$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2D29/F71E7166552111E5ADB2092AC4F9AE02/uOlsag2VSKKgQMvnGZdFun2x7Sg.mft File: uOlsag2VSKKgQMvnGZdFun2x7Sg.mft (raw, json) Hash identifier: BfNc1TTMAneNM93GJAuqfhOuU5oPj8+sEkieSnoKncw= Subject key identifier: F9:66:B7:46:DF:37:E0:81:3A:11:A2:3A:37:FB:2C:B2:8C:9C:92:EB Authority key identifier: B8:E9:6C:6A:0D:95:48:A2:A0:40:CB:E7:19:97:45:BA:7D:B1:ED:28 Certificate issuer: /CN=A91B2D29/serialNumber=B8E96C6A0D9548A2A040CBE7199745BA7DB1ED28 Certificate serial: 0A05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uOlsag2VSKKgQMvnGZdFun2x7Sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2D29/F71E7166552111E5ADB2092AC4F9AE02/uOlsag2VSKKgQMvnGZdFun2x7Sg.mft Manifest number: 476D Signing time: Sun 02 Nov 2025 15:48:10 +0000 Manifest this update: Sun 02 Nov 2025 15:48:09 +0000 Manifest next update: Sun 09 Nov 2025 15:48:09 +0000 Files and hashes: 1: uOlsag2VSKKgQMvnGZdFun2x7Sg.crl (hash: ewi026sWjvfZQAw5p0THimKH1kmKmfCjbknN+ulMVEk=) 2: 7CEC1452E17E11ECAB421316C4F9AE02.roa (hash: 2K4e3vOzHM2ANwsgFBh9dE0TtUd2Q1uW6NCTts6cJeA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2D29/F71E7166552111E5ADB2092AC4F9AE02/uOlsag2VSKKgQMvnGZdFun2x7Sg.crl rsync://rpki.apnic.net/member_repository/A91B2D29/F71E7166552111E5ADB2092AC4F9AE02/uOlsag2VSKKgQMvnGZdFun2x7Sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uOlsag2VSKKgQMvnGZdFun2x7Sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 15:48:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2565 (0xa05) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2D29, serialNumber=B8E96C6A0D9548A2A040CBE7199745BA7DB1ED28 Validity Not Before: Nov 2 15:48:09 2025 GMT Not After : Nov 9 15:48:09 2025 GMT Subject: CN=69077d39-2b3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:29:09:31:e6:2c:e5:5b:fa:1a:83:c7:74:4b: 50:2a:a3:11:95:05:16:08:0c:e6:10:82:2c:2f:f0: 4d:c9:dd:77:31:14:9c:a5:39:fa:12:27:05:7e:bc: 9a:b4:34:6f:6d:ce:3a:11:79:9e:15:12:d7:8e:89: eb:03:d8:f6:a4:3e:e0:06:29:5b:ea:68:21:b7:e9: 62:a1:66:96:b3:e9:5a:76:5c:d3:1f:a5:e8:3b:6f: 35:ad:7e:5b:e3:e0:75:64:07:74:75:c2:b5:f9:2d: 25:6d:2e:01:4d:ae:87:1b:bd:08:2c:aa:00:72:ae: b6:cd:ab:68:e0:db:ed:12:6b:c8:98:25:f9:08:04: ca:9f:13:fd:d9:a0:6c:12:57:4b:b0:bb:f2:38:80: a8:ba:7a:41:71:01:f6:d7:5a:07:66:fd:ae:00:a5: 52:45:13:b5:3a:73:67:06:d7:b2:18:85:30:bf:8b: cd:76:2a:1d:24:fa:65:28:a3:bf:66:a1:af:d3:51: 43:ba:3c:a0:3a:b0:7a:06:5d:bd:0f:e4:7a:35:e1: e9:92:f2:d2:66:af:5c:25:b9:6c:1b:52:5b:ae:ac: cf:b8:71:b3:0f:c1:47:b9:61:5d:29:f4:2a:fc:c1: f0:56:af:60:88:56:ab:21:11:7c:44:91:29:72:65: ba:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:66:B7:46:DF:37:E0:81:3A:11:A2:3A:37:FB:2C:B2:8C:9C:92:EB X509v3 Authority Key Identifier: keyid:B8:E9:6C:6A:0D:95:48:A2:A0:40:CB:E7:19:97:45:BA:7D:B1:ED:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2D29/F71E7166552111E5ADB2092AC4F9AE02/uOlsag2VSKKgQMvnGZdFun2x7Sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uOlsag2VSKKgQMvnGZdFun2x7Sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2D29/F71E7166552111E5ADB2092AC4F9AE02/uOlsag2VSKKgQMvnGZdFun2x7Sg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:d8:6b:63:86:61:27:c6:3d:24:21:72:24:b6:67:55:47:19: 68:2d:c2:fe:33:d4:b1:13:15:4b:7d:60:49:f9:83:a7:98:f8: e7:c1:8c:4e:d0:55:95:0c:d8:17:40:42:0c:d7:38:66:4b:9e: 1b:3b:28:3e:9f:be:51:e8:01:7a:a2:64:25:bb:a8:c0:35:e2: 33:8f:d5:c0:d7:05:48:bc:df:63:1a:72:7b:47:77:dd:c8:f3: 12:af:b7:bd:2b:1d:6c:5d:cd:cc:e6:20:a2:49:e0:98:09:b8: 38:f8:e5:7a:31:40:08:fa:9f:a1:6c:5e:2e:c2:3f:bb:18:a5: d1:c1:56:62:ad:2f:1d:5e:19:2a:4d:13:57:cd:75:05:fb:ce: 61:53:6c:7c:ac:79:bf:af:7d:3f:7d:63:6b:b2:79:65:b3:11: 51:1c:1e:a0:10:b9:44:66:48:1d:99:5c:95:91:b9:e1:8d:3b: 3f:18:b6:fa:9a:c1:78:0a:62:b4:ef:42:d3:74:27:f3:c0:d1: 14:70:dd:a8:b2:b1:6b:f9:e0:6d:eb:8e:15:a3:84:89:90:e9: fe:56:5b:41:92:2e:90:8d:e2:1f:d2:72:56:01:cf:e4:f9:b1: bb:9b:18:07:33:4d:00:2d:b6:ac:fd:4a:c8:a6:b3:3c:1f:c6: d1:79:f9:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCgUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjJEMjkxMTAvBgNVBAUTKEI4RTk2QzZBMEQ5NTQ4QTJBMDQwQ0JFNzE5OTc0NUJB N0RCMUVEMjgwHhcNMjUxMTAyMTU0ODA5WhcNMjUxMTA5MTU0ODA5WjAYMRYwFAYD VQQDEw02OTA3N2QzOS0yYjNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqCkJMeYs5Vv6GoPHdEtQKqMRlQUWCAzmEIIsL/BNyd13MRScpTn6EicFfrya tDRvbc46EXmeFRLXjonrA9j2pD7gBilb6mght+lioWaWs+ladlzTH6XoO281rX5b 4+B1ZAd0dcK1+S0lbS4BTa6HG70ILKoAcq62zato4NvtEmvImCX5CATKnxP92aBs EldLsLvyOICounpBcQH211oHZv2uAKVSRRO1OnNnBteyGIUwv4vNdiodJPplKKO/ ZqGv01FDujygOrB6Bl29D+R6NeHpkvLSZq9cJblsG1JbrqzPuHGzD8FHuWFdKfQq /MHwVq9giFarIRF8RJEpcmW6PQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPlmt0bf N+CBOhGiOjf7LLKMnJLrMB8GA1UdIwQYMBaAFLjpbGoNlUiioEDL5xmXRbp9se0o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMkQyOS9GNzFFNzE2NjU1 MjExMUU1QURCMjA5MkFDNEY5QUUwMi91T2xzYWcyVlNLS2dRTXZuR1pkRnVuMng3 U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VPbHNhZzJWU0tLZ1FNdm5HWmRGdW4yeDdTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MkQyOS9GNzFFNzE2NjU1MjExMUU1QURCMjA5MkFDNEY5QUUwMi91T2xzYWcyVlNL S2dRTXZuR1pkRnVuMng3U2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB22GtjhmEnxj0kIXIktmdVRxloLcL+M9SxExVLfWBJ+YOnmPjnwYxO 0FWVDNgXQEIM1zhmS54bOyg+n75R6AF6omQlu6jANeIzj9XA1wVIvN9jGnJ7R3fd yPMSr7e9Kx1sXc3M5iCiSeCYCbg4+OV6MUAI+p+hbF4uwj+7GKXRwVZirS8dXhkq TRNXzXUF+85hU2x8rHm/r30/fWNrsnllsxFRHB6gELlEZkgdmVyVkbnhjTs/GLb6 msF4CmK070LTdCfzwNEUcN2osrFr+eBt644Vo4SJkOn+VltBki6QjeIf0nJWAc/k +bG7mxgHM00ALbas/UrIprM8H8bRefl6 -----END CERTIFICATE-----Generated at Tue Nov 4 01:02:08 2025 by rpki-client