$ rpki-client -vvf rpki.apnic.net/member_repository/A911902E/57AFDB28855511EB94C2215FC4F9AE02/UhsGwpEQKEqq_gh1qmGGsABtJ2c.mft File: UhsGwpEQKEqq_gh1qmGGsABtJ2c.mft (raw, json) Hash identifier: /U5OvruUHFvF9u3rnAVmzspBK4BBPRSrKhiTGpDknn8= Subject key identifier: 29:80:E0:B0:E3:D7:AF:85:FE:B3:26:41:55:7B:AD:13:F6:C6:1B:85 Authority key identifier: 52:1B:06:C2:91:10:28:4A:AA:FE:08:75:AA:61:86:B0:00:6D:27:67 Certificate issuer: /CN=A911902E/serialNumber=521B06C29110284AAAFE0875AA6186B0006D2767 Certificate serial: 06B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UhsGwpEQKEqq_gh1qmGGsABtJ2c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911902E/57AFDB28855511EB94C2215FC4F9AE02/UhsGwpEQKEqq_gh1qmGGsABtJ2c.mft Manifest number: 06AC Signing time: Sun 02 Nov 2025 22:14:27 +0000 Manifest this update: Sun 02 Nov 2025 22:14:26 +0000 Manifest next update: Sun 09 Nov 2025 22:14:26 +0000 Files and hashes: 1: UhsGwpEQKEqq_gh1qmGGsABtJ2c.crl (hash: CMavJp+HYDMawyni9/BCO9OJndiIEGv/TRLS96kueVs=) 2: C3FEC56C855711EB871D267FC4F9AE02.roa (hash: pn41QbwI43rxSeVr0SInvG6/Q6c7Gj04UiR8iNhF0jM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911902E/57AFDB28855511EB94C2215FC4F9AE02/UhsGwpEQKEqq_gh1qmGGsABtJ2c.crl rsync://rpki.apnic.net/member_repository/A911902E/57AFDB28855511EB94C2215FC4F9AE02/UhsGwpEQKEqq_gh1qmGGsABtJ2c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UhsGwpEQKEqq_gh1qmGGsABtJ2c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 22:14:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1717 (0x6b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911902E, serialNumber=521B06C29110284AAAFE0875AA6186B0006D2767 Validity Not Before: Nov 2 22:14:26 2025 GMT Not After : Nov 9 22:14:26 2025 GMT Subject: CN=6907d7c2-acfe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:4e:55:e7:51:8b:ad:bf:e3:f7:9c:a8:7c:9d: 7e:ae:3a:21:01:ff:9d:0d:46:72:1b:f1:c5:1d:ff: 51:71:67:e7:94:19:d0:fc:5e:f0:5d:dd:20:54:75: 74:87:87:76:a7:d9:e5:9f:03:75:eb:8e:d8:04:58: 08:31:ac:1b:0c:2d:72:d5:5a:14:9d:47:2b:04:6b: ff:e0:ff:b7:d8:76:4f:0c:26:b5:d3:7f:00:59:1d: 34:89:88:64:41:1e:37:e1:e7:ca:68:b4:18:8d:eb: 88:fb:8a:38:c0:23:c0:fe:67:c4:c2:81:f8:83:9a: 84:0c:51:77:51:aa:e5:57:fc:09:75:60:11:8e:0c: 45:e0:37:62:da:f1:ac:c8:59:26:44:ad:7c:6e:17: 67:73:26:09:89:c7:6f:02:ee:8a:45:89:1c:36:c1: 5d:e7:b5:72:38:2c:4f:c6:c2:d3:4f:72:75:0a:04: 43:cc:cc:c2:ac:f8:7c:d1:e7:74:29:83:d1:34:c9: 91:33:b5:bf:21:8b:22:98:55:b0:da:60:fb:28:7c: a4:40:3b:5c:e3:22:dd:4b:98:95:59:5a:ca:53:ec: fd:71:84:5d:da:29:0a:d2:00:65:a7:c0:99:6b:7e: 76:45:2a:9a:40:27:3c:12:f8:06:db:64:cc:4f:e6: e4:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:80:E0:B0:E3:D7:AF:85:FE:B3:26:41:55:7B:AD:13:F6:C6:1B:85 X509v3 Authority Key Identifier: keyid:52:1B:06:C2:91:10:28:4A:AA:FE:08:75:AA:61:86:B0:00:6D:27:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911902E/57AFDB28855511EB94C2215FC4F9AE02/UhsGwpEQKEqq_gh1qmGGsABtJ2c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UhsGwpEQKEqq_gh1qmGGsABtJ2c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911902E/57AFDB28855511EB94C2215FC4F9AE02/UhsGwpEQKEqq_gh1qmGGsABtJ2c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:ac:a5:c0:c9:12:38:fa:67:6a:a5:70:54:1e:8d:9d:41:7d: 1a:ad:19:54:b5:fe:52:d1:a2:bb:96:6e:d6:e9:e7:d6:e1:67: f8:bd:ad:82:4b:87:dc:ee:5b:b8:d3:91:13:74:16:b2:5c:6c: ff:b8:70:6c:b2:57:96:6f:af:64:3e:2d:ea:4d:33:88:22:4a: 6a:a4:9f:3a:7f:c1:69:b1:24:19:4e:06:cb:19:e3:cc:b1:0a: 27:eb:8a:56:cd:35:0e:6c:cd:45:99:94:54:b9:a0:bd:ed:09: 2f:d4:d2:ba:9d:a3:af:82:a3:ae:75:6c:9d:17:5c:2c:98:d9: bb:76:ec:e5:9f:92:9e:2d:49:4e:61:b9:4a:dc:9d:47:e6:46: ef:20:0a:1e:f1:b1:36:df:8c:80:9e:74:20:21:c4:f2:f5:e8: 35:ce:e7:36:7d:35:02:2c:a9:04:b9:a6:db:21:99:7d:5c:e4: 97:51:c3:ad:e1:3a:37:f0:83:62:98:9f:4d:e7:65:7d:8e:2f: 3d:bb:65:b6:09:48:22:4d:b6:55:a6:f7:c8:62:0c:65:a5:a7: a4:1a:c4:34:45:06:b2:c1:1c:ef:20:74:85:ab:bb:d6:c1:90: 6f:64:7b:ba:83:bc:23:73:c1:00:bb:e1:d2:85:32:8e:ff:8b: 38:e4:d9:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTkwMkUxMTAvBgNVBAUTKDUyMUIwNkMyOTExMDI4NEFBQUZFMDg3NUFBNjE4NkIw MDA2RDI3NjcwHhcNMjUxMTAyMjIxNDI2WhcNMjUxMTA5MjIxNDI2WjAYMRYwFAYD VQQDEw02OTA3ZDdjMi1hY2ZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv05V51GLrb/j95yofJ1+rjohAf+dDUZyG/HFHf9RcWfnlBnQ/F7wXd0gVHV0 h4d2p9nlnwN1647YBFgIMawbDC1y1VoUnUcrBGv/4P+32HZPDCa1038AWR00iYhk QR434efKaLQYjeuI+4o4wCPA/mfEwoH4g5qEDFF3UarlV/wJdWARjgxF4Ddi2vGs yFkmRK18bhdncyYJicdvAu6KRYkcNsFd57VyOCxPxsLTT3J1CgRDzMzCrPh80ed0 KYPRNMmRM7W/IYsimFWw2mD7KHykQDtc4yLdS5iVWVrKU+z9cYRd2ikK0gBlp8CZ a352RSqaQCc8EvgG22TMT+bknQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCmA4LDj 16+F/rMmQVV7rRP2xhuFMB8GA1UdIwQYMBaAFFIbBsKREChKqv4IdaphhrAAbSdn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTAyRS81N0FGREIyODg1 NTUxMUVCOTRDMjIxNUZDNEY5QUUwMi9VaHNHd3BFUUtFcXFfZ2gxcW1HR3NBQnRK MmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Voc0d3cEVRS0VxcV9naDFxbUdHc0FCdEoyYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTAyRS81N0FGREIyODg1NTUxMUVCOTRDMjIxNUZDNEY5QUUwMi9VaHNHd3BFUUtF cXFfZ2gxcW1HR3NBQnRKMmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQrKXAyRI4+mdqpXBUHo2dQX0arRlUtf5S0aK7lm7W6efW4Wf4va2C S4fc7lu405ETdBayXGz/uHBssleWb69kPi3qTTOIIkpqpJ86f8FpsSQZTgbLGePM sQon64pWzTUObM1FmZRUuaC97Qkv1NK6naOvgqOudWydF1wsmNm7duzln5KeLUlO YblK3J1H5kbvIAoe8bE234yAnnQgIcTy9eg1zuc2fTUCLKkEuabbIZl9XOSXUcOt 4To38INimJ9N52V9ji89u2W2CUgiTbZVpvfIYgxlpaekGsQ0RQaywRzvIHSFq7vW wZBvZHu6g7wjc8EAu+HShTKO/4s45NkS -----END CERTIFICATE-----Generated at Tue Nov 4 08:07:42 2025 by rpki-client