23:61: 75:de:0c:c0:89:31:8e:fa:b4:60:45:55:55:3a:aa:74:7c:91: b7:48:8e:46:8b:1e:f8:7f:fa:9b:37:7d:4d:78:38:86:c8:69: 45:87:63:af:96:62:dc:5d:e5:4c:c5:94:7b:04:9d:33:b7:43: 79:36:71:31:aa:4c:42:1a:94:d8:76:e1:bb:96:55:84:1e:cf: 3e:42:7d:19:a8:f8:67:4b:b2:b3:69:3b:85:e8:44:eb:88:73: fd:ce:eb:33:90:d9:c4:f3:f4:08:78:d0:c4:d1:88:fe:8d:83: a7:60:8d:f4:81:02:ec:af:10:48:86:40:56:ea:59:cd:d3:aa: e9:94:a4:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHmYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUIzQkMxMTAvBgNVBAUTKDUxMzZFMDBEMDNEMUYzODUwMEFCNjcyOUI3MkVEM0Q3 MkNENkExMDUwHhcNMjUxMTA2MTU0NTUxWhcNMjUxMTEzMTU0NTUxWjAYMRYwFAYD VQQDEw02OTBjYzJhZi03NTBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8w/dtSc64ve1uJMcTdm9OWC+hmB5X86z0YAG7Uljm+UFdwzVbbFqUACBLfQz gmraR1L13jq4IYzt/q1rG1XKO0VICGUMbTrt0m0+AG9x6sLPq362IoyiFnpE2Zuz 8egZ3m4OHrU3ag3dfyn4nsVMa7juN79tC5ypaBzpfr+s61+OPdIK+qNCOud/TJnO KP+eV03P5/FQ28Jg/wW8WZy627WVLLMgRLXinJjzwYxb0FuB3lCVbszbiStkh9ZG XwO1WABNvxZWukhiZeT14LJ9FXAlVbN6CLpO4OnIfUBy6uoOeMb7EUtPTomDtCIf 7EdQQUjEoEEgtgVvpAhZ4iqX2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCupgDMN 5O13NyWD0js8mdCv9BgMMB8GA1UdIwQYMBaAFFE24A0D0fOFAKtnKbcu09cs1qEF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QjNCQy8zMDQxOTdFODhG OUIxMUU2QkVDNUNCMjVDNEY5QUUwMi9VVGJnRFFQUjg0VUFxMmNwdHk3VDF5eldv UVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1VUYmdEUVBSODRVQXEyY3B0eTdUMXl6V29RVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QjNCQy8zMDQxOTdFODhGOUIxMUU2QkVDNUNCMjVDNEY5QUUwMi9VVGJnRFFQUjg0 VUFxMmNwdHk3VDF5eldvUVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5s91DesYVUMAOwrhCAwgPN0m0CnV6LJzsG2azA0/MT4uwSVgOANe9 fyoVqbpYbSb4zFPDGFHiiopJeZ0OTkb1BaYNaO1ExU1kNfV5YnP156CAw5eisOH+ 9JbXY1TfWFo5jfrRzfHGoQNyeQA/pZCR8qpbjdBDy9we64OeI2F13gzAiTGO+rRg RVVVOqp0fJG3SI5Gix74f/qbN31NeDiGyGlFh2OvlmLcXeVMxZR7BJ0zt0N5NnEx qkxCGpTYduG7llWEHs8+Qn0ZqPhnS7KzaTuF6ETriHP9zuszkNnE8/QIeNDE0Yj+ jYOnYI30gQLsrxBIhkBW6lnN06rplKRJ -----END CERTIFICATE-----Generated at Fri Nov 7 19:44:41 2025 by rpki-client