$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/UeCUwFe-2nCkwrIAkZKN5yZLRsU.mft File: UeCUwFe-2nCkwrIAkZKN5yZLRsU.mft (raw, json) Hash identifier: KykWbtmDLNGIq3XsNQaGaP5c2NW2Y2X5jo3yhClguIw= Subject key identifier: 97:1C:F8:7A:08:5C:5E:E2:FC:7D:56:85:7E:38:3D:F4:D5:44:C3:56 Authority key identifier: 51:E0:94:C0:57:BE:DA:70:A4:C2:B2:00:91:92:8D:E7:26:4B:46:C5 Certificate issuer: /CN=A91BA8F5/serialNumber=51E094C057BEDA70A4C2B20091928DE7264B46C5 Certificate serial: 03DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UeCUwFe-2nCkwrIAkZKN5yZLRsU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/UeCUwFe-2nCkwrIAkZKN5yZLRsU.mft Manifest number: 03D6 Signing time: Wed 05 Nov 2025 00:41:43 +0000 Manifest this update: Wed 05 Nov 2025 00:41:43 +0000 Manifest next update: Wed 12 Nov 2025 00:41:43 +0000 Files and hashes: 1: UeCUwFe-2nCkwrIAkZKN5yZLRsU.crl (hash: AabA5nfRRRuNozP6skgornFV+8+Lg7CXFJfm+tFjh9k=) 2: 713001A0A35811EC88C42869C4F9AE02.roa (hash: DNm/cKBnOwMLtVf8PNiul90A2LNN5D/9x28AaUpSyDM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/UeCUwFe-2nCkwrIAkZKN5yZLRsU.crl rsync://rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/UeCUwFe-2nCkwrIAkZKN5yZLRsU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UeCUwFe-2nCkwrIAkZKN5yZLRsU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:41:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 986 (0x3da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA8F5, serialNumber=51E094C057BEDA70A4C2B20091928DE7264B46C5 Validity Not Before: Nov 5 00:41:43 2025 GMT Not After : Nov 12 00:41:43 2025 GMT Subject: CN=690a9d47-eb44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:4a:9b:d4:5e:00:e0:c9:86:ef:c0:99:05:b6: 06:6b:e2:92:4f:ec:c1:c2:ee:1b:ac:8a:c5:17:9b: dd:e6:38:03:59:f8:f1:c0:df:f8:53:fa:e0:18:df: 39:7a:bc:ee:f7:43:84:70:ca:4f:e8:57:1a:1a:39: 50:85:d6:ec:04:16:83:87:3b:4f:05:eb:3f:43:cd: b2:38:39:9f:0b:a6:c4:0e:16:ad:f1:db:e7:53:73: 4b:5e:db:a1:67:63:ab:8c:c2:a6:6c:0c:68:34:88: 0a:47:d2:f7:cc:a6:53:89:4e:6c:b0:71:2b:e4:90: 8b:bd:1f:cc:bc:4a:6e:6e:66:b7:31:12:4e:7f:43: cf:88:16:8f:48:d6:8e:2f:77:88:e1:06:52:1a:36: fa:85:4d:9c:ed:0a:84:5a:d6:f6:cf:0f:33:2a:90: 47:f2:14:36:e0:c7:e3:e7:e1:07:2c:68:9e:43:2c: a1:74:ae:e2:6d:14:a2:56:37:3b:f0:9e:3a:79:41: 59:ba:77:c5:79:47:ff:c6:7f:aa:83:d3:91:44:72: c8:44:af:bf:fb:1e:45:10:b7:06:17:41:b1:a3:90: ec:da:d6:a3:f6:0e:ee:cd:b9:00:e1:65:dd:e9:e3: 77:a3:3c:2d:9b:50:6d:a2:6e:08:d5:08:2d:81:9c: 67:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:1C:F8:7A:08:5C:5E:E2:FC:7D:56:85:7E:38:3D:F4:D5:44:C3:56 X509v3 Authority Key Identifier: keyid:51:E0:94:C0:57:BE:DA:70:A4:C2:B2:00:91:92:8D:E7:26:4B:46:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/UeCUwFe-2nCkwrIAkZKN5yZLRsU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UeCUwFe-2nCkwrIAkZKN5yZLRsU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/UeCUwFe-2nCkwrIAkZKN5yZLRsU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:79:4b:8c:26:6e:57:e4:41:ca:a9:0d:34:a2:1b:7f:c0:10: e5:95:c5:2d:15:56:bf:3b:e3:25:3b:50:8f:0c:97:ee:58:1e: 99:e8:d0:90:79:15:d6:91:0f:a7:30:fc:cc:b3:3d:2c:f4:a7: d8:5e:e4:b8:26:18:3d:09:7f:c8:68:a4:da:44:62:0c:3b:0a: 57:49:5d:f4:14:5c:9d:b3:79:52:2d:42:37:91:ab:02:42:ab: ae:f2:e6:0c:fd:e3:82:5a:ec:89:f3:00:cc:c6:d7:41:f2:9b: d7:93:3c:5d:04:2b:45:89:b5:cc:00:e9:0b:1b:39:4f:03:de: a8:53:f4:23:4e:98:81:8a:d3:2a:f8:e7:07:95:07:52:6f:aa: a2:6f:a9:a4:22:ae:4e:bf:d8:d5:7f:85:4d:21:dc:83:43:34: b1:03:90:e1:1d:02:74:f3:2a:94:2b:d3:25:45:74:9f:0b:21: ce:43:b3:ad:8c:89:be:47:c0:e7:18:e6:66:98:b8:38:c7:e7: 17:34:88:e3:99:e8:20:0c:b5:e8:60:ea:40:53:c8:2a:f3:b1: f9:28:1c:61:d5:1f:43:70:02:f1:fc:a9:1e:c9:73:2f:25:b6: f0:05:cd:ff:47:b0:14:1e:40:11:9e:a6:32:62:89:2a:1a:b1: 58:82:fc:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkE4RjUxMTAvBgNVBAUTKDUxRTA5NEMwNTdCRURBNzBBNEMyQjIwMDkxOTI4REU3 MjY0QjQ2QzUwHhcNMjUxMTA1MDA0MTQzWhcNMjUxMTEyMDA0MTQzWjAYMRYwFAYD VQQDEw02OTBhOWQ0Ny1lYjQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5Eqb1F4A4MmG78CZBbYGa+KST+zBwu4brIrFF5vd5jgDWfjxwN/4U/rgGN85 erzu90OEcMpP6FcaGjlQhdbsBBaDhztPBes/Q82yODmfC6bEDhat8dvnU3NLXtuh Z2OrjMKmbAxoNIgKR9L3zKZTiU5ssHEr5JCLvR/MvEpubma3MRJOf0PPiBaPSNaO L3eI4QZSGjb6hU2c7QqEWtb2zw8zKpBH8hQ24Mfj5+EHLGieQyyhdK7ibRSiVjc7 8J46eUFZunfFeUf/xn+qg9ORRHLIRK+/+x5FELcGF0Gxo5Ds2taj9g7uzbkA4WXd 6eN3ozwtm1Btom4I1QgtgZxnTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJcc+HoI XF7i/H1WhX44PfTVRMNWMB8GA1UdIwQYMBaAFFHglMBXvtpwpMKyAJGSjecmS0bF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQThGNS85NUFBMUVFQ0Ez NTUxMUVDODYxRkUxNjZDNEY5QUUwMi9VZUNVd0ZlLTJuQ2t3cklBa1pLTjV5WkxS c1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VlQ1V3RmUtMm5Da3dySUFrWktONXlaTFJzVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QThGNS85NUFBMUVFQ0EzNTUxMUVDODYxRkUxNjZDNEY5QUUwMi9VZUNVd0ZlLTJu Q2t3cklBa1pLTjV5WkxSc1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBleUuMJm5X5EHKqQ00oht/wBDllcUtFVa/O+MlO1CPDJfuWB6Z6NCQ eRXWkQ+nMPzMsz0s9KfYXuS4Jhg9CX/IaKTaRGIMOwpXSV30FFyds3lSLUI3kasC Qquu8uYM/eOCWuyJ8wDMxtdB8pvXkzxdBCtFibXMAOkLGzlPA96oU/QjTpiBitMq +OcHlQdSb6qib6mkIq5Ov9jVf4VNIdyDQzSxA5DhHQJ08yqUK9MlRXSfCyHOQ7Ot jIm+R8DnGOZmmLg4x+cXNIjjmeggDLXoYOpAU8gq87H5KBxh1R9DcALx/KkeyXMv JbbwBc3/R7AUHkARnqYyYokqGrFYgvy6 -----END CERTIFICATE-----Generated at Wed Nov 5 16:32:34 2025 by rpki-client