$ rpki-client -vvf rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft File: -UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft (raw, json) Hash identifier: YU4lju8U3vQGZp233WVuERwXbpaKIdUzEsOUrx9hRFY= Subject key identifier: B1:FC:B6:86:8C:65:22:CF:19:D8:BB:4D:C9:2B:A8:92:EB:4C:A2:AB Authority key identifier: F9:40:4A:A5:24:D4:35:7E:0C:CC:69:C7:D4:0D:3E:66:A2:E4:E6:DF Certificate issuer: /CN=A9170C53/serialNumber=F9404AA524D4357E0CCC69C7D40D3E66A2E4E6DF Certificate serial: 01BC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft Manifest number: 01BA Signing time: Mon 03 Nov 2025 02:40:46 +0000 Manifest this update: Mon 03 Nov 2025 02:40:46 +0000 Manifest next update: Mon 10 Nov 2025 02:40:46 +0000 Files and hashes: 1: -UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl (hash: +BoeopnXk3fgbBoFcsMNNALa51G7T4t7ezstOKiTjog=) 2: C3BB51160DAC11EFB00E6B16C4F9AE02.roa (hash: hGqVPEeuAFuBj/OWUVfAk4cX4VguxOD/9TKwylc/bsY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:40:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 444 (0x1bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170C53, serialNumber=F9404AA524D4357E0CCC69C7D40D3E66A2E4E6DF Validity Not Before: Nov 3 02:40:46 2025 GMT Not After : Nov 10 02:40:46 2025 GMT Subject: CN=6908162e-6cfe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:0c:a1:d3:4f:9d:ac:4b:8d:a7:45:e4:2c:12: 68:32:e3:f2:eb:f7:8c:53:71:ac:9d:b4:74:5f:61: 89:ce:8f:a1:7c:87:8d:77:26:c0:bc:e8:20:54:61: 8e:10:80:6f:63:9c:22:ae:e0:4e:3a:a6:18:48:ff: e3:cd:20:dc:82:0c:89:38:40:ce:12:44:7d:3a:74: 14:c7:ac:ee:e0:84:85:1e:ba:2a:b3:bc:e1:df:e2: c9:2a:9a:6f:c6:57:bc:06:c2:e1:13:9d:53:75:44: 2f:a4:ef:3f:0f:e0:47:52:1c:d0:76:71:7d:c3:8a: 96:e9:bc:db:9b:08:20:f2:9a:a9:96:a4:59:11:e3: 89:65:68:43:66:df:32:9a:7b:18:e7:08:be:ec:97: 68:ec:32:a7:9d:5c:3c:11:a7:54:c9:b1:54:64:87: 18:14:b8:22:ad:3c:3d:32:91:9f:33:ec:92:ea:da: 0b:ae:41:2a:16:bf:41:b9:87:66:d2:11:76:31:af: 47:10:be:b6:17:ce:80:50:0d:93:72:08:16:b5:4c: b4:38:96:2f:58:a2:26:aa:50:78:0b:ae:9c:d0:27: 5d:fd:ee:b2:5d:e6:cb:c7:22:0d:f5:c7:a3:96:25: 10:74:02:be:53:c3:78:9d:c7:6f:d6:9f:99:d0:17: a3:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:FC:B6:86:8C:65:22:CF:19:D8:BB:4D:C9:2B:A8:92:EB:4C:A2:AB X509v3 Authority Key Identifier: keyid:F9:40:4A:A5:24:D4:35:7E:0C:CC:69:C7:D4:0D:3E:66:A2:E4:E6:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:80:d7:cd:1c:3a:d5:ec:11:75:0e:36:d2:28:a3:7c:e6:3e: 00:3c:a7:d6:64:91:bc:17:ee:1c:7b:34:27:20:86:c8:0c:70: e2:a9:8b:c0:9c:bf:9b:e9:46:46:17:48:44:de:18:13:1e:e5: 49:eb:bb:a4:54:93:4b:da:59:79:2d:2b:94:8a:2e:70:cf:12: 7b:53:f1:dd:d7:eb:13:4d:69:03:e7:28:a9:70:43:28:62:94: f1:5e:38:f6:72:5d:d0:e6:c3:54:ba:c8:65:98:b8:2c:db:dc: aa:d6:27:3f:40:52:f9:5a:37:53:e2:10:f4:0b:fb:ef:a2:1a: 70:c8:f9:78:ea:88:7a:61:03:02:39:c4:bf:c6:16:ad:0e:01: b1:12:3f:3c:eb:3d:d6:1e:56:45:02:e9:99:f9:46:db:bd:71: d6:cc:a8:6d:80:eb:71:0f:e1:f7:83:4e:5a:7b:2a:cc:ed:9d: 82:6b:d5:9a:81:f6:59:1d:98:25:d5:dd:aa:22:63:8f:f7:88: de:f0:b2:c7:20:c5:03:43:d6:4d:8a:39:d7:1e:e2:de:a0:73: 3b:a7:4e:a3:7e:f3:24:50:38:ee:7d:ed:75:26:98:41:83:b3: eb:3b:e4:b0:e5:23:ee:0f:2e:cb:13:00:2d:5c:1e:b1:9d:6b: 5e:1f:27:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBDNTMxMTAvBgNVBAUTKEY5NDA0QUE1MjRENDM1N0UwQ0NDNjlDN0Q0MEQzRTY2 QTJFNEU2REYwHhcNMjUxMTAzMDI0MDQ2WhcNMjUxMTEwMDI0MDQ2WjAYMRYwFAYD VQQDEw02OTA4MTYyZS02Y2ZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnQyh00+drEuNp0XkLBJoMuPy6/eMU3GsnbR0X2GJzo+hfIeNdybAvOggVGGO EIBvY5wiruBOOqYYSP/jzSDcggyJOEDOEkR9OnQUx6zu4ISFHroqs7zh3+LJKppv xle8BsLhE51TdUQvpO8/D+BHUhzQdnF9w4qW6bzbmwgg8pqplqRZEeOJZWhDZt8y mnsY5wi+7Jdo7DKnnVw8EadUybFUZIcYFLgirTw9MpGfM+yS6toLrkEqFr9BuYdm 0hF2Ma9HEL62F86AUA2TcggWtUy0OJYvWKImqlB4C66c0Cdd/e6yXebLxyIN9cej liUQdAK+U8N4ncdv1p+Z0BejkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLH8toaM ZSLPGdi7TckrqJLrTKKrMB8GA1UdIwQYMBaAFPlASqUk1DV+DMxpx9QNPmai5Obf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEM1My9EQjYzQzlBMjEx NzYxMUVFOUM1NTlBM0VDNEY5QUUwMi8tVUJLcFNUVU5YNE16R25IMUEwLVpxTGs1 dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLy1VQktwU1RVTlg0TXpHbkgxQTAtWnFMazV0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEM1My9EQjYzQzlBMjExNzYxMUVFOUM1NTlBM0VDNEY5QUUwMi8tVUJLcFNUVU5Y NE16R25IMUEwLVpxTGs1dDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsgNfNHDrV7BF1DjbSKKN85j4APKfWZJG8F+4cezQnIIbIDHDiqYvA nL+b6UZGF0hE3hgTHuVJ67ukVJNL2ll5LSuUii5wzxJ7U/Hd1+sTTWkD5yipcEMo YpTxXjj2cl3Q5sNUushlmLgs29yq1ic/QFL5WjdT4hD0C/vvohpwyPl46oh6YQMC OcS/xhatDgGxEj886z3WHlZFAumZ+UbbvXHWzKhtgOtxD+H3g05aeyrM7Z2Ca9Wa gfZZHZgl1d2qImOP94je8LLHIMUDQ9ZNijnXHuLeoHM7p06jfvMkUDjufe11JphB g7PrO+Sw5SPuDy7LEwAtXB6xnWteHycX -----END CERTIFICATE-----Generated at Tue Nov 4 19:00:39 2025 by rpki-client