$ rpki-client -vvf rpki.apnic.net/member_repository/A91383BF/F67C61EA198111EFA5AC4753C4F9AE02/UaSCWNTNbgHSRYxbkhbvpFIQtiM.mft File: UaSCWNTNbgHSRYxbkhbvpFIQtiM.mft (raw, json) Hash identifier: Ml+m9REQJ2jKrb8Rcler//CGOdQEfMcECkF5uGftelQ= Subject key identifier: 22:85:3C:6B:12:41:37:AE:1A:39:C9:57:57:4F:19:FF:1A:43:71:F7 Authority key identifier: 51:A4:82:58:D4:CD:6E:01:D2:45:8C:5B:92:16:EF:A4:52:10:B6:23 Certificate issuer: /CN=A91383BF/serialNumber=51A48258D4CD6E01D2458C5B9216EFA45210B623 Certificate serial: 0115 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UaSCWNTNbgHSRYxbkhbvpFIQtiM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91383BF/F67C61EA198111EFA5AC4753C4F9AE02/UaSCWNTNbgHSRYxbkhbvpFIQtiM.mft Manifest number: 0112 Signing time: Mon 03 Nov 2025 04:54:10 +0000 Manifest this update: Mon 03 Nov 2025 04:54:09 +0000 Manifest next update: Mon 10 Nov 2025 04:54:09 +0000 Files and hashes: 1: UaSCWNTNbgHSRYxbkhbvpFIQtiM.crl (hash: clHGDiZ3SlcRRY22LgrDGHkkiSK9saZllaYLdCBbKzo=) 2: C23053B019A911EF97366417C4F9AE02.roa (hash: YYki0NriwMd0PqjU0EOE6kz16/qKzKdVDNbbepKT0IA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91383BF/F67C61EA198111EFA5AC4753C4F9AE02/UaSCWNTNbgHSRYxbkhbvpFIQtiM.crl rsync://rpki.apnic.net/member_repository/A91383BF/F67C61EA198111EFA5AC4753C4F9AE02/UaSCWNTNbgHSRYxbkhbvpFIQtiM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UaSCWNTNbgHSRYxbkhbvpFIQtiM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:54:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 277 (0x115) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91383BF, serialNumber=51A48258D4CD6E01D2458C5B9216EFA45210B623 Validity Not Before: Nov 3 04:54:09 2025 GMT Not After : Nov 10 04:54:09 2025 GMT Subject: CN=69083571-d245 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:4e:01:3b:51:4c:97:e9:27:36:41:33:2f:b9: 07:6f:9a:81:4a:9a:ba:ff:a9:c9:b7:39:7d:98:36: 7b:6b:9c:8a:92:15:1f:44:45:1b:4b:71:39:64:2d: 56:56:14:34:82:89:38:03:e8:e4:e4:db:f7:34:20: 2e:62:6f:92:5a:f8:f6:f4:0d:bc:dc:5b:78:f0:67: 3e:63:2a:3b:dd:9b:29:38:12:ec:6d:42:b2:95:07: c1:86:04:6d:cb:d3:b6:12:e9:fc:af:2d:b0:c6:99: 65:40:76:b1:11:e2:45:7d:10:54:8c:4e:90:af:65: 70:14:80:29:ac:3a:38:cc:8c:40:f9:29:f8:79:c3: 1f:17:4f:2b:27:74:6e:0d:a6:4e:4a:84:79:46:8b: fd:c8:6e:8b:25:0f:bd:90:f8:7a:da:f7:7d:e6:dd: 4a:ef:e2:17:74:5a:eb:58:2e:69:10:7c:e7:41:83: 31:4e:e4:5d:d2:16:28:f2:b7:51:ef:f4:72:27:16: 37:37:e4:6a:fd:ea:c6:3b:2c:9c:2b:65:b4:b0:68: db:29:8a:d9:fd:c7:53:d2:b1:1a:73:40:6c:17:d1: 1e:89:56:e1:72:37:86:6e:c2:1f:99:77:a9:9e:25: 4c:35:c0:58:4a:0c:08:40:a2:ac:e2:72:e0:04:0a: f6:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:85:3C:6B:12:41:37:AE:1A:39:C9:57:57:4F:19:FF:1A:43:71:F7 X509v3 Authority Key Identifier: keyid:51:A4:82:58:D4:CD:6E:01:D2:45:8C:5B:92:16:EF:A4:52:10:B6:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91383BF/F67C61EA198111EFA5AC4753C4F9AE02/UaSCWNTNbgHSRYxbkhbvpFIQtiM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UaSCWNTNbgHSRYxbkhbvpFIQtiM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91383BF/F67C61EA198111EFA5AC4753C4F9AE02/UaSCWNTNbgHSRYxbkhbvpFIQtiM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:b4:7c:d6:b8:c0:74:c2:88:88:db:9b:26:2b:17:c1:c9:3a: ea:98:a5:9e:b3:96:a4:08:46:fa:b7:93:dc:e9:91:86:e8:fe: 50:18:ca:d5:51:22:59:ca:11:81:b5:a7:32:d4:6a:4b:1e:99: 32:99:9f:6e:9e:eb:46:4a:d7:e0:ee:28:c1:63:e3:6b:ce:6c: 55:e2:e8:d5:55:11:c5:e4:22:1a:23:24:bb:88:ba:cc:49:93: d5:5f:9a:ef:46:16:d4:85:70:e0:3c:be:8a:06:4a:e9:b9:45: 5a:58:4e:c4:ed:60:7a:b3:ce:72:ca:44:12:5e:1f:e8:35:86: 27:60:98:68:f6:4f:2d:3b:a9:cc:4d:49:82:48:2e:93:85:56: c0:ef:22:ce:ea:12:e2:d2:2c:55:bc:a9:d0:ba:e8:92:9d:d7: ff:12:01:9e:86:53:b5:6f:a4:f3:65:7f:10:4b:c2:16:05:75: cd:1d:05:3b:ba:60:31:af:52:f1:10:a2:99:c7:88:c0:33:98: bc:51:0d:1d:58:96:b6:58:9a:b6:19:03:1b:be:64:68:55:46: 85:94:b0:24:4f:de:0a:d6:64:7f:36:a3:c1:b3:d0:2d:c6:3c: 53:31:a7:b7:cc:f7:39:66:77:28:b9:63:cb:e6:1b:0e:a9:90: 69:1a:c7:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzgzQkYxMTAvBgNVBAUTKDUxQTQ4MjU4RDRDRDZFMDFEMjQ1OEM1QjkyMTZFRkE0 NTIxMEI2MjMwHhcNMjUxMTAzMDQ1NDA5WhcNMjUxMTEwMDQ1NDA5WjAYMRYwFAYD VQQDEw02OTA4MzU3MS1kMjQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzk4BO1FMl+knNkEzL7kHb5qBSpq6/6nJtzl9mDZ7a5yKkhUfREUbS3E5ZC1W VhQ0gok4A+jk5Nv3NCAuYm+SWvj29A283Ft48Gc+Yyo73ZspOBLsbUKylQfBhgRt y9O2Eun8ry2wxpllQHaxEeJFfRBUjE6Qr2VwFIAprDo4zIxA+Sn4ecMfF08rJ3Ru DaZOSoR5Rov9yG6LJQ+9kPh62vd95t1K7+IXdFrrWC5pEHznQYMxTuRd0hYo8rdR 7/RyJxY3N+Rq/erGOyycK2W0sGjbKYrZ/cdT0rEac0BsF9EeiVbhcjeGbsIfmXep niVMNcBYSgwIQKKs4nLgBAr2jwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCKFPGsS QTeuGjnJV1dPGf8aQ3H3MB8GA1UdIwQYMBaAFFGkgljUzW4B0kWMW5IW76RSELYj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODNCRi9GNjdDNjFFQTE5 ODExMUVGQTVBQzQ3NTNDNEY5QUUwMi9VYVNDV05UTmJnSFNSWXhia2hidnBGSVF0 aU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VhU0NXTlROYmdIU1JZeGJraGJ2cEZJUXRpTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODNCRi9GNjdDNjFFQTE5ODExMUVGQTVBQzQ3NTNDNEY5QUUwMi9VYVNDV05UTmJn SFNSWXhia2hidnBGSVF0aU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKtHzWuMB0woiI25smKxfByTrqmKWes5akCEb6t5Pc6ZGG6P5QGMrV USJZyhGBtacy1GpLHpkymZ9unutGStfg7ijBY+NrzmxV4ujVVRHF5CIaIyS7iLrM SZPVX5rvRhbUhXDgPL6KBkrpuUVaWE7E7WB6s85yykQSXh/oNYYnYJho9k8tO6nM TUmCSC6ThVbA7yLO6hLi0ixVvKnQuuiSndf/EgGehlO1b6TzZX8QS8IWBXXNHQU7 umAxr1LxEKKZx4jAM5i8UQ0dWJa2WJq2GQMbvmRoVUaFlLAkT94K1mR/NqPBs9At xjxTMae3zPc5ZncouWPL5hsOqZBpGseq -----END CERTIFICATE-----Generated at Tue Nov 4 16:04:01 2025 by rpki-client