$ rpki-client -vvf rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/UtXW_72oj1ReUbr5n32s4ZPAblc.mft File: UtXW_72oj1ReUbr5n32s4ZPAblc.mft (raw, json) Hash identifier: tHwrPyIrlPocnZqVBaEmTn6D0k3TrqNdGnLbfykyTKo= Subject key identifier: 00:01:3C:D6:C5:E4:73:A2:68:64:26:EC:73:55:B6:AF:0E:61:53:18 Authority key identifier: 52:D5:D6:FF:BD:A8:8F:54:5E:51:BA:F9:9F:7D:AC:E1:93:C0:6E:57 Certificate issuer: /CN=A91F17F6/serialNumber=52D5D6FFBDA88F545E51BAF99F7DACE193C06E57 Certificate serial: 0827 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UtXW_72oj1ReUbr5n32s4ZPAblc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/UtXW_72oj1ReUbr5n32s4ZPAblc.mft Manifest number: 0820 Signing time: Sun 02 Nov 2025 20:50:01 +0000 Manifest this update: Sun 02 Nov 2025 20:50:01 +0000 Manifest next update: Sun 09 Nov 2025 20:50:01 +0000 Files and hashes: 1: UtXW_72oj1ReUbr5n32s4ZPAblc.crl (hash: fA5OEaH386K+O5VQFogAeCcSfWBFNVKJtJRE/sNY0KA=) 2: AF95E6D8F2B711EAA1C01744C4F9AE02.roa (hash: X3Zxmzy65RFAr4wRuSkQChvufHFA8zifcOkEqKI8dKg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/UtXW_72oj1ReUbr5n32s4ZPAblc.crl rsync://rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/UtXW_72oj1ReUbr5n32s4ZPAblc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UtXW_72oj1ReUbr5n32s4ZPAblc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 20:50:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2087 (0x827) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F17F6, serialNumber=52D5D6FFBDA88F545E51BAF99F7DACE193C06E57 Validity Not Before: Nov 2 20:50:01 2025 GMT Not After : Nov 9 20:50:01 2025 GMT Subject: CN=6907c3f9-dfaf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:51:63:45:47:d0:21:5f:39:d6:fa:f4:24:e2: 58:d5:8f:a0:a2:11:71:dc:a3:82:9f:02:a8:3b:5b: d6:0d:d0:ca:34:9a:75:4c:9c:6e:f2:0c:fb:65:b9: 2f:3f:1b:83:c1:f1:87:84:c4:11:32:35:5f:29:59: d2:fb:47:31:d2:79:14:55:34:71:70:36:6a:b9:99: 08:16:31:7a:a3:cd:df:8d:4c:d2:77:77:79:a2:0d: 57:55:aa:12:44:c2:cf:7d:0b:22:38:f3:0d:85:01: 4d:5c:9a:8e:0d:40:20:d1:db:c7:28:b7:e3:ce:5c: 5c:37:0f:fd:0d:66:c6:88:3a:17:d1:dd:4d:0e:0e: b4:c6:2f:d0:31:a5:fc:90:77:1a:04:e8:b8:d1:51: 69:e2:5f:f0:d6:e3:ce:79:9a:d5:46:c4:0b:db:20: e1:24:39:14:99:88:20:68:4c:11:61:2a:85:07:46: 6f:7d:1c:a1:c9:b2:56:2f:12:06:9f:f9:49:77:f4: 97:4a:2d:1c:fd:72:ed:ac:d3:d6:48:12:e6:5f:38: d2:ac:97:2b:ff:60:64:ad:2f:30:d9:55:68:47:6b: 4a:88:68:51:35:c3:42:51:37:20:40:90:e8:bc:76: f1:de:ad:53:20:79:a6:b4:17:7f:af:25:0b:6e:db: f8:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:01:3C:D6:C5:E4:73:A2:68:64:26:EC:73:55:B6:AF:0E:61:53:18 X509v3 Authority Key Identifier: keyid:52:D5:D6:FF:BD:A8:8F:54:5E:51:BA:F9:9F:7D:AC:E1:93:C0:6E:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/UtXW_72oj1ReUbr5n32s4ZPAblc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UtXW_72oj1ReUbr5n32s4ZPAblc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/UtXW_72oj1ReUbr5n32s4ZPAblc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:15:5b:06:51:51:92:70:da:3b:9b:ac:5a:67:cb:4a:62:cf: c1:30:79:59:e8:71:e1:88:50:da:98:58:ef:b6:af:ef:3c:47: a6:ff:f7:03:55:29:d7:eb:b2:3a:b1:6f:5e:cc:82:31:0d:c2: 65:7e:96:70:e3:ce:b5:8d:14:14:e5:99:3d:74:99:de:4c:2c: 0d:2f:56:6d:4e:07:63:7a:d7:9b:02:80:fa:1a:5f:1f:28:f3: 62:45:e0:dc:0f:45:aa:69:c1:b6:f6:1a:1f:bd:85:1e:69:7a: 7f:bc:da:d8:8a:c2:d1:02:fe:43:9d:08:cf:e6:ce:f8:bc:c1: 41:fe:36:a1:88:95:eb:88:5d:5f:4f:db:b2:69:ec:aa:a6:f3: 98:51:29:c0:95:cf:c8:5e:2e:22:c9:c8:52:c7:3f:7d:9c:cb: 31:c1:76:0b:aa:35:f7:8a:85:34:b7:27:75:15:7d:79:74:51: 21:03:7a:28:d5:15:c6:1e:67:38:5a:e0:aa:f8:2b:e2:0d:f9: 3d:ca:56:6e:43:5c:68:0d:11:b1:7e:6a:06:aa:3d:9c:96:d1: fa:6f:ec:d2:39:60:67:d7:ce:de:1a:26:1c:6e:9f:e5:a7:fb: 51:8b:a6:96:c2:73:c5:88:29:ad:6a:2e:02:01:85:87:4d:64: 54:a4:2d:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCCcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjE3RjYxMTAvBgNVBAUTKDUyRDVENkZGQkRBODhGNTQ1RTUxQkFGOTlGN0RBQ0Ux OTNDMDZFNTcwHhcNMjUxMTAyMjA1MDAxWhcNMjUxMTA5MjA1MDAxWjAYMRYwFAYD VQQDEw02OTA3YzNmOS1kZmFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvVFjRUfQIV851vr0JOJY1Y+gohFx3KOCnwKoO1vWDdDKNJp1TJxu8gz7Zbkv PxuDwfGHhMQRMjVfKVnS+0cx0nkUVTRxcDZquZkIFjF6o83fjUzSd3d5og1XVaoS RMLPfQsiOPMNhQFNXJqODUAg0dvHKLfjzlxcNw/9DWbGiDoX0d1NDg60xi/QMaX8 kHcaBOi40VFp4l/w1uPOeZrVRsQL2yDhJDkUmYggaEwRYSqFB0ZvfRyhybJWLxIG n/lJd/SXSi0c/XLtrNPWSBLmXzjSrJcr/2BkrS8w2VVoR2tKiGhRNcNCUTcgQJDo vHbx3q1TIHmmtBd/ryULbtv44QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAABPNbF 5HOiaGQm7HNVtq8OYVMYMB8GA1UdIwQYMBaAFFLV1v+9qI9UXlG6+Z99rOGTwG5X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTdGNi9FRDkzQ0VFOEYy QjUxMUVBOUEzRjYzNDFDNEY5QUUwMi9VdFhXXzcyb2oxUmVVYnI1bjMyczRaUEFi bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V0WFdfNzJvajFSZVVicjVuMzJzNFpQQWJsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTdGNi9FRDkzQ0VFOEYyQjUxMUVBOUEzRjYzNDFDNEY5QUUwMi9VdFhXXzcyb2ox UmVVYnI1bjMyczRaUEFibGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCFVsGUVGScNo7m6xaZ8tKYs/BMHlZ6HHhiFDamFjvtq/vPEem//cD VSnX67I6sW9ezIIxDcJlfpZw4861jRQU5Zk9dJneTCwNL1ZtTgdjetebAoD6Gl8f KPNiReDcD0WqacG29hofvYUeaXp/vNrYisLRAv5DnQjP5s74vMFB/jahiJXriF1f T9uyaeyqpvOYUSnAlc/IXi4iychSxz99nMsxwXYLqjX3ioU0tyd1FX15dFEhA3oo 1RXGHmc4WuCq+CviDfk9ylZuQ1xoDRGxfmoGqj2cltH6b+zSOWBn187eGiYcbp/l p/tRi6aWwnPFiCmtai4CAYWHTWRUpC2q -----END CERTIFICATE-----Generated at Mon Nov 3 18:17:24 2025 by rpki-client