$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.mft File: uLVa9atmqP-naRykPaKmtJuiRUA.mft (raw, json) Hash identifier: bc7eX9Ezz0FAheoWLFhrOMeSQOS9HreiByvZZjxMXiY= Subject key identifier: 36:F1:51:C7:33:7A:96:B1:F4:7D:23:35:C2:7A:8F:1D:07:75:25:C8 Authority key identifier: B8:B5:5A:F5:AB:66:A8:FF:A7:69:1C:A4:3D:A2:A6:B4:9B:A2:45:40 Certificate issuer: /CN=A91C5778/serialNumber=B8B55AF5AB66A8FFA7691CA43DA2A6B49BA24540 Certificate serial: 0C48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uLVa9atmqP-naRykPaKmtJuiRUA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.mft Manifest number: 0C41 Signing time: Sun 02 Nov 2025 18:37:54 +0000 Manifest this update: Sun 02 Nov 2025 18:37:54 +0000 Manifest next update: Sun 09 Nov 2025 18:37:54 +0000 Files and hashes: 1: uLVa9atmqP-naRykPaKmtJuiRUA.crl (hash: dZqH3RqDLQZ9+dd68gvx1PhZ20WyjWC6tNbUU4/EsUM=) 2: B3E5DF2A14ED11EAACAB5E5DC4F9AE02.roa (hash: cmHL+jcXVZxk1ExKQVL6FlfnXQXFN7c8jdKbgylZ/70=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.crl rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uLVa9atmqP-naRykPaKmtJuiRUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:37:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3144 (0xc48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5778, serialNumber=B8B55AF5AB66A8FFA7691CA43DA2A6B49BA24540 Validity Not Before: Nov 2 18:37:54 2025 GMT Not After : Nov 9 18:37:54 2025 GMT Subject: CN=6907a502-4d4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:96:eb:ab:ac:03:4d:55:f7:a1:f1:99:42:13: 54:ae:90:d9:ee:01:f2:63:29:fe:e3:04:3a:35:de: 73:d7:6a:e0:fc:e0:4f:3e:9b:5a:54:fe:1c:a7:bc: 5d:a9:73:be:2e:13:e7:7d:63:30:2e:09:81:a9:24: 4e:29:df:fa:78:f3:71:c1:9d:50:07:a7:5c:28:09: a9:d8:85:fb:a9:37:d0:6b:55:23:8a:1e:ec:dc:6a: f2:be:66:37:25:e5:6f:48:b6:80:11:2d:e4:01:88: fe:53:1e:ae:88:b3:58:16:05:2d:8e:9d:df:3e:b6: e7:8b:5a:fa:17:9d:94:06:8f:5d:4b:ee:b6:df:0d: dc:3e:79:1b:8a:34:1e:74:f2:eb:a9:d5:11:4d:e1: d5:9c:32:ef:b0:b2:af:64:52:46:88:79:bb:53:54: 2d:00:44:10:c4:c8:19:ee:5f:dc:d6:42:a7:93:f1: 4c:8c:44:48:6e:a3:3e:bb:de:f1:03:f9:51:36:e9: be:d6:f1:ed:68:7a:b7:ca:cd:cb:62:ac:1a:ad:c8: 86:0e:b9:4e:12:58:26:bc:a4:18:b1:a3:bf:b3:19: 9a:d0:eb:4a:98:7a:a7:d6:59:b8:8f:8b:76:c7:7e: 23:b8:b3:bb:7d:89:de:33:43:38:a0:6a:cf:f6:7f: f0:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:F1:51:C7:33:7A:96:B1:F4:7D:23:35:C2:7A:8F:1D:07:75:25:C8 X509v3 Authority Key Identifier: keyid:B8:B5:5A:F5:AB:66:A8:FF:A7:69:1C:A4:3D:A2:A6:B4:9B:A2:45:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uLVa9atmqP-naRykPaKmtJuiRUA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:ca:2f:a0:c4:ec:a4:b0:7a:ac:33:b7:ce:1d:73:a8:ab:2e: eb:a9:05:f1:c9:02:b5:f0:f3:e3:2b:b9:e9:b8:f0:18:0d:d0: 71:7d:7c:06:51:8e:12:41:ce:4c:0d:d1:b7:1f:d7:d4:20:a9: dd:95:2a:8b:da:f8:71:63:f1:7a:fe:39:c8:95:a9:f5:52:c7: 6e:e7:80:0a:89:29:f1:52:29:56:0f:dd:db:4e:4a:74:cb:35: 66:5f:86:7b:64:a8:c4:bc:8e:44:44:6c:7f:84:15:f1:eb:d9: 72:60:97:eb:f0:35:39:86:06:72:6a:b8:be:55:43:11:2d:3c: ae:77:66:49:76:39:49:d2:f2:6c:b8:3a:af:38:f0:c8:78:0a: 6b:46:94:a8:ee:b8:98:60:b5:e2:f1:f8:a1:8c:3b:19:d4:ca: 92:48:fc:17:d2:ec:16:b8:24:a3:6a:91:1f:22:2f:f3:92:1a: a4:68:56:8c:ce:2d:89:9b:0a:6f:aa:63:43:b9:33:f3:35:73: 3f:63:e4:8a:34:c7:7d:bd:26:0f:dc:93:12:1d:c3:e6:a0:f6: e5:88:e5:5f:5f:a5:e1:9a:40:f6:ad:08:2d:20:cc:35:19:b2: 76:4b:6f:65:2e:f8:f4:92:1f:d0:65:d2:24:5c:0f:1e:7e:52: ed:e6:88:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzU3NzgxMTAvBgNVBAUTKEI4QjU1QUY1QUI2NkE4RkZBNzY5MUNBNDNEQTJBNkI0 OUJBMjQ1NDAwHhcNMjUxMTAyMTgzNzU0WhcNMjUxMTA5MTgzNzU0WjAYMRYwFAYD VQQDEw02OTA3YTUwMi00ZDRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAupbrq6wDTVX3ofGZQhNUrpDZ7gHyYyn+4wQ6Nd5z12rg/OBPPptaVP4cp7xd qXO+LhPnfWMwLgmBqSROKd/6ePNxwZ1QB6dcKAmp2IX7qTfQa1Ujih7s3GryvmY3 JeVvSLaAES3kAYj+Ux6uiLNYFgUtjp3fPrbni1r6F52UBo9dS+623w3cPnkbijQe dPLrqdURTeHVnDLvsLKvZFJGiHm7U1QtAEQQxMgZ7l/c1kKnk/FMjERIbqM+u97x A/lRNum+1vHtaHq3ys3LYqwarciGDrlOElgmvKQYsaO/sxma0OtKmHqn1lm4j4t2 x34juLO7fYneM0M4oGrP9n/w0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDbxUccz epax9H0jNcJ6jx0HdSXIMB8GA1UdIwQYMBaAFLi1WvWrZqj/p2kcpD2iprSbokVA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTc3OC8zRERDMUFDMDE0 RUMxMUVBQThCQUFFNUFDNEY5QUUwMi91TFZhOWF0bXFQLW5hUnlrUGFLbXRKdWlS VUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VMVmE5YXRtcVAtbmFSeWtQYUttdEp1aVJVQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NTc3OC8zRERDMUFDMDE0RUMxMUVBQThCQUFFNUFDNEY5QUUwMi91TFZhOWF0bXFQ LW5hUnlrUGFLbXRKdWlSVUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCeyi+gxOyksHqsM7fOHXOoqy7rqQXxyQK18PPjK7npuPAYDdBxfXwG UY4SQc5MDdG3H9fUIKndlSqL2vhxY/F6/jnIlan1Usdu54AKiSnxUilWD93bTkp0 yzVmX4Z7ZKjEvI5ERGx/hBXx69lyYJfr8DU5hgZyari+VUMRLTyud2ZJdjlJ0vJs uDqvOPDIeAprRpSo7riYYLXi8fihjDsZ1MqSSPwX0uwWuCSjapEfIi/zkhqkaFaM zi2JmwpvqmNDuTPzNXM/Y+SKNMd9vSYP3JMSHcPmoPbliOVfX6XhmkD2rQgtIMw1 GbJ2S29lLvj0kh/QZdIkXA8eflLt5oib -----END CERTIFICATE-----Generated at Mon Nov 3 13:21:47 2025 by rpki-client