$ rpki-client -vvf rpki.apnic.net/member_repository/A91790ED/0ABB86429D1B11E9BDD6E574C4F9AE02/UHRCEm0jxuW-SuMZdJsnbhcum1w.mft File: UHRCEm0jxuW-SuMZdJsnbhcum1w.mft (raw, json) Hash identifier: WqUydIlseyIaFfeXIVZne2ZVbHQUo4rvJJHeadiB5Nk= Subject key identifier: F8:F2:12:78:96:CF:D6:C5:25:BA:DF:3E:2B:52:95:2B:AC:27:62:CD Authority key identifier: 50:74:42:12:6D:23:C6:E5:BE:4A:E3:19:74:9B:27:6E:17:2E:9B:5C Certificate issuer: /CN=A91790ED/serialNumber=507442126D23C6E5BE4AE319749B276E172E9B5C Certificate serial: 0E9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UHRCEm0jxuW-SuMZdJsnbhcum1w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91790ED/0ABB86429D1B11E9BDD6E574C4F9AE02/UHRCEm0jxuW-SuMZdJsnbhcum1w.mft Manifest number: 0E9B Signing time: Tue 04 Nov 2025 17:45:24 +0000 Manifest this update: Tue 04 Nov 2025 17:45:23 +0000 Manifest next update: Tue 11 Nov 2025 17:45:23 +0000 Files and hashes: 1: UHRCEm0jxuW-SuMZdJsnbhcum1w.crl (hash: s+nm0X+HMjoqnrM4xc2XSh0Di6KKxJuCMIJoTHmdknw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91790ED/0ABB86429D1B11E9BDD6E574C4F9AE02/UHRCEm0jxuW-SuMZdJsnbhcum1w.crl rsync://rpki.apnic.net/member_repository/A91790ED/0ABB86429D1B11E9BDD6E574C4F9AE02/UHRCEm0jxuW-SuMZdJsnbhcum1w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UHRCEm0jxuW-SuMZdJsnbhcum1w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:45:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3739 (0xe9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91790ED, serialNumber=507442126D23C6E5BE4AE319749B276E172E9B5C Validity Not Before: Nov 4 17:45:23 2025 GMT Not After : Nov 11 17:45:23 2025 GMT Subject: CN=690a3bb4-c627 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:9b:70:a0:55:50:79:6b:8a:05:46:e2:43:53: 8d:f0:b6:0d:a6:81:e7:a6:2f:c0:12:e8:59:14:61: ce:7d:53:2b:eb:7a:46:a8:36:8f:15:58:5a:82:50: 22:78:20:69:e6:af:7b:dc:8f:bb:0d:a2:fd:59:42: 9d:fb:dc:60:b2:97:f8:b1:64:b4:06:02:f2:81:35: 2c:e3:4f:ca:de:8e:85:f9:6b:a3:f2:ae:06:27:47: d0:66:e5:23:60:52:d0:55:20:02:2d:f9:bd:56:13: 10:98:14:e9:33:1e:83:df:fc:b2:0b:63:0c:84:f6: e8:30:60:8d:84:fc:0f:d9:9e:65:6a:37:f8:2d:88: 98:66:cb:d7:5d:ca:8e:16:e1:22:f4:53:d3:4c:73: be:8c:af:46:75:ca:ba:57:54:ef:30:9b:d5:9f:e0: c7:49:d5:25:b6:19:b5:c7:24:91:3f:50:5c:a0:7b: 88:3c:cf:21:2f:42:19:f7:fe:4a:ef:38:44:42:2a: 91:79:99:71:02:d3:9f:5e:98:af:28:d2:33:b9:83: 5f:31:e1:ce:39:79:2d:71:8d:5f:be:2a:37:e6:f8: f5:b1:12:cc:30:35:5b:be:28:41:3d:f8:29:04:96: 04:30:75:6e:11:38:8e:3b:5c:9a:d1:f5:ee:5f:04: bd:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:F2:12:78:96:CF:D6:C5:25:BA:DF:3E:2B:52:95:2B:AC:27:62:CD X509v3 Authority Key Identifier: keyid:50:74:42:12:6D:23:C6:E5:BE:4A:E3:19:74:9B:27:6E:17:2E:9B:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91790ED/0ABB86429D1B11E9BDD6E574C4F9AE02/UHRCEm0jxuW-SuMZdJsnbhcum1w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UHRCEm0jxuW-SuMZdJsnbhcum1w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91790ED/0ABB86429D1B11E9BDD6E574C4F9AE02/UHRCEm0jxuW-SuMZdJsnbhcum1w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:59:48:37:86:46:90:b7:c7:5b:ba:82:a3:6f:4a:4f:36:2b: ef:b7:78:93:38:08:8e:99:e7:f4:25:f1:69:28:14:26:1e:ac: 85:ba:f8:12:26:68:a6:6b:0d:b1:6d:b4:a2:55:5b:cd:1b:27: 81:3f:9c:17:e6:df:2e:f9:0d:bd:a0:33:34:e1:53:6b:7c:48: ba:03:f1:80:ba:48:25:b1:96:ff:a4:01:5a:3d:00:cc:31:a7: 4d:cb:9c:96:99:96:78:07:96:8e:25:d9:82:f5:d7:de:1b:1e: c5:9d:c4:f3:fa:94:73:bb:57:17:66:b7:e0:3f:4f:65:c4:ee: 47:3f:08:8f:09:97:a4:9c:25:a7:00:a4:3f:fd:35:31:9c:b7: fe:fc:38:e2:43:f9:d1:4a:16:ea:22:d7:39:0d:71:df:e7:15: 63:65:42:39:f5:4c:dd:21:00:72:47:f4:87:8c:dd:60:3b:aa: 3b:ed:58:90:42:b5:fc:34:39:bd:fc:97:65:ae:af:f0:a9:56: 9d:53:82:1f:b8:1d:3a:4b:17:4e:2a:ed:35:84:0e:aa:00:94: 5d:97:6a:79:89:3c:7c:0c:44:73:d2:29:ae:34:81:cf:3c:ec: bf:dc:f7:00:ef:aa:8f:4e:49:75:20:96:0d:b5:da:8a:84:0e: ce:7c:7a:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDpswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzkwRUQxMTAvBgNVBAUTKDUwNzQ0MjEyNkQyM0M2RTVCRTRBRTMxOTc0OUIyNzZF MTcyRTlCNUMwHhcNMjUxMTA0MTc0NTIzWhcNMjUxMTExMTc0NTIzWjAYMRYwFAYD VQQDEw02OTBhM2JiNC1jNjI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvptwoFVQeWuKBUbiQ1ON8LYNpoHnpi/AEuhZFGHOfVMr63pGqDaPFVhaglAi eCBp5q973I+7DaL9WUKd+9xgspf4sWS0BgLygTUs40/K3o6F+Wuj8q4GJ0fQZuUj YFLQVSACLfm9VhMQmBTpMx6D3/yyC2MMhPboMGCNhPwP2Z5lajf4LYiYZsvXXcqO FuEi9FPTTHO+jK9Gdcq6V1TvMJvVn+DHSdUlthm1xySRP1BcoHuIPM8hL0IZ9/5K 7zhEQiqReZlxAtOfXpivKNIzuYNfMeHOOXktcY1fvio35vj1sRLMMDVbvihBPfgp BJYEMHVuETiOO1ya0fXuXwS9rwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPjyEniW z9bFJbrfPitSlSusJ2LNMB8GA1UdIwQYMBaAFFB0QhJtI8blvkrjGXSbJ24XLptc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTBFRC8wQUJCODY0MjlE MUIxMUU5QkRENkU1NzRDNEY5QUUwMi9VSFJDRW0wanh1Vy1TdU1aZEpzbmJoY3Vt MXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VIUkNFbTBqeHVXLVN1TVpkSnNuYmhjdW0xdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTBFRC8wQUJCODY0MjlEMUIxMUU5QkRENkU1NzRDNEY5QUUwMi9VSFJDRW0wanh1 Vy1TdU1aZEpzbmJoY3VtMXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSWUg3hkaQt8dbuoKjb0pPNivvt3iTOAiOmef0JfFpKBQmHqyFuvgS Jmimaw2xbbSiVVvNGyeBP5wX5t8u+Q29oDM04VNrfEi6A/GAukglsZb/pAFaPQDM MadNy5yWmZZ4B5aOJdmC9dfeGx7FncTz+pRzu1cXZrfgP09lxO5HPwiPCZeknCWn AKQ//TUxnLf+/DjiQ/nRShbqItc5DXHf5xVjZUI59UzdIQByR/SHjN1gO6o77ViQ QrX8NDm9/Jdlrq/wqVadU4IfuB06SxdOKu01hA6qAJRdl2p5iTx8DERz0imuNIHP POy/3PcA76qPTkl1IJYNtdqKhA7OfHqG -----END CERTIFICATE-----Generated at Wed Nov 5 18:53:45 2025 by rpki-client