$ rpki-client -vvf rpki.apnic.net/member_repository/A9186D83/149747BE062A11EA8C9A7444C4F9AE02/u-KUkERtaHB2W05h1-ubIsYARjg.mft File: u-KUkERtaHB2W05h1-ubIsYARjg.mft (raw, json) Hash identifier: irFOb+aOGRRYbM981XiB4qvBb6tDolsaDazk4hVRg1A= Subject key identifier: 83:92:88:46:CB:6D:62:39:AF:3C:72:A1:3D:02:0D:6A:75:C1:9C:02 Authority key identifier: BB:E2:94:90:44:6D:68:70:76:5B:4E:61:D7:EB:9B:22:C6:00:46:38 Certificate issuer: /CN=A9186D83/serialNumber=BBE29490446D6870765B4E61D7EB9B22C6004638 Certificate serial: 0CC5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-KUkERtaHB2W05h1-ubIsYARjg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186D83/149747BE062A11EA8C9A7444C4F9AE02/u-KUkERtaHB2W05h1-ubIsYARjg.mft Manifest number: 0CAC Signing time: Tue 04 Nov 2025 18:27:18 +0000 Manifest this update: Tue 04 Nov 2025 18:27:17 +0000 Manifest next update: Tue 11 Nov 2025 18:27:17 +0000 Files and hashes: 1: u-KUkERtaHB2W05h1-ubIsYARjg.crl (hash: Y6nlZMwgCvv+uxj132BMC7QSXy5YqglzEnPcLuMJYPg=) 2: 8BA504FCB27911EB978CE10AC4F9AE02.roa (hash: n01/3EIjRvyLbA9XmobgbcsSzY3lQa7SmWy3AZPr1nQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186D83/149747BE062A11EA8C9A7444C4F9AE02/u-KUkERtaHB2W05h1-ubIsYARjg.crl rsync://rpki.apnic.net/member_repository/A9186D83/149747BE062A11EA8C9A7444C4F9AE02/u-KUkERtaHB2W05h1-ubIsYARjg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-KUkERtaHB2W05h1-ubIsYARjg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:27:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3269 (0xcc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186D83, serialNumber=BBE29490446D6870765B4E61D7EB9B22C6004638 Validity Not Before: Nov 4 18:27:17 2025 GMT Not After : Nov 11 18:27:17 2025 GMT Subject: CN=690a4585-8bc0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:1e:30:f7:e2:ee:21:2b:9c:ee:25:ac:2a:af: b4:81:f2:17:a9:70:30:d1:c3:dc:3e:9c:21:6c:21: 9e:c5:34:2f:c0:f4:4a:d6:3a:0f:1f:17:96:ee:f3: 66:be:66:f6:f6:90:3d:2d:68:ab:f1:6f:68:1a:d2: 7c:7f:d9:85:7d:cd:a5:6f:83:a8:8f:8c:85:8e:cf: aa:2f:c8:8f:41:29:80:1a:8b:0c:d0:9d:84:c0:19: cf:af:b0:4b:1f:24:88:f5:bb:84:83:a6:45:5b:81: a3:d5:5e:d0:84:66:b1:d4:9c:3c:ef:4d:36:7c:7e: 31:7c:44:53:24:84:a7:15:40:74:a5:55:41:4f:cd: 2e:eb:54:2e:12:b4:cd:11:e7:1e:f4:76:41:f2:60: 41:45:67:40:fc:fb:f6:8a:34:b5:0a:11:80:41:97: 7e:1b:bb:ce:e7:5b:b0:dd:21:50:1b:f7:58:b6:98: d2:72:ea:3b:2b:05:8a:c7:c9:e1:5d:48:52:a9:45: b7:d9:b4:c3:3e:1b:c6:29:11:0e:61:a4:c7:c0:49: 02:f8:d1:95:91:95:9e:ad:74:95:25:46:77:f5:d7: 6a:35:bf:95:42:18:f0:64:29:f7:05:d7:dc:80:ea: eb:ce:fa:59:07:48:e7:8d:66:43:17:85:f5:ec:3f: 42:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:92:88:46:CB:6D:62:39:AF:3C:72:A1:3D:02:0D:6A:75:C1:9C:02 X509v3 Authority Key Identifier: keyid:BB:E2:94:90:44:6D:68:70:76:5B:4E:61:D7:EB:9B:22:C6:00:46:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186D83/149747BE062A11EA8C9A7444C4F9AE02/u-KUkERtaHB2W05h1-ubIsYARjg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-KUkERtaHB2W05h1-ubIsYARjg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186D83/149747BE062A11EA8C9A7444C4F9AE02/u-KUkERtaHB2W05h1-ubIsYARjg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:e2:0e:ce:90:12:e4:ee:5c:a9:07:cd:7a:70:d7:28:ba:a3: 9b:78:b1:b9:84:8a:e4:4e:f4:63:d7:f9:97:ba:1f:ef:d6:8c: f4:03:33:9b:2b:4a:00:ea:96:4e:4f:b9:ec:5e:3a:55:72:00: 93:e4:03:3a:ce:bc:65:b6:cc:01:0f:54:92:9c:45:36:b2:0a: ad:e1:fe:b3:0f:7c:89:e2:ab:08:46:8f:3c:a5:35:6c:2b:d4: 40:24:a5:ee:41:f7:23:a7:01:9f:83:73:54:7b:fb:2d:fb:39: 77:28:30:88:79:1f:67:41:3b:18:35:46:ea:74:9b:39:4a:3d: 7a:9f:b1:26:dd:87:6f:dc:4f:8b:17:b0:5e:85:2d:8f:30:eb: 5a:93:bc:a8:61:c2:40:49:3a:39:42:2c:2c:a4:f4:db:55:99: 85:ad:b9:88:29:0d:3c:5d:f7:05:ec:7e:c3:44:12:e2:7a:a1: 6f:61:61:56:83:d1:9c:8b:20:83:12:8b:6b:ee:3e:af:d0:9e: 44:b1:a7:b0:e6:1b:02:39:b7:a7:56:19:a9:8b:b6:16:d7:4d: ed:c6:a8:f0:6b:cf:17:51:0b:ab:2b:b6:88:23:2e:7b:32:75: 69:eb:9c:68:1d:a4:7f:80:38:1c:4f:2c:7c:62:0a:b3:0a:be: 9e:e0:0f:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODZEODMxMTAvBgNVBAUTKEJCRTI5NDkwNDQ2RDY4NzA3NjVCNEU2MUQ3RUI5QjIy QzYwMDQ2MzgwHhcNMjUxMTA0MTgyNzE3WhcNMjUxMTExMTgyNzE3WjAYMRYwFAYD VQQDEw02OTBhNDU4NS04YmMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0x4w9+LuISuc7iWsKq+0gfIXqXAw0cPcPpwhbCGexTQvwPRK1joPHxeW7vNm vmb29pA9LWir8W9oGtJ8f9mFfc2lb4Ooj4yFjs+qL8iPQSmAGosM0J2EwBnPr7BL HySI9buEg6ZFW4Gj1V7QhGax1Jw87002fH4xfERTJISnFUB0pVVBT80u61QuErTN Eece9HZB8mBBRWdA/Pv2ijS1ChGAQZd+G7vO51uw3SFQG/dYtpjScuo7KwWKx8nh XUhSqUW32bTDPhvGKREOYaTHwEkC+NGVkZWerXSVJUZ39ddqNb+VQhjwZCn3Bdfc gOrrzvpZB0jnjWZDF4X17D9CLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIOSiEbL bWI5rzxyoT0CDWp1wZwCMB8GA1UdIwQYMBaAFLvilJBEbWhwdltOYdfrmyLGAEY4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NkQ4My8xNDk3NDdCRTA2 MkExMUVBOEM5QTc0NDRDNEY5QUUwMi91LUtVa0VSdGFIQjJXMDVoMS11YklzWUFS amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UtS1VrRVJ0YUhCMlcwNWgxLXViSXNZQVJqZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NkQ4My8xNDk3NDdCRTA2MkExMUVBOEM5QTc0NDRDNEY5QUUwMi91LUtVa0VSdGFI QjJXMDVoMS11YklzWUFSamcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAB4g7OkBLk7lypB816cNcouqObeLG5hIrkTvRj1/mXuh/v1oz0AzOb K0oA6pZOT7nsXjpVcgCT5AM6zrxltswBD1SSnEU2sgqt4f6zD3yJ4qsIRo88pTVs K9RAJKXuQfcjpwGfg3NUe/st+zl3KDCIeR9nQTsYNUbqdJs5Sj16n7Em3Ydv3E+L F7BehS2PMOtak7yoYcJASTo5QiwspPTbVZmFrbmIKQ08XfcF7H7DRBLieqFvYWFW g9GciyCDEotr7j6v0J5Esaew5hsCObenVhmpi7YW103txqjwa88XUQurK7aIIy57 MnVp65xoHaR/gDgcTyx8YgqzCr6e4A+0 -----END CERTIFICATE-----Generated at Tue Nov 4 21:36:48 2025 by rpki-client