$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7E94/A2A70C5AFB2F11EBA8409E54C4F9AE02/UgGonTDEgplFBBjJVrh3JJcG6Vc.mft File: UgGonTDEgplFBBjJVrh3JJcG6Vc.mft (raw, json) Hash identifier: cJmUaNPTK+Y1hlmvrbprx/0FA+aadBkC0Q7i5PVjszE= Subject key identifier: A7:5B:D3:BA:A2:CA:6B:EC:29:6D:36:2F:54:F7:DC:23:A7:62:56:DD Authority key identifier: 52:01:A8:9D:30:C4:82:99:45:04:18:C9:56:B8:77:24:97:06:E9:57 Certificate issuer: /CN=A91E7E94/serialNumber=5201A89D30C48299450418C956B877249706E957 Certificate serial: 0583 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UgGonTDEgplFBBjJVrh3JJcG6Vc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7E94/A2A70C5AFB2F11EBA8409E54C4F9AE02/UgGonTDEgplFBBjJVrh3JJcG6Vc.mft Manifest number: 057E Signing time: Tue 04 Nov 2025 23:20:31 +0000 Manifest this update: Tue 04 Nov 2025 23:20:30 +0000 Manifest next update: Tue 11 Nov 2025 23:20:30 +0000 Files and hashes: 1: UgGonTDEgplFBBjJVrh3JJcG6Vc.crl (hash: VN9fYIqhBZFBl4yQPuPgrKvDcBHaNTDrU9z8MHw7t2M=) 2: FAF4A0E0FB3211EB967B1759C4F9AE02.roa (hash: AT0FYlyWfj+1bO0S/edzqRk8wR14Cvm5X0J48iKWZlw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7E94/A2A70C5AFB2F11EBA8409E54C4F9AE02/UgGonTDEgplFBBjJVrh3JJcG6Vc.crl rsync://rpki.apnic.net/member_repository/A91E7E94/A2A70C5AFB2F11EBA8409E54C4F9AE02/UgGonTDEgplFBBjJVrh3JJcG6Vc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UgGonTDEgplFBBjJVrh3JJcG6Vc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:20:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1411 (0x583) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7E94, serialNumber=5201A89D30C48299450418C956B877249706E957 Validity Not Before: Nov 4 23:20:30 2025 GMT Not After : Nov 11 23:20:30 2025 GMT Subject: CN=690a8a3e-f55f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:8f:a3:f0:28:57:3f:b9:96:a6:a9:a2:b1:b8: 41:e2:72:a5:4e:2b:37:9a:99:0a:f8:f5:99:6a:f0: 99:e5:e0:00:9b:a0:49:8f:a0:7b:ea:35:6e:06:c4: 5d:44:43:65:c9:64:17:28:00:c0:90:cc:dd:76:45: 60:00:2f:f5:15:ab:f4:84:79:fc:f6:72:4a:f3:f5: 3b:22:e1:84:d4:4a:9b:aa:3a:c4:e8:60:9b:7a:07: da:d4:0a:ec:2a:89:7b:a1:9e:d9:18:7b:e3:f4:7e: e9:ab:fd:67:8f:40:8f:a0:da:bf:8d:c5:c8:95:a7: f8:b0:7c:30:fd:f6:92:d7:12:90:dd:ef:f1:bb:58: 79:16:cc:13:f8:de:82:2a:e8:66:f6:d1:0e:74:dc: 58:93:43:f4:9b:53:3c:e2:60:79:c2:44:f1:73:24: 41:aa:f4:0a:eb:d3:07:33:95:07:cb:b6:12:77:1e: 8a:15:73:92:4c:a1:f6:6f:16:ca:ed:f1:8a:14:68: 72:cb:2b:db:ac:47:37:28:7b:28:df:f7:59:f5:3a: cd:bf:a7:95:90:ea:1c:b3:11:33:a1:55:a7:3e:9f: 95:d3:18:84:f1:ce:f8:30:f4:e1:4a:cf:5d:5f:c6: 81:5b:a3:a7:b9:06:60:6d:17:26:a6:d9:d3:cf:fe: 76:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:5B:D3:BA:A2:CA:6B:EC:29:6D:36:2F:54:F7:DC:23:A7:62:56:DD X509v3 Authority Key Identifier: keyid:52:01:A8:9D:30:C4:82:99:45:04:18:C9:56:B8:77:24:97:06:E9:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7E94/A2A70C5AFB2F11EBA8409E54C4F9AE02/UgGonTDEgplFBBjJVrh3JJcG6Vc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UgGonTDEgplFBBjJVrh3JJcG6Vc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7E94/A2A70C5AFB2F11EBA8409E54C4F9AE02/UgGonTDEgplFBBjJVrh3JJcG6Vc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:01:99:76:d2:8b:53:03:cc:2b:98:65:b9:12:76:3e:cb:76: db:18:ea:2a:d0:c8:ae:a1:73:99:82:dc:bc:97:7e:ca:5c:ba: 10:f5:3f:bc:61:90:fb:bd:c6:bc:95:6c:d6:db:d1:9a:ec:2b: b0:f2:ed:4c:cc:c2:bf:b8:1b:c5:22:c0:7f:e3:db:96:e3:63: 20:c9:44:4a:e2:6a:10:b9:bb:06:f1:55:50:44:5a:b1:18:98: 76:10:2c:12:7f:b4:80:19:f5:60:7b:f9:19:ee:43:95:3d:aa: cb:59:49:b0:a3:45:98:40:d9:4f:e2:18:74:44:97:48:19:40: cb:b4:99:e7:ce:62:13:a7:e2:0e:8a:f3:83:09:d1:f8:25:f5: a5:42:f8:d5:78:39:44:72:3d:79:45:fb:d9:c3:e3:d3:34:04: de:9f:59:91:23:db:99:1a:cf:cf:85:58:47:db:53:98:2c:48: 34:04:81:3a:06:8d:f1:26:ff:04:2e:ee:fd:49:b6:b2:b2:46: 4d:ae:c7:fb:60:22:97:5f:5d:98:24:7f:b6:a9:61:11:cb:68: 1f:2f:dd:5c:f9:38:8e:8e:d3:58:99:a7:a1:23:ca:0e:b8:45: 2c:23:af:72:e3:a2:6f:58:14:5b:95:71:17:d4:f4:39:e4:da: 32:7f:24:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBYMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdFOTQxMTAvBgNVBAUTKDUyMDFBODlEMzBDNDgyOTk0NTA0MThDOTU2Qjg3NzI0 OTcwNkU5NTcwHhcNMjUxMTA0MjMyMDMwWhcNMjUxMTExMjMyMDMwWjAYMRYwFAYD VQQDEw02OTBhOGEzZS1mNTVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvo+j8ChXP7mWpqmisbhB4nKlTis3mpkK+PWZavCZ5eAAm6BJj6B76jVuBsRd RENlyWQXKADAkMzddkVgAC/1Fav0hHn89nJK8/U7IuGE1EqbqjrE6GCbegfa1Ars Kol7oZ7ZGHvj9H7pq/1nj0CPoNq/jcXIlaf4sHww/faS1xKQ3e/xu1h5FswT+N6C Kuhm9tEOdNxYk0P0m1M84mB5wkTxcyRBqvQK69MHM5UHy7YSdx6KFXOSTKH2bxbK 7fGKFGhyyyvbrEc3KHso3/dZ9TrNv6eVkOocsxEzoVWnPp+V0xiE8c74MPThSs9d X8aBW6OnuQZgbRcmptnTz/52JwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKdb07qi ymvsKW02L1T33COnYlbdMB8GA1UdIwQYMBaAFFIBqJ0wxIKZRQQYyVa4dySXBulX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0U5NC9BMkE3MEM1QUZC MkYxMUVCQTg0MDlFNTRDNEY5QUUwMi9VZ0dvblRERWdwbEZCQmpKVnJoM0pKY0c2 VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VnR29uVERFZ3BsRkJCakpWcmgzSkpjRzZWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0U5NC9BMkE3MEM1QUZCMkYxMUVCQTg0MDlFNTRDNEY5QUUwMi9VZ0dvblRERWdw bEZCQmpKVnJoM0pKY0c2VmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbAZl20otTA8wrmGW5EnY+y3bbGOoq0MiuoXOZgty8l37KXLoQ9T+8 YZD7vca8lWzW29Ga7Cuw8u1MzMK/uBvFIsB/49uW42MgyURK4moQubsG8VVQRFqx GJh2ECwSf7SAGfVge/kZ7kOVParLWUmwo0WYQNlP4hh0RJdIGUDLtJnnzmITp+IO ivODCdH4JfWlQvjVeDlEcj15RfvZw+PTNATen1mRI9uZGs/PhVhH21OYLEg0BIE6 Bo3xJv8ELu79SbayskZNrsf7YCKXX12YJH+2qWERy2gfL91c+TiOjtNYmaehI8oO uEUsI69y46JvWBRblXEX1PQ55NoyfyQX -----END CERTIFICATE-----Generated at Wed Nov 5 05:23:22 2025 by rpki-client