$ rpki-client -vvf rpki.apnic.net/member_repository/A911F92A/2660378286C911F0872F9D2FC4F9AE02/uCqc9vnMgDxqa3BmLYB-xR2C290.mft File: uCqc9vnMgDxqa3BmLYB-xR2C290.mft (raw, json) Hash identifier: xxmsQxA900puZZEhUIIcBAvY3nDoJSkM0eKeYchODdI= Subject key identifier: C5:40:78:F6:95:8B:43:AE:CF:6B:2D:10:11:B0:4C:E2:3A:15:F4:75 Authority key identifier: B8:2A:9C:F6:F9:CC:80:3C:6A:6B:70:66:2D:80:7E:C5:1D:82:DB:DD Certificate issuer: /CN=A911F92A/serialNumber=B82A9CF6F9CC803C6A6B70662D807EC51D82DBDD Certificate serial: 21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCqc9vnMgDxqa3BmLYB-xR2C290.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F92A/2660378286C911F0872F9D2FC4F9AE02/uCqc9vnMgDxqa3BmLYB-xR2C290.mft Manifest number: 20 Signing time: Mon 03 Nov 2025 07:44:47 +0000 Manifest this update: Mon 03 Nov 2025 07:44:46 +0000 Manifest next update: Mon 10 Nov 2025 07:44:46 +0000 Files and hashes: 1: uCqc9vnMgDxqa3BmLYB-xR2C290.crl (hash: 9ROOuEtRSG1I5c4GupIQsm8FgT/V4y0KdXdjV3vxyOw=) 2: B3DED21C86C911F0BAF28043C4F9AE02.roa (hash: CocTAGyUcSYA6MVP0olvSXDiZcQTc7S0RwIMK0ei44s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F92A/2660378286C911F0872F9D2FC4F9AE02/uCqc9vnMgDxqa3BmLYB-xR2C290.crl rsync://rpki.apnic.net/member_repository/A911F92A/2660378286C911F0872F9D2FC4F9AE02/uCqc9vnMgDxqa3BmLYB-xR2C290.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCqc9vnMgDxqa3BmLYB-xR2C290.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:44:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33 (0x21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F92A, serialNumber=B82A9CF6F9CC803C6A6B70662D807EC51D82DBDD Validity Not Before: Nov 3 07:44:46 2025 GMT Not After : Nov 10 07:44:46 2025 GMT Subject: CN=69085d6f-2b67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:9b:97:c4:8e:03:1e:e6:a5:4f:0a:18:27:2d: b4:15:fa:7c:a9:5d:0b:2d:cb:28:cc:cb:d1:17:7f: 66:a4:35:70:83:12:0e:ad:d4:dc:5e:14:f7:54:c1: 46:70:53:04:2b:4c:49:2a:94:ef:97:ef:e5:c7:42: af:d1:1d:ae:a1:ed:93:82:7a:82:40:06:0f:1e:b0: 8b:ce:1b:d8:12:84:89:f6:7d:f1:27:e1:03:3f:fa: 54:dc:d5:a7:39:93:c3:09:76:9f:ee:4d:ca:70:ff: db:34:c4:60:71:56:2d:82:1f:ee:af:19:2d:c6:e3: fd:b7:2c:66:0a:3d:ef:7f:66:04:18:8d:a6:73:2f: f3:be:ba:9a:b0:c6:a0:db:57:c9:79:ad:f3:61:c4: 15:7a:35:cf:fe:a1:e4:b0:27:7a:b2:aa:2c:a1:cc: ea:37:c7:72:17:fa:5d:c5:9f:b5:9a:38:bb:76:b7: e7:f4:7d:e2:e1:db:cd:32:1f:0e:8a:af:79:08:53: 2e:2d:27:4e:fa:f5:01:ef:8e:4c:1a:21:b6:63:1c: 1f:5c:52:44:3a:71:da:60:83:27:2d:d2:d1:da:c8: b3:cf:85:39:97:90:29:4b:03:0b:4f:c2:a7:02:ec: c4:64:3f:42:81:fa:96:2b:f6:62:ea:87:04:1b:9b: 76:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:40:78:F6:95:8B:43:AE:CF:6B:2D:10:11:B0:4C:E2:3A:15:F4:75 X509v3 Authority Key Identifier: keyid:B8:2A:9C:F6:F9:CC:80:3C:6A:6B:70:66:2D:80:7E:C5:1D:82:DB:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F92A/2660378286C911F0872F9D2FC4F9AE02/uCqc9vnMgDxqa3BmLYB-xR2C290.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCqc9vnMgDxqa3BmLYB-xR2C290.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F92A/2660378286C911F0872F9D2FC4F9AE02/uCqc9vnMgDxqa3BmLYB-xR2C290.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:c4:3e:0c:93:d5:fa:7e:93:72:a4:5f:7e:70:09:82:d6:78: e6:dd:69:1b:d7:84:be:c8:57:02:2e:38:6c:25:b9:80:0e:f5: 07:f9:95:98:c4:3f:c2:b4:0b:1e:35:66:a3:72:bb:8f:ef:5d: f4:f3:16:9c:27:14:fe:be:12:6d:59:9b:0f:93:c7:38:29:8d: 88:44:82:a6:00:40:a0:ad:63:52:d9:b1:78:1e:aa:b3:5b:a9: 23:f1:b9:46:7e:d9:a0:44:2c:ff:81:72:28:ee:71:17:9d:81: 2c:93:a3:1c:a2:4d:83:8e:ec:55:47:b6:e6:5a:c9:5c:9b:de: ac:61:b1:4b:28:71:1f:82:35:45:06:66:1e:44:5c:06:a2:10: d3:b1:99:4e:23:8f:6c:32:9a:88:57:e4:03:dc:9d:9d:bc:f9: c1:b7:52:bc:d8:c0:09:02:92:44:b6:d2:85:4d:a6:f5:4a:ca: 3f:e3:57:9a:c0:d1:5f:10:c0:71:25:96:8a:ff:49:02:94:0f: d1:61:2d:cc:e7:33:da:8b:e0:5d:b3:9d:fe:8d:5c:5f:14:06: 17:5a:45:c3:ac:e8:1b:bf:e9:82:f7:7b:c9:9a:1c:14:f2:77: bf:66:15:14:2b:66:63:f3:e9:ab:97:60:45:7b:d6:54:33:f2: 2d:ea:58:30 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBITANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx RjkyQTExMC8GA1UEBRMoQjgyQTlDRjZGOUNDODAzQzZBNkI3MDY2MkQ4MDdFQzUx RDgyREJERDAeFw0yNTExMDMwNzQ0NDZaFw0yNTExMTAwNzQ0NDZaMBgxFjAUBgNV BAMTDTY5MDg1ZDZmLTJiNjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDam5fEjgMe5qVPChgnLbQV+nypXQstyyjMy9EXf2akNXCDEg6t1NxeFPdUwUZw UwQrTEkqlO+X7+XHQq/RHa6h7ZOCeoJABg8esIvOG9gShIn2ffEn4QM/+lTc1ac5 k8MJdp/uTcpw/9s0xGBxVi2CH+6vGS3G4/23LGYKPe9/ZgQYjaZzL/O+upqwxqDb V8l5rfNhxBV6Nc/+oeSwJ3qyqiyhzOo3x3IX+l3Fn7WaOLt2t+f0feLh280yHw6K r3kIUy4tJ0769QHvjkwaIbZjHB9cUkQ6cdpggyct0tHayLPPhTmXkClLAwtPwqcC 7MRkP0KB+pYr9mLqhwQbm3bfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUxUB49pWL Q67Pay0QEbBM4joV9HUwHwYDVR0jBBgwFoAUuCqc9vnMgDxqa3BmLYB+xR2C290w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFGOTJBLzI2NjAzNzgyODZD OTExRjA4NzJGOUQyRkM0RjlBRTAyL3VDcWM5dm5NZ0R4cWEzQm1MWUIteFIyQzI5 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdUNxYzl2bk1nRHhxYTNCbUxZQi14UjJDMjkwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFG OTJBLzI2NjAzNzgyODZDOTExRjA4NzJGOUQyRkM0RjlBRTAyL3VDcWM5dm5NZ0R4 cWEzQm1MWUIteFIyQzI5MC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABDEPgyT1fp+k3KkX35wCYLWeObdaRvXhL7IVwIuOGwluYAO9Qf5lZjE P8K0Cx41ZqNyu4/vXfTzFpwnFP6+Em1Zmw+TxzgpjYhEgqYAQKCtY1LZsXgeqrNb qSPxuUZ+2aBELP+BcijucRedgSyToxyiTYOO7FVHtuZayVyb3qxhsUsocR+CNUUG Zh5EXAaiENOxmU4jj2wymohX5APcnZ28+cG3UrzYwAkCkkS20oVNpvVKyj/jV5rA 0V8QwHEllor/SQKUD9FhLcznM9qL4F2znf6NXF8UBhdaRcOs6Bu/6YL3e8maHBTy d79mFRQrZmPz6auXYEV71lQz8i3qWDA= -----END CERTIFICATE-----Generated at Wed Nov 5 05:37:33 2025 by rpki-client