$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8981/1CF6CD746C7F11EF914D7D57C4F9AE02/UgupTND7nnwUDfvAzFi5PPVMIvM.mft File: UgupTND7nnwUDfvAzFi5PPVMIvM.mft (raw, json) Hash identifier: Tc0vynV9frs/y4wD934p+rh3bR+XT6wMWRU4I7b1qf0= Subject key identifier: 72:AC:DE:B4:ED:75:87:A0:15:96:66:9F:AB:20:EE:DE:50:2F:54:F6 Authority key identifier: 52:0B:A9:4C:D0:FB:9E:7C:14:0D:FB:C0:CC:58:B9:3C:F5:4C:22:F3 Certificate issuer: /CN=A91F8981/serialNumber=520BA94CD0FB9E7C140DFBC0CC58B93CF54C22F3 Certificate serial: DB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UgupTND7nnwUDfvAzFi5PPVMIvM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8981/1CF6CD746C7F11EF914D7D57C4F9AE02/UgupTND7nnwUDfvAzFi5PPVMIvM.mft Manifest number: D9 Signing time: Mon 03 Nov 2025 05:35:02 +0000 Manifest this update: Mon 03 Nov 2025 05:35:02 +0000 Manifest next update: Mon 10 Nov 2025 05:35:02 +0000 Files and hashes: 1: UgupTND7nnwUDfvAzFi5PPVMIvM.crl (hash: 4Si55OvNietov02Za36+CQLJSe3dabMuFqbhX2IGjo4=) 2: D79D112E6C7F11EF92105459C4F9AE02.roa (hash: taSipunEH/A4JKib1d15PbUF8sLm4qJrajeTCDOlA48=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8981/1CF6CD746C7F11EF914D7D57C4F9AE02/UgupTND7nnwUDfvAzFi5PPVMIvM.crl rsync://rpki.apnic.net/member_repository/A91F8981/1CF6CD746C7F11EF914D7D57C4F9AE02/UgupTND7nnwUDfvAzFi5PPVMIvM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UgupTND7nnwUDfvAzFi5PPVMIvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:35:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 219 (0xdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8981, serialNumber=520BA94CD0FB9E7C140DFBC0CC58B93CF54C22F3 Validity Not Before: Nov 3 05:35:02 2025 GMT Not After : Nov 10 05:35:02 2025 GMT Subject: CN=69083f06-2ebd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:1e:3a:44:35:53:78:9b:1a:9c:4f:64:a8:2a: 8e:38:85:ab:0b:16:d9:4b:6e:44:61:09:fb:56:7f: 09:3c:0b:45:4e:8d:fc:8e:58:a8:e6:4f:64:c0:5d: 80:30:9b:66:db:94:68:03:23:03:b2:b3:83:d4:cd: c1:e9:0b:7b:53:22:78:e9:34:53:ae:b3:bc:5b:e3: fd:b2:7d:4b:2f:2f:65:2f:9a:e8:78:23:21:e2:9e: 53:fc:98:2f:af:2e:f8:58:38:cc:95:38:17:29:14: 76:46:90:20:06:ce:9d:d4:92:c9:75:c0:ca:07:94: 6e:22:8f:17:6f:0d:87:57:72:cc:1a:b4:42:bc:21: ed:0b:3d:cd:ca:2b:e1:51:49:96:6a:09:fa:fd:25: 6d:0f:15:f0:88:60:9c:8e:b2:3e:c0:7d:c3:76:c2: 19:64:1e:4d:f5:57:91:3b:69:8c:a7:ce:20:6d:ff: ee:ba:f8:fc:df:7d:b0:35:c3:3a:f4:66:3a:93:41: 2a:8a:ac:49:de:29:cb:6e:68:ce:76:a5:5e:03:2e: 89:c8:b3:02:78:6d:76:a3:0d:12:34:78:3f:17:a3: 21:4e:c6:65:2e:25:e5:27:fc:c2:e5:e8:5a:62:c1: 6a:cd:0c:43:c4:71:6d:66:c8:71:92:07:1c:32:48: ff:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:AC:DE:B4:ED:75:87:A0:15:96:66:9F:AB:20:EE:DE:50:2F:54:F6 X509v3 Authority Key Identifier: keyid:52:0B:A9:4C:D0:FB:9E:7C:14:0D:FB:C0:CC:58:B9:3C:F5:4C:22:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8981/1CF6CD746C7F11EF914D7D57C4F9AE02/UgupTND7nnwUDfvAzFi5PPVMIvM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UgupTND7nnwUDfvAzFi5PPVMIvM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8981/1CF6CD746C7F11EF914D7D57C4F9AE02/UgupTND7nnwUDfvAzFi5PPVMIvM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:ce:78:09:f0:ad:5f:6d:3e:4e:87:26:a4:4f:81:94:55:b4: 41:e7:46:03:33:ef:65:41:9e:d9:2a:b3:47:53:57:5c:42:d0: 31:19:d5:26:1c:f4:ac:ab:c7:c0:aa:a0:63:6c:1c:e3:54:cd: f6:f0:14:4c:0e:9b:da:5e:b2:69:c8:f9:d8:54:c7:7d:da:19: d1:4f:4c:04:3e:25:7c:3a:7f:8a:ff:f6:d2:1a:8a:f1:e5:4e: 3d:3a:63:32:8f:25:68:71:d4:a8:f1:2b:44:18:f9:3b:af:fe: 15:2d:c1:35:19:ae:9e:52:77:55:90:c2:03:a0:b8:14:a1:d4: bd:39:43:ef:c8:73:82:89:69:c2:c1:f3:dd:ee:6b:1f:87:42: be:fe:7f:f0:e9:26:4d:8c:09:05:45:69:94:44:d4:04:89:2f: 31:62:56:ca:4c:2b:49:84:7b:6a:d0:b4:70:54:af:ec:cc:f3: 3f:12:9d:dd:a5:1b:2c:a9:ac:9d:eb:d7:ea:30:7d:f0:06:b2: 58:00:78:25:a6:54:27:7d:f4:7a:6c:b3:7d:d3:68:e5:6b:71: e2:28:c1:1e:62:03:de:d3:7d:40:68:2b:b9:b9:b8:2d:87:2c: 35:6b:c5:df:1b:be:fe:8d:e0:6f:cb:e5:42:b3:c1:62:88:9a: 68:a7:aa:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg5ODExMTAvBgNVBAUTKDUyMEJBOTRDRDBGQjlFN0MxNDBERkJDMENDNThCOTND RjU0QzIyRjMwHhcNMjUxMTAzMDUzNTAyWhcNMjUxMTEwMDUzNTAyWjAYMRYwFAYD VQQDEw02OTA4M2YwNi0yZWJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwx46RDVTeJsanE9kqCqOOIWrCxbZS25EYQn7Vn8JPAtFTo38jlio5k9kwF2A MJtm25RoAyMDsrOD1M3B6Qt7UyJ46TRTrrO8W+P9sn1LLy9lL5roeCMh4p5T/Jgv ry74WDjMlTgXKRR2RpAgBs6d1JLJdcDKB5RuIo8Xbw2HV3LMGrRCvCHtCz3Nyivh UUmWagn6/SVtDxXwiGCcjrI+wH3DdsIZZB5N9VeRO2mMp84gbf/uuvj8332wNcM6 9GY6k0EqiqxJ3inLbmjOdqVeAy6JyLMCeG12ow0SNHg/F6MhTsZlLiXlJ/zC5eha YsFqzQxDxHFtZshxkgccMkj/DwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHKs3rTt dYegFZZmn6sg7t5QL1T2MB8GA1UdIwQYMBaAFFILqUzQ+558FA37wMxYuTz1TCLz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODk4MS8xQ0Y2Q0Q3NDZD N0YxMUVGOTE0RDdENTdDNEY5QUUwMi9VZ3VwVE5EN25ud1VEZnZBekZpNVBQVk1J dk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1VndXBUTkQ3bm53VURmdkF6Rmk1UFBWTUl2TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODk4MS8xQ0Y2Q0Q3NDZDN0YxMUVGOTE0RDdENTdDNEY5QUUwMi9VZ3VwVE5EN25u d1VEZnZBekZpNVBQVk1Jdk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIzngJ8K1fbT5OhyakT4GUVbRB50YDM+9lQZ7ZKrNHU1dcQtAxGdUm HPSsq8fAqqBjbBzjVM328BRMDpvaXrJpyPnYVMd92hnRT0wEPiV8On+K//bSGorx 5U49OmMyjyVocdSo8StEGPk7r/4VLcE1Ga6eUndVkMIDoLgUodS9OUPvyHOCiWnC wfPd7msfh0K+/n/w6SZNjAkFRWmURNQEiS8xYlbKTCtJhHtq0LRwVK/szPM/Ep3d pRssqayd69fqMH3wBrJYAHglplQnffR6bLN902jla3HiKMEeYgPe031AaCu5ubgt hyw1a8XfG77+jeBvy+VCs8FiiJpop6rb -----END CERTIFICATE-----Generated at Tue Nov 4 21:31:27 2025 by rpki-client